$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/rFkEpE21B7DKZ2Sexmv1tUotnV0.roa File: rFkEpE21B7DKZ2Sexmv1tUotnV0.roa (raw, json) Hash identifier: F+oFKME5f4D+C6+RNZJ1JDXquVQHz74FDBXPCF9AcMU= Subject key identifier: AC:59:04:A4:4D:B5:07:B0:CA:67:64:9E:C6:6B:F5:B5:4A:2D:9D:5D Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0AA5 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/rFkEpE21B7DKZ2Sexmv1tUotnV0.roa Signing time: Sun 30 Jun 2024 01:54:25 +0000 ROA not before: Sun 30 Jun 2024 01:54:25 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 1.76.12.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2725 (0xaa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:54:25 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=AC5904A44DB507B0CA67649EC66BF5B54A2D9D5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:96:ca:2d:0c:c7:5e:7a:47:b0:d9:a2:df:0c: 73:5d:20:c0:e8:28:d1:19:4b:b1:14:b4:e5:15:6c: 97:f7:4e:1e:de:a5:c0:2b:c9:58:c1:ac:1b:c2:0b: 81:c3:56:b9:71:ba:ea:39:c4:a5:5a:13:af:69:12: ee:b6:0e:a9:b4:cb:a7:ff:19:13:c5:94:9b:63:e4: fa:7d:e0:a6:cc:aa:9a:b8:b9:f4:01:4c:5f:e5:1b: 40:70:69:32:d8:73:9e:bd:bc:2e:77:95:89:a5:18: 88:7b:2d:e9:33:70:44:cc:32:81:0d:26:02:41:27: 08:e6:30:e1:90:9d:c0:18:f5:e5:ee:7b:b4:8c:58: 67:37:96:0d:09:a8:53:7f:f0:af:f7:ac:a0:5a:3a: bd:ba:dc:ca:01:a0:1d:f5:bc:c1:56:fe:48:c7:97: 53:8a:f1:f1:1b:ea:d8:00:70:1a:dd:64:85:ad:de: 41:39:19:cd:2f:e4:fe:62:15:4d:2f:99:42:92:e5: a5:18:32:ee:9d:2f:7b:4a:31:9b:ab:fc:8e:65:9e: ff:2d:ab:84:25:fc:d9:1c:f5:37:c3:1d:f2:32:ec: cb:c4:99:af:84:96:b7:83:30:ae:8b:e7:b6:3a:82: 52:17:90:31:b0:b3:d8:5b:ce:ae:c6:c0:1b:d8:c1: 70:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:59:04:A4:4D:B5:07:B0:CA:67:64:9E:C6:6B:F5:B5:4A:2D:9D:5D X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/rFkEpE21B7DKZ2Sexmv1tUotnV0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.76.12.0/22 Signature Algorithm: sha256WithRSAEncryption 97:54:c2:34:55:da:93:b9:3a:16:e5:35:18:4e:3b:25:9c:3c: 5a:d7:f6:32:72:8d:e0:48:3f:27:a9:a1:1e:f8:27:54:da:b8: 2c:a5:05:61:3d:b9:55:ff:52:06:72:24:a9:ea:f5:c8:2b:3a: d9:d8:ce:e3:c3:bf:b7:a2:b4:98:3b:a9:ec:83:8a:1e:bb:21: 36:27:45:29:b6:59:aa:63:32:7c:bd:d9:93:db:ae:7d:5d:16: 94:ea:56:d6:95:60:c1:f2:d0:06:08:cd:84:71:dc:dc:2f:9a: 78:96:c3:ae:9a:af:b6:c5:d5:77:b1:93:ea:1b:79:d9:be:3c: 5d:52:b2:a9:ed:8c:9f:2d:df:e6:4d:d8:48:83:d2:32:f7:9b: 3e:b5:b5:83:14:a9:fc:67:75:b1:34:1e:6c:20:06:13:7b:01: d9:41:e8:33:8e:39:dd:ea:1c:cf:90:54:21:de:8a:8d:13:b4: c2:ce:a8:56:43:6c:a7:b3:cb:0d:1b:ea:db:b5:08:f5:18:0b: f5:e4:c1:0b:97:6c:a0:80:6e:36:97:1d:56:71:f4:ce:92:ea: bb:bd:62:03:98:a2:d1:0e:4e:d9:02:1e:53:b1:63:12:c4:da: da:9b:86:0a:ff:c3:5f:5a:b7:ad:72:b6:13:b4:35:78:be:f0: 9c:66:74:b2 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCqUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTU0MjVaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKEFDNTkwNEE0NERCNTA3 QjBDQTY3NjQ5RUM2NkJGNUI1NEEyRDlENUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBlsotDMdeekew2aLfDHNdIMDoKNEZS7EUtOUVbJf3Th7epcAr yVjBrBvCC4HDVrlxuuo5xKVaE69pEu62Dqm0y6f/GRPFlJtj5Pp94KbMqpq4ufQB TF/lG0BwaTLYc569vC53lYmlGIh7LekzcETMMoENJgJBJwjmMOGQncAY9eXue7SM WGc3lg0JqFN/8K/3rKBaOr263MoBoB31vMFW/kjHl1OK8fEb6tgAcBrdZIWt3kE5 Gc0v5P5iFU0vmUKS5aUYMu6dL3tKMZur/I5lnv8tq4Ql/Nkc9TfDHfIy7MvEma+E lreDMK6L57Y6glIXkDGws9hbzq7GwBvYwXAzAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUrFkEpE21B7DKZ2Sexmv1tUotnV0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3JGa0VwRTIxQjdES1oyU2V4bXYxdFVvdG5WMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBTAwwDQYJKoZIhvcNAQELBQADggEBAJdUwjRV2pO5OhblNRhOOyWcPFrX 9jJyjeBIPyepoR74J1TauCylBWE9uVX/UgZyJKnq9cgrOtnYzuPDv7eitJg7qeyD ih67ITYnRSm2WapjMny92ZPbrn1dFpTqVtaVYMHy0AYIzYRx3NwvmniWw66ar7bF 1Xexk+obedm+PF1SsqntjJ8t3+ZN2EiD0jL3mz61tYMUqfxndbE0HmwgBhN7AdlB 6DOOOd3qHM+QVCHeio0TtMLOqFZDbKezyw0b6tu1CPUYC/XkwQuXbKCAbjaXHVZx 9M6S6ru9YgOYotEOTtkCHlOxYxLE2tqbhgr/w19at61ythO0NXi+8JxmdLI= -----END CERTIFICATE-----Generated at Mon Nov 25 23:54:42 2024 by rpki-client on console-ams.rpki-client.org