$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/CJ3OdK5AiVajVhgS3033Y2RVImY.roa File: CJ3OdK5AiVajVhgS3033Y2RVImY.roa (raw, json) Hash identifier: q9xcABpHzT+viPAuMQblNj5I2V5gtWVzLSX0dePUQ1c= Subject key identifier: 08:9D:CE:74:AE:40:89:56:A3:56:18:12:DF:4D:F7:63:64:55:22:66 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0918 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CJ3OdK5AiVajVhgS3033Y2RVImY.roa Signing time: Tue 30 Apr 2024 02:28:47 +0000 ROA not before: Tue 30 Apr 2024 02:28:47 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.108.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2328 (0x918) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:28:47 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=089DCE74AE408956A3561812DF4DF76364552266 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:e2:93:75:82:7e:8d:ed:65:53:4d:73:85:da: 34:87:0d:e8:4a:9a:ba:99:5c:2c:be:6e:81:7b:ef: 21:78:85:66:29:1b:ff:2e:61:02:fd:97:3c:12:21: c7:06:88:ad:73:67:81:14:ab:dc:74:b2:7d:fe:c5: 2e:10:dd:36:49:b5:14:3a:fb:45:55:35:77:55:68: 06:d2:4f:3d:4d:78:45:3c:9b:97:22:02:26:b6:4f: c8:3c:d2:c2:b7:0e:5c:68:a7:94:47:99:18:d9:8b: 02:64:ae:90:17:ba:a7:31:e9:29:91:2a:66:c8:b8: 69:44:f3:5f:5b:ca:7b:52:db:ed:56:a0:d2:19:3b: bd:d6:0c:02:0d:a3:65:60:6b:16:7c:6c:c5:07:9f: 5f:c5:19:fb:9d:62:78:70:46:ab:3a:19:85:d9:5c: 6e:e9:b6:2f:9f:31:46:8a:1a:7e:d8:03:c2:e3:51: 2f:8e:44:c3:cc:22:68:89:2b:79:9a:a3:37:2c:dd: bd:e2:76:cc:87:f6:14:b2:63:db:1b:88:20:7f:24: df:60:bc:01:95:8c:95:37:f2:d1:d9:c1:d7:b2:6c: 30:67:03:3e:d2:45:e3:a8:39:1d:1a:8e:eb:20:76: 83:68:3c:7c:2b:0e:91:2d:01:d2:af:09:a8:ad:bf: fe:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:9D:CE:74:AE:40:89:56:A3:56:18:12:DF:4D:F7:63:64:55:22:66 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CJ3OdK5AiVajVhgS3033Y2RVImY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.108.0.0/17 Signature Algorithm: sha256WithRSAEncryption ca:d2:15:81:86:2f:6c:e0:bf:62:6b:6e:cf:9e:5b:20:0a:c9: c4:f3:93:2d:6d:01:e1:ab:1a:46:8d:a5:04:24:28:50:c3:cd: 61:a4:ca:02:ed:ad:06:7b:d7:32:99:f3:3e:52:26:cd:b9:9a: bd:d5:c0:86:31:b9:5c:df:8f:e1:0c:22:51:fb:05:c9:2c:e7: 59:09:86:20:90:67:6f:5d:0a:bf:54:fd:ce:62:69:59:75:d7: 9c:41:56:00:47:3f:08:e5:85:2a:26:7f:e2:6f:36:63:72:ef: 95:4b:cd:f5:06:45:a0:87:ef:86:c4:61:49:db:d1:66:7e:91: 7f:14:7d:af:45:42:1e:3c:16:84:74:78:a7:5d:9c:d5:75:11: 21:6a:fb:92:18:1a:1e:da:e6:b7:a7:0b:32:59:38:f4:ab:f7: 06:94:41:c1:9e:a9:48:87:df:9d:8f:2c:4f:e2:80:b9:58:4f: fa:fa:6a:52:9f:16:10:9f:00:71:45:42:21:e6:60:17:1d:54: 4d:90:b7:d7:92:6d:25:53:8e:bf:69:e1:a2:70:09:90:c2:84: 72:cf:d4:b4:f1:63:91:7d:a9:74:cc:b9:9c:fd:b6:b2:8e:b1: 13:2d:c7:de:9d:64:57:f6:55:70:6e:78:6c:98:75:1b:08:f4: f2:07:7e:1a -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCRgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjI4NDdaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDA4OURDRTc0QUU0MDg5 NTZBMzU2MTgxMkRGNERGNzYzNjQ1NTIyNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCW4pN1gn6N7WVTTXOF2jSHDehKmrqZXCy+boF77yF4hWYpG/8u YQL9lzwSIccGiK1zZ4EUq9x0sn3+xS4Q3TZJtRQ6+0VVNXdVaAbSTz1NeEU8m5ci Aia2T8g80sK3Dlxop5RHmRjZiwJkrpAXuqcx6SmRKmbIuGlE819byntS2+1WoNIZ O73WDAINo2VgaxZ8bMUHn1/FGfudYnhwRqs6GYXZXG7pti+fMUaKGn7YA8LjUS+O RMPMImiJK3maozcs3b3idsyH9hSyY9sbiCB/JN9gvAGVjJU38tHZwdeybDBnAz7S ReOoOR0ajusgdoNoPHwrDpEtAdKvCaitv/7ZAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUCJ3OdK5AiVajVhgS3033Y2RVImYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0NKM09kSzVBaVZhalZoZ1MzMDMzWTJSVkltWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcxbAAwDQYJKoZIhvcNAQELBQADggEBAMrSFYGGL2zgv2Jrbs+eWyAKycTz ky1tAeGrGkaNpQQkKFDDzWGkygLtrQZ71zKZ8z5SJs25mr3VwIYxuVzfj+EMIlH7 Bcks51kJhiCQZ29dCr9U/c5iaVl115xBVgBHPwjlhSomf+JvNmNy75VLzfUGRaCH 74bEYUnb0WZ+kX8Ufa9FQh48FoR0eKddnNV1ESFq+5IYGh7a5renCzJZOPSr9waU QcGeqUiH352PLE/igLlYT/r6alKfFhCfAHFFQiHmYBcdVE2Qt9eSbSVTjr9p4aJw CZDChHLP1LTxY5F9qXTMuZz9trKOsRMtx96dZFf2VXBueGyYdRsI9PIHfho= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:39 2024 by rpki-client on console-ams.rpki-client.org