$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/x1X2trQNoOVrIn5SIseBNANd_j8.roa File: x1X2trQNoOVrIn5SIseBNANd_j8.roa (raw, json) Hash identifier: fqoZiefn/pzJTzvB294A56qae57NaIeE31Qlr6wnEQI= Subject key identifier: C7:55:F6:B6:B4:0D:A0:E5:6B:22:7E:52:22:C7:81:34:03:5D:FE:3F Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A74 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/x1X2trQNoOVrIn5SIseBNANd_j8.roa Signing time: Sun 30 Jun 2024 01:50:31 +0000 ROA not before: Sun 30 Jun 2024 01:50:31 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 219.114.128.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2676 (0xa74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:50:31 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=C755F6B6B40DA0E56B227E5222C78134035DFE3F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:07:c1:d3:d6:b6:8d:bb:52:54:68:ee:9f:96: a5:85:4f:b8:2d:e1:dc:92:92:90:2b:e4:19:d9:23: 2a:ad:0f:09:f8:6c:ea:d1:8f:47:eb:f3:42:8d:57: 08:40:fc:5f:65:e5:37:81:7f:4d:58:7d:5c:89:44: af:9c:25:cd:41:02:aa:55:74:8b:40:5e:7f:11:29: 41:62:2b:98:f5:d7:6e:56:f1:58:e1:02:4f:2e:07: 97:f1:e0:4b:ed:a4:fd:58:24:79:26:94:78:bc:0d: 6d:c3:f2:0f:2f:2e:04:aa:03:1a:26:98:98:0c:1f: e8:c4:7e:f2:5c:c9:d7:75:5b:32:7f:fc:f4:5a:1d: a4:b9:c0:b1:4b:b3:f5:eb:99:18:b3:49:5f:af:1d: 57:5a:fe:82:a6:60:47:7a:b4:2d:38:75:ac:7a:0d: bb:7b:44:d3:a7:82:7a:17:99:14:8e:ff:36:b0:02: c1:40:a9:37:88:d9:c2:16:95:5e:95:b9:41:2d:41: 28:5f:3b:0a:07:a5:02:37:a3:89:b4:21:a0:3f:4e: 4a:a8:ac:8e:3f:9a:c7:19:26:d5:8f:0f:3b:cf:93: bb:f3:b2:68:f4:9c:26:c7:53:fd:f3:f6:34:37:23: 9b:ac:66:4e:f7:4a:9e:5c:e3:b4:dc:64:02:0c:73: ea:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:55:F6:B6:B4:0D:A0:E5:6B:22:7E:52:22:C7:81:34:03:5D:FE:3F X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/x1X2trQNoOVrIn5SIseBNANd_j8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.114.128.0/20 Signature Algorithm: sha256WithRSAEncryption c8:06:b4:40:19:39:ad:7d:f3:54:1b:3e:00:90:16:41:2a:fc: 53:2c:a7:e6:fd:11:fe:be:8e:b6:ad:56:37:97:52:5b:fb:f5: 60:ac:a2:d3:0a:a8:b2:52:9d:dd:41:3d:02:2b:f3:79:05:4d: f7:7e:ac:5c:fa:a0:26:94:20:21:2b:1d:e1:59:e5:ed:3f:87: 48:b9:a4:50:e8:8f:82:95:f4:b5:3a:eb:ab:46:de:27:67:e3: 63:87:24:c8:20:db:5c:06:86:08:83:8c:e5:3a:09:cc:79:ad: b6:37:45:ef:26:c1:97:fb:d0:30:bd:a6:4c:2a:25:57:11:d3: d3:04:ee:cd:8b:82:93:96:0d:9e:a0:2a:d6:b0:2b:9e:b7:2b: d1:73:a9:f1:c1:14:ac:69:24:f5:57:7c:0a:91:6e:be:3f:f5: 49:5c:28:00:22:36:6e:7c:47:76:1a:8c:5b:74:8e:13:8f:ac: 74:c9:0f:a6:2c:a0:20:1b:5d:73:c5:6b:b4:fa:62:f7:ed:a4: 98:f7:8f:8d:04:3d:d5:78:de:84:bf:13:b4:aa:21:78:a5:2f: 1e:a9:12:6c:3f:1a:cf:96:d6:f9:cd:80:11:02:19:0e:b9:54: 89:e9:8f:45:4d:99:cf:86:db:0f:d5:82:26:22:55:fe:4b:ed: e2:5a:60:91 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCnQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTUwMzFaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKEM3NTVGNkI2QjQwREEw RTU2QjIyN0U1MjIyQzc4MTM0MDM1REZFM0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3B8HT1raNu1JUaO6flqWFT7gt4dySkpAr5BnZIyqtDwn4bOrR j0fr80KNVwhA/F9l5TeBf01YfVyJRK+cJc1BAqpVdItAXn8RKUFiK5j1125W8Vjh Ak8uB5fx4EvtpP1YJHkmlHi8DW3D8g8vLgSqAxommJgMH+jEfvJcydd1WzJ//PRa HaS5wLFLs/XrmRizSV+vHVda/oKmYEd6tC04dax6Dbt7RNOngnoXmRSO/zawAsFA qTeI2cIWlV6VuUEtQShfOwoHpQI3o4m0IaA/TkqorI4/mscZJtWPDzvPk7vzsmj0 nCbHU/3z9jQ3I5usZk73Sp5c47TcZAIMc+pvAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUx1X2trQNoOVrIn5SIseBNANd/j8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3gxWDJ0clFOb09WckluNVNJc2VCTkFOZF9qOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATbcoAwDQYJKoZIhvcNAQELBQADggEBAMgGtEAZOa1981QbPgCQFkEq/FMs p+b9Ef6+jratVjeXUlv79WCsotMKqLJSnd1BPQIr83kFTfd+rFz6oCaUICErHeFZ 5e0/h0i5pFDoj4KV9LU666tG3idn42OHJMgg21wGhgiDjOU6Ccx5rbY3Re8mwZf7 0DC9pkwqJVcR09ME7s2LgpOWDZ6gKtawK563K9FzqfHBFKxpJPVXfAqRbr4/9Ulc KAAiNm58R3YajFt0jhOPrHTJD6YsoCAbXXPFa7T6YvftpJj3j40EPdV43oS/E7Sq IXilLx6pEmw/Gs+W1vnNgBECGQ65VInpj0VNmc+G2w/VgiYiVf5L7eJaYJE= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:42 2024 by rpki-client on console-ams.rpki-client.org