$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/BwgG8O97V39k46kYkM2oFUZHg0Y.roa File: BwgG8O97V39k46kYkM2oFUZHg0Y.roa (raw, json) Hash identifier: WJvSLv29llNYyuW5kKsccoqyjqvrv2gQ+RnMlx/ktuk= Subject key identifier: 07:08:06:F0:EF:7B:57:7F:64:E3:A9:18:90:CD:A8:15:46:47:83:46 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 075B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BwgG8O97V39k46kYkM2oFUZHg0Y.roa Signing time: Tue 30 Apr 2024 02:01:37 +0000 ROA not before: Tue 30 Apr 2024 02:01:37 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.68.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1883 (0x75b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:01:37 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=070806F0EF7B577F64E3A91890CDA81546478346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:53:41:07:21:55:6d:f0:b6:38:45:35:03:60: a1:e5:ec:17:b2:d5:bb:69:14:93:2b:60:8d:30:57: 38:62:15:e5:95:21:c0:e4:d3:fc:0f:10:fc:d7:00: ec:e0:1d:a8:7f:0a:42:74:58:8f:25:d7:d3:82:f7: 2f:99:ce:4c:b4:db:08:a3:d2:de:5b:5a:96:38:f6: 66:07:b2:2b:04:57:dd:ac:70:66:99:ff:41:12:95: 60:5d:5a:e4:4e:77:84:60:4f:d9:e4:89:61:f7:fd: 80:b5:61:ad:a7:8a:7e:cf:1e:56:7a:b5:06:c7:d5: 98:41:b3:56:93:54:d7:0d:17:73:ee:d2:0f:cf:74: 9b:76:81:81:a0:8c:a2:e9:bd:65:f6:ee:24:79:ee: 67:a6:c3:cb:66:79:8f:c5:62:58:c1:db:f2:5a:99: 7c:10:14:dc:56:f8:f7:ee:37:0e:9e:20:bc:de:a0: e9:d8:0e:b0:58:2c:18:0e:1d:f2:9d:a6:c1:4f:47: 2b:cc:0b:17:b7:51:ba:bc:b7:04:1b:a7:e5:2c:f0: 0a:a1:91:e7:86:0e:1b:5b:3d:12:40:1e:5d:5b:2e: f5:03:7f:0c:55:1b:71:ca:d0:49:8d:96:1e:83:42: cf:88:e5:e6:e5:5d:4a:39:e4:b7:60:8a:f5:08:24: 01:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:08:06:F0:EF:7B:57:7F:64:E3:A9:18:90:CD:A8:15:46:47:83:46 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BwgG8O97V39k46kYkM2oFUZHg0Y.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.68.0/22 Signature Algorithm: sha256WithRSAEncryption df:8a:8f:ff:fb:83:59:b3:61:be:33:5b:06:12:6a:bc:58:b6: 82:b7:f7:93:ba:de:63:1e:f4:b8:0d:70:b9:a2:e1:f2:79:fb: 45:ce:a9:e8:85:75:b2:85:37:84:01:30:d7:4b:ce:e2:ee:85: 3e:4d:38:27:08:fb:4a:5e:b4:1d:a5:aa:fa:4c:d2:20:83:c0: 85:30:a4:3d:f3:32:a3:f2:5f:44:d5:cc:ea:45:26:45:7e:52: 61:91:4b:42:74:af:28:d9:78:c8:bc:a4:2a:b8:23:88:1b:8b: 2c:bc:c4:4e:0b:25:12:b7:3c:fa:ad:da:3b:86:bf:ce:ee:5c: 8a:5c:84:8d:34:1f:b9:cd:07:8d:2c:7b:ab:0e:08:c7:9c:6e: a9:09:b6:17:43:88:3f:f2:bc:51:e6:4f:5d:cf:09:b6:ab:0f: 34:e8:76:21:44:1a:a6:3f:5a:07:d9:10:bf:28:b8:15:ef:dc: ac:5e:40:d1:37:4b:13:bf:67:d9:38:a1:e3:82:1b:b4:f7:75: e2:82:3b:89:55:22:c0:4b:a8:1b:d2:27:fa:7b:df:79:3f:6a: bf:58:70:7d:52:44:2c:74:fb:cc:f6:22:0c:cd:18:c2:77:d9: b9:d1:0d:66:ef:01:85:9b:78:72:2f:b1:38:41:c5:7d:ef:b3: 4a:3c:b3:f8 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICB1swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjAxMzdaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDA3MDgwNkYwRUY3QjU3 N0Y2NEUzQTkxODkwQ0RBODE1NDY0NzgzNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDfU0EHIVVt8LY4RTUDYKHl7Bey1btpFJMrYI0wVzhiFeWVIcDk 0/wPEPzXAOzgHah/CkJ0WI8l19OC9y+Zzky02wij0t5bWpY49mYHsisEV92scGaZ /0ESlWBdWuROd4RgT9nkiWH3/YC1Ya2nin7PHlZ6tQbH1ZhBs1aTVNcNF3Pu0g/P dJt2gYGgjKLpvWX27iR57memw8tmeY/FYljB2/JamXwQFNxW+PfuNw6eILzeoOnY DrBYLBgOHfKdpsFPRyvMCxe3Ubq8twQbp+Us8AqhkeeGDhtbPRJAHl1bLvUDfwxV G3HK0EmNlh6DQs+I5eblXUo55LdgivUIJAF1AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUBwgG8O97V39k46kYkM2oFUZHg0YwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0J3Z0c4Tzk3VjM5azQ2a1lrTTJvRlVaSGcwWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYkQwDQYJKoZIhvcNAQELBQADggEBAN+Kj//7g1mzYb4zWwYSarxYtoK3 95O63mMe9LgNcLmi4fJ5+0XOqeiFdbKFN4QBMNdLzuLuhT5NOCcI+0petB2lqvpM 0iCDwIUwpD3zMqPyX0TVzOpFJkV+UmGRS0J0ryjZeMi8pCq4I4gbiyy8xE4LJRK3 PPqt2juGv87uXIpchI00H7nNB40se6sOCMecbqkJthdDiD/yvFHmT13PCbarDzTo diFEGqY/WgfZEL8ouBXv3KxeQNE3SxO/Z9k4oeOCG7T3deKCO4lVIsBLqBvSJ/p7 33k/ar9YcH1SRCx0+8z2IgzNGMJ32bnRDWbvAYWbeHIvsThBxX3vs0o8s/g= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:39 2024 by rpki-client on console-ams.rpki-client.org