$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/8UiluG0PXsDfMdZ3_LUKaffQ1vo.roa File: 8UiluG0PXsDfMdZ3_LUKaffQ1vo.roa (raw, json) Hash identifier: q1RMfx7HZoSfETQhIj0vPsZa6PrnZ/i7IXxS4bl1hXg= Subject key identifier: F1:48:A5:B8:6D:0F:5E:C0:DF:31:D6:77:FC:B5:0A:69:F7:D0:D6:FA Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0264 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/8UiluG0PXsDfMdZ3_LUKaffQ1vo.roa Signing time: Tue 30 May 2023 16:34:14 +0000 ROA not before: Tue 30 May 2023 16:34:14 +0000 ROA not after: Tue 14 May 2024 01:30:02 +0000 asID: 9605 IP address blocks: 220.210.28.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 13:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 612 (0x264) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: May 30 16:34:14 2023 GMT Not After : May 14 01:30:02 2024 GMT Subject: CN=F148A5B86D0F5EC0DF31D677FCB50A69F7D0D6FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:70:71:82:d8:54:1c:75:cd:4d:80:6c:c5:a5: 21:fb:9d:ac:f8:b0:77:cf:4d:0f:74:1b:2f:df:87: 21:62:80:4a:6a:44:d0:77:bd:55:2b:7d:8c:2b:ab: a9:11:5a:e7:bb:91:96:02:f5:b8:c9:b0:3f:43:32: 2d:4e:bd:57:46:de:00:5b:a1:9d:cb:c4:8d:26:5c: 6c:ad:6b:c5:a1:10:75:6b:f0:c0:e9:d8:d8:d5:77: 99:19:06:58:bc:45:cd:82:f9:4f:9f:47:3a:74:28: bf:58:de:a1:da:b4:b5:5a:ba:c1:cc:21:f5:e3:02: e1:61:c7:97:1d:80:e8:32:89:db:18:9f:58:71:7f: 71:a6:6f:4f:be:07:4e:d1:c1:bb:18:2b:c3:29:d2: 01:cd:ee:db:cf:d5:95:1b:cf:96:40:56:aa:ac:23: c2:fc:d2:29:0e:c9:c5:68:f7:2b:69:ee:48:96:60: 66:4d:76:5c:ae:ff:2c:8e:34:de:c3:cd:3b:35:70: 22:0e:5a:0e:86:0b:87:34:0b:26:c2:a7:9c:9f:e3: e0:ff:d3:43:fb:a5:16:ac:df:d9:34:29:37:92:cb: 4c:ee:57:b5:4a:d8:25:20:b5:9f:2b:28:47:6b:97: e0:52:cd:75:04:15:4d:0a:cf:c5:05:4b:34:39:ab: 24:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:48:A5:B8:6D:0F:5E:C0:DF:31:D6:77:FC:B5:0A:69:F7:D0:D6:FA X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/8UiluG0PXsDfMdZ3_LUKaffQ1vo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.28.0/23 Signature Algorithm: sha256WithRSAEncryption 6a:9a:09:9d:8b:65:4b:20:db:a5:33:b7:14:03:3e:9e:1a:c4: 66:0a:a5:5b:99:7c:fd:f5:3d:ad:c6:63:6a:0f:9c:9c:f8:3f: 12:1f:07:69:b4:3c:b9:70:fb:a3:0f:a9:4f:c6:bf:7c:e9:a5: 2e:fe:6e:2b:8b:bc:3e:a9:9e:93:10:94:99:cd:43:e5:30:08: c3:a2:d0:14:47:cc:1b:cc:cc:0f:32:4a:b4:47:ba:1f:a7:a8: 13:59:e5:5f:e5:35:52:a1:ac:ae:6e:83:24:aa:61:67:9d:ef: e5:f4:d9:d5:00:e2:9c:b1:dc:51:04:1d:33:bd:72:ca:8f:41: 3d:18:da:bd:24:67:68:c1:90:ec:cd:47:26:17:4f:19:cd:cd: bf:be:dd:ff:89:45:f1:48:89:93:e1:ac:29:ce:1c:ac:64:f5: 81:c7:98:29:44:3a:b6:31:ac:df:34:89:a8:43:5a:92:e9:58: 39:ed:75:fd:bc:21:7b:26:3f:b6:ce:e1:f2:32:e7:63:be:86: c6:2a:84:b6:44:48:2f:eb:e7:59:8e:c9:a5:84:47:25:05:57: c1:87:36:f8:d0:b2:4d:29:10:f3:35:22:9a:43:f2:49:af:82: f7:bc:76:8a:7a:d5:b7:74:b8:9d:03:e7:ac:e9:86:dc:6c:84: 79:a4:35:2d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAmQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MzAx NjM0MTRaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKEYxNDhBNUI4NkQwRjVF QzBERjMxRDY3N0ZDQjUwQTY5RjdEMEQ2RkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCbcHGC2FQcdc1NgGzFpSH7naz4sHfPTQ90Gy/fhyFigEpqRNB3 vVUrfYwrq6kRWue7kZYC9bjJsD9DMi1OvVdG3gBboZ3LxI0mXGyta8WhEHVr8MDp 2NjVd5kZBli8Rc2C+U+fRzp0KL9Y3qHatLVausHMIfXjAuFhx5cdgOgyidsYn1hx f3Gmb0++B07RwbsYK8Mp0gHN7tvP1ZUbz5ZAVqqsI8L80ikOycVo9ytp7kiWYGZN dlyu/yyONN7DzTs1cCIOWg6GC4c0CybCp5yf4+D/00P7pRas39k0KTeSy0zuV7VK 2CUgtZ8rKEdrl+BSzXUEFU0Kz8UFSzQ5qySDAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU8UiluG0PXsDfMdZ3/LUKaffQ1vowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5LzhVaWx1RzBQWHNEZk1kWjNfTFVLYWZmUTF2by5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHc0hwwDQYJKoZIhvcNAQELBQADggEBAGqaCZ2LZUsg26UztxQDPp4axGYK pVuZfP31Pa3GY2oPnJz4PxIfB2m0PLlw+6MPqU/Gv3zppS7+biuLvD6pnpMQlJnN Q+UwCMOi0BRHzBvMzA8ySrRHuh+nqBNZ5V/lNVKhrK5ugySqYWed7+X02dUA4pyx 3FEEHTO9csqPQT0Y2r0kZ2jBkOzNRyYXTxnNzb++3f+JRfFIiZPhrCnOHKxk9YHH mClEOrYxrN80iahDWpLpWDntdf28IXsmP7bO4fIy52O+hsYqhLZESC/r51mOyaWE RyUFV8GHNvjQsk0pEPM1IppD8kmvgve8dop61bd0uJ0D56zphtxshHmkNS0= -----END CERTIFICATE-----Generated at Sat Apr 27 10:15:55 2024 by rpki-client on console-ams.rpki-client.org