$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/539/CYuk01NHY8lMXxvYyShb15imIxk.roa File: CYuk01NHY8lMXxvYyShb15imIxk.roa (raw, json) Hash identifier: V7rMsOFu1ehqzUcsEBG1+7pVm9LexaKwdhurstQPo/w= Subject key identifier: 09:8B:A4:D3:53:47:63:C9:4C:5F:1B:D8:C9:28:5B:D7:98:A6:23:19 Certificate issuer: /CN=D0F562FF36F711A3EDF99FC81DB54ED36634D8B1 Certificate serial: 46 Authority key identifier: D0:F5:62:FF:36:F7:11:A3:ED:F9:9F:C8:1D:B5:4E:D3:66:34:D8:B1 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0PVi_zb3EaPt-Z_IHbVO02Y02LE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/CYuk01NHY8lMXxvYyShb15imIxk.roa Signing time: Sun 30 Jun 2024 01:29:11 +0000 ROA not before: Sun 30 Jun 2024 01:29:11 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 55900 IP address blocks: 137.220.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/0PVi_zb3EaPt-Z_IHbVO02Y02LE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/0PVi_zb3EaPt-Z_IHbVO02Y02LE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0PVi_zb3EaPt-Z_IHbVO02Y02LE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:32:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0F562FF36F711A3EDF99FC81DB54ED36634D8B1 Validity Not Before: Jun 30 01:29:11 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=098BA4D3534763C94C5F1BD8C9285BD798A62319 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b2:48:c9:b7:7c:01:21:09:37:af:a1:3d:eb: 20:68:ff:74:34:56:ea:dc:d4:9f:41:2e:f3:6e:39: 65:e7:58:4d:17:72:76:4d:18:d8:19:4f:14:6c:42: 53:e4:2c:68:5e:aa:99:1e:8a:c3:01:97:71:5f:9e: aa:6d:fe:f3:04:da:b8:70:95:c9:ad:c9:a7:e7:44: 0d:50:96:07:c9:b2:85:80:0c:31:88:78:57:19:a4: 3f:1d:86:83:ec:24:ef:4b:e0:d1:3c:38:63:ee:c8: 01:38:df:5f:f3:76:2d:a0:0d:cc:d5:79:28:f2:93: b0:b9:bd:b1:58:5b:85:87:6a:70:a3:f1:5c:80:80: 7b:ba:fb:49:89:c5:61:05:f4:41:50:83:f6:2f:2f: 69:83:f3:5d:69:60:e8:a2:cc:78:79:47:ce:f1:8e: 90:25:a6:6c:3f:2f:a9:e8:fd:a5:4f:23:32:7f:c1: 24:2e:df:b2:bf:44:8f:f6:ca:82:ec:87:90:c0:04: e0:2b:1e:79:f0:be:da:0d:0a:c2:c3:7e:68:38:be: 09:91:86:bc:06:d7:6c:ec:a4:7c:d7:1f:cc:ba:1d: 70:5c:9c:bf:3c:6f:a0:e3:d2:05:13:23:b2:0a:7d: d5:d8:44:37:41:62:55:22:d7:f0:87:a2:a2:48:62: 07:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:8B:A4:D3:53:47:63:C9:4C:5F:1B:D8:C9:28:5B:D7:98:A6:23:19 X509v3 Authority Key Identifier: keyid:D0:F5:62:FF:36:F7:11:A3:ED:F9:9F:C8:1D:B5:4E:D3:66:34:D8:B1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/0PVi_zb3EaPt-Z_IHbVO02Y02LE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0PVi_zb3EaPt-Z_IHbVO02Y02LE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/CYuk01NHY8lMXxvYyShb15imIxk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 