$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/CX3rZ5GqD4lvHYuCm31y4CxDIJU.roa File: CX3rZ5GqD4lvHYuCm31y4CxDIJU.roa (raw, json) Hash identifier: +xc72hWC66PaPTtwvayCneZUOlk+nITRzybNPjMLuWA= Subject key identifier: 09:7D:EB:67:91:AA:0F:89:6F:1D:8B:82:9B:7D:72:E0:2C:43:20:95 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0204 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CX3rZ5GqD4lvHYuCm31y4CxDIJU.roa Signing time: Tue 30 May 2023 16:29:27 +0000 ROA not before: Tue 30 May 2023 16:29:27 +0000 ROA not after: Tue 14 May 2024 01:30:02 +0000 asID: 9605 IP address blocks: 220.159.224.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 13:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 516 (0x204) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: May 30 16:29:27 2023 GMT Not After : May 14 01:30:02 2024 GMT Subject: CN=097DEB6791AA0F896F1D8B829B7D72E02C432095 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:70:39:0a:fa:d8:7e:d1:df:1c:1b:5f:cd:74: c2:b9:28:04:f8:57:5c:88:d6:13:06:ea:df:d5:3a: 89:d7:97:8b:a2:f2:12:48:1f:85:61:d1:69:fd:49: 39:90:50:45:b0:b2:01:03:a7:6c:1e:7a:3d:9d:15: 69:68:2d:1d:5c:14:e0:63:66:ff:e6:92:8f:40:18: a7:53:2b:75:9e:37:ee:a3:06:53:11:a6:60:c0:08: 94:68:83:d0:5f:ed:a2:57:fd:d1:62:7f:ee:30:a4: d8:eb:df:ac:d8:2b:91:fe:7d:b4:3e:75:a9:b4:69: 9b:cb:53:f0:85:c9:e7:68:93:48:7e:13:47:ec:d3: 3d:e3:d5:ad:d8:a4:a1:3c:34:fb:b2:fa:51:e5:a4: e1:f9:54:0e:d3:6a:0b:7f:f2:95:74:d7:7b:78:1b: c8:27:03:92:42:77:ff:c9:77:84:f7:45:79:00:55: c3:f9:5b:1d:d4:1c:cc:1f:e5:17:95:c2:ed:66:b8: 7a:5d:13:2a:30:6c:06:2c:c0:8e:c1:37:f5:12:66: 3b:62:48:53:89:57:6a:c4:de:fe:32:f2:ab:d3:a1: ad:74:86:bf:59:d4:9d:ba:43:9b:af:c5:02:ab:76: 46:dd:7b:5e:44:8c:01:b8:d4:b6:bc:7f:be:bc:89: 5b:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:7D:EB:67:91:AA:0F:89:6F:1D:8B:82:9B:7D:72:E0:2C:43:20:95 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CX3rZ5GqD4lvHYuCm31y4CxDIJU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.224.0/22 Signature Algorithm: sha256WithRSAEncryption 0d:a5:05:eb:27:bd:99:49:ca:5d:be:69:c6:38:44:63:9d:5b: 30:82:36:52:28:ca:3f:84:69:ef:de:fc:df:21:93:08:14:5c: 36:92:5d:d2:7b:10:e8:f4:28:48:8f:1c:d2:cc:60:5a:43:3a: b6:e5:b4:a6:2d:fd:1b:61:f3:c6:92:cb:60:be:05:f7:06:e0: 85:27:40:0c:d4:49:98:25:20:ea:36:88:b3:d3:50:4d:d7:cf: bb:55:de:4b:b3:de:be:c2:93:db:f8:f5:ea:0f:7b:e3:60:5c: 08:80:e3:23:ad:1f:8e:a5:d2:1d:65:82:93:24:17:34:70:14: 03:fb:b8:32:b1:ab:34:59:45:4e:c7:52:cb:45:db:b3:e3:69: bb:dc:ba:68:31:6f:18:d5:d8:92:76:39:a5:0d:de:5e:a2:57: b6:40:80:b3:a3:be:c1:3d:49:80:07:b1:60:3a:5e:b7:78:b3: 7d:cc:a9:07:6f:80:ac:ed:4f:3c:7d:07:13:ef:ec:fc:ea:f4: bf:30:73:79:0d:81:ad:85:40:99:81:f2:0b:96:c9:a9:87:f0: 86:a7:8b:99:fd:db:13:db:0f:d9:a5:c3:64:94:30:ec:a0:e2: 8f:d0:50:ea:cb:9c:4d:57:3c:27:4d:64:bb:8d:70:78:fe:a0: 6d:90:28:14 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAgQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MzAx NjI5MjdaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDA5N0RFQjY3OTFBQTBG ODk2RjFEOEI4MjlCN0Q3MkUwMkM0MzIwOTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0cDkK+th+0d8cG1/NdMK5KAT4V1yI1hMG6t/VOonXl4ui8hJI H4Vh0Wn9STmQUEWwsgEDp2weej2dFWloLR1cFOBjZv/mko9AGKdTK3WeN+6jBlMR pmDACJRog9Bf7aJX/dFif+4wpNjr36zYK5H+fbQ+dam0aZvLU/CFyedok0h+E0fs 0z3j1a3YpKE8NPuy+lHlpOH5VA7Tagt/8pV013t4G8gnA5JCd//Jd4T3RXkAVcP5 Wx3UHMwf5ReVwu1muHpdEyowbAYswI7BN/USZjtiSFOJV2rE3v4y8qvToa10hr9Z 1J26Q5uvxQKrdkbde15EjAG41La8f768iVvZAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUCX3rZ5GqD4lvHYuCm31y4CxDIJUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0NYM3JaNUdxRDRsdkhZdUNtMzF5NEN4RElKVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALcn+AwDQYJKoZIhvcNAQELBQADggEBAA2lBesnvZlJyl2+acY4RGOdWzCC NlIoyj+Eae/e/N8hkwgUXDaSXdJ7EOj0KEiPHNLMYFpDOrbltKYt/Rth88aSy2C+ BfcG4IUnQAzUSZglIOo2iLPTUE3Xz7tV3kuz3r7Ck9v49eoPe+NgXAiA4yOtH46l 0h1lgpMkFzRwFAP7uDKxqzRZRU7HUstF27PjabvcumgxbxjV2JJ2OaUN3l6iV7ZA gLOjvsE9SYAHsWA6Xrd4s33MqQdvgKztTzx9BxPv7Pzq9L8wc3kNga2FQJmB8guW yamH8Iani5n92xPbD9mlw2SUMOyg4o/QUOrLnE1XPCdNZLuNcHj+oG2QKBQ= -----END CERTIFICATE-----Generated at Sat Apr 27 10:15:55 2024 by rpki-client on console-ams.rpki-client.org