$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/12kX8Gh2-GAxl5C3V6jsM_oWKvA.roa File: 12kX8Gh2-GAxl5C3V6jsM_oWKvA.roa (raw, json) Hash identifier: sHXAF3xK4K5Up3wBFNDxt3xejqpCMVIWcX8j1aVhWi4= Subject key identifier: D7:69:17:F0:68:76:F8:60:31:97:90:B7:57:A8:EC:33:FA:16:2A:F0 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 07C5 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/12kX8Gh2-GAxl5C3V6jsM_oWKvA.roa Signing time: Tue 30 Apr 2024 02:08:47 +0000 ROA not before: Tue 30 Apr 2024 02:08:47 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.108.192.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 12:58:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1989 (0x7c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:08:47 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=D76917F06876F860319790B757A8EC33FA162AF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9e:f6:1b:63:7f:b6:12:77:dd:94:6a:19:16: f1:2e:8c:7e:9f:10:50:6c:20:9a:33:a4:86:5f:4e: f8:a3:ba:e5:a1:08:b6:a8:6b:4f:35:9b:82:60:95: 0e:d9:6b:7e:47:43:c2:c5:23:2d:e0:63:da:ee:4f: 57:18:92:ce:af:0a:bc:e4:74:1f:41:7c:80:82:22: 33:bd:dd:5d:1a:05:2d:6e:e7:d2:ba:1a:4a:ac:25: db:b7:96:97:40:f3:e4:da:71:d6:c9:b8:5c:a2:f3: 5a:56:3d:07:f9:2e:9b:e6:b1:89:4f:1f:bc:c5:cd: 44:f6:3d:a4:ff:6d:f8:54:b7:18:c5:36:d3:99:95: d4:a9:cd:5c:c0:d3:e5:52:04:80:df:94:6e:6d:7f: 75:41:02:5e:a0:4e:48:91:27:bb:af:cc:2a:96:09: cf:49:2d:3d:8f:86:5f:5b:45:45:19:ad:23:63:2d: 84:33:5f:b4:57:1f:d4:0d:64:86:99:0c:71:75:5d: 5b:35:95:f9:19:e6:b6:7a:f2:90:b5:88:7b:08:06: 9f:40:07:42:17:6f:11:85:76:87:0a:e3:a9:06:a0: 3f:2f:83:0d:b0:99:59:23:83:87:b1:1b:59:f5:be: 83:19:f3:08:4d:29:6d:f2:98:8b:fd:60:e5:c8:7c: 52:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:69:17:F0:68:76:F8:60:31:97:90:B7:57:A8:EC:33:FA:16:2A:F0 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/12kX8Gh2-GAxl5C3V6jsM_oWKvA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.108.192.0/19 Signature Algorithm: sha256WithRSAEncryption 0a:18:29:9e:20:a1:9d:55:1d:cc:49:63:30:e7:5e:f3:ff:5d: b8:b6:cb:bf:06:50:3f:8a:0e:99:97:0c:0f:7f:0b:dd:aa:d5: 45:d2:4a:34:77:6d:70:47:ac:33:59:a4:5e:0d:e0:8e:36:aa: 07:03:c2:57:4d:58:e3:37:31:3e:dd:da:1b:2a:fc:42:b2:ae: 2d:96:0f:b1:de:2b:23:91:a3:fb:6a:b2:11:83:15:e6:07:d9: 2c:12:df:b2:19:d6:67:80:76:d8:dc:10:7b:bc:b3:ee:9e:e4: 29:f0:32:19:7a:fd:76:7e:c7:ba:3a:4d:fb:cd:44:84:5e:d7: a0:05:54:57:07:de:58:cf:3c:ac:2d:58:ff:3e:62:fb:1c:e6: 2b:d5:08:d9:dd:db:13:bf:d0:35:99:0d:1b:2a:95:50:5b:ce: 60:43:56:41:c8:b9:84:e8:35:6e:f7:27:09:87:a2:cb:c7:42: b9:3a:77:d4:6b:21:2f:1a:af:65:23:b9:e8:1f:05:9c:04:fc: 37:fe:a2:e5:e8:df:22:aa:c4:f6:ed:2f:55:12:4f:b5:15:c1: dc:f0:72:e9:56:9d:f2:ab:ca:56:26:e6:05:7c:42:b1:e0:ab: 34:fd:9b:c0:a9:09:3a:52:d0:bc:bd:4b:0b:82:c7:9f:ee:2a: 04:20:cf:20 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICB8UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjA4NDdaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEQ3NjkxN0YwNjg3NkY4 NjAzMTk3OTBCNzU3QThFQzMzRkExNjJBRjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDnvYbY3+2EnfdlGoZFvEujH6fEFBsIJozpIZfTvijuuWhCLao a081m4JglQ7Za35HQ8LFIy3gY9ruT1cYks6vCrzkdB9BfICCIjO93V0aBS1u59K6 GkqsJdu3lpdA8+TacdbJuFyi81pWPQf5LpvmsYlPH7zFzUT2PaT/bfhUtxjFNtOZ ldSpzVzA0+VSBIDflG5tf3VBAl6gTkiRJ7uvzCqWCc9JLT2Phl9bRUUZrSNjLYQz X7RXH9QNZIaZDHF1XVs1lfkZ5rZ68pC1iHsIBp9AB0IXbxGFdocK46kGoD8vgw2w mVkjg4exG1n1voMZ8whNKW3ymIv9YOXIfFKdAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU12kX8Gh2+GAxl5C3V6jsM/oWKvAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzEya1g4R2gyLUdBeGw1QzNWNmpzTV9vV0t2QS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUxbMAwDQYJKoZIhvcNAQELBQADggEBAAoYKZ4goZ1VHcxJYzDnXvP/Xbi2 y78GUD+KDpmXDA9/C92q1UXSSjR3bXBHrDNZpF4N4I42qgcDwldNWOM3MT7d2hsq /EKyri2WD7HeKyORo/tqshGDFeYH2SwS37IZ1meAdtjcEHu8s+6e5CnwMhl6/XZ+ x7o6TfvNRIRe16AFVFcH3ljPPKwtWP8+Yvsc5ivVCNnd2xO/0DWZDRsqlVBbzmBD VkHIuYToNW73JwmHosvHQrk6d9RrIS8ar2UjuegfBZwE/Df+ouXo3yKqxPbtL1US T7UVwdzwculWnfKrylYm5gV8QrHgqzT9m8CpCTpS0Ly9SwuCx5/uKgQgzyA= -----END CERTIFICATE-----Generated at Fri Nov 22 14:21:18 2024 by rpki-client on console-ams.rpki-client.org