$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/x1SEWI2eiPRNgAgZGVDLaFjUhXE.roa File: x1SEWI2eiPRNgAgZGVDLaFjUhXE.roa (raw, json) Hash identifier: 9ka5xEBDMmXNneLfytLudPs9IerhpssPOQgDp6ADsxQ= Subject key identifier: C7:54:84:58:8D:9E:88:F4:4D:80:08:19:19:50:CB:68:58:D4:85:71 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 08DA Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/x1SEWI2eiPRNgAgZGVDLaFjUhXE.roa Signing time: Tue 30 Apr 2024 02:24:45 +0000 ROA not before: Tue 30 Apr 2024 02:24:45 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.76.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2266 (0x8da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:24:45 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=C75484588D9E88F44D8008191950CB6858D48571 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:4e:82:b8:f4:42:b5:88:9e:a5:95:cb:09:8b: d6:df:20:c9:86:86:b6:07:f0:71:ba:b9:f0:e4:6f: c5:a0:db:50:9b:60:f7:bc:fe:3c:e5:d5:4f:12:7e: 0e:ab:b5:25:26:e8:5b:55:27:4b:11:22:52:1d:30: 55:af:c9:f6:96:3f:64:94:da:f0:d4:1e:4e:29:57: 03:ae:81:61:0d:ab:82:50:72:57:ff:c6:d0:f6:b1: 2e:e9:b4:f9:9d:2a:a8:c6:cf:15:94:41:e8:f2:1f: a9:3c:15:ba:af:ad:fa:d1:fc:6d:94:01:f3:23:b3: 7b:7c:3d:64:b0:b4:9b:ea:06:8a:38:36:77:91:f4: 12:4d:46:e7:bc:14:6b:9d:7e:b8:00:ae:74:ca:ad: 42:78:f6:28:1f:ef:39:de:82:62:a8:b0:e5:94:32: d8:d2:67:13:2c:33:86:ab:80:ff:7d:ae:0f:a0:1f: e0:cc:a6:d3:7a:ad:75:10:d1:a5:31:ba:43:a9:cc: a9:a0:d6:d0:4a:78:26:e8:96:47:e5:e6:0a:77:0b: 72:e1:74:4c:96:88:7a:ed:06:15:f1:b7:f7:82:29: a5:64:05:53:f7:34:0e:02:64:36:30:78:77:fe:35: e5:7e:18:21:cb:5b:66:fa:36:45:5e:f6:a3:c5:4b: 20:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:54:84:58:8D:9E:88:F4:4D:80:08:19:19:50:CB:68:58:D4:85:71 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/x1SEWI2eiPRNgAgZGVDLaFjUhXE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.76.0/23 Signature Algorithm: sha256WithRSAEncryption d5:1e:2c:37:a6:1d:e6:32:05:90:6f:85:43:30:ed:44:54:7f: 2a:38:be:cf:49:7e:7a:89:ba:81:6d:65:61:cb:2f:63:e4:03: a4:13:18:62:cf:1d:ca:5b:37:41:bd:31:ad:55:09:28:b0:0d: 6f:fd:18:2a:4c:14:ee:bb:3f:32:f7:04:ef:cd:dc:fb:a6:b2: 25:d9:09:69:12:46:8b:fb:29:5e:b2:0b:d1:62:ad:8d:4a:1b: bf:f9:44:db:94:13:c6:00:b3:7d:1d:4c:74:fd:12:ec:d2:7e: ea:93:a9:0a:9b:83:10:0f:67:15:39:91:cc:a6:30:94:d0:e5: dc:cd:ce:df:d0:4f:28:eb:3d:d0:c3:00:52:3b:df:1a:85:e4: 24:a9:04:a3:11:30:e8:be:1d:85:25:86:80:fc:c0:6d:55:19: c8:47:f7:6c:1e:49:67:97:a7:f8:66:da:7f:4c:54:33:58:9b: db:4d:2a:f4:62:4d:b3:5f:11:4f:00:1e:3a:56:db:2d:97:4e: 7e:f3:c1:41:7e:24:d5:ef:c7:9b:26:83:3b:78:bf:bc:b7:7a: 1e:e8:72:8e:2e:f0:f3:38:63:10:f5:f1:cd:e8:28:98:d8:c4: a5:06:36:15:8b:fe:9f:52:d8:c3:bb:6b:4d:36:1f:fa:d8:d3: cd:12:b8:b4 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCNowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjI0NDVaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEM3NTQ4NDU4OEQ5RTg4 RjQ0RDgwMDgxOTE5NTBDQjY4NThENDg1NzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtToK49EK1iJ6llcsJi9bfIMmGhrYH8HG6ufDkb8Wg21CbYPe8 /jzl1U8Sfg6rtSUm6FtVJ0sRIlIdMFWvyfaWP2SU2vDUHk4pVwOugWENq4JQclf/ xtD2sS7ptPmdKqjGzxWUQejyH6k8FbqvrfrR/G2UAfMjs3t8PWSwtJvqBoo4NneR 9BJNRue8FGudfrgArnTKrUJ49igf7znegmKosOWUMtjSZxMsM4argP99rg+gH+DM ptN6rXUQ0aUxukOpzKmg1tBKeCbolkfl5gp3C3LhdEyWiHrtBhXxt/eCKaVkBVP3 NA4CZDYweHf+NeV+GCHLW2b6NkVe9qPFSyA/AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUx1SEWI2eiPRNgAgZGVDLaFjUhXEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3gxU0VXSTJlaVBSTmdBZ1pHVkRMYUZqVWhYRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBT0wwDQYJKoZIhvcNAQELBQADggEBANUeLDemHeYyBZBvhUMw7URUfyo4 vs9JfnqJuoFtZWHLL2PkA6QTGGLPHcpbN0G9Ma1VCSiwDW/9GCpMFO67PzL3BO/N 3PumsiXZCWkSRov7KV6yC9FirY1KG7/5RNuUE8YAs30dTHT9EuzSfuqTqQqbgxAP ZxU5kcymMJTQ5dzNzt/QTyjrPdDDAFI73xqF5CSpBKMRMOi+HYUlhoD8wG1VGchH 92weSWeXp/hm2n9MVDNYm9tNKvRiTbNfEU8AHjpW2y2XTn7zwUF+JNXvx5smgzt4 v7y3eh7oco4u8PM4YxD18c3oKJjYxKUGNhWL/p9S2MO7a002H/rY080SuLQ= -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:03 2024 by rpki-client on console-fra.rpki-client.org