$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/2CDR99d378mrtPRweBQ_NA85uac.roa File: 2CDR99d378mrtPRweBQ_NA85uac.roa (raw, json) Hash identifier: 2ewicwcQqqWYfSGjLQh9UOKPrQzIsslaXksiUsAmX3g= Subject key identifier: D8:20:D1:F7:D7:77:EF:C9:AB:B4:F4:70:78:14:3F:34:0F:39:B9:A7 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0485 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/2CDR99d378mrtPRweBQ_NA85uac.roa Signing time: Thu 27 Jul 2023 16:44:13 +0000 ROA not before: Thu 27 Jul 2023 16:44:13 +0000 ROA not after: Sun 14 Jul 2024 01:30:03 +0000 asID: 9605 IP address blocks: 49.100.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1157 (0x485) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jul 27 16:44:13 2023 GMT Not After : Jul 14 01:30:03 2024 GMT Subject: CN=D820D1F7D777EFC9ABB4F47078143F340F39B9A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:14:c6:d7:cc:ed:23:9c:08:4a:c5:f2:23:18: fb:54:f2:4b:26:ad:c1:81:ed:07:bf:76:81:52:86: 01:25:ca:db:f0:59:79:3f:e9:b1:93:91:36:54:93: 72:51:61:aa:05:83:05:fe:7e:cc:1a:30:77:02:ee: 91:62:20:ce:09:a2:1d:ef:a3:53:ab:92:45:06:5d: d4:f7:0b:d7:ea:d5:04:75:64:49:b2:29:b5:86:d6: b6:df:c7:ed:4e:5f:6f:7c:9f:f9:4a:61:30:93:33: 67:33:e7:c7:66:32:c0:9b:ad:10:8a:8b:e1:17:f2: f5:17:f7:0c:c4:dc:0f:c8:15:fd:29:74:dd:39:98: 4b:6b:a9:fc:f5:59:91:13:15:e7:63:70:e2:50:6c: 82:b4:8f:88:f7:49:e5:92:40:f4:68:ce:c1:e5:11: 91:30:b4:7e:d7:1e:2d:13:85:e2:5a:29:c6:54:46: 1e:22:26:6e:2d:82:16:b4:c5:d8:a9:64:5a:67:1a: b8:bf:25:11:fe:7c:39:5d:74:f7:81:df:c4:a1:18: f8:c9:33:71:c0:4c:a3:61:a7:b3:25:d7:f5:db:81: 86:d5:fb:30:ed:55:c3:aa:cf:0a:41:98:9c:be:ec: 0d:96:c2:46:fb:46:69:76:4f:17:db:a0:39:7a:ce: e8:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:20:D1:F7:D7:77:EF:C9:AB:B4:F4:70:78:14:3F:34:0F:39:B9:A7 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/2CDR99d378mrtPRweBQ_NA85uac.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.100.160.0/20 Signature Algorithm: sha256WithRSAEncryption 4c:33:6f:ec:8f:05:26:35:82:f2:ff:5a:1d:1f:49:f0:4b:5a: 38:f8:30:14:ff:98:93:32:43:73:61:6a:00:dd:56:c6:82:4c: 26:47:02:4b:5d:b9:aa:17:2d:c7:51:91:83:4b:26:e5:df:15: 78:08:bd:56:c8:34:87:10:76:8c:7a:92:ff:b3:3f:df:9c:c4: 88:4f:fd:53:ba:2b:84:fc:0b:af:93:41:c8:10:f5:47:59:f7: ab:03:ae:9c:8d:49:ec:b4:cc:ec:fe:dc:e9:1a:90:19:96:5a: 24:57:74:a9:51:6d:ee:3c:f9:dc:54:08:34:cb:d6:16:d9:85: a7:a4:8e:97:9e:e3:68:90:1e:33:6c:e3:66:e2:f9:c1:63:22: 3e:19:56:d0:c5:a1:e5:39:bc:14:94:28:87:ff:c4:d2:b2:b3: a0:2c:96:4b:88:2a:a5:e3:fb:c7:1c:a5:66:a3:95:2c:35:09: 6a:81:f8:0c:4c:e8:fe:35:5a:b6:9e:2a:57:29:b2:7c:03:2c: 98:c3:31:5a:d3:1a:eb:ec:d9:68:17:e9:21:d6:34:8a:7f:cb: a5:5b:fb:52:fc:2e:b4:db:bf:2b:24:80:19:5b:cd:2e:d6:66: f2:52:e0:0e:3b:08:6e:4f:61:e3:23:35:c1:75:af:4c:d7:42: 34:06:a0:b8 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBIUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA3Mjcx NjQ0MTNaFw0yNDA3MTQwMTMwMDNaMDMxMTAvBgNVBAMTKEQ4MjBEMUY3RDc3N0VG QzlBQkI0RjQ3MDc4MTQzRjM0MEYzOUI5QTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5FMbXzO0jnAhKxfIjGPtU8ksmrcGB7Qe/doFShgElytvwWXk/ 6bGTkTZUk3JRYaoFgwX+fswaMHcC7pFiIM4Joh3vo1OrkkUGXdT3C9fq1QR1ZEmy KbWG1rbfx+1OX298n/lKYTCTM2cz58dmMsCbrRCKi+EX8vUX9wzE3A/IFf0pdN05 mEtrqfz1WZETFedjcOJQbIK0j4j3SeWSQPRozsHlEZEwtH7XHi0TheJaKcZURh4i Jm4tgha0xdipZFpnGri/JRH+fDlddPeB38ShGPjJM3HATKNhp7Ml1/XbgYbV+zDt VcOqzwpBmJy+7A2Wwkb7Rml2TxfboDl6zugrAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU2CDR99d378mrtPRweBQ/NA85uacwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzJDRFI5OWQzNzhtcnRQUndlQlFfTkE4NXVhYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQxZKAwDQYJKoZIhvcNAQELBQADggEBAEwzb+yPBSY1gvL/Wh0fSfBLWjj4 MBT/mJMyQ3NhagDdVsaCTCZHAktduaoXLcdRkYNLJuXfFXgIvVbINIcQdox6kv+z P9+cxIhP/VO6K4T8C6+TQcgQ9UdZ96sDrpyNSey0zOz+3OkakBmWWiRXdKlRbe48 +dxUCDTL1hbZhaekjpee42iQHjNs42bi+cFjIj4ZVtDFoeU5vBSUKIf/xNKys6As lkuIKqXj+8ccpWajlSw1CWqB+AxM6P41WraeKlcpsnwDLJjDMVrTGuvs2WgX6SHW NIp/y6Vb+1L8LrTbvyskgBlbzS7WZvJS4A47CG5PYeMjNcF1r0zXQjQGoLg= -----END CERTIFICATE-----Generated at Sat Jun 1 15:54:29 2024 by rpki-client on console-ams.rpki-client.org