$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/KXEJulgcWjRw6_Nr0XviU-fHXEA.roa File: KXEJulgcWjRw6_Nr0XviU-fHXEA.roa (raw, json) Hash identifier: ryEyX8mM+60b4Aw+sGPDeqpPg+qMnhmkHO19ZwUvK5c= Subject key identifier: 29:71:09:BA:58:1C:5A:34:70:EB:F3:6B:D1:7B:E2:53:E7:C7:5C:40 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0718 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KXEJulgcWjRw6_Nr0XviU-fHXEA.roa Signing time: Tue 30 Apr 2024 01:53:01 +0000 ROA not before: Tue 30 Apr 2024 01:53:01 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.122.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1816 (0x718) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:53:01 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=297109BA581C5A3470EBF36BD17BE253E7C75C40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1a:b2:35:e7:d7:37:9c:c3:9b:70:5d:5c:cc: 78:71:30:47:95:94:ef:3d:08:4f:4b:b3:d9:c4:54: cd:b9:33:12:f7:b2:13:ea:ae:69:b5:b6:05:3e:d9: c0:07:cd:fd:db:6e:4c:4e:7d:78:a2:22:b8:ac:81: 51:cf:95:dd:9d:bf:da:df:25:3b:7f:4d:4f:65:38: 4d:2a:dd:cc:e3:3d:a1:ef:2a:a5:87:4d:b0:db:96: aa:3f:e8:30:4d:b9:bc:0e:c6:06:72:b6:48:78:f5: 8f:21:ef:21:0a:f1:ca:96:f5:f3:a3:ec:4e:43:82: d8:b6:55:f0:06:38:ed:95:8c:7a:d6:42:e8:f3:01: 74:3d:b1:6a:b1:f9:5f:ff:10:82:25:9c:06:91:3e: b5:b4:2a:99:95:21:e3:c8:48:b4:17:c5:64:d8:0a: eb:fc:b0:7e:dc:d7:08:af:b0:23:21:77:b9:4a:f6: 6d:09:13:47:9f:73:72:4b:89:97:b5:f0:83:02:04: 9c:58:ce:c7:1a:5d:01:d6:f8:47:7b:ae:dc:6a:71: af:d1:b9:b6:a7:b9:77:4c:a6:f5:ca:f3:e4:9c:24: 4c:fc:e0:f8:de:f2:5b:cf:88:57:6d:0b:90:1b:ff: 8f:dd:89:67:f6:db:a5:99:a6:20:09:2a:8f:b5:b8: 39:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:71:09:BA:58:1C:5A:34:70:EB:F3:6B:D1:7B:E2:53:E7:C7:5C:40 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/KXEJulgcWjRw6_Nr0XviU-fHXEA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.122.0/23 Signature Algorithm: sha256WithRSAEncryption d9:99:83:ee:31:cb:4e:8c:9f:d0:28:89:0f:8c:5e:c9:4f:32: e3:7d:cb:e2:ac:de:cd:15:f1:73:f8:87:c7:ce:f3:39:7e:d3: 48:1f:07:d6:47:1c:79:0d:f0:77:64:cb:86:e3:1a:2e:be:24: 79:3d:15:92:33:98:99:ad:fc:98:8c:2b:a3:5d:77:06:78:64: 40:ef:cf:a3:19:93:2e:33:50:0c:64:6b:a9:34:d9:ea:5b:db: ac:88:c9:21:84:bd:c7:77:ca:3d:23:ff:4c:aa:17:77:a3:c1: 93:c5:b5:e8:0f:57:b4:ae:d3:f2:3e:4d:b9:59:34:42:b3:83: 86:7b:d3:2f:fa:1c:b0:b9:78:5e:18:f2:0c:e9:f5:ba:dc:67: 9e:c7:93:58:36:4e:ab:dc:70:f9:58:93:d5:94:97:8a:c2:c2: 11:f1:b3:80:4f:5f:db:cc:c8:9e:e2:c7:25:27:89:2e:6a:8e: b8:8f:66:1c:4b:82:79:7a:73:b8:f3:60:09:6d:20:d9:5b:3c: 77:d7:5b:1d:36:cd:84:64:5c:aa:79:1d:19:7d:e8:d1:a1:ce: 98:cd:d8:4f:14:de:5d:39:90:ee:b7:71:5d:19:0a:db:98:a8: dc:fe:aa:3c:af:68:87:c2:43:80:ec:d2:88:c6:d0:2a:fe:3e: 8c:ce:b3:25 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBxgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTUzMDFaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDI5NzEwOUJBNTgxQzVB MzQ3MEVCRjM2QkQxN0JFMjUzRTdDNzVDNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/GrI159c3nMObcF1czHhxMEeVlO89CE9Ls9nEVM25MxL3shPq rmm1tgU+2cAHzf3bbkxOfXiiIrisgVHPld2dv9rfJTt/TU9lOE0q3czjPaHvKqWH TbDblqo/6DBNubwOxgZytkh49Y8h7yEK8cqW9fOj7E5Dgti2VfAGOO2VjHrWQujz AXQ9sWqx+V//EIIlnAaRPrW0KpmVIePISLQXxWTYCuv8sH7c1wivsCMhd7lK9m0J E0efc3JLiZe18IMCBJxYzscaXQHW+Ed7rtxqca/RubanuXdMpvXK8+ScJEz84Pje 8lvPiFdtC5Ab/4/diWf226WZpiAJKo+1uDl9AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUKXEJulgcWjRw6/Nr0XviU+fHXEAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0tYRUp1bGdjV2pSdzZfTnIwWHZpVS1mSFhFQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYnowDQYJKoZIhvcNAQELBQADggEBANmZg+4xy06Mn9AoiQ+MXslPMuN9 y+Ks3s0V8XP4h8fO8zl+00gfB9ZHHHkN8Hdky4bjGi6+JHk9FZIzmJmt/JiMK6Nd dwZ4ZEDvz6MZky4zUAxka6k02epb26yIySGEvcd3yj0j/0yqF3ejwZPFtegPV7Su 0/I+TblZNEKzg4Z70y/6HLC5eF4Y8gzp9brcZ57Hk1g2TqvccPlYk9WUl4rCwhHx s4BPX9vMyJ7ixyUniS5qjriPZhxLgnl6c7jzYAltINlbPHfXWx02zYRkXKp5HRl9 6NGhzpjN2E8U3l05kO63cV0ZCtuYqNz+qjyvaIfCQ4Ds0ojG0Cr+PozOsyU= -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:47 2024 by rpki-client on console-fra.rpki-client.org