$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/xySSnF6wnl_Q9F6ex2FDphdhY70.roa File: xySSnF6wnl_Q9F6ex2FDphdhY70.roa (raw, json) Hash identifier: Mo/nITSJCTc53Z8xDXWSAZJMKe4ZBTP/gtlfOu586Nc= Subject key identifier: C7:24:92:9C:5E:B0:9E:5F:D0:F4:5E:9E:C7:61:43:A6:17:61:63:BD Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 07BC Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/xySSnF6wnl_Q9F6ex2FDphdhY70.roa Signing time: Tue 30 Apr 2024 02:08:42 +0000 ROA not before: Tue 30 Apr 2024 02:08:42 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.72.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1980 (0x7bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:08:42 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=C724929C5EB09E5FD0F45E9EC76143A6176163BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:eb:3f:13:d3:41:a6:92:96:bd:c6:15:ca:eb: 06:7a:64:fe:78:93:24:90:e9:c8:96:a6:3e:1b:53: 93:24:6c:2b:2c:27:3a:c5:fc:c9:ae:4d:59:d4:19: 15:c2:93:cf:b5:c4:5f:1b:cb:db:8f:f6:6f:0c:65: d4:b1:7e:93:a6:82:d5:59:9e:d5:b5:61:c4:f1:0c: cc:5a:b4:c1:c4:8d:3c:07:69:7f:37:1a:07:3a:1c: a2:df:62:06:43:bb:b1:6b:4e:c0:07:24:60:98:f6: 0a:81:62:9a:d6:14:4f:f7:10:b9:61:33:a3:73:03: a8:a9:70:29:d8:94:00:fb:4e:06:f9:ce:0c:ab:e2: 32:33:67:8f:b0:87:1e:be:8f:8b:6f:75:a6:64:c0: e7:24:fe:3f:eb:5e:2a:7a:0e:9b:73:0d:5b:d8:9b: b1:f5:3c:0d:35:5d:d7:df:2d:20:bd:53:0d:6a:eb: a8:62:95:39:0a:cf:fd:fc:a3:ec:db:64:f7:91:4c: 03:8e:33:41:b5:9b:73:66:95:3b:05:a8:92:f9:c9: 50:48:2b:cd:a6:42:a4:a6:1a:72:6a:b7:50:0e:d4: 3c:01:11:9f:60:40:7c:be:21:6a:a7:6a:f1:74:e0: 24:0e:9c:b7:23:10:60:fb:b2:e9:aa:ca:0a:30:17: 24:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:24:92:9C:5E:B0:9E:5F:D0:F4:5E:9E:C7:61:43:A6:17:61:63:BD X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/xySSnF6wnl_Q9F6ex2FDphdhY70.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.72.64.0/18 Signature Algorithm: sha256WithRSAEncryption 77:e7:dc:86:ef:2d:d8:e8:d3:a8:00:7c:c8:bb:1e:d3:3a:ce: 75:cd:b4:a7:b3:7d:54:d2:33:f5:1f:3f:76:9f:6e:c8:a0:b5: 3d:7a:2f:ed:fa:2e:69:a4:9c:5b:9e:5f:63:89:b4:ad:3e:aa: 52:5f:3c:cd:08:d5:43:26:6b:c9:ac:e3:2d:73:d7:8d:8b:eb: cd:90:64:99:4b:11:f5:f9:6d:bb:5c:35:4d:99:54:29:a5:64: 28:83:f1:41:6a:83:bf:da:84:a6:37:63:06:f2:a7:fc:1d:7f: a2:b3:4e:51:b9:e0:23:41:da:90:89:b4:2b:93:59:b4:20:19: 3b:8d:6d:21:4f:63:fd:97:9f:52:18:1a:25:d5:b2:5f:5c:68: 24:97:cb:f3:9b:ac:0e:ee:85:b9:3e:6b:88:0a:1d:83:ae:35: 22:12:c1:64:6a:2f:15:24:22:d4:df:6d:91:db:5c:e0:3d:b5: 2a:f6:85:4a:e5:61:02:95:ff:60:0b:f9:d1:89:bb:ed:75:69: 62:df:24:b4:52:05:10:f6:99:10:96:f2:df:4a:1a:c8:b1:75: 3a:c7:95:a7:62:3b:13:6c:5e:b4:96:8e:94:fe:60:53:ae:29: 68:fe:d0:4e:9e:3a:db:ae:d5:6c:d3:83:71:7e:26:9a:ef:5e: a9:56:88:71 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICB7wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjA4NDJaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEM3MjQ5MjlDNUVCMDlF NUZEMEY0NUU5RUM3NjE0M0E2MTc2MTYzQkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCz6z8T00Gmkpa9xhXK6wZ6ZP54kySQ6ciWpj4bU5MkbCssJzrF /MmuTVnUGRXCk8+1xF8by9uP9m8MZdSxfpOmgtVZntW1YcTxDMxatMHEjTwHaX83 Ggc6HKLfYgZDu7FrTsAHJGCY9gqBYprWFE/3ELlhM6NzA6ipcCnYlAD7Tgb5zgyr 4jIzZ4+whx6+j4tvdaZkwOck/j/rXip6DptzDVvYm7H1PA01XdffLSC9Uw1q66hi lTkKz/38o+zbZPeRTAOOM0G1m3NmlTsFqJL5yVBIK82mQqSmGnJqt1AO1DwBEZ9g QHy+IWqnavF04CQOnLcjEGD7sumqygowFyRZAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUxySSnF6wnl/Q9F6ex2FDphdhY70wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3h5U1NuRjZ3bmxfUTlGNmV4MkZEcGhkaFk3MC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYBSEAwDQYJKoZIhvcNAQELBQADggEBAHfn3IbvLdjo06gAfMi7HtM6znXN tKezfVTSM/UfP3afbsigtT16L+36LmmknFueX2OJtK0+qlJfPM0I1UMma8ms4y1z 142L682QZJlLEfX5bbtcNU2ZVCmlZCiD8UFqg7/ahKY3Ywbyp/wdf6KzTlG54CNB 2pCJtCuTWbQgGTuNbSFPY/2Xn1IYGiXVsl9caCSXy/ObrA7uhbk+a4gKHYOuNSIS wWRqLxUkItTfbZHbXOA9tSr2hUrlYQKV/2AL+dGJu+11aWLfJLRSBRD2mRCW8t9K GsixdTrHladiOxNsXrSWjpT+YFOuKWj+0E6eOtuu1WzTg3F+JprvXqlWiHE= -----END CERTIFICATE-----Generated at Mon Nov 25 23:54:43 2024 by rpki-client on console-ams.rpki-client.org