$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/FAiJZ3OiWCXhiSLgAR9taThJgag.roa File: FAiJZ3OiWCXhiSLgAR9taThJgag.roa (raw, json) Hash identifier: DkcGmTYFW7ZjJ/2mesRlwnlpwzUG5wPiTw+m9L5ujt4= Subject key identifier: 14:08:89:67:73:A2:58:25:E1:89:22:E0:01:1F:6D:69:38:49:81:A8 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 053D Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/FAiJZ3OiWCXhiSLgAR9taThJgag.roa Signing time: Thu 27 Jul 2023 16:54:17 +0000 ROA not before: Thu 27 Jul 2023 16:54:17 +0000 ROA not after: Sun 14 Jul 2024 01:30:03 +0000 asID: 9605 IP address blocks: 219.122.72.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Jun 2024 01:30:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1341 (0x53d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jul 27 16:54:17 2023 GMT Not After : Jul 14 01:30:03 2024 GMT Subject: CN=1408896773A25825E18922E0011F6D69384981A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:61:e9:85:d9:e9:64:5d:0c:60:68:45:8b:4d: 98:ba:b6:52:d6:cc:ca:39:b9:7c:11:ea:01:f9:b8: b7:7e:c3:f4:d2:46:65:28:9a:cd:12:72:f9:a0:16: ce:cd:0d:32:dd:36:af:11:7b:97:96:c0:91:0c:ea: fa:f6:31:1a:62:69:37:24:b3:47:4d:9f:30:66:62: 1d:a3:95:f8:86:53:9d:4e:bc:b7:63:66:94:ed:26: 36:bc:c7:23:5a:75:7f:27:7e:46:f9:5f:aa:d5:d8: e2:92:23:c6:5e:d4:93:68:7e:96:2a:c9:a1:c0:74: f0:78:e2:49:95:6c:87:9b:43:92:ae:9a:f5:2a:f4: 33:6d:c9:08:78:34:b4:8d:d3:99:e4:0a:7c:0b:9c: 6d:0a:91:c6:d9:79:e8:cb:87:71:5a:89:3e:c7:3d: e7:1e:68:e5:20:1d:8e:4a:d5:dd:e2:e4:5c:8d:4f: c1:ff:65:c9:bb:0e:11:24:ea:ce:07:ad:53:38:e5: 81:be:c8:5e:fb:2c:72:31:fa:51:d4:cc:e0:d2:57: 04:e3:a5:ec:89:ea:cb:38:a8:f0:bb:ed:3e:1a:01: 2a:ed:41:a3:0c:a2:37:f9:15:71:68:35:86:79:cc: e8:10:0b:99:56:c0:25:6e:e4:5e:2f:78:56:dd:66: 78:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:08:89:67:73:A2:58:25:E1:89:22:E0:01:1F:6D:69:38:49:81:A8 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/FAiJZ3OiWCXhiSLgAR9taThJgag.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.122.72.0/22 Signature Algorithm: sha256WithRSAEncryption 86:f0:3e:fe:47:24:a3:01:1d:94:ef:f5:b4:44:44:66:87:47: 2b:7d:ad:26:66:4a:21:1b:fb:da:2c:0d:a9:e8:b2:41:5c:c7: bb:4f:f7:8d:02:83:c2:6c:08:4a:4c:22:95:fc:cd:9e:b4:d5: 9b:9a:ca:d1:c3:94:2e:29:a1:8f:8a:bc:ab:b1:6d:16:08:05: e6:58:5a:f1:68:19:92:1f:2e:2b:f0:73:5d:39:c6:a3:09:3e: 79:2e:08:b6:e4:a7:a8:54:e5:89:09:7e:c0:4e:13:23:19:2d: 3d:ac:4a:ac:c2:70:5c:a9:e3:e2:ab:69:99:4b:e5:90:f2:1c: 64:1c:94:99:1b:dc:74:d7:e4:52:d0:83:db:d2:1f:a0:46:b4: d0:b1:9c:a0:b4:7b:6e:0a:7b:ed:d3:32:5e:5f:2f:99:be:ea: 5f:04:b1:e7:6a:92:66:07:e2:8a:24:f8:ed:87:a0:24:b2:e9: ef:7a:06:3e:3d:12:7c:70:d7:04:35:87:00:7a:85:78:03:53: 5b:81:ca:b2:16:c1:cb:af:62:b1:66:d5:96:d1:65:7c:91:ec: da:16:66:59:96:ae:6e:5e:9f:fd:6f:dc:bb:2e:66:4d:60:7c: 62:2a:21:70:d7:e1:09:1a:5f:b7:60:1b:2b:30:a5:83:40:2e: 92:69:7e:0f -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBT0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA3Mjcx NjU0MTdaFw0yNDA3MTQwMTMwMDNaMDMxMTAvBgNVBAMTKDE0MDg4OTY3NzNBMjU4 MjVFMTg5MjJFMDAxMUY2RDY5Mzg0OTgxQTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGYemF2elkXQxgaEWLTZi6tlLWzMo5uXwR6gH5uLd+w/TSRmUo ms0ScvmgFs7NDTLdNq8Re5eWwJEM6vr2MRpiaTcks0dNnzBmYh2jlfiGU51OvLdj ZpTtJja8xyNadX8nfkb5X6rV2OKSI8Ze1JNofpYqyaHAdPB44kmVbIebQ5KumvUq 9DNtyQh4NLSN05nkCnwLnG0KkcbZeejLh3FaiT7HPeceaOUgHY5K1d3i5FyNT8H/ Zcm7DhEk6s4HrVM45YG+yF77LHIx+lHUzODSVwTjpeyJ6ss4qPC77T4aASrtQaMM ojf5FXFoNYZ5zOgQC5lWwCVu5F4veFbdZnhLAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUFAiJZ3OiWCXhiSLgAR9taThJgagwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0ZBaUpaM09pV0NYaGlTTGdBUjl0YVRoSmdhZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALbekgwDQYJKoZIhvcNAQELBQADggEBAIbwPv5HJKMBHZTv9bRERGaHRyt9 rSZmSiEb+9osDanoskFcx7tP940Cg8JsCEpMIpX8zZ601ZuaytHDlC4poY+KvKux bRYIBeZYWvFoGZIfLivwc105xqMJPnkuCLbkp6hU5YkJfsBOEyMZLT2sSqzCcFyp 4+KraZlL5ZDyHGQclJkb3HTX5FLQg9vSH6BGtNCxnKC0e24Ke+3TMl5fL5m+6l8E sedqkmYH4ook+O2HoCSy6e96Bj49Enxw1wQ1hwB6hXgDU1uByrIWwcuvYrFm1ZbR ZXyR7NoWZlmWrm5en/1v3LsuZk1gfGIqIXDX4QkaX7dgGyswpYNALpJpfg8= -----END CERTIFICATE-----Generated at Sat Jun 15 02:01:41 2024 by rpki-client on console-fra.rpki-client.org