$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/469/fSoKcik18-NyTRtJvqPKutcxOeA.roa File: fSoKcik18-NyTRtJvqPKutcxOeA.roa (raw, json) Hash identifier: aaTE+VtIWeGRYPG7n3Y98kLUisY3trGndqKf3hkuzjY= Subject key identifier: 7D:2A:0A:72:29:35:F3:E3:72:4D:1B:49:BE:A3:CA:BA:D7:31:39:E0 Certificate issuer: /CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Certificate serial: 0131 Authority key identifier: 40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/fSoKcik18-NyTRtJvqPKutcxOeA.roa Signing time: Thu 31 Oct 2024 01:30:29 +0000 ROA not before: Thu 31 Oct 2024 01:30:29 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 8220 IP address blocks: 202.95.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 12:46:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 305 (0x131) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Validity Not Before: Oct 31 01:30:29 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=7D2A0A722935F3E3724D1B49BEA3CABAD73139E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2c:9e:4f:dd:df:bf:c8:d0:5a:f9:04:7e:5e: 67:8e:6a:e1:d7:2c:b4:3b:a1:12:5e:71:52:10:6b: ef:ad:2c:4c:c2:6b:d0:a6:00:23:cc:0f:06:6b:da: a8:4a:6d:8f:24:4a:98:37:f6:26:4e:08:ec:66:84: 4f:5f:c6:73:cf:34:be:d1:78:57:4b:a2:e0:28:ac: ea:e7:ce:be:ff:49:75:5b:2d:de:17:09:a9:80:31: 41:25:19:61:6f:4a:d4:5b:05:fc:28:15:b9:d7:a6: eb:07:8f:71:c4:67:59:7f:b5:f8:a9:c6:4a:eb:ce: 3f:b8:fe:03:63:82:97:a3:e5:9c:04:f0:c2:20:55: 25:a2:8c:34:3f:4c:2a:ab:ab:20:79:3d:67:10:94: fe:d6:5b:8f:42:a4:8f:77:9d:41:1f:4e:69:f2:9a: 0c:70:95:d4:b9:7e:3b:c9:96:55:ea:bd:af:6e:c6: 54:d1:48:97:f0:dc:64:b9:be:b8:05:88:c4:f1:be: af:a4:b1:b0:6e:df:d0:80:2c:0b:f6:d7:97:63:a7: 05:08:d6:72:6c:6f:ff:d1:8b:6b:36:d6:71:77:ba: e1:05:28:ba:94:05:df:58:ae:72:95:8a:ad:83:6b: e4:fd:e6:f4:1b:97:52:f8:d0:33:c4:01:2f:36:68: 95:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:2A:0A:72:29:35:F3:E3:72:4D:1B:49:BE:A3:CA:BA:D7:31:39:E0 X509v3 Authority Key Identifier: keyid:40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/fSoKcik18-NyTRtJvqPKutcxOeA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.95.208.0/20 Signature Algorithm: sha256WithRSAEncryption 0b:7c:40:ef:79:95:f8:c1:f6:4d:c6:02:9c:ac:69:66:27:43: af:6e:4f:fb:b8:d0:1c:9c:2c:36:ac:9c:41:a3:5e:30:18:97: dd:b4:ba:06:bb:91:cf:0b:3a:ae:5d:b1:b6:69:38:73:22:54: 66:40:22:5c:a1:ba:b0:b4:ba:82:86:ae:8e:01:05:c6:19:3e: b4:de:25:4b:9d:40:7c:4c:d1:19:72:29:79:4a:c2:e8:7e:a0: 7d:b6:f9:17:c2:8b:4c:db:79:64:ba:e3:d6:88:1a:30:bf:1e: a2:31:e3:3c:eb:a5:99:a4:1c:b6:df:2b:3b:20:01:17:78:f4: cb:22:ec:cc:e6:64:07:ce:f7:a1:a5:2b:a1:f8:8e:5d:01:4f: 73:40:ad:ce:d7:3a:a5:c9:72:ea:4c:e2:60:57:9b:64:1a:49: c0:1b:a7:33:b8:3f:1e:ca:f5:1b:ec:e3:92:f1:e1:66:29:69: e7:70:e3:8f:7d:e5:69:9d:73:37:29:98:e4:62:00:f2:dd:cd: fb:23:44:38:52:fd:96:be:d5:40:c0:aa:5d:e4:7f:12:25:24: f9:89:a6:ce:96:91:7d:14:8e:14:f6:49:a4:2f:5a:88:c6:c0: 08:a1:1d:63:51:ec:ea:55:a2:bb:95:df:67:8d:b7:34:44:9b: 7d:da:4f:58 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICATEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDA2 MTBEQTY4RTkzRUQ1MzhBNDhBNDZDNTIxNDAyNEVENTREMDdGNjAeFw0yNDEwMzEw MTMwMjlaFw0yNTEwMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDdEMkEwQTcyMjkzNUYz RTM3MjREMUI0OUJFQTNDQUJBRDczMTM5RTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7LJ5P3d+/yNBa+QR+XmeOauHXLLQ7oRJecVIQa++tLEzCa9Cm ACPMDwZr2qhKbY8kSpg39iZOCOxmhE9fxnPPNL7ReFdLouAorOrnzr7/SXVbLd4X CamAMUElGWFvStRbBfwoFbnXpusHj3HEZ1l/tfipxkrrzj+4/gNjgpej5ZwE8MIg VSWijDQ/TCqrqyB5PWcQlP7WW49CpI93nUEfTmnymgxwldS5fjvJllXqva9uxlTR SJfw3GS5vrgFiMTxvq+ksbBu39CALAv215djpwUI1nJsb//Ri2s21nF3uuEFKLqU Bd9YrnKViq2Da+T95vQbl1L40DPEAS82aJVbAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUfSoKcik18+NyTRtJvqPKutcxOeAwHwYDVR0jBBgwFoAUQGENpo6T7VOKSKRs UhQCTtVNB/YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQ2OS9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0Vk5CX1kuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0 Vk5CX1kuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNDY5L2ZTb0tjaWsxOC1OeVRSdEp2cVBLdXRjeE9lQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATKX9AwDQYJKoZIhvcNAQELBQADggEBAAt8QO95lfjB9k3GApysaWYnQ69u T/u40BycLDasnEGjXjAYl920uga7kc8LOq5dsbZpOHMiVGZAIlyhurC0uoKGro4B BcYZPrTeJUudQHxM0RlyKXlKwuh+oH22+RfCi0zbeWS649aIGjC/HqIx4zzrpZmk HLbfKzsgARd49Msi7MzmZAfO96GlK6H4jl0BT3NArc7XOqXJcupM4mBXm2QaScAb pzO4Px7K9Rvs45Lx4WYpaedw44995WmdczcpmORiAPLdzfsjRDhS/Za+1UDAql3k fxIlJPmJps6WkX0UjhT2SaQvWojGwAihHWNR7OpVoruV32eNtzREm33aT1g= -----END CERTIFICATE-----Generated at Fri Nov 22 13:33:22 2024 by rpki-client on console-fra.rpki-client.org