$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/CsJBEAPjzbKti-0oFSn4zLh-MRg.roa File: CsJBEAPjzbKti-0oFSn4zLh-MRg.roa (raw, json) Hash identifier: j+NMkCq036Z9naI/n3X0y+qgLfGxu1Ya7TWgL8C7ASY= Subject key identifier: 0A:C2:41:10:03:E3:CD:B2:AD:8B:ED:28:15:29:F8:CC:B8:7E:31:18 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 05CA Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CsJBEAPjzbKti-0oFSn4zLh-MRg.roa Signing time: Thu 29 Feb 2024 01:32:09 +0000 ROA not before: Thu 29 Feb 2024 01:32:09 +0000 ROA not after: Fri 14 Feb 2025 01:30:03 +0000 asID: 9605 IP address blocks: 49.97.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Jun 2024 14:09:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1482 (0x5ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Feb 29 01:32:09 2024 GMT Not After : Feb 14 01:30:03 2025 GMT Subject: CN=0AC2411003E3CDB2AD8BED281529F8CCB87E3118 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:8f:00:5c:48:16:f0:49:62:70:5e:64:bb:15: 80:98:66:fc:17:a3:24:ae:aa:de:0b:65:58:ca:ea: 01:2d:a0:95:bc:55:7b:99:51:f1:90:7e:27:fd:70: 2d:bf:f4:f4:0a:e9:b4:1c:2b:91:cc:a9:b0:d2:0e: 6f:c1:63:74:8f:bf:36:9f:e1:3b:24:92:b9:53:55: 24:c6:d3:71:8a:04:1b:4f:0a:4d:f9:92:eb:d5:9a: 2f:7d:08:0e:dd:1e:26:af:d1:4f:0d:fd:a7:6c:a4: 59:f5:f0:96:b1:14:6c:41:63:02:15:cd:8c:01:51: 5a:34:5c:93:a1:09:c4:48:c0:53:94:de:50:d7:ec: f0:4e:e6:43:96:16:e4:be:65:bc:c4:cb:00:4d:70: 17:16:85:a9:44:ce:3e:84:3b:08:33:c3:fc:16:0f: b4:c0:ca:11:ee:73:53:d1:b3:4d:bf:a8:ce:22:24: a6:6e:06:f2:d8:ec:4b:0c:28:55:4b:a2:02:15:31: 74:70:c1:eb:8c:3b:fe:62:f6:39:b4:ec:d2:64:77: 21:f2:f3:c5:99:e2:19:be:7b:12:15:20:77:31:eb: 48:40:a5:3c:e8:8a:aa:c5:b1:26:c9:80:4c:85:ab: a5:62:e9:f1:6b:93:63:9e:01:3c:01:36:9f:dc:65: e4:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:C2:41:10:03:E3:CD:B2:AD:8B:ED:28:15:29:F8:CC:B8:7E:31:18 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/CsJBEAPjzbKti-0oFSn4zLh-MRg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.97.96.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:8d:f3:47:61:bb:ea:c6:8e:69:c9:23:36:49:41:eb:28:14: cf:0e:12:19:51:84:ae:de:d4:bb:2a:04:b0:aa:a1:e5:28:f8: 45:ce:45:b8:82:6e:c2:db:09:46:44:7d:8d:6d:ab:db:22:e1: 59:c2:b1:fb:d0:c7:25:48:9f:98:bd:0a:63:ca:a7:4d:57:fc: 9c:68:b9:e3:33:74:3a:7b:e9:3f:ce:1b:c7:75:66:9f:e8:57: 9a:b0:f8:4d:49:45:8f:c4:4b:48:b3:3a:f3:5a:38:03:63:ae: 5c:6c:0d:35:61:d4:d7:2a:c8:5e:d3:42:cf:a2:38:a2:4d:6b: 7f:b3:99:f4:12:b2:25:c7:c7:39:79:ab:b4:e4:16:a6:b1:21: ae:42:2d:37:60:23:ce:11:c3:43:07:d8:33:e3:13:c0:50:e9: 1f:79:97:ff:00:02:02:6d:ec:39:63:20:96:76:c1:7a:df:64: a5:6d:f4:da:3f:9a:58:6b:fa:0a:69:b9:54:11:6c:cf:dd:ab: 95:0d:69:a2:9e:b0:79:70:ec:28:6c:44:6d:a9:e3:d0:89:76: 2d:00:94:37:18:b2:f9:4d:4e:00:c7:fb:ea:f2:d7:3f:54:b1: ef:22:66:44:62:6d:f0:67:e3:f7:58:e6:66:86:00:e2:ab:6b: cb:43:86:22 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBcowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDAyMjkw MTMyMDlaFw0yNTAyMTQwMTMwMDNaMDMxMTAvBgNVBAMTKDBBQzI0MTEwMDNFM0NE QjJBRDhCRUQyODE1MjlGOENDQjg3RTMxMTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCljwBcSBbwSWJwXmS7FYCYZvwXoySuqt4LZVjK6gEtoJW8VXuZ UfGQfif9cC2/9PQK6bQcK5HMqbDSDm/BY3SPvzaf4TskkrlTVSTG03GKBBtPCk35 kuvVmi99CA7dHiav0U8N/adspFn18JaxFGxBYwIVzYwBUVo0XJOhCcRIwFOU3lDX 7PBO5kOWFuS+ZbzEywBNcBcWhalEzj6EOwgzw/wWD7TAyhHuc1PRs02/qM4iJKZu BvLY7EsMKFVLogIVMXRwweuMO/5i9jm07NJkdyHy88WZ4hm+exIVIHcx60hApTzo iqrFsSbJgEyFq6Vi6fFrk2OeATwBNp/cZeR/AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUCsJBEAPjzbKti+0oFSn4zLh+MRgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0NzSkJFQVBqemJLdGktMG9GU240ekxoLU1SZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxYWAwDQYJKoZIhvcNAQELBQADggEBAFuN80dhu+rGjmnJIzZJQesoFM8O EhlRhK7e1LsqBLCqoeUo+EXORbiCbsLbCUZEfY1tq9si4VnCsfvQxyVIn5i9CmPK p01X/JxoueMzdDp76T/OG8d1Zp/oV5qw+E1JRY/ES0izOvNaOANjrlxsDTVh1Ncq yF7TQs+iOKJNa3+zmfQSsiXHxzl5q7TkFqaxIa5CLTdgI84Rw0MH2DPjE8BQ6R95 l/8AAgJt7DljIJZ2wXrfZKVt9No/mlhr+gppuVQRbM/dq5UNaaKesHlw7ChsRG2p 49CJdi0AlDcYsvlNTgDH++ry1z9Use8iZkRibfBn4/dY5maGAOKra8tDhiI= -----END CERTIFICATE-----Generated at Mon Jun 17 11:41:35 2024 by rpki-client on console-ams.rpki-client.org