$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/CI7dB0XJgYLYIlTDBeHGALK4vOo.roa File: CI7dB0XJgYLYIlTDBeHGALK4vOo.roa (raw, json) Hash identifier: QR46li1qeGXSzkDkP+/0exgUbdpyfqpdwhwGCBjI4Z0= Subject key identifier: 08:8E:DD:07:45:C9:81:82:D8:22:54:C3:05:E1:C6:00:B2:B8:BC:EA Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 025D Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CI7dB0XJgYLYIlTDBeHGALK4vOo.roa Signing time: Tue 30 May 2023 16:34:12 +0000 ROA not before: Tue 30 May 2023 16:34:12 +0000 ROA not after: Tue 14 May 2024 01:30:02 +0000 asID: 9605 IP address blocks: 1.74.192.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 13:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 605 (0x25d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: May 30 16:34:12 2023 GMT Not After : May 14 01:30:02 2024 GMT Subject: CN=088EDD0745C98182D82254C305E1C600B2B8BCEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a4:16:ad:bf:07:1c:d5:88:41:7f:c5:7b:98: d4:34:bb:bf:51:5f:a2:0a:9b:96:66:1c:a3:a1:89: 53:ba:ad:37:77:c0:1e:4c:ec:6e:9c:82:db:cc:d3: bf:5a:bd:2c:e7:25:bc:07:9c:6c:4b:29:b2:61:0f: 27:a1:b3:d4:8e:4a:ef:9c:34:35:4c:74:56:30:23: 13:73:7b:c4:82:bf:4d:f5:06:e8:b8:bd:0c:31:48: fb:ac:0b:92:11:ff:f2:9a:a0:e2:ed:c6:70:ea:9d: 7a:d8:24:e4:9d:cb:eb:b6:67:ed:5c:2a:56:21:be: 20:0d:2a:5f:30:d7:b3:c7:d3:4b:c1:57:6e:a1:67: 4a:f2:bc:9f:91:8a:15:eb:e3:a0:9f:1f:f9:d9:aa: 84:ab:fd:8f:8d:b8:d6:01:27:fb:74:f0:8f:98:d9: 0e:e9:97:8c:45:ac:51:5e:55:dd:e0:57:04:a7:5e: 70:a0:ed:94:e8:c6:0a:8a:53:83:46:17:67:5c:ad: 86:df:d5:17:88:4e:9f:05:89:6b:f5:31:a9:49:2d: 11:c1:73:74:a7:9b:a0:5a:5c:c5:bb:6c:0f:b5:60: 37:6e:4a:55:79:0d:4b:00:91:76:65:26:71:4f:00: 07:11:28:b7:f1:b4:0a:7c:92:56:be:b9:27:c1:e7: 06:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:8E:DD:07:45:C9:81:82:D8:22:54:C3:05:E1:C6:00:B2:B8:BC:EA X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CI7dB0XJgYLYIlTDBeHGALK4vOo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.74.192.0/23 Signature Algorithm: sha256WithRSAEncryption 01:1b:c4:35:d3:ce:4f:7d:8a:99:0b:32:73:fd:64:18:92:40: 20:20:d0:22:a5:5e:4c:1b:a7:e4:39:6d:02:9c:e8:93:01:16: 12:1e:3a:4f:42:d2:5e:cb:2f:f8:0a:59:25:da:9e:df:34:16: 1c:87:11:c2:1c:5e:b1:a2:13:a3:67:1d:e5:5e:be:17:c3:e6: 9f:96:47:b9:eb:bf:38:0f:b4:cf:0b:ea:34:34:ae:5f:ec:fe: 47:cc:8c:8a:d3:91:89:ee:b3:50:94:50:a5:5e:3f:9a:4c:97: 9a:60:d0:3e:e7:93:74:79:ab:f2:cb:0a:66:d4:ac:62:80:5d: 7d:09:7b:5d:71:10:bd:99:3c:4d:b9:0c:15:66:00:4c:d1:bd: 4d:55:c0:c1:60:60:06:b4:c0:a0:e2:b4:49:66:d5:5c:fc:7d: ea:4e:6d:03:3e:75:0c:64:0b:6c:bc:ce:62:1b:48:ac:55:3e: 86:12:8d:e1:5d:5b:21:7a:74:e1:42:23:f4:48:f4:88:00:4b: 65:d8:d4:af:00:7d:6f:6a:d2:e8:ad:64:8c:09:1c:97:21:8a: 35:0b:28:a4:69:b4:ad:aa:53:3a:28:9c:8d:05:75:91:25:92: af:97:86:89:ed:41:a8:92:8b:f2:2b:84:13:55:76:fe:20:fc: 2b:aa:56:21 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAl0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MzAx NjM0MTJaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDA4OEVERDA3NDVDOTgx ODJEODIyNTRDMzA1RTFDNjAwQjJCOEJDRUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6pBatvwcc1YhBf8V7mNQ0u79RX6IKm5ZmHKOhiVO6rTd3wB5M 7G6cgtvM079avSznJbwHnGxLKbJhDyehs9SOSu+cNDVMdFYwIxNze8SCv031Bui4 vQwxSPusC5IR//KaoOLtxnDqnXrYJOSdy+u2Z+1cKlYhviANKl8w17PH00vBV26h Z0ryvJ+RihXr46CfH/nZqoSr/Y+NuNYBJ/t08I+Y2Q7pl4xFrFFeVd3gVwSnXnCg 7ZToxgqKU4NGF2dcrYbf1ReITp8FiWv1MalJLRHBc3Snm6BaXMW7bA+1YDduSlV5 DUsAkXZlJnFPAAcRKLfxtAp8kla+uSfB5wYpAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUCI7dB0XJgYLYIlTDBeHGALK4vOowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0NJN2RCMFhKZ1lMWUlsVERCZUhHQUxLNHZPby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBSsAwDQYJKoZIhvcNAQELBQADggEBAAEbxDXTzk99ipkLMnP9ZBiSQCAg 0CKlXkwbp+Q5bQKc6JMBFhIeOk9C0l7LL/gKWSXant80FhyHEcIcXrGiE6NnHeVe vhfD5p+WR7nrvzgPtM8L6jQ0rl/s/kfMjIrTkYnus1CUUKVeP5pMl5pg0D7nk3R5 q/LLCmbUrGKAXX0Je11xEL2ZPE25DBVmAEzRvU1VwMFgYAa0wKDitElm1Vz8fepO bQM+dQxkC2y8zmIbSKxVPoYSjeFdWyF6dOFCI/RI9IgAS2XY1K8AfW9q0uitZIwJ HJchijULKKRptK2qUzoonI0FdZElkq+XhontQaiSi/IrhBNVdv4g/CuqViE= -----END CERTIFICATE-----Generated at Sat Apr 27 10:15:55 2024 by rpki-client on console-ams.rpki-client.org