$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/AA4oLx8DRhOMlJ6nDtFP4K8vRDw.roa File: AA4oLx8DRhOMlJ6nDtFP4K8vRDw.roa (raw, json) Hash identifier: hcz5bRzIhiF9vz5QSH94qpJrRpeA3cBTIFpsZMYqInA= Subject key identifier: 00:0E:28:2F:1F:03:46:13:8C:94:9E:A7:0E:D1:4F:E0:AF:2F:44:3C Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 07CB Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/AA4oLx8DRhOMlJ6nDtFP4K8vRDw.roa Signing time: Tue 30 Apr 2024 02:08:50 +0000 ROA not before: Tue 30 Apr 2024 02:08:50 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.66.112.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1995 (0x7cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:08:50 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=000E282F1F0346138C949EA70ED14FE0AF2F443C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:69:06:e4:db:97:99:5f:54:5a:f3:87:87:ba: 2f:17:60:ea:7c:c0:ae:81:b9:b9:35:4a:46:ef:0c: 39:7c:ee:a6:08:39:44:89:af:88:75:63:d3:be:64: b8:18:9b:a6:e7:c7:e7:9c:5c:c2:b5:40:f6:8a:27: 8f:40:da:ba:42:95:0e:86:bb:96:93:a0:bd:a5:3a: 61:fe:4d:70:6f:78:41:fa:d8:47:09:55:d3:9c:b2: ab:21:91:2e:bb:f9:06:a3:a2:ca:fa:e6:ba:e2:7a: 53:96:5e:86:19:78:4f:2b:5c:f9:5a:1a:9a:eb:b5: 3c:ce:39:8a:e9:db:8d:89:ab:8c:ab:57:6e:78:20: 10:ce:48:50:a1:8f:ed:4f:7d:a2:86:8d:c7:23:74: 03:b6:c5:dc:3a:58:64:a1:dd:68:08:94:6f:cd:a2: aa:de:6b:c1:9e:77:6c:6d:9d:1c:cc:d4:9b:7a:39: fc:80:65:f6:20:6e:16:fe:8d:4f:04:24:13:22:94: ca:eb:45:e2:c8:74:39:6e:bb:f9:bd:c8:6d:1e:c4: 8d:b8:6f:a3:00:3e:e8:3a:ce:8c:da:3d:8b:f6:24: 0f:d2:cf:99:d8:66:44:fe:81:89:1b:39:51:da:1b: c3:b1:2a:ec:cd:dd:20:82:d3:93:3b:71:a2:84:1d: df:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:0E:28:2F:1F:03:46:13:8C:94:9E:A7:0E:D1:4F:E0:AF:2F:44:3C X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/AA4oLx8DRhOMlJ6nDtFP4K8vRDw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.66.112.0/20 Signature Algorithm: sha256WithRSAEncryption 04:82:3d:88:0a:96:85:22:cf:45:89:29:72:a0:ff:bf:92:1b: ac:2d:68:9b:66:99:10:cd:b7:21:a7:a5:89:fb:18:d1:16:26: 59:a7:3d:0f:4e:8c:03:68:38:5e:04:70:02:6f:f5:56:90:50: 68:0d:b0:42:59:5a:70:f0:7a:07:ec:1a:92:6a:c0:f8:8a:75: a2:94:4b:4a:70:2f:67:f0:de:c3:40:db:b3:08:e1:fe:82:20: ee:5f:68:c4:ab:a3:32:92:6a:e4:33:96:15:74:25:c6:5a:01: 08:34:02:14:66:5f:e3:b4:0a:6e:27:a8:a8:a3:bf:ac:d7:42: 7a:b2:dc:6d:1c:42:b6:8f:f6:da:89:cc:b1:5d:40:52:5e:9a: 94:21:93:f9:79:25:74:45:21:43:c5:8b:72:44:68:3f:d6:25: b5:51:d3:86:9a:d7:12:4e:20:21:cd:fe:ce:90:75:73:04:d6: cd:7b:be:f2:c5:eb:73:cc:97:85:4f:1c:d4:59:88:d8:95:59: 48:62:53:6f:97:e2:09:e5:4a:fd:49:35:f1:9a:57:24:40:a9: dc:19:08:45:23:3a:05:b8:dc:91:5e:6f:6b:73:e6:80:0f:a8: 83:ea:ea:c3:3b:42:bf:50:4e:54:c1:4e:d3:27:d9:15:fb:ef: 05:7b:f4:25 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICB8swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjA4NTBaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDAwMEUyODJGMUYwMzQ2 MTM4Qzk0OUVBNzBFRDE0RkUwQUYyRjQ0M0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbaQbk25eZX1Ra84eHui8XYOp8wK6Bubk1SkbvDDl87qYIOUSJ r4h1Y9O+ZLgYm6bnx+ecXMK1QPaKJ49A2rpClQ6Gu5aToL2lOmH+TXBveEH62EcJ VdOcsqshkS67+Qajosr65rrielOWXoYZeE8rXPlaGprrtTzOOYrp242Jq4yrV254 IBDOSFChj+1PfaKGjccjdAO2xdw6WGSh3WgIlG/Noqrea8Ged2xtnRzM1Jt6OfyA ZfYgbhb+jU8EJBMilMrrReLIdDluu/m9yG0exI24b6MAPug6zozaPYv2JA/Sz5nY ZkT+gYkbOVHaG8OxKuzN3SCC05M7caKEHd8XAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUAA4oLx8DRhOMlJ6nDtFP4K8vRDwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0FBNG9MeDhEUmhPTWxKNm5EdEZQNEs4dlJEdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQBQnAwDQYJKoZIhvcNAQELBQADggEBAASCPYgKloUiz0WJKXKg/7+SG6wt aJtmmRDNtyGnpYn7GNEWJlmnPQ9OjANoOF4EcAJv9VaQUGgNsEJZWnDwegfsGpJq wPiKdaKUS0pwL2fw3sNA27MI4f6CIO5faMSrozKSauQzlhV0JcZaAQg0AhRmX+O0 Cm4nqKijv6zXQnqy3G0cQraP9tqJzLFdQFJempQhk/l5JXRFIUPFi3JEaD/WJbVR 04aa1xJOICHN/s6QdXME1s17vvLF63PMl4VPHNRZiNiVWUhiU2+X4gnlSv1JNfGa VyRAqdwZCEUjOgW43JFeb2tz5oAPqIPq6sM7Qr9QTlTBTtMn2RX77wV79CU= -----END CERTIFICATE-----Generated at Sat Jun 1 15:54:29 2024 by rpki-client on console-ams.rpki-client.org