$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/sbhFupqzc-AtARd-kXCGoEDN6TM.roa File: sbhFupqzc-AtARd-kXCGoEDN6TM.roa (raw, json) Hash identifier: IIS+A7guV4SDzOb6EHbspaaMkOb/pS3PFamQrYWbeM0= Subject key identifier: B1:B8:45:BA:9A:B3:73:E0:2D:01:17:7E:91:70:86:A0:40:CD:E9:33 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 05ED Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/sbhFupqzc-AtARd-kXCGoEDN6TM.roa Signing time: Thu 29 Feb 2024 01:35:39 +0000 ROA not before: Thu 29 Feb 2024 01:35:39 +0000 ROA not after: Fri 14 Feb 2025 01:30:03 +0000 asID: 9605 IP address blocks: 1.75.152.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1517 (0x5ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Feb 29 01:35:39 2024 GMT Not After : Feb 14 01:30:03 2025 GMT Subject: CN=B1B845BA9AB373E02D01177E917086A040CDE933 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:79:b4:d8:d0:63:13:5b:94:3f:76:d9:3d:8a: 0a:a1:e4:4c:66:f6:e0:6a:c9:b8:93:85:5f:58:d8: cc:ca:df:49:7b:da:48:54:d6:c1:85:1e:66:d4:d4: 1d:79:a9:83:34:b3:cc:28:e2:2f:bb:63:2d:29:ad: b6:ba:d0:41:73:75:64:a9:a7:4c:b2:17:66:ad:dd: 0c:6e:fc:76:b9:c0:c1:bc:4d:16:ac:11:52:c6:3c: c5:c7:13:8a:1d:bd:f3:e9:12:5d:c0:c0:f1:10:9c: 37:bb:2b:71:40:be:a7:79:8f:3b:a3:f7:1d:79:ed: 51:b7:e0:16:69:75:36:2a:71:ec:49:ee:bf:19:39: 9a:93:8e:67:cd:52:0e:71:23:1b:3b:89:c1:03:9b: 84:4b:a1:30:5e:ca:15:d6:11:de:89:31:db:5e:66: 93:d2:e4:29:10:c1:41:2d:6d:9f:af:f1:1a:83:54: 3f:f4:0f:11:17:54:ab:36:8a:9c:47:f9:2a:35:19: 72:71:82:86:96:4c:8b:0e:60:58:37:b4:10:d4:de: 2a:85:df:d6:2d:82:82:08:e5:25:37:10:1e:9c:d2: f7:46:d1:6d:ea:5f:28:fd:68:be:f7:c4:11:15:d1: ed:9a:b1:9e:4b:51:a2:62:2a:73:20:fa:ac:57:d7: ff:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:B8:45:BA:9A:B3:73:E0:2D:01:17:7E:91:70:86:A0:40:CD:E9:33 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/sbhFupqzc-AtARd-kXCGoEDN6TM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.152.0/21 Signature Algorithm: sha256WithRSAEncryption 45:c7:90:99:a8:0b:4f:ed:c9:ab:f3:e6:c5:ec:eb:28:33:30: 16:7c:81:10:b1:45:69:af:ea:4c:96:cf:df:ba:75:2f:7e:c1: e5:fb:f4:98:99:a1:53:c5:11:19:82:66:72:03:05:51:29:ac: f2:59:9d:c8:9b:82:2a:30:c4:d3:03:10:92:0d:92:0c:d0:df: 67:6f:4b:d9:57:d4:97:55:65:b8:89:7c:de:a8:cc:82:f3:fb: 43:4b:d6:8a:07:e0:45:f5:57:82:f6:f4:91:9e:d8:5b:d4:28: b5:a4:75:e7:08:5b:11:cf:c4:55:e0:fa:56:67:e6:bf:ed:e0: 1a:54:c0:4f:4b:41:63:48:ea:e8:01:1e:24:06:28:5e:9f:1f: 83:b8:67:6f:7c:2f:c8:87:a9:25:70:bb:75:b8:06:0d:95:50: 34:44:65:f0:13:95:cf:cd:c8:6a:45:4b:ef:6c:b0:55:aa:21: 9c:3b:c4:c9:d8:09:c7:25:5d:e1:06:2d:26:8c:3d:99:9e:c5: 57:86:40:92:b6:a4:45:50:2c:77:e2:1a:e7:d5:90:cb:10:e9: df:1a:d6:da:37:27:01:6b:a2:c1:14:93:e9:3f:84:aa:15:8a: c7:45:1a:c7:a1:17:52:19:25:a2:7d:99:c3:23:b2:e4:2d:40: 39:14:8b:73 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBe0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDAyMjkw MTM1MzlaFw0yNTAyMTQwMTMwMDNaMDMxMTAvBgNVBAMTKEIxQjg0NUJBOUFCMzcz RTAyRDAxMTc3RTkxNzA4NkEwNDBDREU5MzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDebTY0GMTW5Q/dtk9igqh5Exm9uBqybiThV9Y2MzK30l72khU 1sGFHmbU1B15qYM0s8wo4i+7Yy0prba60EFzdWSpp0yyF2at3Qxu/Ha5wMG8TRas EVLGPMXHE4odvfPpEl3AwPEQnDe7K3FAvqd5jzuj9x157VG34BZpdTYqcexJ7r8Z OZqTjmfNUg5xIxs7icEDm4RLoTBeyhXWEd6JMdteZpPS5CkQwUEtbZ+v8RqDVD/0 DxEXVKs2ipxH+So1GXJxgoaWTIsOYFg3tBDU3iqF39YtgoII5SU3EB6c0vdG0W3q Xyj9aL73xBEV0e2asZ5LUaJiKnMg+qxX1/9PAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUsbhFupqzc+AtARd+kXCGoEDN6TMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3NiaEZ1cHF6Yy1BdEFSZC1rWENHb0VETjZUTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMBS5gwDQYJKoZIhvcNAQELBQADggEBAEXHkJmoC0/tyavz5sXs6ygzMBZ8 gRCxRWmv6kyWz9+6dS9+weX79JiZoVPFERmCZnIDBVEprPJZncibgiowxNMDEJIN kgzQ32dvS9lX1JdVZbiJfN6ozILz+0NL1ooH4EX1V4L29JGe2FvUKLWkdecIWxHP xFXg+lZn5r/t4BpUwE9LQWNI6ugBHiQGKF6fH4O4Z298L8iHqSVwu3W4Bg2VUDRE ZfATlc/NyGpFS+9ssFWqIZw7xMnYCcclXeEGLSaMPZmexVeGQJK2pEVQLHfiGufV kMsQ6d8a1to3JwFrosEUk+k/hKoVisdFGsehF1IZJaJ9mcMjsuQtQDkUi3M= -----END CERTIFICATE-----Generated at Mon Nov 25 23:59:12 2024 by rpki-client on console-fra.rpki-client.org