$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/6CMXZORTXPobghvUJeJtkmBMPmQ.roa File: 6CMXZORTXPobghvUJeJtkmBMPmQ.roa (raw, json) Hash identifier: ffMFUoAPNWDFgtr/lvYro8pJHxjE3jGpdSfqZuom6fw= Subject key identifier: E8:23:17:64:E4:53:5C:FA:1B:82:1B:D4:25:E2:6D:92:60:4C:3E:64 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 03DD Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/6CMXZORTXPobghvUJeJtkmBMPmQ.roa Signing time: Tue 06 Jun 2023 16:03:40 +0000 ROA not before: Tue 06 Jun 2023 16:03:40 +0000 ROA not after: Tue 14 May 2024 01:30:02 +0000 asID: 9605 IP address blocks: 49.106.220.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 13:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 989 (0x3dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 6 16:03:40 2023 GMT Not After : May 14 01:30:02 2024 GMT Subject: CN=E8231764E4535CFA1B821BD425E26D92604C3E64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:53:6b:05:14:79:a5:a1:eb:8f:09:85:a2:76: 43:19:b4:35:d2:74:f2:81:49:02:73:9a:4b:b5:9f: 2e:8c:59:8f:4a:80:87:e7:b2:ab:bd:af:27:58:f0: 61:2d:ed:4c:fe:c9:3f:28:b2:bb:7b:87:f8:62:19: 81:6c:65:ce:21:c4:f6:e3:bf:90:a1:c2:90:0c:1e: c6:50:27:f0:a3:fc:d8:c1:5f:04:64:7e:26:71:ed: 33:e1:d9:1b:84:be:1e:da:ad:5a:9d:24:f3:5c:b2: 85:5c:f8:0e:02:65:52:a0:ba:12:7a:24:93:d1:27: d5:a1:74:1d:af:8b:bc:e7:ce:30:e2:14:fb:d0:43: 54:b8:97:f7:f9:20:96:23:c1:e5:51:9f:ec:2f:aa: 53:9b:07:ab:df:95:c1:cd:be:e7:f2:6f:77:5e:3f: 86:8f:59:c2:59:51:42:00:ee:7a:a2:15:4b:e6:b1: bd:ad:40:43:9c:3b:08:b8:42:de:2a:57:6c:9a:03: ec:4a:d1:6f:2f:3b:98:a1:b1:90:d0:0e:b2:63:49: e5:ec:34:cc:b8:d8:60:2f:c1:c4:31:9f:15:f4:ab: 8a:86:9e:68:b8:17:bd:64:0a:c1:05:0a:e1:6f:f6: 62:c3:e4:8d:b9:20:e2:38:e1:92:65:c3:a1:3f:55: 2e:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:23:17:64:E4:53:5C:FA:1B:82:1B:D4:25:E2:6D:92:60:4C:3E:64 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/6CMXZORTXPobghvUJeJtkmBMPmQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.106.220.0/23 Signature Algorithm: sha256WithRSAEncryption 77:12:bc:48:76:86:75:ea:d4:94:ec:f3:44:50:52:0c:00:f3: d3:c5:69:d8:6f:24:79:e4:f1:3b:c3:39:c8:07:17:f5:ab:38: f6:02:6e:16:25:fd:a2:7f:0c:ae:a1:63:ad:ba:b6:99:5f:ba: 5c:85:b7:f8:91:7f:86:6b:8f:cd:2c:94:3b:9c:5a:d1:08:79: 15:58:a7:6f:57:36:1e:48:dc:36:c9:6b:21:97:e2:83:5c:7e: 3e:28:94:0b:ab:73:61:4c:a5:0b:3f:4e:3d:15:d1:57:56:bc: c8:ae:5a:5d:8d:d2:46:12:95:30:2c:ba:e8:8a:07:03:0f:b7: 90:4d:f8:d6:91:70:73:fb:38:8b:27:ef:19:99:bb:37:89:83: 51:9b:56:38:8b:69:50:eb:13:17:7b:a2:11:ea:f9:ba:7c:4d: d0:fc:5f:5e:ac:ba:54:19:56:7d:cc:2d:0e:99:7d:96:81:98: 9e:d3:f2:57:f1:a7:d0:68:bb:01:28:37:09:c2:b5:e5:18:34: e8:55:e8:cb:e8:58:ad:f8:3e:c0:a0:d8:64:35:db:3b:70:23: 70:b9:d1:2f:6a:54:a3:dc:56:0a:f8:79:73:b6:34:43:c9:9f: 4f:9c:0d:5d:3d:21:36:4e:5e:a0:28:da:b9:2f:79:e3:56:d6: f1:81:ea:8c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA90wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA2MDYx NjAzNDBaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKEU4MjMxNzY0RTQ1MzVD RkExQjgyMUJENDI1RTI2RDkyNjA0QzNFNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQChU2sFFHmloeuPCYWidkMZtDXSdPKBSQJzmku1ny6MWY9KgIfn squ9rydY8GEt7Uz+yT8osrt7h/hiGYFsZc4hxPbjv5ChwpAMHsZQJ/Cj/NjBXwRk fiZx7TPh2RuEvh7arVqdJPNcsoVc+A4CZVKguhJ6JJPRJ9WhdB2vi7znzjDiFPvQ Q1S4l/f5IJYjweVRn+wvqlObB6vflcHNvufyb3deP4aPWcJZUUIA7nqiFUvmsb2t QEOcOwi4Qt4qV2yaA+xK0W8vO5ihsZDQDrJjSeXsNMy42GAvwcQxnxX0q4qGnmi4 F71kCsEFCuFv9mLD5I25IOI44ZJlw6E/VS5FAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU6CMXZORTXPobghvUJeJtkmBMPmQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzZDTVhaT1JUWFBvYmdodlVKZUp0a21CTVBtUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExatwwDQYJKoZIhvcNAQELBQADggEBAHcSvEh2hnXq1JTs80RQUgwA89PF adhvJHnk8TvDOcgHF/WrOPYCbhYl/aJ/DK6hY626tplfulyFt/iRf4Zrj80slDuc WtEIeRVYp29XNh5I3DbJayGX4oNcfj4olAurc2FMpQs/Tj0V0VdWvMiuWl2N0kYS lTAsuuiKBwMPt5BN+NaRcHP7OIsn7xmZuzeJg1GbVjiLaVDrExd7ohHq+bp8TdD8 X16sulQZVn3MLQ6ZfZaBmJ7T8lfxp9BouwEoNwnCteUYNOhV6MvoWK34PsCg2GQ1 2ztwI3C50S9qVKPcVgr4eXO2NEPJn0+cDV09ITZOXqAo2rkveeNW1vGB6ow= -----END CERTIFICATE-----Generated at Sat Apr 27 10:15:55 2024 by rpki-client on console-ams.rpki-client.org