$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/BCsnFsA22-1my3iEdulOsnhCZyM.roa File: BCsnFsA22-1my3iEdulOsnhCZyM.roa (raw, json) Hash identifier: 6UBZ/L3n+9sCFgnrMZ6//DMhIZK53dwRYSTg5XPy1jQ= Subject key identifier: 04:2B:27:16:C0:36:DB:ED:66:CB:78:84:76:E9:4E:B2:78:42:67:23 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 069C Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BCsnFsA22-1my3iEdulOsnhCZyM.roa Signing time: Tue 30 Apr 2024 01:43:12 +0000 ROA not before: Tue 30 Apr 2024 01:43:12 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.75.208.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1692 (0x69c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:43:12 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=042B2716C036DBED66CB788476E94EB278426723 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:4f:fe:99:bd:b2:8b:bb:19:91:97:9d:cf:95: a1:2f:fe:b6:f5:aa:27:55:bc:db:5b:00:ae:0f:d9: 5e:4c:35:ee:33:aa:f8:d7:e6:86:29:ec:3f:e6:e5: 7e:ee:23:30:da:57:86:8e:9c:1b:46:27:e6:50:51: c0:88:7a:92:5c:59:00:3f:5d:4b:11:fc:e2:36:11: 65:d2:dd:38:5b:74:f6:9a:89:82:20:5f:ac:04:8f: c0:50:45:d5:99:d8:af:4c:5c:79:e9:9a:ac:99:7e: 80:b4:5c:20:60:2e:5f:3e:56:10:02:0d:1e:0f:87: ed:f7:df:09:50:80:57:12:68:17:e0:b9:8c:d5:90: 0b:95:ff:33:92:ba:28:69:62:59:87:3c:09:08:8a: 4a:73:b2:2e:4e:59:af:b0:3f:d7:c2:2e:9f:8e:df: 1d:ec:0f:0a:4c:6f:4e:0a:e9:55:82:9e:8d:7e:cf: 90:9b:7e:3a:9e:c6:7d:f2:c8:b3:e2:e1:ae:b3:93: 6e:0a:95:a6:d7:10:eb:d6:cd:2b:7b:f4:d4:30:2e: c2:8d:63:f1:bc:be:1c:22:4c:8f:ed:33:b2:ab:37: d1:fc:8e:70:e4:dd:86:8f:b9:6f:f7:6c:3a:58:61: cb:e5:f1:17:fd:65:7d:ac:58:fe:64:85:bf:cf:2c: 54:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:2B:27:16:C0:36:DB:ED:66:CB:78:84:76:E9:4E:B2:78:42:67:23 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BCsnFsA22-1my3iEdulOsnhCZyM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.208.0/22 Signature Algorithm: sha256WithRSAEncryption 44:00:10:62:0e:8c:1e:6b:40:ef:d2:92:69:71:46:2f:5e:d4: ab:e7:59:5f:ec:71:38:23:bb:5c:b3:89:39:44:f9:6e:69:b3: bd:f9:b0:76:b8:18:91:32:04:4a:a4:6d:3c:5a:ab:57:f2:48: 6c:94:c1:53:c0:a2:bc:aa:b2:f5:83:6e:93:e0:f2:18:e8:4f: 39:be:d2:0c:26:d9:2a:25:52:e7:fa:54:b5:84:3a:df:f9:e5: 61:5b:47:48:b3:5a:0a:cc:6f:d7:37:f5:ff:ca:8e:01:7b:f9: 7f:d6:3b:9f:3a:4d:0c:d2:67:c9:3d:16:88:eb:7e:c4:40:c5: bd:9c:8c:d6:88:f6:da:48:88:f6:4f:4d:35:1c:3e:e9:db:15: 12:c4:6b:5e:fd:3f:0c:26:84:64:31:8e:7d:5b:7f:4f:35:d1: 40:33:a8:0b:8a:f1:00:d1:7f:1e:69:a8:b0:ed:a6:2e:64:27: bb:32:90:a4:ed:5b:48:06:b3:c1:32:22:7b:d0:3b:10:3e:0b: 28:ee:81:c9:dd:12:f9:69:51:c2:a7:30:5a:46:b0:5b:cb:4c: b7:7a:e9:b0:31:fb:b5:ce:f6:a8:c8:8d:71:99:f5:35:79:da: 9e:16:56:4b:51:b9:54:59:a4:d1:0d:f5:9d:6c:7f:08:d6:0e: 92:67:45:dd -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBpwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTQzMTJaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDA0MkIyNzE2QzAzNkRC RUQ2NkNCNzg4NDc2RTk0RUIyNzg0MjY3MjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDeT/6ZvbKLuxmRl53PlaEv/rb1qidVvNtbAK4P2V5MNe4zqvjX 5oYp7D/m5X7uIzDaV4aOnBtGJ+ZQUcCIepJcWQA/XUsR/OI2EWXS3ThbdPaaiYIg X6wEj8BQRdWZ2K9MXHnpmqyZfoC0XCBgLl8+VhACDR4Ph+333wlQgFcSaBfguYzV kAuV/zOSuihpYlmHPAkIikpzsi5OWa+wP9fCLp+O3x3sDwpMb04K6VWCno1+z5Cb fjqexn3yyLPi4a6zk24KlabXEOvWzSt79NQwLsKNY/G8vhwiTI/tM7KrN9H8jnDk 3YaPuW/3bDpYYcvl8Rf9ZX2sWP5khb/PLFR3AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUBCsnFsA22+1my3iEdulOsnhCZyMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0JDc25Gc0EyMi0xbXkzaUVkdWxPc25oQ1p5TS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBS9AwDQYJKoZIhvcNAQELBQADggEBAEQAEGIOjB5rQO/SkmlxRi9e1Kvn WV/scTgju1yziTlE+W5ps735sHa4GJEyBEqkbTxaq1fySGyUwVPAoryqsvWDbpPg 8hjoTzm+0gwm2SolUuf6VLWEOt/55WFbR0izWgrMb9c39f/KjgF7+X/WO586TQzS Z8k9FojrfsRAxb2cjNaI9tpIiPZPTTUcPunbFRLEa179PwwmhGQxjn1bf0810UAz qAuK8QDRfx5pqLDtpi5kJ7sykKTtW0gGs8EyInvQOxA+CyjugcndEvlpUcKnMFpG sFvLTLd66bAx+7XO9qjIjXGZ9TV52p4WVktRuVRZpNEN9Z1sfwjWDpJnRd0= -----END CERTIFICATE-----Generated at Sat Jun 1 15:54:29 2024 by rpki-client on console-ams.rpki-client.org