137.220.16.0/20 Signature Algorithm: sha256WithRSAEncryption ab:b9:3b:00:a2:c8:e5:be:62:c9:36:f7:0a:16:ef:1f:00:bd: d4:5c:d4:9c:fd:d7:29:54:9a:3b:d0:c6:2d:6d:11:55:de:14: c8:ec:36:68:4f:42:b1:da:9f:31:e9:3a:33:bc:a1:bc:c8:c3: e3:ca:01:d6:9a:9f:a9:1c:2f:1a:4d:c7:13:cf:70:6b:26:dc: c5:ce:5c:f7:ee:49:37:7a:fc:47:70:b6:64:65:19:c5:bc:86: d8:90:2c:65:9e:fe:e3:da:6b:5a:e0:85:80:2a:9f:90:85:83: 6f:22:e8:9b:de:ae:ea:09:ad:32:93:92:90:da:35:d1:81:19: e8:eb:1d:ae:0a:32:31:51:b2:3a:20:96:58:38:70:7f:4e:90: 15:0d:90:72:e2:8a:7f:b4:22:57:34:fc:08:dd:45:39:2b:e8: 91:c9:ca:d9:b9:56:8a:5e:ed:93:94:87:ef:59:a3:74:8c:b0: 85:1d:ef:bb:ae:2f:18:2f:3b:f0:3a:53:13:8c:93:64:f2:af: 2c:98:ee:9d:62:fc:b4:a2:e1:39:ef:99:e7:e4:0c:9b:44:63: 89:7a:6d:6a:b2:fe:11:f5:4b:49:14:45:81:68:f7:65:34:12: a6:b4:9b:14:d0:4c:64:fe:4f:4f:96:70:74:8e:73:57:1d:c7: 81:10:00:e5 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBRjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMEY1 NjJGRjM2RjcxMUEzRURGOTlGQzgxREI1NEVEMzY2MzREOEIxMB4XDTI0MDYzMDAx MjkxMVoXDTI1MDYyNDEwNDY0NVowMzExMC8GA1UEAxMoMDk4QkE0RDM1MzQ3NjND OTRDNUYxQkQ4QzkyODVCRDc5OEE2MjMxOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMiySMm3fAEhCTevoT3rIGj/dDRW6tzUn0Eu8245ZedYTRdydk0Y 2BlPFGxCU+QsaF6qmR6KwwGXcV+eqm3+8wTauHCVya3Jp+dEDVCWB8myhYAMMYh4 VxmkPx2Gg+wk70vg0Tw4Y+7IATjfX/N2LaANzNV5KPKTsLm9sVhbhYdqcKPxXICA e7r7SYnFYQX0QVCD9i8vaYPzXWlg6KLMeHlHzvGOkCWmbD8vqej9pU8jMn/BJC7f sr9Ej/bKguyHkMAE4CseefC+2g0KwsN+aDi+CZGGvAbXbOykfNcfzLodcFycvzxv oOPSBRMjsgp91dhEN0FiVSLX8IeiokhiBzMCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQJi6TTU0djyUxfG9jJKFvXmKYjGTAfBgNVHSMEGDAWgBTQ9WL/NvcRo+35n8gd tU7TZjTYsTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTM5LzBQVmlfemIzRWFQdC1aX0lIYlZPMDJZMDJMRS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBQVmlfemIzRWFQdC1aX0lIYlZPMDJZ MDJMRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81MzkvQ1l1azAxTkhZOGxNWHh2WXlTaGIxNWltSXhrLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBIncEDANBgkqhkiG9w0BAQsFAAOCAQEAq7k7AKLI5b5iyTb3ChbvHwC91FzU nP3XKVSaO9DGLW0RVd4UyOw2aE9CsdqfMek6M7yhvMjD48oB1pqfqRwvGk3HE89w aybcxc5c9+5JN3r8R3C2ZGUZxbyG2JAsZZ7+49prWuCFgCqfkIWDbyLom96u6gmt MpOSkNo10YEZ6OsdrgoyMVGyOiCWWDhwf06QFQ2QcuKKf7QiVzT8CN1FOSvokcnK 2blWil7tk5SH71mjdIywhR3vu64vGC878DpTE4yTZPKvLJjunWL8tKLhOe+Z5+QM m0RjiXptarL+EfVLSRRFgWj3ZTQSprSbFNBMZP5PT5ZwdI5zVx3HgRAA5Q== -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:04 2024 by rpki-client on console-fra.rpki-client.org