$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ED2zC-bCBe5jhM_q6bq9IqmkKsI.roa File: ED2zC-bCBe5jhM_q6bq9IqmkKsI.roa (raw, json) Hash identifier: FNN0/L4s6U1H0HjijgCnEtQFN0pasrbUmklNp86EEQ4= Subject key identifier: 10:3D:B3:0B:E6:C2:05:EE:63:84:CF:EA:E9:BA:BD:22:A9:A4:2A:C2 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 05F9 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ED2zC-bCBe5jhM_q6bq9IqmkKsI.roa Signing time: Thu 29 Feb 2024 01:35:44 +0000 ROA not before: Thu 29 Feb 2024 01:35:44 +0000 ROA not after: Fri 14 Feb 2025 01:30:03 +0000 asID: 9605 IP address blocks: 1.66.96.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1529 (0x5f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Feb 29 01:35:44 2024 GMT Not After : Feb 14 01:30:03 2025 GMT Subject: CN=103DB30BE6C205EE6384CFEAE9BABD22A9A42AC2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c5:60:48:cc:bb:1b:da:bd:ed:5f:13:d8:7c: 13:b1:d4:fd:ba:e2:da:e3:fd:11:23:64:f3:e7:d8: 48:1e:da:77:0d:a8:67:47:85:2f:52:f9:f6:10:c2: b0:25:bc:71:e7:4b:3f:c5:90:d2:a4:47:28:a7:81: ea:02:15:a5:04:7c:cd:44:a4:a5:b3:8c:35:e0:c3: 20:48:e6:56:d1:e4:af:e8:0e:20:e5:a0:94:70:18: 3a:c5:36:1e:49:13:56:04:9c:a6:12:2c:5e:87:6c: ae:a9:5f:45:20:d1:b1:32:a9:69:37:87:86:2f:40: 78:da:8b:22:46:19:4d:2e:dd:b0:6c:4b:e1:0e:c1: fa:1b:df:b5:a4:7c:ff:87:9f:1b:35:0b:14:03:db: a1:cc:3b:12:5b:74:c7:d0:b9:03:98:bb:45:5d:ae: 2c:93:f1:7c:50:82:88:a9:17:f8:91:3f:cc:95:60: 74:f6:c0:eb:ce:78:3d:5b:d4:6e:9a:6d:d8:b3:be: f2:75:18:27:47:93:8b:7d:7e:b3:4a:2a:e0:f1:c2: 49:5e:d8:61:1d:3f:dc:fd:30:1c:1a:da:f0:66:bf: 32:c8:b4:78:9c:5a:34:6b:7f:2c:5a:b8:2a:41:ed: 00:ef:ac:fb:92:93:f4:10:95:06:79:99:c7:8c:4b: be:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:3D:B3:0B:E6:C2:05:EE:63:84:CF:EA:E9:BA:BD:22:A9:A4:2A:C2 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ED2zC-bCBe5jhM_q6bq9IqmkKsI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.66.96.0/21 Signature Algorithm: sha256WithRSAEncryption d4:4e:ef:50:c2:39:f7:9f:07:44:d3:c2:36:c3:4f:86:3d:b0: d7:2d:5e:53:d0:89:b1:e4:23:77:59:85:f0:89:cb:84:fd:92: c3:27:bf:36:11:fc:40:bc:ff:03:bf:f3:5c:30:08:14:bd:ac: 46:c0:8e:06:e0:8d:f8:dc:d4:7f:e1:d0:79:a6:4f:c4:41:c7: 41:f7:20:2c:77:53:31:cd:84:64:d3:2a:c3:17:7c:9b:a6:02: 8f:fc:cc:0d:20:41:a2:5e:9f:89:66:59:49:d4:75:a3:e3:75: 7f:49:d3:10:a2:5b:b7:aa:3a:b6:51:36:63:36:c6:98:3c:3e: 0f:3d:9c:ae:b3:12:8c:62:48:29:d4:9c:8d:ee:fd:c6:3b:52: 58:d3:18:ca:40:aa:5c:ce:a4:7d:08:f6:66:0a:21:0c:db:63: 15:b5:2f:ec:22:63:1c:86:56:a4:3d:df:5a:a8:eb:34:19:91: cd:b9:88:2c:da:b8:ec:7a:5b:8c:31:ec:65:5c:31:1c:6d:da: e9:83:34:80:f4:6d:bc:87:57:46:30:fa:ce:8b:9d:9c:9f:ae: 9a:b3:56:42:0d:93:80:a2:9a:ad:c4:76:a3:17:f6:98:d3:29: 6d:46:31:58:40:70:1a:3f:0b:26:cf:c6:d1:77:69:95:11:d7: f6:0a:a3:b5 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBfkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDAyMjkw MTM1NDRaFw0yNTAyMTQwMTMwMDNaMDMxMTAvBgNVBAMTKDEwM0RCMzBCRTZDMjA1 RUU2Mzg0Q0ZFQUU5QkFCRDIyQTlBNDJBQzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxxWBIzLsb2r3tXxPYfBOx1P264trj/REjZPPn2Ege2ncNqGdH hS9S+fYQwrAlvHHnSz/FkNKkRyingeoCFaUEfM1EpKWzjDXgwyBI5lbR5K/oDiDl oJRwGDrFNh5JE1YEnKYSLF6HbK6pX0Ug0bEyqWk3h4YvQHjaiyJGGU0u3bBsS+EO wfob37WkfP+Hnxs1CxQD26HMOxJbdMfQuQOYu0VdriyT8XxQgoipF/iRP8yVYHT2 wOvOeD1b1G6abdizvvJ1GCdHk4t9frNKKuDxwkle2GEdP9z9MBwa2vBmvzLItHic WjRrfyxauCpB7QDvrPuSk/QQlQZ5mceMS74dAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUED2zC+bCBe5jhM/q6bq9IqmkKsIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0VEMnpDLWJDQmU1amhNX3E2YnE5SXFta0tzSS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMBQmAwDQYJKoZIhvcNAQELBQADggEBANRO71DCOfefB0TTwjbDT4Y9sNct XlPQibHkI3dZhfCJy4T9ksMnvzYR/EC8/wO/81wwCBS9rEbAjgbgjfjc1H/h0Hmm T8RBx0H3ICx3UzHNhGTTKsMXfJumAo/8zA0gQaJen4lmWUnUdaPjdX9J0xCiW7eq OrZRNmM2xpg8Pg89nK6zEoxiSCnUnI3u/cY7UljTGMpAqlzOpH0I9mYKIQzbYxW1 L+wiYxyGVqQ931qo6zQZkc25iCzauOx6W4wx7GVcMRxt2umDNID0bbyHV0Yw+s6L nZyfrpqzVkINk4Cimq3EdqMX9pjTKW1GMVhAcBo/CybPxtF3aZUR1/YKo7U= -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:46 2024 by rpki-client on console-fra.rpki-client.org