$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Ebl2D0TNW2TsIaXg4Mj4WNPQ97Y.roa File: Ebl2D0TNW2TsIaXg4Mj4WNPQ97Y.roa (raw, json) Hash identifier: MGAly8dkVBPBffgLG9CZRirbXdF0I/RKSNtF55AyfHI= Subject key identifier: 11:B9:76:0F:44:CD:5B:64:EC:21:A5:E0:E0:C8:F8:58:D3:D0:F7:B6 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 015A Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Ebl2D0TNW2TsIaXg4Mj4WNPQ97Y.roa Signing time: Wed 24 May 2023 16:31:22 +0000 ROA not before: Wed 24 May 2023 16:31:22 +0000 ROA not after: Tue 14 May 2024 01:30:02 +0000 asID: 9605 IP address blocks: 1.75.196.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 13:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 346 (0x15a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: May 24 16:31:22 2023 GMT Not After : May 14 01:30:02 2024 GMT Subject: CN=11B9760F44CD5B64EC21A5E0E0C8F858D3D0F7B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:5d:3e:91:ce:a0:f0:d8:ab:07:da:54:d7:7e: bc:af:a9:9b:e7:4f:b2:2c:de:ac:43:12:ac:c6:80: c9:30:f9:63:11:b7:a3:fc:75:59:3b:a0:c7:da:f3: eb:20:f1:b4:39:4c:e5:4c:37:b4:c5:41:67:7e:59: 98:f9:ed:3f:38:55:64:c9:cb:07:8f:9b:b4:6c:c3: 67:34:31:7f:67:27:ef:c6:00:08:6f:2a:76:9d:cd: e7:c0:b1:75:e7:2e:f4:70:39:94:91:a6:d2:4d:8b: 34:47:52:eb:c7:c1:fa:04:93:ca:81:8a:b1:a0:19: 81:48:5c:f9:92:4c:07:ba:ca:41:88:ea:fb:52:52: 9f:6b:95:d5:d9:1e:87:81:a6:0c:f7:61:91:37:92: ca:b3:f4:30:39:f8:46:b0:c8:78:bc:69:4b:61:f1: 3c:8b:15:ec:e4:6b:3c:cd:8b:51:3b:7b:53:d7:68: 49:d3:19:0c:d5:00:39:90:76:4e:54:a5:af:8b:fd: db:72:83:64:2c:08:88:de:1a:e6:c2:12:9c:c9:2c: 09:22:1d:3a:0f:48:36:c7:23:39:4b:99:96:c7:ea: ec:3f:0e:2d:7c:a1:2c:df:ee:02:99:9c:b2:37:34: 6b:1c:bb:27:52:dc:a1:72:2b:6b:98:e7:01:b6:66: d1:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:B9:76:0F:44:CD:5B:64:EC:21:A5:E0:E0:C8:F8:58:D3:D0:F7:B6 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Ebl2D0TNW2TsIaXg4Mj4WNPQ97Y.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.196.0/23 Signature Algorithm: sha256WithRSAEncryption 72:0c:22:49:ab:8f:15:00:fb:ab:37:2c:c6:4e:23:cb:5c:11: 2d:d3:57:16:37:9d:4e:99:0e:8f:56:d4:9e:bf:1c:0a:03:ce: c0:25:5d:09:d3:3f:9e:00:51:dd:1c:e1:6d:e2:98:b6:4b:19: 76:2b:de:54:f3:26:2b:8c:be:38:61:08:38:d5:23:be:b8:b4: 2b:c6:e5:e3:5c:a1:4b:bb:05:55:ad:ac:67:ae:8b:71:1f:6f: e4:8d:01:38:2f:aa:4a:28:16:40:59:c2:de:4d:04:e7:2b:01: 03:03:09:32:07:77:b9:52:5a:38:f3:00:f1:87:62:b5:ae:27: 32:c2:03:77:85:0f:fb:e6:bd:70:90:2b:47:d3:cd:a5:3b:8a: ce:91:44:75:aa:93:d2:19:ca:09:40:9a:f4:3a:ee:da:85:da: a7:09:1d:bd:2d:7c:bf:ec:53:1b:8e:28:2f:78:49:5a:f4:22: 8b:7e:43:f4:de:f9:a1:aa:e6:e8:cd:ca:fd:4d:ce:6e:bd:88: b6:5c:42:09:fa:01:64:d3:dd:e5:a9:05:19:15:18:ef:69:2f: a1:39:49:9a:8d:67:4a:9c:02:e2:e7:28:a6:af:1a:d0:42:0d: 3f:4f:ce:41:c2:59:b9:bc:a9:af:7d:4c:46:30:f5:a3:71:3f: 90:a2:d8:b1 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAVowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MjQx NjMxMjJaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDExQjk3NjBGNDRDRDVC NjRFQzIxQTVFMEUwQzhGODU4RDNEMEY3QjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtXT6RzqDw2KsH2lTXfryvqZvnT7Is3qxDEqzGgMkw+WMRt6P8 dVk7oMfa8+sg8bQ5TOVMN7TFQWd+WZj57T84VWTJywePm7Rsw2c0MX9nJ+/GAAhv KnadzefAsXXnLvRwOZSRptJNizRHUuvHwfoEk8qBirGgGYFIXPmSTAe6ykGI6vtS Up9rldXZHoeBpgz3YZE3ksqz9DA5+EawyHi8aUth8TyLFezkazzNi1E7e1PXaEnT GQzVADmQdk5Upa+L/dtyg2QsCIjeGubCEpzJLAkiHToPSDbHIzlLmZbH6uw/Di18 oSzf7gKZnLI3NGscuydS3KFyK2uY5wG2ZtE7AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUEbl2D0TNW2TsIaXg4Mj4WNPQ97YwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0VibDJEMFROVzJUc0lhWGc0TWo0V05QUTk3WS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBS8QwDQYJKoZIhvcNAQELBQADggEBAHIMIkmrjxUA+6s3LMZOI8tcES3T VxY3nU6ZDo9W1J6/HAoDzsAlXQnTP54AUd0c4W3imLZLGXYr3lTzJiuMvjhhCDjV I764tCvG5eNcoUu7BVWtrGeui3Efb+SNATgvqkooFkBZwt5NBOcrAQMDCTIHd7lS WjjzAPGHYrWuJzLCA3eFD/vmvXCQK0fTzaU7is6RRHWqk9IZyglAmvQ67tqF2qcJ Hb0tfL/sUxuOKC94SVr0Iot+Q/Te+aGq5ujNyv1Nzm69iLZcQgn6AWTT3eWpBRkV GO9pL6E5SZqNZ0qcAuLnKKavGtBCDT9PzkHCWbm8qa99TEYw9aNxP5Ci2LE= -----END CERTIFICATE-----Generated at Sat Apr 27 10:15:55 2024 by rpki-client on console-ams.rpki-client.org