$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/EZjHf7U1-AA1-QUrvxxE1pLsvOg.roa File: EZjHf7U1-AA1-QUrvxxE1pLsvOg.roa (raw, json) Hash identifier: OSlgnebIdEqwyp/GqEodKHysWPgI9PDnmWl7AzLt3Ek= Subject key identifier: 11:98:C7:7F:B5:35:F8:00:35:F9:05:2B:BF:1C:44:D6:92:EC:BC:E8 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0575 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/EZjHf7U1-AA1-QUrvxxE1pLsvOg.roa Signing time: Thu 27 Jul 2023 16:58:05 +0000 ROA not before: Thu 27 Jul 2023 16:58:05 +0000 ROA not after: Sun 14 Jul 2024 01:30:03 +0000 asID: 9605 IP address blocks: 49.106.98.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1397 (0x575) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jul 27 16:58:05 2023 GMT Not After : Jul 14 01:30:03 2024 GMT Subject: CN=1198C77FB535F80035F9052BBF1C44D692ECBCE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:50:81:5a:3e:e8:01:bb:79:7c:96:7f:76:9b: bc:1d:e3:64:80:8b:9a:f9:23:8b:fb:bc:7f:a2:44: 7f:6f:8d:68:69:28:34:36:56:b1:6d:ba:0a:15:9d: 58:ff:a0:fa:96:35:51:76:d3:3d:23:9c:0d:c0:81: 8c:40:42:5b:c7:dd:6a:72:e7:36:80:53:27:fa:41: e4:9e:b5:08:57:fb:33:31:c2:e9:5a:db:ab:fc:87: 49:42:fc:69:e8:65:be:46:cb:20:27:1f:cd:46:c4: 44:d4:8e:87:e0:48:ff:02:74:82:1c:94:4b:e4:e3: 88:e8:2e:72:2d:9b:22:37:d4:fb:7c:ee:fe:a2:b0: 06:16:51:d7:13:e3:19:63:69:4d:4c:bf:9b:b2:e6: e1:65:8e:df:b6:91:16:1d:aa:77:54:f3:fe:0a:14: 59:b4:76:60:32:84:ad:7c:25:80:b1:1a:20:89:f7: 3a:ee:5d:d7:d2:96:e2:af:37:d9:80:f4:1e:9b:59: 42:11:ed:3e:ad:3f:40:3a:09:cf:c3:01:47:4d:b5: d3:0a:37:4a:0e:7f:99:0d:86:7e:28:b8:05:0f:01: 12:f3:63:9f:d0:84:f0:7d:99:78:29:95:3a:8f:37: 91:19:59:00:aa:f7:43:a3:18:58:76:b4:6a:4a:a4: 0c:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:98:C7:7F:B5:35:F8:00:35:F9:05:2B:BF:1C:44:D6:92:EC:BC:E8 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/EZjHf7U1-AA1-QUrvxxE1pLsvOg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.106.98.0/23 Signature Algorithm: sha256WithRSAEncryption 13:db:6e:9f:da:8c:0f:48:70:15:02:b0:c9:9b:26:07:7e:2a: de:8c:2e:90:8c:b1:7a:99:c4:d6:37:1a:1f:03:fb:c4:8b:ce: 47:d4:58:8a:9f:79:53:bb:60:8b:24:20:a4:e4:ea:72:30:df: de:de:56:b7:fd:68:17:02:31:b1:61:12:80:b0:76:13:0e:95: 2c:c4:08:57:7a:1d:1b:d3:da:61:41:b5:5b:89:8c:01:d8:d1: c1:0f:a5:59:c7:02:d3:1e:64:1d:75:da:88:f3:d2:d4:45:68: 6d:ee:bd:41:49:20:5b:f4:09:b9:59:62:b2:57:84:c2:e4:ba: d9:91:c0:60:dc:b7:06:ec:47:fe:ed:5b:4d:40:9e:04:99:e9: a2:7a:18:2d:94:84:5f:cd:5a:9a:95:81:72:e6:1f:9b:e7:ed: 2a:f8:f4:a3:c0:ec:79:b5:97:0b:6b:d8:86:c3:d4:b7:4c:7e: d5:84:cc:3f:36:ae:bc:b9:72:14:41:f4:45:dd:86:1a:b3:78: d1:e8:27:cc:ba:22:d7:5e:5c:9a:2c:68:e5:07:ae:d8:3d:e1: 4b:34:74:13:6a:6d:73:41:7c:bc:a2:bf:44:b4:38:bc:c3:70: ec:69:f5:9a:99:ba:82:ae:09:40:6a:01:13:ab:f0:77:64:45: 90:06:0d:cc -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBXUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA3Mjcx NjU4MDVaFw0yNDA3MTQwMTMwMDNaMDMxMTAvBgNVBAMTKDExOThDNzdGQjUzNUY4 MDAzNUY5MDUyQkJGMUM0NEQ2OTJFQ0JDRTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrUIFaPugBu3l8ln92m7wd42SAi5r5I4v7vH+iRH9vjWhpKDQ2 VrFtugoVnVj/oPqWNVF20z0jnA3AgYxAQlvH3Wpy5zaAUyf6QeSetQhX+zMxwula 26v8h0lC/GnoZb5GyyAnH81GxETUjofgSP8CdIIclEvk44joLnItmyI31Pt87v6i sAYWUdcT4xljaU1Mv5uy5uFljt+2kRYdqndU8/4KFFm0dmAyhK18JYCxGiCJ9zru XdfSluKvN9mA9B6bWUIR7T6tP0A6Cc/DAUdNtdMKN0oOf5kNhn4ouAUPARLzY5/Q hPB9mXgplTqPN5EZWQCq90OjGFh2tGpKpAwlAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUEZjHf7U1+AA1+QUrvxxE1pLsvOgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0VaakhmN1UxLUFBMS1RVXJ2eHhFMXBMc3ZPZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExamIwDQYJKoZIhvcNAQELBQADggEBABPbbp/ajA9IcBUCsMmbJgd+Kt6M LpCMsXqZxNY3Gh8D+8SLzkfUWIqfeVO7YIskIKTk6nIw397eVrf9aBcCMbFhEoCw dhMOlSzECFd6HRvT2mFBtVuJjAHY0cEPpVnHAtMeZB112ojz0tRFaG3uvUFJIFv0 CblZYrJXhMLkutmRwGDctwbsR/7tW01AngSZ6aJ6GC2UhF/NWpqVgXLmH5vn7Sr4 9KPA7Hm1lwtr2IbD1LdMftWEzD82rry5chRB9EXdhhqzeNHoJ8y6ItdeXJosaOUH rtg94Us0dBNqbXNBfLyiv0S0OLzDcOxp9ZqZuoKuCUBqAROr8HdkRZAGDcw= -----END CERTIFICATE-----Generated at Sat Jun 1 15:54:30 2024 by rpki-client on console-ams.rpki-client.org