$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/D9EhWCeDcfZB-XU7_YrIglOPkU8.roa File: D9EhWCeDcfZB-XU7_YrIglOPkU8.roa (raw, json) Hash identifier: HCY/TbbxA+e4uhxeoeyEUJCEKn/U+kBMQny7Z420YQ0= Subject key identifier: 0F:D1:21:58:27:83:71:F6:41:F9:75:3B:FD:8A:C8:82:53:8F:91:4F Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0537 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/D9EhWCeDcfZB-XU7_YrIglOPkU8.roa Signing time: Thu 27 Jul 2023 16:54:16 +0000 ROA not before: Thu 27 Jul 2023 16:54:16 +0000 ROA not after: Sun 14 Jul 2024 01:30:03 +0000 asID: 9605 IP address blocks: 1.66.110.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Jun 2024 14:09:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1335 (0x537) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jul 27 16:54:16 2023 GMT Not After : Jul 14 01:30:03 2024 GMT Subject: CN=0FD12158278371F641F9753BFD8AC882538F914F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:17:55:1e:92:40:d0:df:7a:67:8f:5d:f8:aa: 1f:7d:f8:6a:99:97:5f:7e:50:bb:9d:f9:41:37:54: f6:94:3e:8e:1b:b2:e0:b3:f6:59:e1:6c:55:3e:35: 50:11:8c:72:b5:95:15:16:1d:9e:06:0d:c3:5b:8e: ea:23:aa:8f:42:f1:f1:13:ab:62:fe:59:f5:b8:0c: 52:c9:1d:f4:47:85:5f:38:67:e5:de:cd:41:58:24: 60:a4:d2:a5:a8:47:ca:bb:30:f0:10:4e:bb:9d:a1: 7f:bd:d4:84:4d:61:da:4e:6a:89:d3:71:fd:fd:40: de:4b:54:58:5d:31:56:4b:02:d1:e5:c9:74:aa:e0: 00:6b:8a:18:fe:55:66:4e:dd:c4:c8:4e:f2:f6:cf: db:20:8c:d6:25:52:1a:83:61:1e:a1:f5:57:f5:a1: 67:48:50:f0:3a:28:89:89:89:bf:94:ad:ee:44:8a: 90:4e:26:68:68:e1:98:fe:c5:da:49:57:39:ba:8b: 1a:9b:3a:aa:1d:2f:62:9e:ad:85:a0:79:50:81:55: 4f:8c:cb:88:d1:9b:4f:b1:af:29:4d:ea:fa:9d:f7: a5:03:5a:c4:09:ff:fc:f9:25:7e:dd:88:55:a5:5f: 99:25:10:d8:71:c1:d5:ee:1c:aa:bb:97:fe:cd:aa: 22:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:D1:21:58:27:83:71:F6:41:F9:75:3B:FD:8A:C8:82:53:8F:91:4F X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/D9EhWCeDcfZB-XU7_YrIglOPkU8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.66.110.0/23 Signature Algorithm: sha256WithRSAEncryption ae:81:6d:77:fc:1a:7e:ce:37:00:d1:b9:48:9d:5f:b1:8c:d2: f8:fe:c1:b1:b6:22:67:7b:ab:b3:a4:6d:2e:37:00:1a:2c:c9: 8e:26:84:2b:ea:ae:ad:67:f9:bd:0c:60:93:75:81:d8:fc:38: 7f:66:53:b8:84:6b:04:b0:6a:2e:8f:f5:e7:a2:a9:43:98:04: c5:34:ce:3c:d7:81:54:70:37:20:6b:6e:85:22:95:8e:95:46: dd:e7:b3:5f:cc:76:e3:2c:6d:8c:55:a5:9a:f8:80:c4:54:4e: 8c:9a:6d:a7:16:6d:a0:78:90:3e:f1:33:92:cd:cb:b3:86:4f: da:a2:22:80:d9:1b:17:d2:ec:c0:3b:fe:23:1f:6c:77:a4:19: 2a:c2:a8:d8:37:6a:49:77:da:0c:80:eb:86:ec:39:90:de:bb: e4:37:a2:3a:5b:95:60:90:63:59:24:69:75:bb:80:50:d2:31: c1:62:d9:73:e8:af:12:b8:37:84:67:78:14:b7:4d:e5:68:f1: 25:1a:4e:22:93:11:57:c6:72:17:68:ea:ce:66:dd:82:4b:cb: 15:c9:b1:cd:08:10:e3:52:ae:c8:0e:95:5f:3b:cc:40:e1:34: 55:10:e6:22:11:d8:99:46:39:3f:2e:27:54:4c:55:c8:7d:57: 4e:b5:cb:a5 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBTcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA3Mjcx NjU0MTZaFw0yNDA3MTQwMTMwMDNaMDMxMTAvBgNVBAMTKDBGRDEyMTU4Mjc4Mzcx RjY0MUY5NzUzQkZEOEFDODgyNTM4RjkxNEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9F1UekkDQ33pnj134qh99+GqZl19+ULud+UE3VPaUPo4bsuCz 9lnhbFU+NVARjHK1lRUWHZ4GDcNbjuojqo9C8fETq2L+WfW4DFLJHfRHhV84Z+Xe zUFYJGCk0qWoR8q7MPAQTrudoX+91IRNYdpOaonTcf39QN5LVFhdMVZLAtHlyXSq 4ABrihj+VWZO3cTITvL2z9sgjNYlUhqDYR6h9Vf1oWdIUPA6KImJib+Ure5EipBO Jmho4Zj+xdpJVzm6ixqbOqodL2KerYWgeVCBVU+My4jRm0+xrylN6vqd96UDWsQJ //z5JX7diFWlX5klENhxwdXuHKq7l/7NqiILAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUD9EhWCeDcfZB+XU7/YrIglOPkU8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0Q5RWhXQ2VEY2ZaQi1YVTdfWXJJZ2xPUGtVOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBQm4wDQYJKoZIhvcNAQELBQADggEBAK6BbXf8Gn7ONwDRuUidX7GM0vj+ wbG2Imd7q7OkbS43ABosyY4mhCvqrq1n+b0MYJN1gdj8OH9mU7iEawSwai6P9eei qUOYBMU0zjzXgVRwNyBrboUilY6VRt3ns1/MduMsbYxVpZr4gMRUToyabacWbaB4 kD7xM5LNy7OGT9qiIoDZGxfS7MA7/iMfbHekGSrCqNg3akl32gyA64bsOZDeu+Q3 ojpblWCQY1kkaXW7gFDSMcFi2XPorxK4N4RneBS3TeVo8SUaTiKTEVfGchdo6s5m 3YJLyxXJsc0IEONSrsgOlV87zEDhNFUQ5iIR2JlGOT8uJ1RMVch9V061y6U= -----END CERTIFICATE-----Generated at Mon Jun 17 11:41:35 2024 by rpki-client on console-ams.rpki-client.org