$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/2lbRQZoUpu-nE6K2RPTMEVeKL3M.roa File: 2lbRQZoUpu-nE6K2RPTMEVeKL3M.roa (raw, json) Hash identifier: wECWOEthB3a3w75+tx7cnfznWWDmJPmvksnBh8IvFXg= Subject key identifier: DA:56:D1:41:9A:14:A6:EF:A7:13:A2:B6:44:F4:CC:11:57:8A:2F:73 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 05E0 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/2lbRQZoUpu-nE6K2RPTMEVeKL3M.roa Signing time: Thu 29 Feb 2024 01:32:19 +0000 ROA not before: Thu 29 Feb 2024 01:32:19 +0000 ROA not after: Fri 14 Feb 2025 01:30:03 +0000 asID: 9605 IP address blocks: 49.97.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1504 (0x5e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Feb 29 01:32:19 2024 GMT Not After : Feb 14 01:30:03 2025 GMT Subject: CN=DA56D1419A14A6EFA713A2B644F4CC11578A2F73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1c:96:06:6d:19:5e:2b:df:b0:57:43:3a:57: 11:12:42:9b:53:b1:3c:bc:ca:42:3b:db:7f:5e:e7: 69:e3:85:a0:9d:47:ba:d3:06:95:50:42:46:4f:9d: 89:4e:3d:0d:e2:27:b5:14:57:56:00:52:6e:c0:fd: 3a:7d:ae:b2:31:5d:a3:a2:36:7a:ec:c1:8f:1f:09: 14:26:d7:6f:61:7a:bf:f5:fc:ce:86:11:5c:bb:f4: a9:dc:e5:5f:93:33:80:f0:43:90:f5:07:d3:6d:1c: e0:c4:16:ea:dc:e9:c1:8a:34:07:36:44:d9:4e:e8: 3d:fc:61:cb:cd:90:d5:84:8d:e5:79:8f:06:a0:35: 24:89:ad:85:7f:58:c6:d6:bf:ff:ca:e3:a1:de:bd: b5:93:7e:d0:2f:96:e5:7c:4a:85:e6:25:e0:2c:1c: ef:35:89:f0:61:94:41:ac:42:10:0f:81:ae:4a:e7: d6:15:cc:03:52:fb:06:cd:8c:ff:86:ef:04:9a:dc: 96:35:49:22:22:28:16:58:94:1c:0c:e7:bb:a4:ef: 6b:9a:c7:87:43:f5:b4:b2:4f:ff:f7:dc:fe:87:37: 1f:5a:38:a6:6c:74:f9:01:42:8e:6f:c8:70:39:65: 57:f7:84:c9:ee:01:7e:dd:95:f0:9c:d8:fa:9c:d5: a7:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:56:D1:41:9A:14:A6:EF:A7:13:A2:B6:44:F4:CC:11:57:8A:2F:73 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/2lbRQZoUpu-nE6K2RPTMEVeKL3M.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.97.5.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:da:94:1a:56:e3:6e:ad:52:b8:9c:5c:54:95:2f:5e:ac:6f: bf:b1:42:16:e4:ce:56:c3:3d:40:cd:38:5f:18:d7:bb:e8:f3: 8f:5e:24:67:cb:ee:f8:59:74:6b:33:6b:77:b9:0c:fc:1b:d0: b1:d9:eb:e5:84:17:6e:e1:e8:1d:d9:a7:d0:68:87:33:41:65: 56:89:18:ff:5f:17:6e:02:11:9c:54:f0:32:69:be:f9:5d:48: f2:a8:b3:e4:0b:d2:39:75:37:61:b0:34:cf:f1:ce:7e:33:2c: 21:e3:69:f2:8a:95:cc:6b:2b:5a:8a:c3:15:7d:69:cf:09:f6: 5c:34:27:af:1d:06:95:b7:be:01:4e:07:89:89:73:3d:99:a7: 57:fc:79:e6:d9:94:46:d3:10:19:31:78:08:21:78:f3:3e:0b: 51:ff:9c:31:29:87:83:22:96:e5:96:c0:11:19:30:e2:b1:03: 2b:a7:83:37:a0:01:5c:e8:f8:18:22:ec:a8:82:63:5d:3e:6f: 45:50:a1:29:32:1c:2b:b6:01:c2:3b:e1:3e:31:03:46:af:86: 13:fe:8b:57:fb:dd:75:8c:8c:f8:2e:6e:0f:7e:e1:78:c4:7d: 91:f4:a0:52:cf:9b:c8:c4:63:24:e9:7a:79:f6:52:98:57:8e: 17:ba:05:ed -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBeAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDAyMjkw MTMyMTlaFw0yNTAyMTQwMTMwMDNaMDMxMTAvBgNVBAMTKERBNTZEMTQxOUExNEE2 RUZBNzEzQTJCNjQ0RjRDQzExNTc4QTJGNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9HJYGbRleK9+wV0M6VxESQptTsTy8ykI7239e52njhaCdR7rT BpVQQkZPnYlOPQ3iJ7UUV1YAUm7A/Tp9rrIxXaOiNnrswY8fCRQm129her/1/M6G EVy79Knc5V+TM4DwQ5D1B9NtHODEFurc6cGKNAc2RNlO6D38YcvNkNWEjeV5jwag NSSJrYV/WMbWv//K46HevbWTftAvluV8SoXmJeAsHO81ifBhlEGsQhAPga5K59YV zANS+wbNjP+G7wSa3JY1SSIiKBZYlBwM57uk72uax4dD9bSyT//33P6HNx9aOKZs dPkBQo5vyHA5ZVf3hMnuAX7dlfCc2Pqc1afPAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU2lbRQZoUpu+nE6K2RPTMEVeKL3MwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzJsYlJRWm9VcHUtbkU2SzJSUFRNRVZlS0wzTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxYQUwDQYJKoZIhvcNAQELBQADggEBAJvalBpW426tUricXFSVL16sb7+x QhbkzlbDPUDNOF8Y17vo849eJGfL7vhZdGsza3e5DPwb0LHZ6+WEF27h6B3Zp9Bo hzNBZVaJGP9fF24CEZxU8DJpvvldSPKos+QL0jl1N2GwNM/xzn4zLCHjafKKlcxr K1qKwxV9ac8J9lw0J68dBpW3vgFOB4mJcz2Zp1f8eebZlEbTEBkxeAghePM+C1H/ nDEph4MiluWWwBEZMOKxAyungzegAVzo+Bgi7KiCY10+b0VQoSkyHCu2AcI74T4x A0avhhP+i1f73XWMjPgubg9+4XjEfZH0oFLPm8jEYyTpenn2UphXjhe6Be0= -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:46 2024 by rpki-client on console-fra.rpki-client.org