$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/BWGLp5GlS7XhMKA6Pi8dLc27ba8.roa File: BWGLp5GlS7XhMKA6Pi8dLc27ba8.roa (raw, json) Hash identifier: p/1FjgT0M9HiYrqebWE7YdiOfhHQX8Es61Eg507F8fU= Subject key identifier: 05:61:8B:A7:91:A5:4B:B5:E1:30:A0:3A:3E:2F:1D:2D:CD:BB:6D:AF Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 04C1 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BWGLp5GlS7XhMKA6Pi8dLc27ba8.roa Signing time: Thu 27 Jul 2023 16:48:14 +0000 ROA not before: Thu 27 Jul 2023 16:48:14 +0000 ROA not after: Sun 14 Jul 2024 01:30:03 +0000 asID: 9605 IP address blocks: 220.210.100.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1217 (0x4c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jul 27 16:48:14 2023 GMT Not After : Jul 14 01:30:03 2024 GMT Subject: CN=05618BA791A54BB5E130A03A3E2F1D2DCDBB6DAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ec:ef:08:08:a9:e7:7e:75:1e:2e:2d:c0:cf: b3:f4:12:2d:6f:ad:0a:88:d9:13:12:96:da:3d:b5: 45:19:38:1a:c7:64:5a:f1:b1:c5:2a:d9:16:28:87: 65:a2:be:e4:10:ff:28:be:f6:27:3f:af:ef:23:bc: d4:b6:97:e0:bb:ae:6d:81:5f:a2:c1:a2:be:4c:33: 28:8a:7d:60:bc:f5:a5:20:c1:59:99:fb:5c:2b:69: 6c:95:72:84:c1:bc:ed:52:16:f9:22:3a:bc:be:af: e8:67:a3:6e:8e:06:da:a8:c7:3f:19:15:ed:de:c4: d9:42:d5:47:c9:62:4c:0c:8a:e6:6a:52:1b:af:d7: ba:1b:2b:82:67:35:b1:63:ba:cf:08:aa:3b:d5:cf: 16:a8:16:4a:22:03:ec:8c:e7:40:c1:b2:60:48:86: 7f:ab:3a:67:52:c0:79:99:27:ee:9e:ec:8e:41:b6: 7b:d6:3c:0d:43:92:58:68:4f:62:f6:10:da:ee:16: 03:17:54:48:91:1f:53:e1:4a:e0:17:f8:45:cd:2e: 70:bd:ad:89:75:fd:72:60:b5:de:17:f0:a9:78:b8: 36:28:b9:6c:1b:48:2b:84:04:0d:d3:5d:fa:9e:75: d3:a0:8b:cc:2d:04:d3:81:28:fa:93:dd:bc:7a:b5: 99:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:61:8B:A7:91:A5:4B:B5:E1:30:A0:3A:3E:2F:1D:2D:CD:BB:6D:AF X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BWGLp5GlS7XhMKA6Pi8dLc27ba8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.100.0/22 Signature Algorithm: sha256WithRSAEncryption 2e:39:2c:c7:32:55:d8:3f:3b:4b:d8:ac:06:38:68:9b:65:d3: 4c:91:3b:44:b8:a6:7e:b1:53:29:ee:23:2b:a7:e3:40:42:47: 70:28:68:2e:12:26:12:e9:c1:ca:43:19:91:b3:30:70:3c:9e: 06:b9:1d:ee:a1:4f:8a:f4:57:dc:41:4f:58:87:a9:79:bb:70: 5b:87:e7:a9:32:c6:5d:1e:10:4b:da:4e:1f:8f:74:9d:82:c1: 5a:54:d1:91:3c:ce:9c:3d:9f:ef:e9:65:29:24:19:ef:77:04: fc:3e:8a:44:52:c2:53:b9:9a:03:4c:47:bf:dd:4f:58:47:43: e3:82:73:70:fd:7c:38:bc:60:e2:32:19:66:25:17:d4:a4:20: 08:c8:55:ca:db:16:ce:5e:d0:4a:e9:e7:8e:8d:7e:1b:42:f5: 75:ab:d1:61:df:15:ea:3e:8e:ca:d3:da:b1:fd:b9:7b:1f:35: 10:ef:e5:5a:3a:1c:76:d1:0d:44:c0:59:ce:46:3e:93:8f:36: d0:65:c7:99:3e:fd:fc:98:2b:34:7c:9b:ae:99:8c:71:5f:b6: 9c:b7:f1:50:cd:96:d1:0c:1a:cb:69:38:23:ff:97:34:5b:9e: 71:8a:16:26:70:06:24:36:32:8d:05:45:3c:5c:9e:fd:53:06: 5d:3d:50:b9 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBMEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA3Mjcx NjQ4MTRaFw0yNDA3MTQwMTMwMDNaMDMxMTAvBgNVBAMTKDA1NjE4QkE3OTFBNTRC QjVFMTMwQTAzQTNFMkYxRDJEQ0RCQjZEQUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDF7O8ICKnnfnUeLi3Az7P0Ei1vrQqI2RMSlto9tUUZOBrHZFrx scUq2RYoh2WivuQQ/yi+9ic/r+8jvNS2l+C7rm2BX6LBor5MMyiKfWC89aUgwVmZ +1wraWyVcoTBvO1SFvkiOry+r+hno26OBtqoxz8ZFe3exNlC1UfJYkwMiuZqUhuv 17obK4JnNbFjus8IqjvVzxaoFkoiA+yM50DBsmBIhn+rOmdSwHmZJ+6e7I5BtnvW PA1DklhoT2L2ENruFgMXVEiRH1PhSuAX+EXNLnC9rYl1/XJgtd4X8Kl4uDYouWwb SCuEBA3TXfqeddOgi8wtBNOBKPqT3bx6tZmfAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUBWGLp5GlS7XhMKA6Pi8dLc27ba8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0JXR0xwNUdsUzdYaE1LQTZQaThkTGMyN2JhOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALc0mQwDQYJKoZIhvcNAQELBQADggEBAC45LMcyVdg/O0vYrAY4aJtl00yR O0S4pn6xUynuIyun40BCR3AoaC4SJhLpwcpDGZGzMHA8nga5He6hT4r0V9xBT1iH qXm7cFuH56kyxl0eEEvaTh+PdJ2CwVpU0ZE8zpw9n+/pZSkkGe93BPw+ikRSwlO5 mgNMR7/dT1hHQ+OCc3D9fDi8YOIyGWYlF9SkIAjIVcrbFs5e0Erp546NfhtC9XWr 0WHfFeo+jsrT2rH9uXsfNRDv5Vo6HHbRDUTAWc5GPpOPNtBlx5k+/fyYKzR8m66Z jHFftpy38VDNltEMGstpOCP/lzRbnnGKFiZwBiQ2Mo0FRTxcnv1TBl09ULk= -----END CERTIFICATE-----Generated at Sat Jun 1 15:54:29 2024 by rpki-client on console-ams.rpki-client.org