$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/r9XNuUxjZ4j2rLQPFeiLUsKOmxg.roa File: r9XNuUxjZ4j2rLQPFeiLUsKOmxg.roa (raw, json) Hash identifier: s75I5zSmJBokTeLIc4y0+d9tiZkR3BzoxWRfNsYrdWI= Subject key identifier: AF:D5:CD:B9:4C:63:67:88:F6:AC:B4:0F:15:E8:8B:52:C2:8E:9B:18 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 09DC Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/r9XNuUxjZ4j2rLQPFeiLUsKOmxg.roa Signing time: Sun 30 Jun 2024 01:40:34 +0000 ROA not before: Sun 30 Jun 2024 01:40:34 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 1.72.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 12:58:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2524 (0x9dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:40:34 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=AFD5CDB94C636788F6ACB40F15E88B52C28E9B18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:f5:94:d2:91:12:44:43:d4:a8:28:07:02:fb: b7:cc:ce:d0:85:ea:4d:26:d5:75:08:7a:47:dc:dc: 6c:83:f3:4e:2b:6e:58:ca:52:bc:96:bb:72:5c:0d: 98:df:6c:50:ce:a6:ee:d2:f4:7c:75:15:db:4c:18: a6:76:88:0a:02:4f:dd:c0:af:5e:4c:61:52:ea:e0: f7:68:e7:0b:36:a5:a2:38:0e:e7:ea:5f:2f:78:e0: f0:4a:20:fb:53:e3:e1:a1:48:7c:2e:6e:7c:18:09: 57:84:f4:b6:3e:50:0a:7a:79:9d:1d:5f:46:40:0f: 1f:4b:62:a8:bc:9e:0e:54:70:ce:03:e3:4e:71:73: 65:0d:4e:4b:d9:53:0f:8b:db:f1:73:bc:ef:b6:87: cd:5b:b6:98:40:00:e0:b5:a0:b3:be:e8:81:90:68: f6:f2:f6:14:dc:87:3a:c5:c2:53:09:c2:53:a8:5c: 13:04:00:82:5c:c7:5f:06:4d:25:e2:5e:d0:a7:08: 4f:3d:6b:ee:2e:de:91:5d:1e:7d:fd:67:36:6b:be: 01:44:a5:02:2d:42:15:c4:e3:e8:b9:4b:bb:db:e6: 5e:aa:3f:63:55:51:8f:ab:89:64:ea:83:1b:26:e2: 00:6d:9a:00:6a:d8:a1:4c:6d:b8:d9:4d:58:4d:d2: ef:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:D5:CD:B9:4C:63:67:88:F6:AC:B4:0F:15:E8:8B:52:C2:8E:9B:18 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/r9XNuUxjZ4j2rLQPFeiLUsKOmxg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.72.128.0/19 Signature Algorithm: sha256WithRSAEncryption 4a:61:76:1b:37:67:1e:43:6e:47:89:8b:05:02:c0:31:27:41: 0e:41:ec:82:0a:15:22:0c:75:a7:da:6a:8c:a9:42:c0:11:55: 37:ae:ef:b5:33:48:4d:64:ee:27:19:20:9e:89:2f:df:1f:93: 19:56:37:15:e9:68:c4:f6:61:c8:0c:5b:9a:ec:38:a7:b0:67: 70:b8:56:3e:af:81:2c:23:18:e4:17:1c:af:57:3c:39:86:63: 07:35:72:9f:1c:6f:6c:c4:d6:0c:1a:6a:80:b2:6a:6d:13:8c: 4d:1d:86:16:93:43:d3:94:78:07:dd:1d:86:db:1e:36:12:98: 45:7d:97:81:a1:ba:f5:91:a9:ca:ef:92:f6:71:a3:7b:0e:25: 2f:cf:21:f5:36:82:7e:57:79:1e:4b:d7:74:5a:24:2b:e1:05: e6:28:15:c1:2e:ae:92:8c:f6:a3:06:69:f0:00:75:b2:3e:89: 5f:c5:20:02:42:23:62:8c:56:0c:92:7d:30:00:b2:ae:6c:5b: fb:6a:aa:22:b7:9e:b5:57:a3:6b:7c:57:72:8a:5e:82:82:31: 34:a6:00:f3:09:88:52:12:e2:4a:98:c6:59:8e:d8:8b:37:81: 27:c9:1b:03:ed:ac:c5:95:58:bc:b0:e8:af:80:fd:8d:54:23: a0:ec:c1:75 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCdwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTQwMzRaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKEFGRDVDREI5NEM2MzY3 ODhGNkFDQjQwRjE1RTg4QjUyQzI4RTlCMTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDs9ZTSkRJEQ9SoKAcC+7fMztCF6k0m1XUIekfc3GyD804rbljK UryWu3JcDZjfbFDOpu7S9Hx1FdtMGKZ2iAoCT93Ar15MYVLq4Pdo5ws2paI4Dufq Xy944PBKIPtT4+GhSHwubnwYCVeE9LY+UAp6eZ0dX0ZADx9LYqi8ng5UcM4D405x c2UNTkvZUw+L2/FzvO+2h81btphAAOC1oLO+6IGQaPby9hTchzrFwlMJwlOoXBME AIJcx18GTSXiXtCnCE89a+4u3pFdHn39ZzZrvgFEpQItQhXE4+i5S7vb5l6qP2NV UY+riWTqgxsm4gBtmgBq2KFMbbjZTVhN0u+3AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUr9XNuUxjZ4j2rLQPFeiLUsKOmxgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3I5WE51VXhqWjRqMnJMUVBGZWlMVXNLT214Zy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUBSIAwDQYJKoZIhvcNAQELBQADggEBAEphdhs3Zx5DbkeJiwUCwDEnQQ5B 7IIKFSIMdafaaoypQsARVTeu77UzSE1k7icZIJ6JL98fkxlWNxXpaMT2YcgMW5rs OKewZ3C4Vj6vgSwjGOQXHK9XPDmGYwc1cp8cb2zE1gwaaoCyam0TjE0dhhaTQ9OU eAfdHYbbHjYSmEV9l4GhuvWRqcrvkvZxo3sOJS/PIfU2gn5XeR5L13RaJCvhBeYo FcEurpKM9qMGafAAdbI+iV/FIAJCI2KMVgySfTAAsq5sW/tqqiK3nrVXo2t8V3KK XoKCMTSmAPMJiFIS4kqYxlmO2Is3gSfJGwPtrMWVWLyw6K+A/Y1UI6DswXU= -----END CERTIFICATE-----Generated at Fri Nov 22 14:21:25 2024 by rpki-client on console-ams.rpki-client.org