$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/FKuHdqwBycDrqoyPKbQQKgm9tNE.roa File: FKuHdqwBycDrqoyPKbQQKgm9tNE.roa (raw, json) Hash identifier: 2G+7ovNeMIhkmNaP62Cc1b1XkRPejFYipx8ei4Sik3A= Subject key identifier: 14:AB:87:76:AC:01:C9:C0:EB:AA:8C:8F:29:B4:10:2A:09:BD:B4:D1 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0533 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/FKuHdqwBycDrqoyPKbQQKgm9tNE.roa Signing time: Thu 27 Jul 2023 16:54:15 +0000 ROA not before: Thu 27 Jul 2023 16:54:15 +0000 ROA not after: Sun 14 Jul 2024 01:30:03 +0000 asID: 9605 IP address blocks: 1.72.24.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1331 (0x533) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jul 27 16:54:15 2023 GMT Not After : Jul 14 01:30:03 2024 GMT Subject: CN=14AB8776AC01C9C0EBAA8C8F29B4102A09BDB4D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c2:8e:34:f1:42:0e:4d:24:83:e6:9e:9c:98: 0e:e1:36:07:58:0c:5e:96:a6:bf:39:91:c1:af:ec: ec:98:cf:0f:0b:54:a8:e6:e0:0f:ec:0e:d0:0a:8a: c4:28:be:58:88:af:6d:f5:29:f7:1a:f4:b2:57:c8: 3d:0a:79:4a:b5:fe:99:62:99:ee:74:b2:b2:4e:26: 00:7d:e6:3b:77:57:59:f9:8b:cf:7a:12:7a:64:f8: 75:c0:e3:7c:5f:80:a8:33:4f:80:57:5f:7f:ee:8f: 15:fb:6f:cc:2c:7d:7b:9f:89:35:79:e6:24:77:9f: ad:b3:bb:b9:73:16:f7:4a:c6:80:81:ac:44:5c:19: de:3e:43:19:83:d4:bf:ef:47:c1:28:99:f7:1e:09: 52:82:03:45:3b:c3:88:33:69:1f:04:42:ed:2c:6e: 60:2e:69:95:39:07:9f:bc:f9:ed:b4:94:00:f8:0f: 1b:6c:39:6c:cb:7b:23:30:00:56:37:56:d6:a1:0e: d9:09:d3:28:d2:8c:7f:6e:4a:25:f3:ca:6f:d8:c6: 43:d5:19:b4:d5:6c:6b:5e:67:e0:57:82:cd:06:90: 2e:72:74:1d:a9:23:be:59:c8:1f:52:b8:39:e9:17: 44:8a:8f:80:07:ee:ef:db:61:8f:42:3e:07:0c:d7: e8:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:AB:87:76:AC:01:C9:C0:EB:AA:8C:8F:29:B4:10:2A:09:BD:B4:D1 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/FKuHdqwBycDrqoyPKbQQKgm9tNE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.72.24.0/21 Signature Algorithm: sha256WithRSAEncryption 9b:52:2b:eb:2e:c9:bd:07:57:33:34:43:09:e9:c9:96:a6:e9: 9f:d6:a5:78:f0:31:c8:3c:cc:c9:cc:47:4a:24:54:c5:fc:87: d5:6a:3d:33:19:08:83:22:80:08:ac:d8:de:4a:c9:d2:3b:4d: 1e:92:9e:60:79:f5:d1:9d:d6:8a:0a:a7:ca:75:73:6c:51:3e: e8:c0:05:f0:ee:d6:dd:de:cf:cc:34:2b:72:97:09:57:1a:0f: 3c:1b:24:61:fb:10:94:68:89:c2:7d:8d:a6:d5:96:92:c0:66: 09:a9:f4:78:e8:19:b1:d8:0a:2e:cd:ff:c3:4b:93:9e:2d:59: 2c:1d:0b:d7:42:71:2a:a0:1f:c7:30:4b:d3:7b:6d:38:b6:e5: 79:27:7a:f5:5d:8a:0f:a1:da:4c:77:6f:0c:78:29:8c:46:38: aa:04:0f:6b:62:d3:c6:02:cd:7d:ba:78:f3:77:7f:c1:e1:66: ca:6e:0b:a5:5b:d7:2f:7c:ce:e5:aa:c4:e4:03:95:b9:3c:a1: 74:97:f8:71:b8:cb:ef:a8:68:b9:97:00:2d:6c:5e:cd:ab:0f: 2e:e1:35:92:2f:49:c3:8f:b4:76:51:b3:1b:3d:bd:2e:f6:92: 46:e5:86:79:05:ae:80:ba:d1:2f:b9:ae:30:4d:41:d5:54:21: 0d:32:dd:6b -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBTMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA3Mjcx NjU0MTVaFw0yNDA3MTQwMTMwMDNaMDMxMTAvBgNVBAMTKDE0QUI4Nzc2QUMwMUM5 QzBFQkFBOEM4RjI5QjQxMDJBMDlCREI0RDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5wo408UIOTSSD5p6cmA7hNgdYDF6Wpr85kcGv7OyYzw8LVKjm 4A/sDtAKisQovliIr231Kfca9LJXyD0KeUq1/plime50srJOJgB95jt3V1n5i896 Enpk+HXA43xfgKgzT4BXX3/ujxX7b8wsfXufiTV55iR3n62zu7lzFvdKxoCBrERc Gd4+QxmD1L/vR8EomfceCVKCA0U7w4gzaR8EQu0sbmAuaZU5B5+8+e20lAD4Dxts OWzLeyMwAFY3VtahDtkJ0yjSjH9uSiXzym/YxkPVGbTVbGteZ+BXgs0GkC5ydB2p I75ZyB9SuDnpF0SKj4AH7u/bYY9CPgcM1+htAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUFKuHdqwBycDrqoyPKbQQKgm9tNEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0ZLdUhkcXdCeWNEcnFveVBLYlFRS2dtOXRORS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMBSBgwDQYJKoZIhvcNAQELBQADggEBAJtSK+suyb0HVzM0QwnpyZam6Z/W pXjwMcg8zMnMR0okVMX8h9VqPTMZCIMigAis2N5KydI7TR6SnmB59dGd1ooKp8p1 c2xRPujABfDu1t3ez8w0K3KXCVcaDzwbJGH7EJRoicJ9jabVlpLAZgmp9HjoGbHY Ci7N/8NLk54tWSwdC9dCcSqgH8cwS9N7bTi25XknevVdig+h2kx3bwx4KYxGOKoE D2ti08YCzX26ePN3f8HhZspuC6Vb1y98zuWqxOQDlbk8oXSX+HG4y++oaLmXAC1s Xs2rDy7hNZIvScOPtHZRsxs9vS72kkblhnkFroC60S+5rjBNQdVUIQ0y3Ws= -----END CERTIFICATE-----Generated at Sat Jun 1 15:54:30 2024 by rpki-client on console-ams.rpki-client.org