$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/rPX5PRft-b8rajp64dbbA4FbB4M.roa File: rPX5PRft-b8rajp64dbbA4FbB4M.roa (raw, json) Hash identifier: jkOL50i+GQ/t+t1HeSKji5xSsxtqF8zTc/8YmJuEj1k= Subject key identifier: AC:F5:F9:3D:17:ED:F9:BF:2B:6A:3A:7A:E1:D6:DB:03:81:5B:07:83 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 083F Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/rPX5PRft-b8rajp64dbbA4FbB4M.roa Signing time: Tue 30 Apr 2024 02:16:20 +0000 ROA not before: Tue 30 Apr 2024 02:16:20 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.78.20.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2111 (0x83f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:16:20 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=ACF5F93D17EDF9BF2B6A3A7AE1D6DB03815B0783 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e9:56:97:97:0f:11:98:ac:bf:d7:39:b1:b7: 1a:79:25:39:e3:eb:0a:bf:2f:cf:7f:8a:c5:11:4c: 3e:eb:ad:fd:01:5e:93:fd:a2:c1:57:13:ac:9e:17: ff:1d:b5:cb:98:9a:34:d7:d6:88:c6:1d:ba:9b:f4: b5:b4:97:59:ff:2c:4b:bf:32:ed:88:9b:2a:3f:74: c3:29:05:de:a9:1b:6a:1b:68:60:c3:1f:c2:8b:e3: 77:97:32:f3:eb:5a:5b:a3:aa:b2:df:4a:f6:5d:35: 55:fb:f4:e9:52:13:64:11:26:d8:3f:fa:b1:db:91: d3:c0:05:13:42:7d:6d:ae:6d:0e:d3:51:fe:ed:43: 49:26:1b:5f:57:ed:d1:b9:71:00:fd:df:9d:2a:48: ba:ae:09:66:e9:ad:70:75:08:35:e1:17:a6:78:fb: c0:88:86:ec:1e:72:c6:1f:e7:2d:84:f5:e5:98:cf: 94:2e:4b:44:6f:bb:74:08:c6:9b:14:b1:ff:9a:27: 65:3f:8e:82:76:d2:4c:38:3c:76:cf:51:87:d5:fc: b7:70:d9:e0:e3:5b:e8:a7:93:90:ef:7d:e5:67:e1: 00:53:52:ff:96:e5:c0:13:51:da:0c:15:cc:5f:d8: 30:26:08:e3:75:ca:c0:4e:58:df:92:8e:71:f3:c3: 15:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:F5:F9:3D:17:ED:F9:BF:2B:6A:3A:7A:E1:D6:DB:03:81:5B:07:83 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/rPX5PRft-b8rajp64dbbA4FbB4M.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.78.20.0/22 Signature Algorithm: sha256WithRSAEncryption 42:0a:d2:68:32:56:46:e6:b2:54:8f:d4:e3:bf:b3:4c:0c:a6: 20:0c:3d:75:94:5d:05:12:8b:18:01:35:34:b3:be:e8:89:a8: ba:40:e5:2b:8f:34:10:2d:c6:da:82:b0:f2:88:6d:45:5b:42: 30:34:8b:89:c3:22:f7:86:30:db:e0:a3:18:25:5f:48:26:0e: 09:2c:3e:bb:4f:f8:85:b5:77:90:5d:b1:e3:99:73:b0:6a:ef: 71:c4:06:8b:57:10:44:0a:61:6a:b1:1a:dc:5d:fe:8d:69:d1: 98:82:01:ff:1d:f4:e0:df:82:29:7e:de:01:78:cf:ad:16:69: b4:7d:f4:af:16:23:9e:cb:0a:21:25:ba:c3:ae:9c:53:7b:ab: 64:bf:29:e6:16:20:43:58:e3:88:b4:11:af:cd:50:52:ad:28: 14:d8:16:26:bd:08:d2:fb:4b:e8:22:ea:4a:3b:a8:e6:47:07: fb:05:57:78:0b:32:81:98:17:13:d0:a7:27:7c:ca:78:0e:15: 53:3f:27:90:18:98:8d:77:54:a0:e0:56:80:92:af:be:14:03: 66:cf:a6:b8:1d:7c:8e:54:2a:e4:b2:6c:5d:e1:c4:8d:5a:bd: 40:8a:00:ef:ae:fa:c7:c5:3a:8d:a2:e0:f5:84:01:43:a1:8f: 01:4b:72:ec -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCD8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjE2MjBaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEFDRjVGOTNEMTdFREY5 QkYyQjZBM0E3QUUxRDZEQjAzODE1QjA3ODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC06VaXlw8RmKy/1zmxtxp5JTnj6wq/L89/isURTD7rrf0BXpP9 osFXE6yeF/8dtcuYmjTX1ojGHbqb9LW0l1n/LEu/Mu2Imyo/dMMpBd6pG2obaGDD H8KL43eXMvPrWlujqrLfSvZdNVX79OlSE2QRJtg/+rHbkdPABRNCfW2ubQ7TUf7t Q0kmG19X7dG5cQD9350qSLquCWbprXB1CDXhF6Z4+8CIhuwecsYf5y2E9eWYz5Qu S0Rvu3QIxpsUsf+aJ2U/joJ20kw4PHbPUYfV/Ldw2eDjW+ink5DvfeVn4QBTUv+W 5cATUdoMFcxf2DAmCON1ysBOWN+SjnHzwxULAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUrPX5PRft+b8rajp64dbbA4FbB4MwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3JQWDVQUmZ0LWI4cmFqcDY0ZGJiQTRGYkI0TS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBThQwDQYJKoZIhvcNAQELBQADggEBAEIK0mgyVkbmslSP1OO/s0wMpiAM PXWUXQUSixgBNTSzvuiJqLpA5SuPNBAtxtqCsPKIbUVbQjA0i4nDIveGMNvgoxgl X0gmDgksPrtP+IW1d5BdseOZc7Bq73HEBotXEEQKYWqxGtxd/o1p0ZiCAf8d9ODf gil+3gF4z60WabR99K8WI57LCiElusOunFN7q2S/KeYWIENY44i0Ea/NUFKtKBTY Fia9CNL7S+gi6ko7qOZHB/sFV3gLMoGYFxPQpyd8yngOFVM/J5AYmI13VKDgVoCS r74UA2bPprgdfI5UKuSybF3hxI1avUCKAO+u+sfFOo2i4PWEAUOhjwFLcuw= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:41 2024 by rpki-client on console-ams.rpki-client.org