$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/IsU5fX5kcc1BjFRgf_7019VUrjk.roa File: IsU5fX5kcc1BjFRgf_7019VUrjk.roa (raw, json) Hash identifier: 1Jn3aHgVil+DNrjIsnMIawYSPDa5+2riywZdMRgdHyE= Subject key identifier: 22:C5:39:7D:7E:64:71:CD:41:8C:54:60:7F:FE:F4:D7:D5:54:AE:39 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 06DB Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/IsU5fX5kcc1BjFRgf_7019VUrjk.roa Signing time: Tue 30 Apr 2024 01:49:35 +0000 ROA not before: Tue 30 Apr 2024 01:49:35 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.73.72.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1755 (0x6db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:49:35 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=22C5397D7E6471CD418C54607FFEF4D7D554AE39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:8d:0b:2f:d3:31:2a:64:ba:20:89:fa:93:6b: 3d:92:c0:63:36:a5:31:3e:ff:f1:b8:a2:02:04:ab: e4:dd:0f:e6:60:d9:c4:97:ce:06:d0:e7:80:58:d2: a6:c6:1f:9e:7e:97:a5:82:66:86:a0:b1:77:ae:5c: 55:ab:fd:e5:e0:fb:d3:79:8f:11:bf:cf:e7:75:c1: 99:a8:30:68:ae:1b:3d:f6:08:51:b9:6f:34:c5:85: 2b:8b:4b:d1:1e:90:3a:e9:9f:a3:63:f2:65:83:1b: 72:ce:80:ad:cf:ce:c3:08:83:d6:26:76:bc:da:3a: dd:b6:cf:ec:b7:fb:cf:e7:67:3d:3f:a3:4c:4e:36: 67:72:49:03:ed:ee:02:dc:24:29:68:ba:82:f1:04: 2c:26:3a:8b:20:25:1c:10:b2:37:65:f2:47:a6:dd: 4a:05:43:c2:60:6b:77:be:17:d3:32:fb:f9:1b:cd: 1b:30:6d:52:5a:6b:29:d1:39:46:74:c6:8f:59:f2: b5:9d:18:43:fe:7f:f0:ed:71:bf:04:3c:75:11:72: 9c:d8:db:a1:ef:21:bd:23:2a:35:fb:8e:a6:39:bd: d1:78:f9:67:e1:af:d9:47:c5:4f:0b:46:e4:01:8a: 0d:12:ba:22:20:18:0f:6c:4b:62:d3:03:ec:e6:ab: da:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:C5:39:7D:7E:64:71:CD:41:8C:54:60:7F:FE:F4:D7:D5:54:AE:39 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/IsU5fX5kcc1BjFRgf_7019VUrjk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.73.72.0/23 Signature Algorithm: sha256WithRSAEncryption 0b:46:51:53:79:a0:c8:60:b7:36:38:e5:78:de:d6:c5:ae:83: 23:ba:55:65:4c:b0:75:4b:2e:d0:f2:6c:ec:22:01:e8:61:95: 6f:77:e1:b4:28:14:4e:b2:14:32:ff:e0:9c:53:ee:3c:18:73: fe:cd:1e:92:d4:d1:9c:e8:43:95:9b:2a:93:55:76:2b:52:b0: 42:24:fe:8d:42:d7:bb:1c:29:e0:18:b6:63:ca:d8:3c:f4:55: 3f:0f:20:02:a2:87:e5:5a:c0:5e:2a:23:40:34:0b:08:9a:b4: b7:3e:14:a0:f0:d5:36:61:d0:3b:1d:78:bf:62:ae:8c:78:82: 8e:71:4f:67:bc:62:1d:69:1c:4e:b2:42:0f:c0:ce:53:0f:50: 4e:c5:ea:11:d0:16:a4:b6:5a:3d:16:62:ec:49:dd:be:ae:20: 4b:5e:4a:a7:ac:5d:37:02:3b:84:fb:28:62:72:bd:83:c1:08: 59:37:f5:cd:20:14:88:ea:79:38:95:73:94:b6:2d:8f:68:5d: 89:50:92:7b:1e:e7:a8:55:26:d9:e8:ed:93:c3:4f:aa:01:94: 45:e4:c1:17:85:7e:11:64:cc:ae:24:9b:61:9e:5d:2f:9c:ee: be:af:ad:8e:b6:ef:f3:d0:bf:5b:2f:f9:ae:af:b0:ec:18:8b: f6:aa:e5:1c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBtswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTQ5MzVaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDIyQzUzOTdEN0U2NDcx Q0Q0MThDNTQ2MDdGRkVGNEQ3RDU1NEFFMzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdjQsv0zEqZLogifqTaz2SwGM2pTE+//G4ogIEq+TdD+Zg2cSX zgbQ54BY0qbGH55+l6WCZoagsXeuXFWr/eXg+9N5jxG/z+d1wZmoMGiuGz32CFG5 bzTFhSuLS9EekDrpn6Nj8mWDG3LOgK3PzsMIg9YmdrzaOt22z+y3+8/nZz0/o0xO NmdySQPt7gLcJClouoLxBCwmOosgJRwQsjdl8kem3UoFQ8Jga3e+F9My+/kbzRsw bVJaaynROUZ0xo9Z8rWdGEP+f/Dtcb8EPHURcpzY26HvIb0jKjX7jqY5vdF4+Wfh r9lHxU8LRuQBig0SuiIgGA9sS2LTA+zmq9rRAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUIsU5fX5kcc1BjFRgf/7019VUrjkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0lzVTVmWDVrY2MxQmpGUmdmXzcwMTlWVXJqay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBSUgwDQYJKoZIhvcNAQELBQADggEBAAtGUVN5oMhgtzY45Xje1sWugyO6 VWVMsHVLLtDybOwiAehhlW934bQoFE6yFDL/4JxT7jwYc/7NHpLU0ZzoQ5WbKpNV ditSsEIk/o1C17scKeAYtmPK2Dz0VT8PIAKih+VawF4qI0A0CwiatLc+FKDw1TZh 0DsdeL9irox4go5xT2e8Yh1pHE6yQg/AzlMPUE7F6hHQFqS2Wj0WYuxJ3b6uIEte SqesXTcCO4T7KGJyvYPBCFk39c0gFIjqeTiVc5S2LY9oXYlQknse56hVJtno7ZPD T6oBlEXkwReFfhFkzK4km2GeXS+c7r6vrY627/PQv1sv+a6vsOwYi/aq5Rw= -----END CERTIFICATE-----Generated at Sat Jun 1 15:54:30 2024 by rpki-client on console-ams.rpki-client.org