$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/w1K4BJQpHG-SV_kAfkPDKE_3isQ.roa File: w1K4BJQpHG-SV_kAfkPDKE_3isQ.roa (raw, json) Hash identifier: 3VFbM1JaO/2IA1+YBLStOsX7HxxuLifgdbSlcqT8mSM= Subject key identifier: C3:52:B8:04:94:29:1C:6F:92:57:F9:00:7E:43:C3:28:4F:F7:8A:C4 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A88 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/w1K4BJQpHG-SV_kAfkPDKE_3isQ.roa Signing time: Sun 30 Jun 2024 01:52:35 +0000 ROA not before: Sun 30 Jun 2024 01:52:35 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 110.158.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2696 (0xa88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:52:35 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=C352B80494291C6F9257F9007E43C3284FF78AC4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:4f:e3:4b:d9:bb:4f:b7:3f:32:4a:3f:a7:ff: 4e:be:c8:af:6f:a9:24:20:9d:dd:dd:a4:ed:1f:db: d3:75:1d:f6:5f:76:8a:32:94:76:28:a0:92:aa:34: a0:5f:8f:f3:75:60:e2:48:d0:bd:65:78:2f:c6:d5: e7:7a:44:5b:ea:ac:81:57:4d:df:04:30:6d:ef:68: 0c:c8:58:9e:be:2a:66:17:b3:24:bd:1b:e6:9f:e9: 11:3c:61:3b:19:94:8c:85:09:99:85:6f:fb:1e:ff: 9a:70:65:70:ec:af:bc:92:51:77:ea:7c:8c:71:34: 25:ac:a9:3d:87:6d:43:d5:6c:27:9b:52:65:dd:0b: c3:e5:ee:ad:c2:c8:7e:df:0c:41:77:36:2a:75:fd: 6c:f7:09:fb:66:61:2d:4a:4b:57:92:79:62:85:50: c1:10:1d:00:6b:41:14:26:46:f2:95:15:64:05:2e: b5:27:1e:0b:d7:ec:ee:26:50:0f:3f:c0:98:9f:ff: 8c:02:43:a6:6e:cb:96:df:1c:b4:7d:17:21:aa:c0: d0:6d:ab:94:0c:e7:06:d3:3a:c9:f1:86:58:60:10: 8c:7d:17:22:10:ae:9f:f5:fb:95:32:cc:4e:20:85: 9a:96:da:69:2c:b5:9a:b1:37:e8:2f:44:51:0b:7a: f9:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:52:B8:04:94:29:1C:6F:92:57:F9:00:7E:43:C3:28:4F:F7:8A:C4 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/w1K4BJQpHG-SV_kAfkPDKE_3isQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.158.129.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:ff:f9:35:e4:78:8e:6e:16:40:dc:a9:81:2b:ce:c5:90:49: 84:1b:35:78:49:92:77:2f:67:89:cd:72:90:c9:22:dd:b4:b3: 16:46:11:03:34:1a:7f:a7:d9:11:90:90:ac:06:cf:c9:f4:21: dd:82:af:aa:20:1b:61:c7:b1:ae:4f:ce:31:1c:2f:7f:b1:3e: ee:e8:36:dd:47:20:fc:d4:a7:03:57:cd:b7:2b:38:d6:e0:a3: 06:25:f1:ea:25:e1:ce:36:90:3b:97:84:35:0b:16:9c:1f:cd: 18:8a:95:54:ba:bf:32:5b:19:f5:16:f2:6c:04:1d:2a:03:77: 14:b8:35:c7:4b:b1:07:6e:ba:af:50:5a:3c:cb:df:06:00:d2: 4f:d8:dc:e5:29:0e:81:8c:0c:ec:4f:b1:a5:da:f3:39:2f:0a: 57:ea:90:de:92:39:dd:b3:3d:51:db:1e:84:9f:bf:84:05:70: bf:95:25:40:5a:7d:5a:42:d2:3e:a1:97:9d:b0:aa:2f:35:3e: c8:92:22:5a:54:30:b2:d3:05:66:94:48:bd:15:10:50:05:20: 4b:ca:02:44:6e:48:ce:a4:37:71:d1:bb:c2:e5:3e:d1:98:55: 8a:6c:a3:77:18:be:46:e1:d6:9a:21:c2:1f:bd:74:e5:ae:93: 54:9a:24:86 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCogwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTUyMzVaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKEMzNTJCODA0OTQyOTFD NkY5MjU3RjkwMDdFNDNDMzI4NEZGNzhBQzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYT+NL2btPtz8ySj+n/06+yK9vqSQgnd3dpO0f29N1HfZfdooy lHYooJKqNKBfj/N1YOJI0L1leC/G1ed6RFvqrIFXTd8EMG3vaAzIWJ6+KmYXsyS9 G+af6RE8YTsZlIyFCZmFb/se/5pwZXDsr7ySUXfqfIxxNCWsqT2HbUPVbCebUmXd C8Pl7q3CyH7fDEF3Nip1/Wz3CftmYS1KS1eSeWKFUMEQHQBrQRQmRvKVFWQFLrUn HgvX7O4mUA8/wJif/4wCQ6Zuy5bfHLR9FyGqwNBtq5QM5wbTOsnxhlhgEIx9FyIQ rp/1+5UyzE4ghZqW2mkstZqxN+gvRFELevntAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUw1K4BJQpHG+SV/kAfkPDKE/3isQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3cxSzRCSlFwSEctU1Zfa0Fma1BES0VfM2lzUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABunoEwDQYJKoZIhvcNAQELBQADggEBAI3/+TXkeI5uFkDcqYErzsWQSYQb NXhJkncvZ4nNcpDJIt20sxZGEQM0Gn+n2RGQkKwGz8n0Id2Cr6ogG2HHsa5PzjEc L3+xPu7oNt1HIPzUpwNXzbcrONbgowYl8eol4c42kDuXhDULFpwfzRiKlVS6vzJb GfUW8mwEHSoDdxS4NcdLsQduuq9QWjzL3wYA0k/Y3OUpDoGMDOxPsaXa8zkvClfq kN6SOd2zPVHbHoSfv4QFcL+VJUBafVpC0j6hl52wqi81PsiSIlpUMLLTBWaUSL0V EFAFIEvKAkRuSM6kN3HRu8LlPtGYVYpso3cYvkbh1pohwh+9dOWuk1SaJIY= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:42 2024 by rpki-client on console-ams.rpki-client.org