$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/sKB49W091IE6vs7vcQ0y8AcXFPA.roa File: sKB49W091IE6vs7vcQ0y8AcXFPA.roa (raw, json) Hash identifier: HGRrIfVWv8vx+UrVrl+i1Y8VEGn4v+xNr6CZ9I7jvSU= Subject key identifier: B0:A0:78:F5:6D:3D:D4:81:3A:BE:CE:EF:71:0D:32:F0:07:17:14:F0 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 089D Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/sKB49W091IE6vs7vcQ0y8AcXFPA.roa Signing time: Tue 30 Apr 2024 02:20:42 +0000 ROA not before: Tue 30 Apr 2024 02:20:42 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.38.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2205 (0x89d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:20:42 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=B0A078F56D3DD4813ABECEEF710D32F0071714F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:e3:27:5b:10:a0:0d:b0:c5:50:62:df:7b:de: 87:89:43:c4:38:97:27:d7:6b:79:db:0c:72:6a:79: f4:3c:69:e7:6a:46:0e:31:0d:9b:60:ed:36:14:31: 81:90:79:b7:27:b9:ea:31:67:a8:1d:70:27:ff:7f: a6:07:23:c3:32:a1:fc:ab:db:94:98:ea:1a:0b:00: 32:0c:47:eb:7e:99:81:84:8a:2d:7c:a3:9a:39:f4: 0a:7f:df:1e:33:76:8b:07:fe:b2:88:5f:8a:89:be: 28:f7:e5:e5:65:ab:36:f5:4e:b9:2b:f9:cf:4a:15: b4:7b:d8:f2:bd:77:06:78:33:d9:1a:c2:ef:1a:c5: 6f:11:c1:a9:99:87:be:9f:a6:11:9d:fa:10:35:48: 30:0f:f7:bf:b8:2a:b1:d2:c1:61:cc:aa:92:dd:b9: 2c:71:cd:10:34:37:22:c8:e7:b2:7b:11:0d:81:02: ec:c4:e3:e8:14:19:2b:af:bd:32:99:80:30:24:9d: a1:aa:45:e4:db:1e:89:1e:52:c3:d3:1e:68:e4:a7: 29:2c:4e:00:8e:f8:cd:ce:55:03:0b:c6:77:9b:2f: 14:aa:5b:77:dc:b0:9b:87:dc:97:f6:88:7b:66:a2: ca:5e:e1:95:47:74:16:3e:a0:3a:b5:f5:95:fe:6d: 64:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:A0:78:F5:6D:3D:D4:81:3A:BE:CE:EF:71:0D:32:F0:07:17:14:F0 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/sKB49W091IE6vs7vcQ0y8AcXFPA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.38.0/23 Signature Algorithm: sha256WithRSAEncryption cc:18:e8:a8:47:27:f2:d4:bb:34:a9:16:f9:69:25:20:be:02: bc:7f:e2:e8:b9:fb:14:3d:8b:66:25:7b:85:31:d4:c8:f6:4a: 08:40:d6:f8:2c:dc:73:5c:04:4a:f5:87:d3:ce:6b:16:62:91: ac:f0:34:f5:d8:45:7e:94:80:65:84:5a:46:70:37:cd:06:1d: 39:1d:7c:db:6f:8a:e9:63:98:88:77:7a:2b:38:54:1c:2a:6c: 58:44:00:ae:01:16:71:9a:d5:51:02:de:d9:3c:46:f0:ee:e5: 5f:34:fc:ad:7a:75:5d:07:a7:98:55:24:35:1f:5f:3c:d5:b5: 0e:90:8f:7d:2f:3c:3d:7d:6c:24:39:05:b1:80:2e:75:aa:cb: a2:0f:90:e0:d6:bd:d4:ce:b0:41:dd:55:b2:38:68:35:57:b8: 99:38:33:e3:6d:fa:ba:c2:75:51:0e:30:70:7e:42:62:f3:38: 1e:3c:cd:fa:c0:f5:94:5a:95:86:bc:2f:c7:f8:37:eb:21:2f: 36:24:ad:07:51:b3:e3:5b:68:c7:f6:c6:ad:ef:c0:63:00:34: 64:25:0b:48:c8:c8:fd:4d:61:7b:93:9a:c2:98:0d:89:b5:fa: 02:74:0b:88:ea:fe:e9:79:59:da:8b:44:1f:43:1f:32:1f:4f: 27:7c:1d:66 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCJ0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjIwNDJaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEIwQTA3OEY1NkQzREQ0 ODEzQUJFQ0VFRjcxMEQzMkYwMDcxNzE0RjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD24ydbEKANsMVQYt973oeJQ8Q4lyfXa3nbDHJqefQ8aedqRg4x DZtg7TYUMYGQebcnueoxZ6gdcCf/f6YHI8Myofyr25SY6hoLADIMR+t+mYGEii18 o5o59Ap/3x4zdosH/rKIX4qJvij35eVlqzb1Trkr+c9KFbR72PK9dwZ4M9kawu8a xW8RwamZh76fphGd+hA1SDAP97+4KrHSwWHMqpLduSxxzRA0NyLI57J7EQ2BAuzE 4+gUGSuvvTKZgDAknaGqReTbHokeUsPTHmjkpyksTgCO+M3OVQMLxnebLxSqW3fc sJuH3Jf2iHtmospe4ZVHdBY+oDq19ZX+bWQFAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUsKB49W091IE6vs7vcQ0y8AcXFPAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3NLQjQ5VzA5MUlFNnZzN3ZjUTB5OEFjWEZQQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBTyYwDQYJKoZIhvcNAQELBQADggEBAMwY6KhHJ/LUuzSpFvlpJSC+Arx/ 4ui5+xQ9i2Yle4Ux1Mj2SghA1vgs3HNcBEr1h9POaxZikazwNPXYRX6UgGWEWkZw N80GHTkdfNtviuljmIh3eis4VBwqbFhEAK4BFnGa1VEC3tk8RvDu5V80/K16dV0H p5hVJDUfXzzVtQ6Qj30vPD19bCQ5BbGALnWqy6IPkODWvdTOsEHdVbI4aDVXuJk4 M+Nt+rrCdVEOMHB+QmLzOB48zfrA9ZRalYa8L8f4N+shLzYkrQdRs+NbaMf2xq3v wGMANGQlC0jIyP1NYXuTmsKYDYm1+gJ0C4jq/ul5WdqLRB9DHzIfTyd8HWY= -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:03 2024 by rpki-client on console-fra.rpki-client.org