$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/4HapqUhAEzHnF0BA06TM_p64STc.roa File: 4HapqUhAEzHnF0BA06TM_p64STc.roa (raw, json) Hash identifier: lEju2RZwb5GVGwhw48sz0Uny/fQFEKX0c/FGjY4rJnU= Subject key identifier: E0:76:A9:A9:48:40:13:31:E7:17:40:40:D3:A4:CC:FE:9E:B8:49:37 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 065F Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4HapqUhAEzHnF0BA06TM_p64STc.roa Signing time: Tue 30 Apr 2024 01:34:49 +0000 ROA not before: Tue 30 Apr 2024 01:34:49 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Jun 2024 11:53:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1631 (0x65f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:34:49 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=E076A9A948401331E7174040D3A4CCFE9EB84937 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:64:ea:ef:19:19:58:b5:6a:0f:f9:a4:e7:49: b8:97:77:5f:07:35:4d:44:02:54:a6:77:9b:25:80: 80:39:bb:e4:7c:19:42:81:a8:27:94:ef:c9:96:6d: f0:dd:9d:71:f4:2f:3b:89:c5:ba:8d:de:f9:25:17: df:0e:73:28:cb:c6:e3:6f:29:3f:ec:f8:b8:43:a8: 32:4e:ea:5d:0b:ef:1c:a3:10:2f:62:c8:17:5b:22: 37:61:53:72:32:53:2c:fb:5b:58:21:e9:df:af:af: 3b:1c:2e:53:a1:a6:6a:3b:6b:8d:34:a8:b2:af:56: fb:0f:a7:36:e6:65:89:f2:49:73:86:93:76:f8:a2: 83:61:be:78:87:d6:ad:70:30:33:f1:3c:29:88:98: b8:66:c5:64:99:c3:3d:9f:19:37:0f:6b:87:44:4b: 78:7f:54:24:cf:3b:f0:bc:b1:08:b4:91:9e:63:b4: b2:02:c1:c4:ef:f5:65:52:3e:ea:31:a4:d7:8e:bb: c8:6b:7c:8d:03:f3:97:82:95:5f:7f:be:be:f6:fd: 6d:81:4d:8a:a6:e5:30:60:2d:10:1b:ee:8a:7f:94: d3:22:b3:de:5b:ae:be:ca:bd:43:9f:6c:a4:2c:d4: 75:ce:7e:6e:78:37:65:da:99:c4:2a:ff:db:91:7a: e3:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:76:A9:A9:48:40:13:31:E7:17:40:40:D3:A4:CC:FE:9E:B8:49:37 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4HapqUhAEzHnF0BA06TM_p64STc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.17.0/24 Signature Algorithm: sha256WithRSAEncryption 13:40:1f:53:67:2e:ff:7f:57:e4:2b:84:2f:33:6b:db:fc:e4: 7b:e6:64:e6:1e:c7:68:f4:20:a9:0b:69:e4:51:e2:7e:49:4a: 5c:42:f7:2e:e9:c3:78:01:22:41:0b:bb:cc:b5:60:26:d0:62: 67:d4:72:07:ac:6d:a6:68:36:df:dd:2f:a2:bd:d5:3d:41:e4: 3d:6d:fc:a5:fd:91:c9:0c:72:0d:6c:50:da:71:8f:e6:a4:01: 7e:c2:bd:cf:bf:af:ec:40:fa:14:54:bd:b7:ea:d8:54:91:c9: d7:9c:f7:38:2d:37:3e:23:2a:50:57:b5:2d:19:95:94:22:fd: 39:1b:27:cc:83:e4:39:0c:ef:0e:c5:a3:e6:f2:ca:02:f4:ce: ea:00:a7:4a:5d:a9:02:db:5f:b0:e3:51:95:c2:d7:c0:77:c4: f1:d1:d7:83:57:74:28:48:df:de:4d:74:75:80:06:8f:ad:49: 07:3f:fd:1d:d8:5a:b0:3e:58:b6:ef:ae:0e:2b:8a:a1:86:3f: 99:19:d5:98:fe:ae:ab:f1:a9:72:8c:e5:5b:19:31:de:31:58: 30:27:35:4c:a7:ce:62:84:c2:8f:b9:ae:ee:5b:d3:af:cb:4c: cc:4a:9d:08:75:15:be:b7:55:86:66:aa:c2:77:89:cd:57:9c: c2:b3:12:a8 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBl8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTM0NDlaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEUwNzZBOUE5NDg0MDEz MzFFNzE3NDA0MEQzQTRDQ0ZFOUVCODQ5MzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXZOrvGRlYtWoP+aTnSbiXd18HNU1EAlSmd5slgIA5u+R8GUKB qCeU78mWbfDdnXH0LzuJxbqN3vklF98OcyjLxuNvKT/s+LhDqDJO6l0L7xyjEC9i yBdbIjdhU3IyUyz7W1gh6d+vrzscLlOhpmo7a400qLKvVvsPpzbmZYnySXOGk3b4 ooNhvniH1q1wMDPxPCmImLhmxWSZwz2fGTcPa4dES3h/VCTPO/C8sQi0kZ5jtLIC wcTv9WVSPuoxpNeOu8hrfI0D85eClV9/vr72/W2BTYqm5TBgLRAb7op/lNMis95b rr7KvUOfbKQs1HXOfm54N2XamcQq/9uReuNnAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU4HapqUhAEzHnF0BA06TM/p64STcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzRIYXBxVWhBRXpIbkYwQkEwNlRNX3A2NFNUYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxYBEwDQYJKoZIhvcNAQELBQADggEBABNAH1NnLv9/V+QrhC8za9v85Hvm ZOYex2j0IKkLaeRR4n5JSlxC9y7pw3gBIkELu8y1YCbQYmfUcgesbaZoNt/dL6K9 1T1B5D1t/KX9kckMcg1sUNpxj+akAX7Cvc+/r+xA+hRUvbfq2FSRydec9zgtNz4j KlBXtS0ZlZQi/TkbJ8yD5DkM7w7Fo+byygL0zuoAp0pdqQLbX7DjUZXC18B3xPHR 14NXdChI395NdHWABo+tSQc//R3YWrA+WLbvrg4riqGGP5kZ1Zj+rqvxqXKM5VsZ Md4xWDAnNUynzmKEwo+5ru5b06/LTMxKnQh1Fb63VYZmqsJ3ic1XnMKzEqg= -----END CERTIFICATE-----Generated at Sun Jun 16 14:31:51 2024 by rpki-client on console-ams.rpki-client.org