$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/BfLEwxmXkTHim0kMmO9wqYm-qws.roa File: BfLEwxmXkTHim0kMmO9wqYm-qws.roa (raw, json) Hash identifier: NNFM4XdiMo8YlKX/FehgPD8Kxp0c46DYE5OUkKJt/U8= Subject key identifier: 05:F2:C4:C3:19:97:91:31:E2:9B:49:0C:98:EF:70:A9:89:BE:AB:0B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0639 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BfLEwxmXkTHim0kMmO9wqYm-qws.roa Signing time: Tue 30 Apr 2024 01:31:24 +0000 ROA not before: Tue 30 Apr 2024 01:31:24 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.75.214.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1593 (0x639) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:31:24 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=05F2C4C319979131E29B490C98EF70A989BEAB0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:06:03:e2:02:71:78:d0:ce:59:c9:0e:c7:66: f1:a8:2e:57:1a:4c:0e:da:11:f2:64:fc:73:94:59: cd:ce:9e:fc:37:a7:97:0e:4f:6a:1c:33:52:4d:7a: 6e:81:ee:da:2f:c8:fa:37:6d:ee:6d:50:97:95:6a: 4b:24:e1:cf:e7:54:cd:2b:70:ea:b0:61:86:a2:75: db:a3:b0:09:7a:8d:da:a3:0a:b2:3c:8d:65:97:f9: 43:28:2d:a5:91:9e:48:4d:ca:d6:86:09:23:bf:a5: 0d:dc:5b:8a:5a:fb:cf:fe:0c:7c:e2:f5:6f:5e:dd: db:a7:59:b0:f7:bc:cf:f9:3f:d5:61:f3:cd:0b:fa: e2:49:34:5e:9c:9e:5a:03:5e:9f:af:1a:0e:c3:43: 51:1c:d8:5b:2d:3b:5c:02:34:62:04:40:40:73:b5: bf:11:3e:48:2e:83:42:46:27:39:58:47:e4:16:8d: db:b6:27:ad:dd:e6:2d:be:e7:03:d2:cd:c0:53:51: a7:b5:bb:1d:08:2a:5e:f5:de:fa:c4:7a:5d:35:fc: f6:ab:9a:79:90:5e:b6:57:6d:1a:22:d0:69:39:5c: 67:44:a8:14:f6:3c:87:6f:95:10:f8:aa:7c:06:20: 25:a7:bf:4d:41:75:00:20:e5:a6:c5:07:89:cc:c1: 36:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:F2:C4:C3:19:97:91:31:E2:9B:49:0C:98:EF:70:A9:89:BE:AB:0B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BfLEwxmXkTHim0kMmO9wqYm-qws.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.214.0/23 Signature Algorithm: sha256WithRSAEncryption b6:2d:94:18:f5:2f:cf:aa:83:37:19:6f:7b:da:4f:ae:ef:d7: 65:a0:a1:f1:d7:ff:97:fc:ec:93:c3:28:2c:b9:4d:cd:b9:f5: c8:c4:2e:69:e3:16:e1:86:1a:3a:4e:ea:76:61:39:c9:a0:1a: b2:90:d6:e8:cd:33:af:b5:2b:b0:7d:43:31:bf:1e:20:b0:eb: f4:f2:bc:6c:b2:60:89:a6:c9:cb:fd:1e:fe:c1:0f:b8:82:47: 4c:22:4a:d5:77:50:23:c0:e5:81:2b:31:c8:4a:41:50:ae:5b: 4e:17:78:e8:45:f3:4a:ec:93:14:69:12:f3:af:ab:79:56:1b: 70:07:97:95:6e:e5:d0:34:c9:09:01:1c:ff:b7:02:22:b5:4d: 16:12:f9:77:3d:7e:4a:68:85:82:2f:b7:72:fb:c2:11:05:45: 28:6c:e8:6b:c9:15:62:a3:77:b1:fc:54:d8:d6:4a:d3:cd:91: 70:31:3d:4a:55:4b:8c:17:f5:7a:0b:ec:87:30:78:80:6f:1f: 84:17:b2:47:56:e9:50:7d:13:84:8f:d3:df:8d:5d:91:35:08: 54:c8:3d:81:5f:de:4b:d1:1e:6c:c3:a2:31:27:97:d3:d7:f6: 33:4e:5a:07:eb:68:40:a0:81:d7:db:e5:6d:da:0c:1f:4e:b3: ad:ef:41:32 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBjkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTMxMjRaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDA1RjJDNEMzMTk5Nzkx MzFFMjlCNDkwQzk4RUY3MEE5ODlCRUFCMEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgBgPiAnF40M5ZyQ7HZvGoLlcaTA7aEfJk/HOUWc3Onvw3p5cO T2ocM1JNem6B7tovyPo3be5tUJeVaksk4c/nVM0rcOqwYYaiddujsAl6jdqjCrI8 jWWX+UMoLaWRnkhNytaGCSO/pQ3cW4pa+8/+DHzi9W9e3dunWbD3vM/5P9Vh880L +uJJNF6cnloDXp+vGg7DQ1Ec2FstO1wCNGIEQEBztb8RPkgug0JGJzlYR+QWjdu2 J63d5i2+5wPSzcBTUae1ux0IKl713vrEel01/ParmnmQXrZXbRoi0Gk5XGdEqBT2 PIdvlRD4qnwGICWnv01BdQAg5abFB4nMwTYDAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUBfLEwxmXkTHim0kMmO9wqYm+qwswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0JmTEV3eG1Ya1RIaW0wa01tTzl3cVltLXF3cy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBS9YwDQYJKoZIhvcNAQELBQADggEBALYtlBj1L8+qgzcZb3vaT67v12Wg ofHX/5f87JPDKCy5Tc259cjELmnjFuGGGjpO6nZhOcmgGrKQ1ujNM6+1K7B9QzG/ HiCw6/TyvGyyYImmycv9Hv7BD7iCR0wiStV3UCPA5YErMchKQVCuW04XeOhF80rs kxRpEvOvq3lWG3AHl5Vu5dA0yQkBHP+3AiK1TRYS+Xc9fkpohYIvt3L7whEFRShs 6GvJFWKjd7H8VNjWStPNkXAxPUpVS4wX9XoL7IcweIBvH4QXskdW6VB9E4SP09+N XZE1CFTIPYFf3kvRHmzDojEnl9PX9jNOWgfraECggdfb5W3aDB9Os63vQTI= -----END CERTIFICATE-----Generated at Sat Jun 1 15:54:29 2024 by rpki-client on console-ams.rpki-client.org