$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/IW3Ud-yRPpicU381uxSDOndw1Nw.roa File: IW3Ud-yRPpicU381uxSDOndw1Nw.roa (raw, json) Hash identifier: FJkPQhbw8Pplq3Irui5Huc98hAsm26UCDHb5luXJosI= Subject key identifier: 21:6D:D4:77:EC:91:3E:98:9C:53:7F:35:BB:14:83:3A:77:70:D4:DC Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 06A3 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/IW3Ud-yRPpicU381uxSDOndw1Nw.roa Signing time: Tue 30 Apr 2024 01:43:15 +0000 ROA not before: Tue 30 Apr 2024 01:43:15 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.102.148.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1699 (0x6a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:43:15 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=216DD477EC913E989C537F35BB14833A7770D4DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:69:d6:c4:5a:14:3e:7e:6e:dc:d0:ff:9b:4a: 47:ad:f3:cd:cf:3f:ac:32:9b:91:e2:89:d7:5a:c2: a1:80:d2:88:cf:b9:26:3e:31:fc:a7:29:9c:ae:39: aa:e0:9c:e4:72:d2:4c:f0:e6:f2:52:75:f1:11:8c: 7b:ee:3e:81:5f:5d:5d:a9:1a:c1:d6:e7:da:44:8a: e1:39:ef:f7:cf:e2:61:46:43:4d:08:9b:18:f0:c3: 88:2d:83:9a:66:7a:de:c2:7f:4f:da:a7:12:fd:4d: 52:5e:37:20:ea:bc:6b:e9:67:0d:e2:a4:6a:62:a9: ea:7c:8b:23:d0:1e:1b:67:ec:67:ec:1e:a7:be:ce: 8c:cd:af:3b:f2:6c:7f:3a:36:fd:e2:18:f4:82:54: 52:6c:60:e6:ab:db:15:5d:ea:9c:ab:56:73:85:1f: 6b:cc:fb:3e:ba:d8:68:6e:f6:fa:4a:d9:87:13:08: ba:01:6c:ee:19:29:37:a4:92:50:78:69:d5:9f:4a: db:75:81:c6:b2:f4:d5:4b:af:01:b7:8a:2e:61:56: ef:e9:34:15:fd:c1:05:1d:c6:49:a2:c0:d5:24:39: 6b:b9:52:00:39:78:55:b0:2b:39:c1:32:7e:8b:40: d1:19:fb:f7:48:d2:fc:a9:65:aa:5a:66:4a:95:20: e2:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:6D:D4:77:EC:91:3E:98:9C:53:7F:35:BB:14:83:3A:77:70:D4:DC X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/IW3Ud-yRPpicU381uxSDOndw1Nw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.102.148.0/22 Signature Algorithm: sha256WithRSAEncryption 41:9a:15:1e:aa:e3:35:d3:e1:b3:88:8e:1a:4a:19:92:41:3a: 4c:a3:3f:91:65:d6:65:06:5d:e0:6d:e8:e7:b3:88:34:be:9a: 6c:b3:c0:c3:d6:3e:20:64:9d:e3:b1:1e:a0:06:00:da:d7:73: 27:7f:ae:29:9b:d4:77:26:54:d3:7b:f0:2e:8e:8c:9b:69:af: 26:04:ac:ab:ee:d4:7b:85:7f:9f:d5:e8:19:e4:a8:a0:1a:a3: c2:cb:b3:e8:df:d9:ed:5f:6d:a8:6d:89:05:fc:82:2f:56:30: 1b:38:79:40:f5:ad:2c:b7:ac:10:2b:ba:9d:14:0a:95:b2:54: 92:bf:7d:61:fa:55:3c:f2:53:d0:9d:1a:a5:fc:25:d0:fd:1a: f5:1f:8b:67:c4:a4:3f:9a:85:c9:1b:7c:72:42:e6:ca:9b:9c: dc:f0:b1:a6:de:f9:52:6e:a5:df:6c:39:82:c4:85:fa:6d:11: 89:0e:e5:02:a5:65:62:8c:e7:ee:56:25:f4:13:fd:0b:19:2f: fd:5d:31:e6:55:c6:99:74:72:e6:93:68:24:b7:c9:90:a2:78: b5:a5:e5:46:3c:c2:47:76:e0:f6:d7:8c:93:48:a9:27:ca:03: 53:ad:6a:7b:d6:98:fb:3e:8b:70:72:51:5e:2a:86:c6:b4:d5: 21:8a:dd:5f -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBqMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTQzMTVaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDIxNkRENDc3RUM5MTNF OTg5QzUzN0YzNUJCMTQ4MzNBNzc3MEQ0REMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvadbEWhQ+fm7c0P+bSket883PP6wym5HiiddawqGA0ojPuSY+ MfynKZyuOargnORy0kzw5vJSdfERjHvuPoFfXV2pGsHW59pEiuE57/fP4mFGQ00I mxjww4gtg5pmet7Cf0/apxL9TVJeNyDqvGvpZw3ipGpiqep8iyPQHhtn7GfsHqe+ zozNrzvybH86Nv3iGPSCVFJsYOar2xVd6pyrVnOFH2vM+z662Ghu9vpK2YcTCLoB bO4ZKTekklB4adWfStt1gcay9NVLrwG3ii5hVu/pNBX9wQUdxkmiwNUkOWu5UgA5 eFWwKznBMn6LQNEZ+/dI0vypZapaZkqVIOINAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUIW3Ud+yRPpicU381uxSDOndw1NwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0lXM1VkLXlSUHBpY1UzODF1eFNET25kdzFOdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxZpQwDQYJKoZIhvcNAQELBQADggEBAEGaFR6q4zXT4bOIjhpKGZJBOkyj P5Fl1mUGXeBt6OeziDS+mmyzwMPWPiBkneOxHqAGANrXcyd/rimb1HcmVNN78C6O jJtpryYErKvu1HuFf5/V6BnkqKAao8LLs+jf2e1fbahtiQX8gi9WMBs4eUD1rSy3 rBArup0UCpWyVJK/fWH6VTzyU9CdGqX8JdD9GvUfi2fEpD+ahckbfHJC5sqbnNzw sabe+VJupd9sOYLEhfptEYkO5QKlZWKM5+5WJfQT/QsZL/1dMeZVxpl0cuaTaCS3 yZCieLWl5UY8wkd24PbXjJNIqSfKA1OtanvWmPs+i3ByUV4qhsa01SGK3V8= -----END CERTIFICATE-----Generated at Mon Nov 25 23:59:10 2024 by rpki-client on console-fra.rpki-client.org