$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/2_0oHdISM5FFIR9RxxdniifC1_Q.roa File: 2_0oHdISM5FFIR9RxxdniifC1_Q.roa (raw, json) Hash identifier: 5r+yZQ4uuXjr8FtEdXdYKwkeCL1gEVuMo6YM6P/31uM= Subject key identifier: DB:FD:28:1D:D2:12:33:91:45:21:1F:51:C7:17:67:8A:27:C2:D7:F4 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0486 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/2_0oHdISM5FFIR9RxxdniifC1_Q.roa Signing time: Thu 27 Jul 2023 16:44:13 +0000 ROA not before: Thu 27 Jul 2023 16:44:13 +0000 ROA not after: Sun 14 Jul 2024 01:30:03 +0000 asID: 9605 IP address blocks: 49.111.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1158 (0x486) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jul 27 16:44:13 2023 GMT Not After : Jul 14 01:30:03 2024 GMT Subject: CN=DBFD281DD212339145211F51C717678A27C2D7F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:6a:11:5b:a9:48:15:2e:d1:18:cf:89:76:8a: 35:7f:c4:3e:e3:97:2a:cf:13:ce:fb:51:51:6a:4c: 93:92:ba:0f:85:ad:4a:0c:61:3d:4d:d1:3a:2a:00: 1d:7e:1b:25:f9:03:5a:71:f9:e9:9c:e6:2f:4f:b3: 6d:86:2b:a8:d2:43:b9:3e:fe:e3:c1:09:2c:d1:5d: 74:7c:fb:b6:c4:49:86:f7:82:b2:52:67:bc:65:ad: c1:e6:5d:e3:e1:5e:01:8c:14:66:6b:da:49:21:8f: c9:73:81:e4:c4:ce:e9:d8:31:0b:f6:51:04:06:96: 1b:a9:3d:35:ae:6d:ad:03:8f:60:70:e3:a4:92:b7: 5c:29:81:22:d9:df:f0:fd:af:e0:48:95:10:19:59: 37:a9:b0:bd:cc:42:87:d9:ec:b1:93:be:0c:36:02: 5a:2c:57:50:4c:cd:24:1e:aa:c4:73:a3:3e:f4:ad: 40:c6:ef:ce:bc:c8:c2:0c:36:19:81:61:01:06:af: 46:e1:9a:63:71:8f:b9:7f:bc:36:b3:38:27:cd:40: b7:29:ce:cb:cb:57:e1:80:49:4c:f1:ed:32:11:fe: 01:ec:3b:39:02:f2:3e:a2:e0:29:8e:98:81:5c:c3: 2d:46:e0:56:69:da:0d:22:40:8d:fe:e4:44:e6:62: 95:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:FD:28:1D:D2:12:33:91:45:21:1F:51:C7:17:67:8A:27:C2:D7:F4 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/2_0oHdISM5FFIR9RxxdniifC1_Q.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.111.128.0/17 Signature Algorithm: sha256WithRSAEncryption 3d:44:e6:6b:a8:64:5a:2e:54:2f:fd:c8:ef:df:a6:d6:ee:61: 9f:99:7f:af:35:92:2d:38:49:c6:d3:93:8f:35:0e:0c:c2:ac: 95:82:e7:f5:16:be:78:9f:e6:d3:4b:98:ec:03:e3:da:79:45: 67:9f:24:9f:f4:f6:92:8c:e4:c5:cb:02:9d:87:f3:f6:fa:1a: 9c:d7:7d:8b:a7:bc:fd:08:07:dd:6f:e5:e3:e8:f8:09:60:b1: 40:c1:00:56:5c:51:ab:84:4a:d3:d8:8e:12:72:a9:0d:83:ae: 60:93:48:31:08:88:3a:51:47:04:7f:df:8e:65:68:03:9a:d0: 65:9f:fe:36:f0:77:b2:9f:4b:5f:7b:05:67:e8:2e:ef:42:40: de:84:75:b1:7e:9c:92:c6:9e:8c:83:81:c6:81:c4:9f:cd:dd: d4:29:84:cc:79:28:15:42:b9:ce:03:59:7a:2d:32:9c:f3:6f: 6e:2a:54:ee:b2:06:32:97:26:d8:48:dc:24:86:0e:c0:ba:b4: 00:79:f4:1b:e6:f6:2a:75:4d:71:a0:3c:91:3b:5d:3b:61:96: dc:93:d2:f5:42:81:a4:01:ca:0e:c8:cc:e0:05:51:bb:da:e3: f5:b7:b6:37:bf:ce:0c:da:ae:54:d5:e9:34:43:02:90:f1:a4: 22:b1:f7:38 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBIYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA3Mjcx NjQ0MTNaFw0yNDA3MTQwMTMwMDNaMDMxMTAvBgNVBAMTKERCRkQyODFERDIxMjMz OTE0NTIxMUY1MUM3MTc2NzhBMjdDMkQ3RjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD0ahFbqUgVLtEYz4l2ijV/xD7jlyrPE877UVFqTJOSug+FrUoM YT1N0ToqAB1+GyX5A1px+emc5i9Ps22GK6jSQ7k+/uPBCSzRXXR8+7bESYb3grJS Z7xlrcHmXePhXgGMFGZr2kkhj8lzgeTEzunYMQv2UQQGlhupPTWuba0Dj2Bw46SS t1wpgSLZ3/D9r+BIlRAZWTepsL3MQofZ7LGTvgw2AlosV1BMzSQeqsRzoz70rUDG 7868yMIMNhmBYQEGr0bhmmNxj7l/vDazOCfNQLcpzsvLV+GASUzx7TIR/gHsOzkC 8j6i4CmOmIFcwy1G4FZp2g0iQI3+5ETmYpXzAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU2/0oHdISM5FFIR9RxxdniifC1/QwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzJfMG9IZElTTTVGRklSOVJ4eGRuaWlmQzFfUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcxb4AwDQYJKoZIhvcNAQELBQADggEBAD1E5muoZFouVC/9yO/fptbuYZ+Z f681ki04ScbTk481DgzCrJWC5/UWvnif5tNLmOwD49p5RWefJJ/09pKM5MXLAp2H 8/b6GpzXfYunvP0IB91v5ePo+AlgsUDBAFZcUauEStPYjhJyqQ2DrmCTSDEIiDpR RwR/345laAOa0GWf/jbwd7KfS197BWfoLu9CQN6EdbF+nJLGnoyDgcaBxJ/N3dQp hMx5KBVCuc4DWXotMpzzb24qVO6yBjKXJthI3CSGDsC6tAB59Bvm9ip1TXGgPJE7 XTthltyT0vVCgaQByg7IzOAFUbva4/W3tje/zgzarlTV6TRDApDxpCKx9zg= -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:46 2024 by rpki-client on console-fra.rpki-client.org