$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/zvWv3XyafEzQNoIC63NQ1z1_tsc.roa File: zvWv3XyafEzQNoIC63NQ1z1_tsc.roa (raw, json) Hash identifier: R+6xyJ45GYYOYZXGdAgbALCQXyzHuHegnr4ojmNl+IM= Subject key identifier: CE:F5:AF:DD:7C:9A:7C:4C:D0:36:82:02:EB:73:50:D7:3D:7F:B6:C7 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0961 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/zvWv3XyafEzQNoIC63NQ1z1_tsc.roa Signing time: Sun 30 Jun 2024 01:33:31 +0000 ROA not before: Sun 30 Jun 2024 01:33:31 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 1.74.204.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2401 (0x961) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:33:31 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=CEF5AFDD7C9A7C4CD0368202EB7350D73D7FB6C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d8:2e:2b:f5:41:ba:fd:a5:77:05:20:01:a5: 42:d7:f8:6b:40:1c:4a:0e:97:0e:6a:e7:7f:ef:61: 22:9c:45:4f:f5:fe:18:a2:e1:2c:3f:f7:31:d8:23: da:16:43:ec:97:45:83:4b:24:12:6e:99:fe:4e:9a: 9f:1d:b1:e9:25:8e:39:ae:57:29:86:76:9d:60:cf: 0f:0c:c6:3e:df:6a:a4:af:f0:c3:c5:39:97:9b:2b: db:f2:da:e1:ae:e8:a4:6d:f0:89:23:a7:cf:72:42: a0:6c:c2:8f:4f:d1:a7:98:42:8a:1e:9f:eb:8b:24: 65:3e:d9:ed:aa:47:ac:fe:92:c1:0f:5e:de:c9:f4: e3:f7:7d:bb:cf:2d:d7:4b:67:3c:a8:e2:69:2f:71: 41:26:4b:e9:d3:85:64:05:b5:a8:85:59:bb:47:5a: 59:b9:62:3a:31:22:f7:3c:a7:80:6f:28:22:0a:25: 64:60:48:e9:09:1d:b0:0b:3f:e9:17:8d:e3:e0:96: fa:4c:ec:07:71:fb:fa:7b:5e:ed:a3:ce:af:32:37: 05:83:2b:ae:d6:97:d2:ef:e7:12:3c:38:a9:6a:b1: a2:47:71:08:50:d8:7e:c1:f0:d3:d4:8f:52:93:1a: 70:5f:da:ef:f7:57:d2:96:46:b0:54:15:a1:0c:87: 51:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:F5:AF:DD:7C:9A:7C:4C:D0:36:82:02:EB:73:50:D7:3D:7F:B6:C7 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/zvWv3XyafEzQNoIC63NQ1z1_tsc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.74.204.0/22 Signature Algorithm: sha256WithRSAEncryption 77:87:da:76:c7:8d:b2:55:33:ea:2e:cc:4d:97:2f:2c:37:67: cb:4e:15:b1:3a:4d:68:ff:da:6b:e6:29:50:92:cf:0d:b7:cd: 95:36:5f:46:21:3d:93:e6:10:0b:48:8a:d2:81:7c:14:11:84: fa:f3:3d:ef:35:c8:1a:92:fa:41:7e:e5:89:f4:04:ba:f8:b9: cc:02:38:61:bf:85:21:79:41:b3:dd:b2:42:89:d5:fe:13:ca: 34:e1:3b:4b:cf:ef:79:cc:89:13:db:47:d6:ae:fb:47:cc:e0: f5:56:b3:3b:38:25:21:70:dc:7d:ef:da:d6:3f:92:e8:f5:73: f0:ef:8d:7e:f7:b1:61:e1:a5:c0:ae:0a:5d:ad:36:3d:74:69: 41:3f:ee:2b:26:29:9b:60:20:60:76:30:0c:9f:41:dd:40:43: bd:ee:20:8a:09:c7:0a:18:31:55:b7:04:fc:cf:1c:41:1a:d6: 2b:63:d4:4d:24:64:32:84:ec:2e:6c:fe:a3:f9:14:e2:9e:22: 61:53:32:d5:9a:b7:53:50:2c:00:47:ed:0e:11:8f:2c:f2:a1: 93:a6:96:eb:98:b2:99:fd:0b:b7:12:97:81:f6:7c:7d:cc:77: a8:63:e6:35:f4:e5:91:5f:5e:bf:36:e9:30:b5:bf:7e:8d:19: 70:b8:76:e5 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCWEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTMzMzFaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKENFRjVBRkREN0M5QTdD NENEMDM2ODIwMkVCNzM1MEQ3M0Q3RkI2QzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC42C4r9UG6/aV3BSABpULX+GtAHEoOlw5q53/vYSKcRU/1/hii 4Sw/9zHYI9oWQ+yXRYNLJBJumf5Omp8dsekljjmuVymGdp1gzw8Mxj7faqSv8MPF OZebK9vy2uGu6KRt8Ikjp89yQqBswo9P0aeYQooen+uLJGU+2e2qR6z+ksEPXt7J 9OP3fbvPLddLZzyo4mkvcUEmS+nThWQFtaiFWbtHWlm5YjoxIvc8p4BvKCIKJWRg SOkJHbALP+kXjePglvpM7Adx+/p7Xu2jzq8yNwWDK67Wl9Lv5xI8OKlqsaJHcQhQ 2H7B8NPUj1KTGnBf2u/3V9KWRrBUFaEMh1E5AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUzvWv3XyafEzQNoIC63NQ1z1/tscwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3p2V3YzWHlhZkV6UU5vSUM2M05RMXoxX3RzYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBSswwDQYJKoZIhvcNAQELBQADggEBAHeH2nbHjbJVM+ouzE2XLyw3Z8tO FbE6TWj/2mvmKVCSzw23zZU2X0YhPZPmEAtIitKBfBQRhPrzPe81yBqS+kF+5Yn0 BLr4ucwCOGG/hSF5QbPdskKJ1f4TyjThO0vP73nMiRPbR9au+0fM4PVWszs4JSFw 3H3v2tY/kuj1c/DvjX73sWHhpcCuCl2tNj10aUE/7ismKZtgIGB2MAyfQd1AQ73u IIoJxwoYMVW3BPzPHEEa1itj1E0kZDKE7C5s/qP5FOKeImFTMtWat1NQLABH7Q4R jyzyoZOmluuYspn9C7cSl4H2fH3Md6hj5jX05ZFfXr826TC1v36NGXC4duU= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:42 2024 by rpki-client on console-ams.rpki-client.org