$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/y4Qhz38Js90Fhr_FXVILm6glfc8.roa File: y4Qhz38Js90Fhr_FXVILm6glfc8.roa (raw, json) Hash identifier: 3msbUFF2fNUx+HdIm75Aj2ArDWlYWFTG/H+zktBcC1s= Subject key identifier: CB:84:21:CF:7F:09:B3:DD:05:86:BF:C5:5D:52:0B:9B:A8:25:7D:CF Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A71 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/y4Qhz38Js90Fhr_FXVILm6glfc8.roa Signing time: Sun 30 Jun 2024 01:50:29 +0000 ROA not before: Sun 30 Jun 2024 01:50:29 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 1.72.224.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2673 (0xa71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:50:29 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=CB8421CF7F09B3DD0586BFC55D520B9BA8257DCF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:92:ef:6c:5f:36:96:2e:74:2c:e7:e9:79:64: 9d:3a:ed:44:0e:e6:f7:09:ae:62:3c:7d:07:63:c7: 6b:ad:08:13:3f:10:ba:f2:4e:41:84:26:e5:c5:0e: 6e:63:30:4e:ac:c8:4a:e2:9a:74:de:59:c1:99:1a: 79:02:d6:f9:35:94:ec:bc:0b:0f:be:48:54:96:07: d5:9e:aa:7b:75:9b:60:fa:f4:8a:a3:4a:37:87:dc: f9:f2:2b:27:10:f0:1b:a1:ab:7a:bd:f8:c5:fb:45: 73:68:6e:a3:65:8b:56:6e:dd:62:64:05:90:90:d5: b8:b9:c4:59:46:9d:22:d4:b4:87:73:25:b3:81:9b: 0a:24:5e:f3:c9:48:65:c9:e3:8f:b7:da:59:c2:23: 00:a1:86:35:21:9e:d1:f2:68:cd:ca:dc:c2:b5:5c: 37:b5:2b:5d:95:69:97:89:a2:37:af:19:5f:11:33: 91:88:f6:de:75:2d:74:85:2c:4d:ad:80:87:84:0e: e0:76:f9:58:5a:93:ed:f3:ed:dd:95:eb:31:29:bf: 37:71:27:17:b6:4e:77:52:e8:68:01:a2:09:1b:4a: 34:ff:44:17:f6:db:bc:6f:d9:77:da:e0:47:79:e0: 8a:92:40:34:fe:e3:b5:c9:0d:54:5c:59:31:ae:2e: 69:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:84:21:CF:7F:09:B3:DD:05:86:BF:C5:5D:52:0B:9B:A8:25:7D:CF X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/y4Qhz38Js90Fhr_FXVILm6glfc8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.72.224.0/19 Signature Algorithm: sha256WithRSAEncryption 4b:1c:50:50:26:ae:f7:84:2d:7c:08:fe:ba:67:20:c2:02:42: e3:df:25:45:36:25:58:c7:63:7b:ed:ba:0c:11:0f:e9:32:d7: e0:9f:ec:e4:02:ac:b4:f1:2d:9a:05:2c:3f:2f:88:05:8e:e3: df:81:ec:10:1d:7f:5f:41:ba:29:c3:43:25:21:09:07:1b:de: 8e:b4:23:e4:49:dd:3d:4c:5e:12:08:61:e4:4d:5f:8b:f5:23: e7:72:7d:f2:26:96:07:4c:88:a2:ec:24:32:50:79:54:17:6f: 8c:bf:e8:26:b6:6d:d5:4d:9c:42:c7:78:9f:e6:81:ae:e3:fd: 20:8f:e2:4f:41:f6:5c:bb:3c:12:05:0c:36:fb:d0:23:ec:5f: dd:5c:a7:5b:9a:82:ac:8b:57:82:92:f9:56:f1:b5:f8:4f:0e: e9:45:87:df:0f:1f:4f:e9:2b:b4:9b:81:cb:d1:7c:fc:8f:28: fb:c3:ef:a5:24:cf:81:cf:33:a0:8f:5a:97:6f:ac:1e:be:64: 1c:7f:e0:cd:2e:c9:2e:62:4e:16:5a:6c:04:35:5c:bc:47:07: 94:23:b4:c9:47:5f:44:70:b4:7f:ee:c8:9b:8c:7c:43:b3:2e: 8b:0b:3f:59:8d:b2:06:73:c2:4c:62:08:0e:63:f9:aa:12:5b: 38:c5:f8:ca -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCnEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTUwMjlaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKENCODQyMUNGN0YwOUIz REQwNTg2QkZDNTVENTIwQjlCQTgyNTdEQ0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRku9sXzaWLnQs5+l5ZJ067UQO5vcJrmI8fQdjx2utCBM/ELry TkGEJuXFDm5jME6syErimnTeWcGZGnkC1vk1lOy8Cw++SFSWB9Weqnt1m2D69Iqj SjeH3PnyKycQ8Buhq3q9+MX7RXNobqNli1Zu3WJkBZCQ1bi5xFlGnSLUtIdzJbOB mwokXvPJSGXJ44+32lnCIwChhjUhntHyaM3K3MK1XDe1K12VaZeJojevGV8RM5GI 9t51LXSFLE2tgIeEDuB2+Vhak+3z7d2V6zEpvzdxJxe2TndS6GgBogkbSjT/RBf2 27xv2Xfa4Ed54IqSQDT+47XJDVRcWTGuLmkNAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUy4Qhz38Js90Fhr/FXVILm6glfc8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3k0UWh6MzhKczkwRmhyX0ZYVklMbTZnbGZjOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUBSOAwDQYJKoZIhvcNAQELBQADggEBAEscUFAmrveELXwI/rpnIMICQuPf JUU2JVjHY3vtugwRD+ky1+Cf7OQCrLTxLZoFLD8viAWO49+B7BAdf19BuinDQyUh CQcb3o60I+RJ3T1MXhIIYeRNX4v1I+dyffImlgdMiKLsJDJQeVQXb4y/6Ca2bdVN nELHeJ/mga7j/SCP4k9B9ly7PBIFDDb70CPsX91cp1uagqyLV4KS+VbxtfhPDulF h98PH0/pK7SbgcvRfPyPKPvD76Ukz4HPM6CPWpdvrB6+ZBx/4M0uyS5iThZabAQ1 XLxHB5QjtMlHX0RwtH/uyJuMfEOzLosLP1mNsgZzwkxiCA5j+aoSWzjF+Mo= -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:03 2024 by rpki-client on console-fra.rpki-client.org