$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/LIXMSQsg_e5EfQwsCVSXFSwHzh4.roa File: LIXMSQsg_e5EfQwsCVSXFSwHzh4.roa (raw, json) Hash identifier: uCYjSGabI6Qj+kmlbMDabRl1LzALzV9/ZXJ+r8cwKEk= Subject key identifier: 2C:85:CC:49:0B:20:FD:EE:44:7D:0C:2C:09:54:97:15:2C:07:CE:1E Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0701 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/LIXMSQsg_e5EfQwsCVSXFSwHzh4.roa Signing time: Tue 30 Apr 2024 01:52:51 +0000 ROA not before: Tue 30 Apr 2024 01:52:51 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.66.20.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1793 (0x701) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:52:51 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=2C85CC490B20FDEE447D0C2C095497152C07CE1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a0:63:3c:14:1c:d4:b3:9c:d4:ae:34:a6:bb: 1b:54:f4:12:dd:56:50:4f:b2:73:1e:7a:6c:0b:3a: 02:b5:92:78:2f:2f:8e:01:49:71:55:15:fd:0b:8c: a3:1c:1a:4f:9f:ad:b3:8f:97:7a:41:c5:54:ed:e5: 8f:a4:63:f8:68:47:86:0a:ef:86:30:2a:04:f7:00: 5e:ad:89:85:12:3f:fd:76:73:89:26:79:e4:8d:b4: 56:30:91:ff:74:bf:25:81:46:11:07:86:06:1e:40: 99:6f:31:17:f6:10:a3:57:9f:74:13:b6:b5:97:2f: ca:9a:e6:b4:77:dc:ae:b4:20:fe:ef:27:4e:ac:74: b3:2b:ce:a1:ae:ae:62:9b:7f:e5:69:88:67:1e:50: 86:e2:af:5c:52:ef:5d:fd:33:21:85:42:dc:38:4d: c6:d9:ff:ac:bb:64:12:b0:8c:02:14:6d:16:25:7d: 26:b4:ba:93:bc:46:4e:4b:62:50:a3:9c:51:8b:d1: 3e:de:39:a9:75:9c:46:ce:05:ad:c4:ca:1d:74:c0: 52:72:2e:2b:0b:a5:b6:a1:32:86:a5:8c:48:36:f5: a1:e9:48:23:de:e9:b5:f2:d7:80:97:3c:be:87:86: 86:ce:d2:87:b5:0e:a7:2c:ea:e7:1a:97:db:7c:48: a9:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:85:CC:49:0B:20:FD:EE:44:7D:0C:2C:09:54:97:15:2C:07:CE:1E X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/LIXMSQsg_e5EfQwsCVSXFSwHzh4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.66.20.0/22 Signature Algorithm: sha256WithRSAEncryption 63:c6:f0:4a:78:2f:90:01:bf:96:a0:f0:1c:b7:7e:cd:64:b1: 6f:9b:85:a5:dc:99:c5:d2:68:f8:f8:29:e4:61:a1:36:52:51: d7:e2:3b:6c:34:da:3e:90:87:38:f3:c2:59:1f:78:8d:2d:1f: 3a:1f:3e:c1:4d:34:5e:58:aa:ef:91:1b:78:93:8a:93:f0:f7: 2e:be:14:1c:e7:39:96:eb:f6:cc:83:d7:07:3e:9c:b7:e8:48: 17:c6:6b:a1:6e:90:2f:c7:d0:c7:82:d2:6f:cf:5c:62:79:9d: 98:61:1a:16:28:ba:ba:67:f6:11:e9:21:ef:a0:28:4a:96:0a: 44:f0:1b:27:41:2d:49:5e:f6:5f:d7:56:89:a3:96:fc:22:92: bc:dc:d8:63:b0:58:c5:a4:6e:20:07:aa:a1:55:51:79:70:37: fb:72:f4:a1:d8:e1:84:d1:20:04:9c:e6:70:1e:fb:ec:8e:a2: 00:aa:6f:bc:17:18:32:43:84:73:a0:99:3e:70:ce:b2:9b:c0: ce:42:5b:1c:3f:b9:ef:95:30:dd:d0:9d:a9:f6:47:82:a4:2a: 95:32:96:e6:ce:2e:59:ac:ea:d2:ae:1a:e2:93:8e:fe:4d:9f: 8d:28:62:0d:6a:59:16:8b:31:6c:68:5c:97:5e:ae:5f:eb:85: 59:9d:0e:8f -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBwEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTUyNTFaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDJDODVDQzQ5MEIyMEZE RUU0NDdEMEMyQzA5NTQ5NzE1MkMwN0NFMUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5oGM8FBzUs5zUrjSmuxtU9BLdVlBPsnMeemwLOgK1kngvL44B SXFVFf0LjKMcGk+frbOPl3pBxVTt5Y+kY/hoR4YK74YwKgT3AF6tiYUSP/12c4km eeSNtFYwkf90vyWBRhEHhgYeQJlvMRf2EKNXn3QTtrWXL8qa5rR33K60IP7vJ06s dLMrzqGurmKbf+VpiGceUIbir1xS7139MyGFQtw4TcbZ/6y7ZBKwjAIUbRYlfSa0 upO8Rk5LYlCjnFGL0T7eOal1nEbOBa3Eyh10wFJyLisLpbahMoaljEg29aHpSCPe 6bXy14CXPL6HhobO0oe1Dqcs6ucal9t8SKndAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQULIXMSQsg/e5EfQwsCVSXFSwHzh4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0xJWE1TUXNnX2U1RWZRd3NDVlNYRlN3SHpoNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBQhQwDQYJKoZIhvcNAQELBQADggEBAGPG8Ep4L5ABv5ag8By3fs1ksW+b haXcmcXSaPj4KeRhoTZSUdfiO2w02j6QhzjzwlkfeI0tHzofPsFNNF5Yqu+RG3iT ipPw9y6+FBznOZbr9syD1wc+nLfoSBfGa6FukC/H0MeC0m/PXGJ5nZhhGhYourpn 9hHpIe+gKEqWCkTwGydBLUle9l/XVomjlvwikrzc2GOwWMWkbiAHqqFVUXlwN/ty 9KHY4YTRIASc5nAe++yOogCqb7wXGDJDhHOgmT5wzrKbwM5CWxw/ue+VMN3Qnan2 R4KkKpUylubOLlms6tKuGuKTjv5Nn40oYg1qWRaLMWxoXJderl/rhVmdDo8= -----END CERTIFICATE-----Generated at Sat Jun 1 15:54:30 2024 by rpki-client on console-ams.rpki-client.org