$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/DjMADIu3k12Q5Tjgx9nRl3VsNoM.roa File: DjMADIu3k12Q5Tjgx9nRl3VsNoM.roa (raw, json) Hash identifier: IReIYHTyBO33K6mFMd4NQUqs5kj/OWOmWZpkrmF7RTQ= Subject key identifier: 0E:33:00:0C:8B:B7:93:5D:90:E5:38:E0:C7:D9:D1:97:75:6C:36:83 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0881 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/DjMADIu3k12Q5Tjgx9nRl3VsNoM.roa Signing time: Tue 30 Apr 2024 02:20:28 +0000 ROA not before: Tue 30 Apr 2024 02:20:28 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.97.36.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2177 (0x881) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:20:28 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=0E33000C8BB7935D90E538E0C7D9D197756C3683 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:1f:5c:7b:1d:ec:9f:b6:0f:11:ea:23:f8:1e: 58:e7:56:d1:f7:8e:fc:8a:e6:6d:e4:9d:5b:67:1c: 84:5b:dc:20:b7:dd:21:60:67:53:a0:5d:e1:9d:1c: 42:2f:9e:ea:55:66:06:8a:7e:69:de:06:f3:09:25: 0f:02:d1:5c:cb:6a:cb:95:65:4e:9a:5b:8d:6e:a6: 55:76:38:bf:ea:7c:58:37:a6:ae:b6:c9:17:f5:18: a6:8f:8c:61:92:ef:9f:a3:9d:6c:30:dd:dc:3c:a4: ca:67:e8:e2:1c:a4:72:ec:be:8d:10:48:cf:e5:31: 1c:48:e4:37:ca:73:81:72:bf:8d:55:27:48:c4:70: d5:63:98:cb:0c:89:b3:27:ab:1a:e4:f0:69:fd:b9: 5a:6e:a6:3d:a8:c2:1b:ff:56:5b:1e:91:98:f9:93: e6:4b:0a:db:b9:5a:2b:d3:10:06:3e:60:e1:b9:f8: 2b:1b:02:cb:ad:65:97:a2:f6:dd:61:7c:af:c6:16: 08:5d:31:c9:7e:80:5b:75:10:cc:6a:69:9d:9e:7e: b1:ec:29:ab:f9:11:03:41:3d:e0:86:e6:a4:c4:81: 39:17:07:8b:a0:e3:f0:02:ff:67:20:e2:0b:b5:f8: 4e:d6:aa:53:ff:9a:11:29:5c:ef:4b:1d:17:39:ff: 95:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:33:00:0C:8B:B7:93:5D:90:E5:38:E0:C7:D9:D1:97:75:6C:36:83 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/DjMADIu3k12Q5Tjgx9nRl3VsNoM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.97.36.0/23 Signature Algorithm: sha256WithRSAEncryption 24:02:a7:3c:8c:41:0b:19:7d:b8:e5:9a:07:58:3e:e5:d7:89: b0:39:42:29:75:db:2c:2c:34:d2:bc:3a:9f:0a:bc:68:18:1b: 99:3f:a5:83:03:6d:0c:4a:15:be:a0:81:e9:36:3c:cf:09:f4: ec:9d:8c:71:0d:b0:81:bf:22:23:2e:d4:75:5f:b8:7a:9c:4e: a2:6b:11:36:70:a3:9d:de:eb:49:67:34:e8:23:c7:8f:55:ea: b3:19:b2:2e:6e:f9:f4:b6:eb:6d:2b:65:0a:46:03:a2:b8:c1: f9:ee:5d:f9:9d:3d:ac:ff:d3:c9:8d:86:3e:33:3c:33:5b:6d: 4e:79:d9:ac:c7:bf:0c:46:27:b2:52:a1:90:81:92:30:a7:fa: a5:ea:70:9b:a0:40:69:23:48:fa:92:f6:69:ec:c6:da:a4:e7: b4:98:0b:6b:39:b6:d6:93:83:e3:63:75:89:2b:0f:a7:7e:a2: 0a:11:83:27:af:bb:25:02:4d:68:bd:d1:59:b6:29:9a:91:f8: 4a:88:53:70:48:6c:36:19:43:12:f1:95:f7:9a:c7:7c:3d:80: c7:39:d9:8d:17:4e:53:97:ef:32:62:0d:bf:86:98:85:fb:76: 8d:bf:93:3c:f4:1a:d3:df:4f:fb:df:95:35:87:a3:49:3a:e2: f6:29:35:13 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCIEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjIwMjhaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDBFMzMwMDBDOEJCNzkz NUQ5MEU1MzhFMEM3RDlEMTk3NzU2QzM2ODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBH1x7Heyftg8R6iP4HljnVtH3jvyK5m3knVtnHIRb3CC33SFg Z1OgXeGdHEIvnupVZgaKfmneBvMJJQ8C0VzLasuVZU6aW41uplV2OL/qfFg3pq62 yRf1GKaPjGGS75+jnWww3dw8pMpn6OIcpHLsvo0QSM/lMRxI5DfKc4Fyv41VJ0jE cNVjmMsMibMnqxrk8Gn9uVpupj2owhv/VlsekZj5k+ZLCtu5WivTEAY+YOG5+Csb AsutZZei9t1hfK/GFghdMcl+gFt1EMxqaZ2efrHsKav5EQNBPeCG5qTEgTkXB4ug 4/AC/2cg4gu1+E7WqlP/mhEpXO9LHRc5/5XjAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUDjMADIu3k12Q5Tjgx9nRl3VsNoMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0RqTUFESXUzazEyUTVUamd4OW5SbDNWc05vTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYSQwDQYJKoZIhvcNAQELBQADggEBACQCpzyMQQsZfbjlmgdYPuXXibA5 Qil12ywsNNK8Op8KvGgYG5k/pYMDbQxKFb6ggek2PM8J9OydjHENsIG/IiMu1HVf uHqcTqJrETZwo53e60lnNOgjx49V6rMZsi5u+fS2620rZQpGA6K4wfnuXfmdPaz/ 08mNhj4zPDNbbU552azHvwxGJ7JSoZCBkjCn+qXqcJugQGkjSPqS9mnsxtqk57SY C2s5ttaTg+NjdYkrD6d+ogoRgyevuyUCTWi90Vm2KZqR+EqIU3BIbDYZQxLxlfea x3w9gMc52Y0XTlOX7zJiDb+GmIX7do2/kzz0GtPfT/vflTWHo0k64vYpNRM= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:39 2024 by rpki-client on console-ams.rpki-client.org