$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/sujuQIijQKmMPPH7W13A_XDPJvc.roa File: sujuQIijQKmMPPH7W13A_XDPJvc.roa (raw, json) Hash identifier: tg6ccnbYqiekb6e6QZwbOnFwysiZ6NvH4YVkZyG2flc= Subject key identifier: B2:E8:EE:40:88:A3:40:A9:8C:3C:F1:FB:5B:5D:C0:FD:70:CF:26:F7 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A5E Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/sujuQIijQKmMPPH7W13A_XDPJvc.roa Signing time: Sun 30 Jun 2024 01:50:21 +0000 ROA not before: Sun 30 Jun 2024 01:50:21 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 1.72.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2654 (0xa5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:50:21 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=B2E8EE4088A340A98C3CF1FB5B5DC0FD70CF26F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:20:36:ba:2c:50:20:88:a8:5c:21:f4:fb:1e: 00:9d:72:7c:9b:02:4c:c1:17:1a:3a:6e:2d:ae:09: 6a:de:92:33:45:a5:d3:90:80:b8:d8:38:e8:85:07: 53:7c:17:80:35:95:f6:ab:cc:4d:6e:4d:74:15:66: 96:e4:5f:4d:f2:d3:48:24:0b:ed:86:68:78:65:ec: 6a:ae:50:60:01:51:94:3a:f4:5c:4e:d6:b2:53:c5: e7:ef:ed:64:8e:10:d5:65:f8:c9:b5:e0:ba:80:43: 89:9e:af:82:94:1d:2a:1a:22:c0:6e:3a:11:be:e5: c0:7e:3e:9c:39:a4:4b:04:20:55:b4:dd:af:63:47: 24:0f:3f:f3:69:eb:23:8a:1e:17:10:91:b6:1d:bc: bb:6f:b9:b2:28:b8:c9:e3:cd:24:d4:d0:20:21:05: 01:02:1a:7c:a9:c1:1b:39:a7:8f:3a:d8:d5:a3:21: fa:7e:36:40:b0:7e:29:07:51:92:1a:4c:3d:50:21: 13:cd:b4:ea:30:e7:6a:00:01:22:be:6d:f4:a7:41: d6:4e:94:d4:ad:ac:26:40:47:2d:5c:de:f2:9a:42: 1c:a2:dc:50:0b:32:95:8c:a7:17:25:72:e5:4c:f7: c5:d4:3a:b4:42:a0:c1:d4:ce:93:50:86:2b:c3:77: 6e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:E8:EE:40:88:A3:40:A9:8C:3C:F1:FB:5B:5D:C0:FD:70:CF:26:F7 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/sujuQIijQKmMPPH7W13A_XDPJvc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.72.10.0/24 Signature Algorithm: sha256WithRSAEncryption 33:0e:64:48:c0:ca:78:c0:e9:1e:ff:56:85:6e:40:c0:37:c8: 4c:cc:64:cd:cd:9b:0e:ef:2c:e8:3d:87:de:06:71:c9:9d:7c: cf:db:a5:dc:8e:71:65:82:4d:1e:ba:04:ff:e9:24:7f:d2:06: d2:6e:83:28:94:f4:e9:da:39:55:6c:8c:ce:87:57:32:5b:bd: 01:58:d6:b6:e0:35:61:2c:87:cc:6e:b8:2e:80:33:1b:43:8d: a3:7a:75:ce:41:22:30:df:df:44:d7:d0:4d:d9:97:88:c1:89: 26:0a:42:d8:50:e9:57:71:b7:c8:b5:a4:5b:e7:65:a9:d9:00: 35:94:b6:41:d3:42:cc:85:99:dc:6f:5f:e7:34:f6:f7:f6:4a: 55:d7:7f:49:a9:e8:6d:a4:44:b5:1d:de:4e:48:91:01:f4:8d: fe:32:3f:2f:cd:e8:09:5a:26:4a:1a:e5:59:55:d8:6e:66:0c: 09:f6:c5:85:86:ee:23:61:10:ab:16:9d:8a:e5:f9:77:ba:6f: cb:ce:7c:76:15:04:4b:08:47:f9:d1:02:fa:89:34:12:6a:8e: bc:94:ff:a5:f6:e5:9c:9f:e7:d8:29:0c:a3:7e:e3:58:de:3f: 44:74:16:ae:c0:a0:0f:e3:6c:b2:7d:d5:66:99:7d:34:c4:ab: e1:6e:81:24 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCl4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTUwMjFaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKEIyRThFRTQwODhBMzQw QTk4QzNDRjFGQjVCNURDMEZENzBDRjI2RjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvIDa6LFAgiKhcIfT7HgCdcnybAkzBFxo6bi2uCWrekjNFpdOQ gLjYOOiFB1N8F4A1lfarzE1uTXQVZpbkX03y00gkC+2GaHhl7GquUGABUZQ69FxO 1rJTxefv7WSOENVl+Mm14LqAQ4mer4KUHSoaIsBuOhG+5cB+Ppw5pEsEIFW03a9j RyQPP/Np6yOKHhcQkbYdvLtvubIouMnjzSTU0CAhBQECGnypwRs5p4862NWjIfp+ NkCwfikHUZIaTD1QIRPNtOow52oAASK+bfSnQdZOlNStrCZARy1c3vKaQhyi3FAL MpWMpxclcuVM98XUOrRCoMHUzpNQhivDd267AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUsujuQIijQKmMPPH7W13A/XDPJvcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3N1anVRSWlqUUttTVBQSDdXMTNBX1hEUEp2Yy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABSAowDQYJKoZIhvcNAQELBQADggEBADMOZEjAynjA6R7/VoVuQMA3yEzM ZM3Nmw7vLOg9h94GccmdfM/bpdyOcWWCTR66BP/pJH/SBtJugyiU9OnaOVVsjM6H VzJbvQFY1rbgNWEsh8xuuC6AMxtDjaN6dc5BIjDf30TX0E3Zl4jBiSYKQthQ6Vdx t8i1pFvnZanZADWUtkHTQsyFmdxvX+c09vf2SlXXf0mp6G2kRLUd3k5IkQH0jf4y Py/N6AlaJkoa5VlV2G5mDAn2xYWG7iNhEKsWnYrl+Xe6b8vOfHYVBEsIR/nRAvqJ NBJqjryU/6X25Zyf59gpDKN+41jeP0R0Fq7AoA/jbLJ91WaZfTTEq+FugSQ= -----END CERTIFICATE-----Generated at Mon Nov 25 23:59:12 2024 by rpki-client on console-fra.rpki-client.org