$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/8PwisaP2NmHnPHRJIL_Dp6mhRiI.roa File: 8PwisaP2NmHnPHRJIL_Dp6mhRiI.roa (raw, json) Hash identifier: xcof3zV64FXUCd5zyunMuMbgKVP92s/b4y5LCTZ8R+8= Subject key identifier: F0:FC:22:B1:A3:F6:36:61:E7:3C:74:49:20:BF:C3:A7:A9:A1:46:22 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0868 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/8PwisaP2NmHnPHRJIL_Dp6mhRiI.roa Signing time: Tue 30 Apr 2024 02:18:27 +0000 ROA not before: Tue 30 Apr 2024 02:18:27 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.196.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2152 (0x868) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:18:27 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=F0FC22B1A3F63661E73C744920BFC3A7A9A14622 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:93:50:7b:86:c4:4a:c3:3f:3e:ba:42:24:90: bf:39:ea:1f:a5:3b:21:a9:38:fd:db:30:1c:a4:41: 75:0c:41:7f:ed:d7:63:4f:bc:93:ff:e8:9b:5e:28: 06:f7:74:43:31:c1:b2:3b:0d:69:f1:53:c8:4f:5f: b4:b6:2d:f0:61:ce:a8:1e:98:2a:65:79:6a:ee:29: d0:44:38:d4:e0:d8:17:8a:8f:65:cb:c5:5f:f1:30: 2d:8b:b7:61:ce:19:c4:2c:a6:12:dd:ad:d4:6e:58: e9:d9:d1:31:5d:8a:6c:e2:ba:3a:ea:d6:f3:5f:66: f8:86:92:d3:25:32:8e:5d:23:2f:f7:7c:45:03:d8: 5d:94:ed:8f:97:cf:d5:f3:fc:8f:61:7b:e1:85:40: a5:15:8b:8c:eb:02:bc:ca:61:00:9f:b5:3d:8f:ac: bb:04:a7:2c:61:4a:30:3a:01:20:01:af:af:58:d5: 5f:7d:7a:e8:f4:03:6b:b6:ff:2f:73:15:9d:dc:96: 47:33:e5:ba:1d:57:6f:bd:37:c9:d7:5e:b3:1d:7e: fb:a9:8f:1e:55:1f:54:17:7e:ef:71:47:6f:f5:3e: 03:4e:08:a3:97:a5:fd:66:dc:9b:c7:52:15:66:3a: af:b4:2a:d3:e1:a5:c3:a6:ef:95:43:72:e1:66:d3: a3:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:FC:22:B1:A3:F6:36:61:E7:3C:74:49:20:BF:C3:A7:A9:A1:46:22 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/8PwisaP2NmHnPHRJIL_Dp6mhRiI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.196.0/22 Signature Algorithm: sha256WithRSAEncryption b3:af:66:be:b3:7e:24:d7:dc:87:38:c4:f6:e2:04:0d:dd:6e: b7:f8:53:9e:ba:ea:92:07:d4:e4:bf:49:47:0a:d9:67:c4:c5: 03:bf:16:bb:6a:92:db:47:8b:b1:c2:b3:f2:42:25:4e:e1:43: 93:3b:07:8f:86:3b:e3:ef:a8:a0:ef:fd:0f:fb:79:d3:a1:34: 6a:68:92:33:ed:76:3c:51:02:ab:e9:ec:4a:8e:08:61:e1:7e: 23:44:da:ef:01:a0:13:6b:89:78:19:17:aa:8e:16:de:85:dd: 03:45:43:0f:c0:ad:d9:c8:ee:30:76:18:e5:ce:2b:3b:ce:04: a4:dd:f5:3e:d8:eb:6c:f8:66:d4:29:6a:2a:09:85:eb:97:a5: 77:b1:3f:90:56:f0:12:58:98:40:d1:ed:85:c4:e1:b2:98:1c: 92:50:a8:fe:0e:9d:ef:cd:f4:12:ba:03:86:db:a8:b5:a4:35: 35:4f:24:62:a6:ba:03:d4:98:7e:1d:52:b6:25:e5:9c:db:66: 3e:39:b0:2a:c8:21:58:a9:ba:23:42:b8:2a:6d:54:6b:b7:c5: f5:aa:83:07:9d:af:ee:bb:19:e7:ab:6c:0d:71:a0:42:e4:08: 99:61:b2:e6:84:a4:3e:f2:2c:80:88:c4:8c:c6:1c:fa:8b:98: 2d:ac:db:53 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCGgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjE4MjdaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEYwRkMyMkIxQTNGNjM2 NjFFNzNDNzQ0OTIwQkZDM0E3QTlBMTQ2MjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4k1B7hsRKwz8+ukIkkL856h+lOyGpOP3bMBykQXUMQX/t12NP vJP/6JteKAb3dEMxwbI7DWnxU8hPX7S2LfBhzqgemCpleWruKdBEONTg2BeKj2XL xV/xMC2Lt2HOGcQsphLdrdRuWOnZ0TFdimziujrq1vNfZviGktMlMo5dIy/3fEUD 2F2U7Y+Xz9Xz/I9he+GFQKUVi4zrArzKYQCftT2PrLsEpyxhSjA6ASABr69Y1V99 euj0A2u2/y9zFZ3clkcz5bodV2+9N8nXXrMdfvupjx5VH1QXfu9xR2/1PgNOCKOX pf1m3JvHUhVmOq+0KtPhpcOm75VDcuFm06PvAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU8PwisaP2NmHnPHRJIL/Dp6mhRiIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzhQd2lzYVAyTm1IblBIUkpJTF9EcDZtaFJpSS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYsQwDQYJKoZIhvcNAQELBQADggEBALOvZr6zfiTX3Ic4xPbiBA3dbrf4 U5666pIH1OS/SUcK2WfExQO/FrtqkttHi7HCs/JCJU7hQ5M7B4+GO+PvqKDv/Q/7 edOhNGpokjPtdjxRAqvp7EqOCGHhfiNE2u8BoBNriXgZF6qOFt6F3QNFQw/ArdnI 7jB2GOXOKzvOBKTd9T7Y62z4ZtQpaioJheuXpXexP5BW8BJYmEDR7YXE4bKYHJJQ qP4One/N9BK6A4bbqLWkNTVPJGKmugPUmH4dUrYl5ZzbZj45sCrIIVipuiNCuCpt VGu3xfWqgwedr+67GeerbA1xoELkCJlhsuaEpD7yLICIxIzGHPqLmC2s21M= -----END CERTIFICATE-----Generated at Sat Jun 1 15:54:29 2024 by rpki-client on console-ams.rpki-client.org