$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/sp21YOTsgCzXnrnPZgiulY869JU.roa File: sp21YOTsgCzXnrnPZgiulY869JU.roa (raw, json) Hash identifier: Os6ORi4H9L9LU0RZirc6AjVEaCJ85pDDLRBX1i3hkbQ= Subject key identifier: B2:9D:B5:60:E4:EC:80:2C:D7:9E:B9:CF:66:08:AE:95:8F:3A:F4:95 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0655 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/sp21YOTsgCzXnrnPZgiulY869JU.roa Signing time: Tue 30 Apr 2024 01:31:35 +0000 ROA not before: Tue 30 Apr 2024 01:31:35 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1621 (0x655) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:31:35 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=B29DB560E4EC802CD79EB9CF6608AE958F3AF495 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:62:ab:87:7e:d4:e7:b3:c1:48:75:15:31:b3: 54:ab:df:6a:f8:1a:cc:ac:64:6c:de:aa:48:e8:aa: 99:b8:99:f6:2c:d2:e1:d6:bc:a6:b3:93:12:eb:b2: 02:ef:38:a9:2b:70:9f:0d:31:0c:29:a0:47:46:70: 92:bb:7f:64:16:38:ac:3b:32:f4:71:89:67:48:48: 3f:96:ed:98:4d:f3:67:fe:14:ac:38:b0:52:25:30: 0d:9f:0c:c6:42:d1:dd:f3:2a:cf:a7:0c:39:4c:1f: dd:11:1b:7a:c9:8b:42:69:0b:17:33:36:b2:26:da: c0:a0:4c:3a:aa:14:59:1c:e6:44:46:09:74:b9:c5: 7a:50:5c:28:b8:ef:e9:76:5b:78:36:14:63:34:0d: 04:11:e2:f1:ec:86:47:fb:65:87:9a:b6:2f:fd:a3: 0c:3f:5b:76:95:eb:bd:6b:b7:36:92:b5:97:60:df: 1f:ab:92:b1:69:b8:cc:1c:b0:fa:3c:91:f8:36:eb: 18:bb:83:a5:0b:6e:7e:af:b5:bd:18:c9:7a:32:59: 54:7d:62:e0:1d:3b:ed:d7:80:01:4e:f0:0f:aa:d6: 5d:a9:81:ab:56:24:24:7c:41:90:ba:42:c1:dd:7d: cc:04:fb:da:4a:05:cb:10:e6:e9:19:95:aa:83:a1: 8c:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:9D:B5:60:E4:EC:80:2C:D7:9E:B9:CF:66:08:AE:95:8F:3A:F4:95 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/sp21YOTsgCzXnrnPZgiulY869JU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.114.0/24 Signature Algorithm: sha256WithRSAEncryption 31:05:e0:fd:63:e6:cd:88:f5:c1:38:ae:84:82:bb:a2:e6:22: 56:64:d1:d6:5d:f9:7d:23:6c:6c:b5:68:2b:d3:c9:66:ab:43: 39:d2:2a:35:32:cf:f7:2e:ce:59:cc:88:ca:2a:90:f4:a6:c9: 97:01:03:22:92:fb:14:88:07:00:92:59:24:e9:a8:69:fd:1b: 54:b9:05:bb:01:ac:11:ef:41:91:31:8d:91:19:40:98:72:4f: 55:95:6f:5b:28:5a:aa:d1:5d:c8:7c:4e:6d:e8:ae:ae:e3:16: 20:76:90:f6:07:b1:ca:bd:0c:db:51:7a:17:bd:6a:d1:ee:16: 8b:29:82:4b:30:48:e8:4f:43:3d:eb:03:13:90:bf:67:d2:5d: 79:da:4f:3f:95:f0:3a:28:4f:95:31:37:61:79:3b:b6:f5:8d: 09:27:4d:e7:aa:39:9a:ac:63:e2:09:28:08:7f:30:47:39:5c: d2:05:6b:60:c9:12:b6:77:e2:09:53:8d:1a:8b:03:0b:58:a1: f5:5b:82:05:1b:a0:ec:69:3e:f5:a6:ff:ad:4c:7b:73:0f:a0: 5f:f4:f4:b8:35:27:5e:1f:8d:ce:7f:dc:60:55:14:93:21:ef: b4:87:5a:d7:3a:d3:68:f1:e2:38:1e:39:7c:94:3a:f1:e8:26: 93:7c:b9:2b -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBlUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTMxMzVaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEIyOURCNTYwRTRFQzgw MkNENzlFQjlDRjY2MDhBRTk1OEYzQUY0OTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZYquHftTns8FIdRUxs1Sr32r4GsysZGzeqkjoqpm4mfYs0uHW vKazkxLrsgLvOKkrcJ8NMQwpoEdGcJK7f2QWOKw7MvRxiWdISD+W7ZhN82f+FKw4 sFIlMA2fDMZC0d3zKs+nDDlMH90RG3rJi0JpCxczNrIm2sCgTDqqFFkc5kRGCXS5 xXpQXCi47+l2W3g2FGM0DQQR4vHshkf7ZYeati/9oww/W3aV671rtzaStZdg3x+r krFpuMwcsPo8kfg26xi7g6ULbn6vtb0YyXoyWVR9YuAdO+3XgAFO8A+q1l2pgatW JCR8QZC6QsHdfcwE+9pKBcsQ5ukZlaqDoYzjAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUsp21YOTsgCzXnrnPZgiulY869JUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3NwMjFZT1RzZ0N6WG5yblBaZ2l1bFk4NjlKVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxYnIwDQYJKoZIhvcNAQELBQADggEBADEF4P1j5s2I9cE4roSCu6LmIlZk 0dZd+X0jbGy1aCvTyWarQznSKjUyz/cuzlnMiMoqkPSmyZcBAyKS+xSIBwCSWSTp qGn9G1S5BbsBrBHvQZExjZEZQJhyT1WVb1soWqrRXch8Tm3orq7jFiB2kPYHscq9 DNtRehe9atHuFospgkswSOhPQz3rAxOQv2fSXXnaTz+V8DooT5UxN2F5O7b1jQkn TeeqOZqsY+IJKAh/MEc5XNIFa2DJErZ34glTjRqLAwtYofVbggUboOxpPvWm/61M e3MPoF/09Lg1J14fjc5/3GBVFJMh77SHWtc602jx4jgeOXyUOvHoJpN8uSs= -----END CERTIFICATE-----Generated at Mon Nov 25 23:54:42 2024 by rpki-client on console-ams.rpki-client.org