$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/JE0MHIViC9pm_KAGBeqKP3KEBdQ.roa File: JE0MHIViC9pm_KAGBeqKP3KEBdQ.roa (raw, json) Hash identifier: g1+IKm3Lo06OUBOpW2uuJEIG2el50WzYTwvP+TIq70Q= Subject key identifier: 24:4D:0C:1C:85:62:0B:DA:66:FC:A0:06:05:EA:8A:3F:72:84:05:D4 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0600 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/JE0MHIViC9pm_KAGBeqKP3KEBdQ.roa Signing time: Thu 29 Feb 2024 01:35:47 +0000 ROA not before: Thu 29 Feb 2024 01:35:47 +0000 ROA not after: Fri 14 Feb 2025 01:30:03 +0000 asID: 9605 IP address blocks: 1.72.6.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1536 (0x600) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Feb 29 01:35:47 2024 GMT Not After : Feb 14 01:30:03 2025 GMT Subject: CN=244D0C1C85620BDA66FCA00605EA8A3F728405D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:3d:47:c7:8a:ec:3c:6b:80:b4:69:32:80:8a: d1:57:09:12:b0:80:0a:73:24:5f:85:37:8d:85:ce: 40:ee:d4:7d:68:6f:f9:c7:87:ec:a4:8d:4d:b8:e5: 9f:6b:2d:44:5a:d2:5c:eb:6e:37:e7:8f:ae:f5:0d: ff:68:d9:19:68:cc:2b:d1:7d:4c:1b:6b:ed:a3:8c: 26:0e:71:40:43:6b:9e:24:87:8d:09:6a:1a:1c:fa: 48:2f:52:eb:e3:f3:aa:5f:eb:6d:4b:e5:34:8b:f4: f5:51:e4:93:9d:c4:e5:e6:ed:d0:ec:75:d6:ae:1e: 2b:f6:7b:23:58:73:64:21:f5:4c:f4:5a:30:c3:40: 13:47:89:02:9e:0a:a1:22:31:53:75:cb:76:c9:d2: 1d:47:7d:80:2f:3c:c5:1c:c8:de:40:6d:8f:b6:be: c2:1f:25:c5:41:f4:5a:42:50:d5:c4:f0:c1:19:5d: 9d:27:60:ff:f9:33:84:c6:09:72:e3:9d:19:3c:37: 4a:5a:91:b8:33:bb:71:48:30:5d:59:8a:95:19:e6: f3:94:c1:f6:2c:68:f6:29:7d:ab:9a:14:63:cc:56: c0:06:c5:9c:38:0f:a9:49:0f:78:df:56:ab:95:af: a2:95:3b:6e:5b:fa:7e:1b:16:9b:f3:03:4f:07:2f: 95:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:4D:0C:1C:85:62:0B:DA:66:FC:A0:06:05:EA:8A:3F:72:84:05:D4 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/JE0MHIViC9pm_KAGBeqKP3KEBdQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.72.6.0/23 Signature Algorithm: sha256WithRSAEncryption 28:56:1f:c6:42:77:da:af:42:6b:6b:07:65:37:0e:68:b7:bf: 39:eb:b2:64:ae:0c:de:a2:45:22:40:b1:fd:47:ad:56:67:a2: 49:4e:0a:9d:cd:10:54:8b:b6:93:a0:ee:bb:56:1a:f9:94:b3: f6:67:86:c6:cc:2a:fd:8b:95:77:9c:09:25:8f:c4:1d:1d:e4: 94:66:6a:14:5e:75:d8:6d:16:36:9b:ed:67:ec:92:35:8c:d2: 41:c0:2b:32:db:3f:21:1b:cd:5c:a9:35:d5:d4:38:4a:67:4f: d7:e3:03:e0:6e:d6:cb:de:d7:f6:75:f1:33:d6:20:b6:86:1d: e3:08:da:1e:b2:fb:45:c7:7c:f6:05:4e:99:79:c8:40:34:d1: 71:06:4a:b2:d2:2a:a0:e8:f7:45:62:ef:7c:12:97:ad:ae:8f: 75:03:46:88:bb:af:62:ea:ea:7e:86:ca:2b:33:fc:63:04:0a: 0b:89:7c:e8:36:ef:a9:a5:7c:a1:90:58:62:71:ce:fb:a8:5f: 23:a6:6a:32:f4:33:ad:94:11:48:62:76:6d:f8:55:d3:3b:2b: 5e:16:a7:0d:13:39:a0:ad:ae:02:0d:57:ab:54:58:92:46:40: f6:06:1e:e3:e9:4e:0e:23:f1:e5:04:c6:40:88:f8:08:a9:40: 7c:41:8f:67 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBgAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDAyMjkw MTM1NDdaFw0yNTAyMTQwMTMwMDNaMDMxMTAvBgNVBAMTKDI0NEQwQzFDODU2MjBC REE2NkZDQTAwNjA1RUE4QTNGNzI4NDA1RDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQPUfHiuw8a4C0aTKAitFXCRKwgApzJF+FN42FzkDu1H1ob/nH h+ykjU245Z9rLURa0lzrbjfnj671Df9o2RlozCvRfUwba+2jjCYOcUBDa54kh40J ahoc+kgvUuvj86pf621L5TSL9PVR5JOdxOXm7dDsddauHiv2eyNYc2Qh9Uz0WjDD QBNHiQKeCqEiMVN1y3bJ0h1HfYAvPMUcyN5AbY+2vsIfJcVB9FpCUNXE8MEZXZ0n YP/5M4TGCXLjnRk8N0pakbgzu3FIMF1ZipUZ5vOUwfYsaPYpfauaFGPMVsAGxZw4 D6lJD3jfVquVr6KVO25b+n4bFpvzA08HL5UtAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUJE0MHIViC9pm/KAGBeqKP3KEBdQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0pFME1ISVZpQzlwbV9LQUdCZXFLUDNLRUJkUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBSAYwDQYJKoZIhvcNAQELBQADggEBAChWH8ZCd9qvQmtrB2U3Dmi3vznr smSuDN6iRSJAsf1HrVZnoklOCp3NEFSLtpOg7rtWGvmUs/ZnhsbMKv2LlXecCSWP xB0d5JRmahReddhtFjab7WfskjWM0kHAKzLbPyEbzVypNdXUOEpnT9fjA+Bu1sve 1/Z18TPWILaGHeMI2h6y+0XHfPYFTpl5yEA00XEGSrLSKqDo90Vi73wSl62uj3UD Roi7r2Lq6n6Gyisz/GMECguJfOg276mlfKGQWGJxzvuoXyOmajL0M62UEUhidm34 VdM7K14Wpw0TOaCtrgINV6tUWJJGQPYGHuPpTg4j8eUExkCI+AipQHxBj2c= -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:47 2024 by rpki-client on console-fra.rpki-client.org