$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/469/bJddDV3VWG9__IIytFcDlEkN1x0.roa File: bJddDV3VWG9__IIytFcDlEkN1x0.roa (raw, json) Hash identifier: s+cJN4yYqlJC2oCKtOneap8qOuDS8yAaoCMl8Snct6Y= Subject key identifier: 6C:97:5D:0D:5D:D5:58:6F:7F:FC:82:32:B4:57:03:94:49:0D:D7:1D Certificate issuer: /CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Certificate serial: 0108 Authority key identifier: 40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/bJddDV3VWG9__IIytFcDlEkN1x0.roa Signing time: Sun 30 Jun 2024 01:29:16 +0000 ROA not before: Sun 30 Jun 2024 01:29:16 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 10021 IP address blocks: 202.7.96.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 264 (0x108) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Validity Not Before: Jun 30 01:29:16 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=6C975D0D5DD5586F7FFC8232B4570394490DD71D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:3a:4f:b7:62:1a:7f:4a:66:4c:41:3e:d6:5e: 64:90:b5:c1:75:d5:76:c6:25:0d:a5:bf:1a:d2:df: f9:49:b4:1c:45:5a:f0:eb:48:34:e5:82:ce:56:cf: 87:4c:1b:20:0d:d7:e7:d5:40:93:43:1f:ad:e2:ab: f6:c9:08:84:44:a9:12:0c:ed:1f:5a:4d:71:15:4c: f1:9c:e7:c6:23:5f:a6:65:e9:4c:2a:01:91:55:85: ca:63:30:92:2f:a7:89:af:63:18:fb:5c:ae:35:b4: 22:c3:54:38:d5:0c:9c:08:d6:93:97:2b:7b:19:bb: e8:de:d7:9e:cb:40:42:2a:74:ce:ca:17:7f:e7:9e: 65:b7:85:1e:57:a6:cc:bc:4d:a7:29:0a:3f:51:70: cc:2f:a7:63:d9:4d:aa:6c:a9:aa:24:a7:ec:6a:a8: ee:6c:6d:5d:ed:39:40:56:07:a7:a9:93:52:e7:09: d4:a5:e3:d6:f6:43:c9:f3:e2:62:4a:36:96:62:c7: c9:68:c3:20:dc:fd:6f:e5:f7:2e:e1:0a:94:9d:50: eb:9f:66:9e:10:70:b7:89:38:4b:3a:3c:9a:8b:bb: 11:3b:8a:36:0b:f1:39:e8:81:26:6f:b3:21:f2:08: fd:45:ed:fe:19:17:10:11:b6:61:cc:8a:6c:78:47: 14:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:97:5D:0D:5D:D5:58:6F:7F:FC:82:32:B4:57:03:94:49:0D:D7:1D X509v3 Authority Key Identifier: keyid:40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/bJddDV3VWG9__IIytFcDlEkN1x0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.7.96.0/21 Signature Algorithm: sha256WithRSAEncryption 7b:73:e5:f0:e0:b7:2a:7c:ca:a4:00:1f:40:b0:c9:c7:00:61: 18:cc:33:4d:be:a0:4f:a4:28:81:bb:2a:9c:1c:33:c7:ad:70: 65:a4:ca:79:3d:f5:ad:59:46:d8:8b:14:96:08:8e:79:62:57: e1:d1:cd:df:7c:eb:05:4d:23:db:4d:c6:50:d8:cc:b5:ff:60: f2:d8:49:c3:fa:51:40:d3:e8:88:2b:45:a0:cb:02:8f:26:1b: 30:33:63:93:60:ac:78:d2:85:ca:1d:f6:87:75:99:cf:57:c5: 23:32:7e:66:6d:98:7c:78:4b:c9:d5:81:b2:01:7c:8c:ec:66: 5f:ff:1c:a8:01:00:8d:a1:d4:28:92:f8:36:fb:f4:24:48:4c: 37:fd:a6:d5:75:94:90:32:c2:fd:8f:9d:b7:53:46:b2:09:70: af:d3:72:62:4e:8d:3a:28:9e:ef:3e:38:b6:da:65:78:85:89: 08:e2:da:48:c6:41:4a:fc:dd:5f:22:aa:04:ea:2a:84:30:c3: 40:9d:eb:ad:0e:9c:08:b8:11:24:c9:a1:b5:5b:a2:1a:7c:f9: 5b:bf:b9:68:15:56:bf:9c:d2:18:40:b2:a2:cc:5d:be:ec:f5: 55:1c:02:b9:b5:ed:b4:b5:b9:30:43:16:f8:d7:c2:37:74:a5: 96:c1:57:85 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAQgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDA2 MTBEQTY4RTkzRUQ1MzhBNDhBNDZDNTIxNDAyNEVENTREMDdGNjAeFw0yNDA2MzAw MTI5MTZaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDZDOTc1RDBENURENTU4 NkY3RkZDODIzMkI0NTcwMzk0NDkwREQ3MUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdOk+3Yhp/SmZMQT7WXmSQtcF11XbGJQ2lvxrS3/lJtBxFWvDr SDTlgs5Wz4dMGyAN1+fVQJNDH63iq/bJCIREqRIM7R9aTXEVTPGc58YjX6Zl6Uwq AZFVhcpjMJIvp4mvYxj7XK41tCLDVDjVDJwI1pOXK3sZu+je157LQEIqdM7KF3/n nmW3hR5Xpsy8TacpCj9RcMwvp2PZTapsqaokp+xqqO5sbV3tOUBWB6epk1LnCdSl 49b2Q8nz4mJKNpZix8lowyDc/W/l9y7hCpSdUOufZp4QcLeJOEs6PJqLuxE7ijYL 8TnogSZvsyHyCP1F7f4ZFxARtmHMimx4RxRjAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUbJddDV3VWG9//IIytFcDlEkN1x0wHwYDVR0jBBgwFoAUQGENpo6T7VOKSKRs UhQCTtVNB/YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQ2OS9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0Vk5CX1kuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0 Vk5CX1kuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNDY5L2JKZGREVjNWV0c5X19JSXl0RmNEbEVrTjF4MC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPKB2AwDQYJKoZIhvcNAQELBQADggEBAHtz5fDgtyp8yqQAH0CwyccAYRjM M02+oE+kKIG7KpwcM8etcGWkynk99a1ZRtiLFJYIjnliV+HRzd986wVNI9tNxlDY zLX/YPLYScP6UUDT6IgrRaDLAo8mGzAzY5NgrHjShcod9od1mc9XxSMyfmZtmHx4 S8nVgbIBfIzsZl//HKgBAI2h1CiS+Db79CRITDf9ptV1lJAywv2PnbdTRrIJcK/T cmJOjToonu8+OLbaZXiFiQji2kjGQUr83V8iqgTqKoQww0Cd660OnAi4ESTJobVb ohp8+Vu/uWgVVr+c0hhAsqLMXb7s9VUcArm17bS1uTBDFvjXwjd0pZbBV4U= -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:04 2024 by rpki-client on console-fra.rpki-client.org