$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/AkABNgvaOsWygbHALYD0TFCYhTI.roa File: AkABNgvaOsWygbHALYD0TFCYhTI.roa (raw, json) Hash identifier: txN4VOjoLW/Glp+DrH3hIPjCC9SEsnCbp577rhcpOEQ= Subject key identifier: 02:40:01:36:0B:DA:3A:C5:B2:81:B1:C0:2D:80:F4:4C:50:98:85:32 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 06D3 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/AkABNgvaOsWygbHALYD0TFCYhTI.roa Signing time: Tue 30 Apr 2024 01:47:03 +0000 ROA not before: Tue 30 Apr 2024 01:47:03 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.104.24.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1747 (0x6d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:47:03 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=024001360BDA3AC5B281B1C02D80F44C50988532 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:86:8d:75:69:f3:fc:c4:f5:65:e5:d9:9f:c4: fa:27:83:e4:b3:c8:b0:96:25:3e:e4:50:56:8a:fa: d4:73:3f:69:08:d3:07:b4:75:5e:9f:b2:e3:dd:62: ea:a2:87:60:92:e1:d4:be:04:60:25:08:25:75:2c: 9a:79:b7:ea:9a:e9:ea:1f:f5:9a:13:bc:13:97:4a: 9e:b5:77:22:e2:5c:b6:72:7a:cb:14:46:dc:4e:b7: e0:71:be:05:c6:4b:8e:9d:49:38:37:dc:df:6b:99: f8:fc:16:ee:c2:ab:1b:36:aa:5c:f5:36:19:dc:7e: 17:10:5e:61:d7:6c:ba:3e:80:46:05:94:06:92:39: 51:95:9a:d3:f1:33:01:43:03:0c:8a:7b:d8:0b:0c: c7:e4:fb:10:71:8a:3c:16:69:1c:c3:9e:34:62:b4: 37:8f:80:f8:2f:e9:2a:f7:cc:f5:fb:9d:68:1b:35: 03:68:a2:7c:ee:bd:98:44:e7:88:dc:27:38:ce:2d: a8:70:4f:5d:5d:29:c6:11:1b:63:c7:81:76:c4:d3: ef:dc:46:ee:2e:c3:82:81:35:a8:d2:3b:3d:c1:f9: 5e:a1:a9:93:09:7c:f9:b8:cf:6b:2c:15:94:45:44: ba:75:3a:64:a4:9e:e0:58:51:bf:a4:44:1c:73:fa: c5:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:40:01:36:0B:DA:3A:C5:B2:81:B1:C0:2D:80:F4:4C:50:98:85:32 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/AkABNgvaOsWygbHALYD0TFCYhTI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.104.24.0/22 Signature Algorithm: sha256WithRSAEncryption 7f:35:96:95:bd:f2:d3:fe:85:e7:2c:2c:67:5c:b3:a7:34:09: 34:d4:a2:dc:b0:55:35:a4:8a:61:46:2a:e7:99:1c:d2:74:51: ec:98:a4:49:f2:e2:a2:9a:c4:e7:00:d5:ba:ff:86:74:27:cb: f4:3b:90:53:be:b7:57:35:08:c8:82:e8:08:e7:a3:13:5c:bd: 54:da:84:7c:4e:2e:ce:0f:08:1d:9f:b0:61:22:6b:7e:7a:1e: ab:4b:dd:85:ad:68:4b:d0:48:53:bf:f4:f6:39:b8:24:46:8c: 72:2d:3b:25:59:af:4c:61:50:a5:d3:67:01:79:3e:c9:d5:32: 8b:6d:86:fd:75:1d:66:0b:a4:9d:bc:a8:b4:95:fb:ff:d2:d0: e6:b9:ad:f6:d3:0b:41:21:e0:3c:12:21:17:ca:cb:8e:27:ad: 61:af:c2:32:90:73:e3:ef:c9:49:c0:50:bb:c5:13:ff:25:9a: 4a:6d:d4:2f:c3:e4:4a:0c:eb:a7:56:84:aa:01:4c:18:2b:33: f7:ff:c1:61:01:30:d5:17:3b:53:84:d3:c5:b3:63:58:22:58: a4:af:cd:55:5d:50:f0:66:bf:8a:f2:c8:38:05:a0:6d:e6:ff: fb:4f:b5:52:92:19:e3:11:c6:f6:ab:9d:ed:38:50:6e:14:7a: b1:96:cd:c6 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBtMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTQ3MDNaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDAyNDAwMTM2MEJEQTNB QzVCMjgxQjFDMDJEODBGNDRDNTA5ODg1MzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCYho11afP8xPVl5dmfxPong+SzyLCWJT7kUFaK+tRzP2kI0we0 dV6fsuPdYuqih2CS4dS+BGAlCCV1LJp5t+qa6eof9ZoTvBOXSp61dyLiXLZyessU RtxOt+BxvgXGS46dSTg33N9rmfj8Fu7Cqxs2qlz1NhncfhcQXmHXbLo+gEYFlAaS OVGVmtPxMwFDAwyKe9gLDMfk+xBxijwWaRzDnjRitDePgPgv6Sr3zPX7nWgbNQNo onzuvZhE54jcJzjOLahwT11dKcYRG2PHgXbE0+/cRu4uw4KBNajSOz3B+V6hqZMJ fPm4z2ssFZRFRLp1OmSknuBYUb+kRBxz+sW1AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUAkABNgvaOsWygbHALYD0TFCYhTIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0FrQUJOZ3ZhT3NXeWdiSEFMWUQwVEZDWWhUSS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxaBgwDQYJKoZIhvcNAQELBQADggEBAH81lpW98tP+hecsLGdcs6c0CTTU otywVTWkimFGKueZHNJ0UeyYpEny4qKaxOcA1br/hnQny/Q7kFO+t1c1CMiC6Ajn oxNcvVTahHxOLs4PCB2fsGEia356HqtL3YWtaEvQSFO/9PY5uCRGjHItOyVZr0xh UKXTZwF5PsnVMotthv11HWYLpJ28qLSV+//S0Oa5rfbTC0Eh4DwSIRfKy44nrWGv wjKQc+PvyUnAULvFE/8lmkpt1C/D5EoM66dWhKoBTBgrM/f/wWEBMNUXO1OE08Wz Y1giWKSvzVVdUPBmv4ryyDgFoG3m//tPtVKSGeMRxvarne04UG4UerGWzcY= -----END CERTIFICATE-----Generated at Sat Jun 1 15:54:29 2024 by rpki-client on console-ams.rpki-client.org