$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/3vyzZ10HceHo7WePU2ra-qgrJLQ.roa File: 3vyzZ10HceHo7WePU2ra-qgrJLQ.roa (raw, json) Hash identifier: +qDWSsEdGE4qtDKXaftic8EMzqnyGXpQxKaEGUKrTfg= Subject key identifier: DE:FC:B3:67:5D:07:71:E1:E8:ED:67:8F:53:6A:DA:FA:A8:2B:24:B4 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0309 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3vyzZ10HceHo7WePU2ra-qgrJLQ.roa Signing time: Thu 01 Jun 2023 16:05:28 +0000 ROA not before: Thu 01 Jun 2023 16:05:28 +0000 ROA not after: Tue 14 May 2024 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.92.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 13:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 777 (0x309) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 1 16:05:28 2023 GMT Not After : May 14 01:30:02 2024 GMT Subject: CN=DEFCB3675D0771E1E8ED678F536ADAFAA82B24B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:9a:47:a9:52:66:c6:de:b0:14:4a:e7:24:16: 76:00:19:07:ea:d2:47:50:36:4b:ed:37:a0:3f:e4: cb:6e:52:41:55:46:1a:78:fc:e0:2b:8c:c7:0d:44: e8:9d:78:6b:9b:22:88:3f:43:bc:62:79:3d:da:de: 43:66:20:66:d8:aa:62:da:d2:54:69:fb:ea:e5:25: 75:8c:9e:47:43:a7:ff:1e:f6:b9:b0:d3:20:8a:84: 0a:34:bb:d5:72:e2:3f:61:9a:1c:1a:c5:12:e7:b2: f4:49:c4:ca:83:c5:48:af:81:d0:ca:67:4a:ce:a1: 61:0c:73:7a:00:08:f5:44:b1:a7:d8:fe:72:0e:e5: 56:de:6b:d3:8b:d7:87:db:95:1e:05:70:27:90:c4: 1a:5f:11:0c:c2:90:d9:92:23:c2:e2:94:34:89:6a: f1:90:67:8b:a0:f5:e0:9b:35:26:5e:99:e3:78:ae: d3:2c:be:9e:9f:1e:e0:9e:a0:25:df:91:59:c5:b2: 0a:79:3a:c8:f3:5c:0f:68:8d:30:1c:be:c6:80:80: f5:67:2c:14:ab:c3:67:76:ff:62:df:29:10:94:e3: f3:8a:dd:53:bc:1c:37:e4:9b:55:cd:c3:51:3c:dd: ae:17:01:3f:df:39:14:f2:c3:dd:58:6c:65:06:7a: 35:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:FC:B3:67:5D:07:71:E1:E8:ED:67:8F:53:6A:DA:FA:A8:2B:24:B4 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3vyzZ10HceHo7WePU2ra-qgrJLQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.92.0/22 Signature Algorithm: sha256WithRSAEncryption a8:80:d9:68:9a:a7:a8:f6:65:05:7e:90:56:b2:b3:1d:a5:5c: 6b:22:90:a6:b3:87:a3:36:66:3d:a2:13:ed:67:6a:1c:df:37: 9a:7e:aa:7c:f8:bf:d6:b5:3c:28:3c:9c:3d:ac:1f:6f:5b:63: a6:07:0a:85:d2:c6:26:1b:c5:6c:af:a9:d3:84:f4:94:c0:cd: c1:0a:b3:82:f7:52:ca:eb:14:b3:ea:09:f9:b3:50:9b:13:3e: 59:4d:03:f2:04:46:9d:34:d2:df:46:70:20:b9:91:5b:cf:c3: 4a:aa:0d:30:b1:32:0c:5f:ba:cb:54:31:7b:66:d5:5c:f5:44: 7f:e4:d2:05:f3:44:ca:0b:60:d5:b6:61:d2:33:a8:c7:ed:12: ed:2c:59:46:07:3b:f9:a2:2c:c0:45:10:6b:35:a3:ec:25:ba: 1f:88:a5:46:f0:90:e6:8e:df:13:90:cb:ae:54:61:68:4a:81: 73:de:e5:d8:a1:d7:a0:e6:02:b9:d5:14:fd:ad:16:c6:f5:54: 94:76:aa:02:1e:49:86:39:f4:b7:dd:da:78:c0:c3:e8:bd:7d: 5b:fc:be:b5:4b:6a:5d:70:fa:fb:46:69:6d:8a:19:7a:cc:81: b6:66:bb:30:98:72:d2:28:f6:d1:15:90:97:7f:66:7a:31:99: ed:06:a3:af -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAwkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA2MDEx NjA1MjhaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKERFRkNCMzY3NUQwNzcx RTFFOEVENjc4RjUzNkFEQUZBQTgyQjI0QjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDImkepUmbG3rAUSuckFnYAGQfq0kdQNkvtN6A/5MtuUkFVRhp4 /OArjMcNROideGubIog/Q7xieT3a3kNmIGbYqmLa0lRp++rlJXWMnkdDp/8e9rmw 0yCKhAo0u9Vy4j9hmhwaxRLnsvRJxMqDxUivgdDKZ0rOoWEMc3oACPVEsafY/nIO 5Vbea9OL14fblR4FcCeQxBpfEQzCkNmSI8LilDSJavGQZ4ug9eCbNSZemeN4rtMs vp6fHuCeoCXfkVnFsgp5OsjzXA9ojTAcvsaAgPVnLBSrw2d2/2LfKRCU4/OK3VO8 HDfkm1XNw1E83a4XAT/fORTyw91YbGUGejUtAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU3vyzZ10HceHo7WePU2ra+qgrJLQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzN2eXpaMTBIY2VIbzdXZVBVMnJhLXFnckpMUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYlwwDQYJKoZIhvcNAQELBQADggEBAKiA2Wiap6j2ZQV+kFaysx2lXGsi kKazh6M2Zj2iE+1nahzfN5p+qnz4v9a1PCg8nD2sH29bY6YHCoXSxiYbxWyvqdOE 9JTAzcEKs4L3UsrrFLPqCfmzUJsTPllNA/IERp000t9GcCC5kVvPw0qqDTCxMgxf ustUMXtm1Vz1RH/k0gXzRMoLYNW2YdIzqMftEu0sWUYHO/miLMBFEGs1o+wluh+I pUbwkOaO3xOQy65UYWhKgXPe5dih16DmArnVFP2tFsb1VJR2qgIeSYY59Lfd2njA w+i9fVv8vrVLal1w+vtGaW2KGXrMgbZmuzCYctIo9tEVkJd/Znoxme0Go68= -----END CERTIFICATE-----Generated at Sat Apr 27 10:15:55 2024 by rpki-client on console-ams.rpki-client.org