$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/tyHIpWoJHodhzd-1UD7CUTkR0Ro.roa File: tyHIpWoJHodhzd-1UD7CUTkR0Ro.roa (raw, json) Hash identifier: psRu3Av9pwpq3qy3gtHn9EgxA/xpZvr1ZnPGeozDNcY= Subject key identifier: B7:21:C8:A5:6A:09:1E:87:61:CD:DF:B5:50:3E:C2:51:39:11:D1:1A Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0743 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/tyHIpWoJHodhzd-1UD7CUTkR0Ro.roa Signing time: Tue 30 Apr 2024 01:58:48 +0000 ROA not before: Tue 30 Apr 2024 01:58:48 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 110.163.224.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1859 (0x743) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:58:48 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=B721C8A56A091E8761CDDFB5503EC2513911D11A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:85:5e:60:55:ac:30:f6:6e:19:1b:58:0c:9e: 53:cf:20:e1:a4:d1:34:a3:34:df:2e:e9:24:f2:01: e3:56:55:c6:b5:37:62:bb:48:5f:8c:fc:91:45:9b: 9a:6f:c4:2d:d6:e7:61:61:b7:90:07:d9:a3:bb:90: 2c:e6:e8:84:aa:9e:27:10:28:21:f7:cb:88:31:aa: 19:9e:27:43:c8:62:0d:07:e7:7a:1a:24:e4:68:9b: af:c2:43:25:ea:83:8d:83:1e:d5:90:15:40:34:46: d8:85:09:23:0b:59:5b:ed:bc:e1:08:f5:d3:0c:90: 3d:ed:aa:65:6b:43:6e:02:60:ae:5c:b3:3c:87:5d: ee:e2:bd:c0:da:7f:00:b3:d8:4d:f2:5f:b4:67:c9: 2d:47:79:67:a5:f7:5a:cb:54:53:64:3c:4b:25:c3: 04:9b:c6:07:25:4c:e5:43:c2:1b:25:10:2c:3b:4d: 9e:d4:13:7b:8e:2e:be:40:6a:ed:6b:29:67:c6:fe: bf:8f:b9:fc:64:be:95:6b:c2:26:71:21:9d:55:4e: 50:53:02:37:35:ad:7f:61:10:8d:c9:cd:3e:8d:14: df:4c:3a:26:4d:ae:e3:ba:32:ab:c6:57:6b:d0:96: 9d:b4:0b:78:86:95:3c:14:09:8b:25:2b:8d:b6:79: 96:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:21:C8:A5:6A:09:1E:87:61:CD:DF:B5:50:3E:C2:51:39:11:D1:1A X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/tyHIpWoJHodhzd-1UD7CUTkR0Ro.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.163.224.0/23 Signature Algorithm: sha256WithRSAEncryption e3:36:e6:27:0e:e9:00:5c:90:86:d8:d9:e1:91:97:94:53:e1: 23:54:31:e6:9d:e1:6f:d9:8e:c0:d2:d0:1d:51:65:32:0f:66: ae:e0:a4:42:98:e3:7e:bf:36:f5:f0:7b:42:22:72:cc:21:25: a6:83:91:3a:2d:e3:45:c6:79:92:9a:ff:d1:ab:de:4a:36:bb: ba:3a:08:66:78:0a:1c:64:2d:52:33:1d:4b:c0:e7:4a:25:51: f2:e9:12:37:a9:a8:44:0f:ba:9b:15:7a:61:2b:8c:6d:02:a7: 31:95:e5:1e:b7:26:d5:28:5c:0d:c0:07:99:94:e5:5e:52:ac: ee:71:ce:31:11:15:60:e7:50:61:d2:97:0e:b9:59:97:dc:0d: 47:7d:38:51:f8:27:6d:52:18:5e:ca:c3:ed:e5:db:87:3f:68: 2a:7f:b1:12:72:69:a4:c0:cb:28:02:aa:41:ae:74:e1:f8:92: ef:ee:9b:b4:a1:8a:08:40:1d:97:2b:e4:39:1a:25:ca:a6:e6: e1:05:b7:64:33:8f:23:f2:ad:54:c8:e0:e9:37:e7:56:42:40: 9f:5f:21:54:e6:00:18:6c:f5:0f:69:2f:57:b0:0a:4c:a3:f4: c0:14:9b:91:68:68:30:31:b7:85:5e:82:a3:4e:b7:bd:fa:f8: 9f:83:21:6f -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICB0MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTU4NDhaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEI3MjFDOEE1NkEwOTFF ODc2MUNEREZCNTUwM0VDMjUxMzkxMUQxMUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQChhV5gVaww9m4ZG1gMnlPPIOGk0TSjNN8u6STyAeNWVca1N2K7 SF+M/JFFm5pvxC3W52Fht5AH2aO7kCzm6ISqnicQKCH3y4gxqhmeJ0PIYg0H53oa JORom6/CQyXqg42DHtWQFUA0RtiFCSMLWVvtvOEI9dMMkD3tqmVrQ24CYK5cszyH Xe7ivcDafwCz2E3yX7RnyS1HeWel91rLVFNkPEslwwSbxgclTOVDwhslECw7TZ7U E3uOLr5Aau1rKWfG/r+PufxkvpVrwiZxIZ1VTlBTAjc1rX9hEI3JzT6NFN9MOiZN ruO6MqvGV2vQlp20C3iGlTwUCYslK422eZYpAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUtyHIpWoJHodhzd+1UD7CUTkR0RowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3R5SElwV29KSG9kaHpkLTFVRDdDVVRrUjBSby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFuo+AwDQYJKoZIhvcNAQELBQADggEBAOM25icO6QBckIbY2eGRl5RT4SNU Mead4W/ZjsDS0B1RZTIPZq7gpEKY436/NvXwe0IicswhJaaDkTot40XGeZKa/9Gr 3ko2u7o6CGZ4ChxkLVIzHUvA50olUfLpEjepqEQPupsVemErjG0CpzGV5R63JtUo XA3AB5mU5V5SrO5xzjERFWDnUGHSlw65WZfcDUd9OFH4J21SGF7Kw+3l24c/aCp/ sRJyaaTAyygCqkGudOH4ku/um7ShighAHZcr5DkaJcqm5uEFt2QzjyPyrVTI4Ok3 51ZCQJ9fIVTmABhs9Q9pL1ewCkyj9MAUm5FoaDAxt4VegqNOt736+J+DIW8= -----END CERTIFICATE-----Generated at Mon Nov 25 23:59:12 2024 by rpki-client on console-fra.rpki-client.org