$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/BiHZ28VemaMOQmUIQnPBmw3uJw0.roa File: BiHZ28VemaMOQmUIQnPBmw3uJw0.roa (raw, json) Hash identifier: bQC+amcBJuPnj5GcdexGOv76aYTm9nwzHk6t0+uCnCM= Subject key identifier: 06:21:D9:DB:C5:5E:99:A3:0E:42:65:08:42:73:C1:9B:0D:EE:27:0D Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 01CE Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BiHZ28VemaMOQmUIQnPBmw3uJw0.roa Signing time: Wed 24 May 2023 16:40:33 +0000 ROA not before: Wed 24 May 2023 16:40:33 +0000 ROA not after: Tue 14 May 2024 01:30:02 +0000 asID: 9605 IP address blocks: 1.75.196.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 13:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 462 (0x1ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: May 24 16:40:33 2023 GMT Not After : May 14 01:30:02 2024 GMT Subject: CN=0621D9DBC55E99A30E4265084273C19B0DEE270D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:32:4a:0f:09:58:a0:10:64:87:db:01:35:cd: 20:a5:ec:21:b8:c4:eb:ce:1e:ac:b0:00:eb:93:03: 8b:26:9d:90:05:7c:8b:17:da:bf:d7:60:2d:7f:3d: 69:f6:2d:25:3d:83:f6:08:a4:c3:ad:a9:8b:d7:a1: 28:03:fb:7d:52:d9:6e:25:24:78:3c:56:07:5f:36: ec:e1:8c:48:6c:04:26:d7:aa:29:7f:00:de:5b:64: bc:b1:63:58:2a:6e:45:a1:51:79:38:c2:48:c6:5f: 8f:b8:00:43:b4:9f:d8:3a:4c:aa:38:89:25:7f:58: 4f:2f:73:d3:16:d6:62:a1:50:c6:93:68:b2:f0:d2: d2:a1:73:76:cf:ba:60:3c:2b:1a:69:e6:55:74:61: 4f:4f:46:84:cc:28:23:c1:93:df:9c:1d:a0:2f:c5: c7:82:3a:11:04:a2:b8:85:3e:41:e6:b4:b5:e9:9e: c4:24:2a:d1:54:49:59:f0:d9:33:0e:1b:63:cb:06: fd:b1:f3:3a:80:6d:e6:1e:98:fd:1e:f9:de:a7:d9: 67:d9:a4:0c:50:1f:4a:ba:6d:2b:c9:c1:69:dd:5b: e5:69:4c:08:5f:c8:c4:f9:c5:31:f3:74:43:98:be: d8:d8:e3:67:dd:2d:84:18:d3:dc:16:f8:7c:3b:ac: cc:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:21:D9:DB:C5:5E:99:A3:0E:42:65:08:42:73:C1:9B:0D:EE:27:0D X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BiHZ28VemaMOQmUIQnPBmw3uJw0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.196.0/22 Signature Algorithm: sha256WithRSAEncryption b1:13:d9:1b:7e:21:35:1f:3e:7b:bc:39:2f:15:28:0e:6c:2e: 42:cf:13:fa:59:db:b9:e8:57:76:67:aa:38:7e:7b:8f:23:98: 63:da:b5:3d:e7:47:8f:a0:ea:ee:78:93:73:5d:c9:7c:40:20: ce:18:07:2f:66:fd:7b:9e:1c:54:7b:26:0f:8c:91:29:02:65: f2:c9:61:f5:e6:38:38:64:5b:4f:06:d3:93:ec:30:58:69:39: e9:f7:28:3a:e7:20:ae:66:25:14:fb:95:11:f3:63:c0:b1:fd: 51:b0:39:f3:47:ed:8c:54:20:94:ab:5b:86:d8:05:f2:a8:fc: 1e:b1:bb:ce:5e:22:df:34:82:b1:88:27:5c:a0:9a:cf:86:86: b7:07:26:9b:33:fd:4e:9b:fb:9d:fa:d2:86:a7:80:dc:f4:a8: c6:4e:b7:f3:95:fe:c9:01:18:0b:54:f5:02:59:f5:cb:d4:4c: e4:4d:61:b6:88:ef:29:31:1f:ea:cc:ca:75:af:0d:4d:1a:b4: 52:7f:d6:f2:ee:e2:74:92:64:dc:12:e9:97:57:8c:93:09:34: c8:0a:52:3e:d7:04:f9:08:3c:df:a1:89:71:b2:b7:31:42:bb: 27:f6:b4:00:a5:8a:82:cd:61:2d:81:a2:98:d0:25:f1:b9:37: d9:a6:ea:3e -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAc4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MjQx NjQwMzNaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDA2MjFEOURCQzU1RTk5 QTMwRTQyNjUwODQyNzNDMTlCMERFRTI3MEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/MkoPCVigEGSH2wE1zSCl7CG4xOvOHqywAOuTA4smnZAFfIsX 2r/XYC1/PWn2LSU9g/YIpMOtqYvXoSgD+31S2W4lJHg8VgdfNuzhjEhsBCbXqil/ AN5bZLyxY1gqbkWhUXk4wkjGX4+4AEO0n9g6TKo4iSV/WE8vc9MW1mKhUMaTaLLw 0tKhc3bPumA8Kxpp5lV0YU9PRoTMKCPBk9+cHaAvxceCOhEEoriFPkHmtLXpnsQk KtFUSVnw2TMOG2PLBv2x8zqAbeYemP0e+d6n2WfZpAxQH0q6bSvJwWndW+VpTAhf yMT5xTHzdEOYvtjY42fdLYQY09wW+Hw7rMwrAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUBiHZ28VemaMOQmUIQnPBmw3uJw0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0JpSFoyOFZlbWFNT1FtVUlRblBCbXczdUp3MC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBS8QwDQYJKoZIhvcNAQELBQADggEBALET2Rt+ITUfPnu8OS8VKA5sLkLP E/pZ27noV3Znqjh+e48jmGPatT3nR4+g6u54k3NdyXxAIM4YBy9m/XueHFR7Jg+M kSkCZfLJYfXmODhkW08G05PsMFhpOen3KDrnIK5mJRT7lRHzY8Cx/VGwOfNH7YxU IJSrW4bYBfKo/B6xu85eIt80grGIJ1ygms+GhrcHJpsz/U6b+5360oangNz0qMZO t/OV/skBGAtU9QJZ9cvUTORNYbaI7ykxH+rMynWvDU0atFJ/1vLu4nSSZNwS6ZdX jJMJNMgKUj7XBPkIPN+hiXGytzFCuyf2tAClioLNYS2BopjQJfG5N9mm6j4= -----END CERTIFICATE-----Generated at Sat Apr 27 10:15:55 2024 by rpki-client on console-ams.rpki-client.org