$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/LZYrd_UdNV61-qfPPsEZircaXJg.roa File: LZYrd_UdNV61-qfPPsEZircaXJg.roa (raw, json) Hash identifier: NGkmHnAkdrpau3a839FvxGZJaKjj3R7CvDLHOH7V8tY= Subject key identifier: 2D:96:2B:77:F5:1D:35:5E:B5:FA:A7:CF:3E:C1:19:8A:B7:1A:5C:98 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 01C4 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/LZYrd_UdNV61-qfPPsEZircaXJg.roa Signing time: Wed 24 May 2023 16:40:30 +0000 ROA not before: Wed 24 May 2023 16:40:30 +0000 ROA not after: Tue 14 May 2024 01:30:02 +0000 asID: 9605 IP address blocks: 1.75.230.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 13:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 452 (0x1c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: May 24 16:40:30 2023 GMT Not After : May 14 01:30:02 2024 GMT Subject: CN=2D962B77F51D355EB5FAA7CF3EC1198AB71A5C98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:7b:eb:b7:0c:f2:8f:60:ed:ec:90:4d:fc:88: 7a:b9:f5:1e:24:21:7c:a0:60:0f:94:0d:a6:a5:d3: b7:4d:c0:18:f7:bc:2b:cb:0a:e5:3c:c0:ab:20:de: b8:00:db:0b:74:03:3c:fb:84:9d:3f:75:bd:bc:c9: fd:d7:d9:93:43:46:ba:5e:33:ac:ed:f4:af:b1:fd: 18:7a:e0:35:01:ca:17:b1:a6:12:a2:24:93:da:3a: 2c:63:15:c9:01:1c:c0:d4:77:4c:f9:9f:d6:89:21: 28:98:cb:39:f0:3c:39:99:75:d3:ce:f9:38:93:e3: 48:26:fb:01:76:ec:9e:a5:01:df:68:2b:9f:88:8c: ee:41:cb:a3:3e:6b:d5:66:78:e9:b5:51:b9:81:41: 1b:d7:41:e8:0c:9d:be:06:1e:bb:3d:cc:c8:7c:ce: aa:2e:97:8d:d1:8d:63:78:5c:06:c5:43:b4:b2:47: 36:42:ed:55:5d:d5:98:2a:79:08:49:04:e1:91:ef: 35:65:e8:ce:18:e3:72:24:d3:b7:4e:91:58:a8:b1: 54:0c:1b:1f:b8:cc:af:42:62:f5:e5:5f:1b:78:93: fe:d2:16:1c:cc:b6:6e:a4:41:26:da:42:ec:11:9d: 1f:2f:f8:82:4f:40:16:60:4b:d8:09:fc:7c:7a:9d: 2a:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:96:2B:77:F5:1D:35:5E:B5:FA:A7:CF:3E:C1:19:8A:B7:1A:5C:98 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/LZYrd_UdNV61-qfPPsEZircaXJg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.230.0/23 Signature Algorithm: sha256WithRSAEncryption e6:53:2b:0e:01:67:6a:df:1b:6d:5f:46:b8:41:48:18:6a:cf: 3e:d1:d5:85:8c:ef:a4:42:43:6c:b2:a1:44:99:70:60:36:1e: b0:b4:3c:89:eb:cf:a8:13:d5:41:75:2a:e3:f3:e6:12:c9:9e: 63:b4:c3:0c:51:f3:08:bb:b0:fa:12:15:af:d5:e4:52:5e:d5: 2c:8b:c9:c2:77:a2:bb:ee:a1:cc:2f:94:10:f0:04:95:8c:ee: 30:19:28:31:c5:75:49:ee:47:b1:1f:bf:f2:1a:79:4a:53:7f: 82:05:2c:f8:f9:c6:0e:e4:5b:a0:51:90:19:fb:71:ad:a0:99: 94:f6:3e:f7:2a:6a:72:f2:df:75:23:15:17:6a:2a:7d:f8:ab: 8f:7f:ad:cd:a4:6b:28:ae:61:be:00:3c:8c:9f:9e:d0:5a:d4: 9a:fc:d0:75:ab:75:a2:31:18:1e:9a:bc:61:02:5e:b7:ec:f0: 26:66:7d:3a:16:83:0f:a3:6f:b8:49:9b:42:f9:b9:47:df:a5: 14:02:d8:5d:ba:b3:a1:1f:d9:81:b7:ae:1c:c4:2b:00:a9:1e: d4:69:41:9e:96:71:22:e3:69:a5:48:65:7d:7d:65:43:5d:52: b6:fa:06:8d:03:16:55:87:a6:04:11:46:aa:b0:62:61:48:a7: 90:7d:5f:7d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAcQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MjQx NjQwMzBaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDJEOTYyQjc3RjUxRDM1 NUVCNUZBQTdDRjNFQzExOThBQjcxQTVDOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUe+u3DPKPYO3skE38iHq59R4kIXygYA+UDaal07dNwBj3vCvL CuU8wKsg3rgA2wt0Azz7hJ0/db28yf3X2ZNDRrpeM6zt9K+x/Rh64DUByhexphKi JJPaOixjFckBHMDUd0z5n9aJISiYyznwPDmZddPO+TiT40gm+wF27J6lAd9oK5+I jO5By6M+a9VmeOm1UbmBQRvXQegMnb4GHrs9zMh8zqoul43RjWN4XAbFQ7SyRzZC 7VVd1ZgqeQhJBOGR7zVl6M4Y43Ik07dOkViosVQMGx+4zK9CYvXlXxt4k/7SFhzM tm6kQSbaQuwRnR8v+IJPQBZgS9gJ/Hx6nSq1AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQULZYrd/UdNV61+qfPPsEZircaXJgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0xaWXJkX1VkTlY2MS1xZlBQc0VaaXJjYVhKZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBS+YwDQYJKoZIhvcNAQELBQADggEBAOZTKw4BZ2rfG21fRrhBSBhqzz7R 1YWM76RCQ2yyoUSZcGA2HrC0PInrz6gT1UF1KuPz5hLJnmO0wwxR8wi7sPoSFa/V 5FJe1SyLycJ3orvuocwvlBDwBJWM7jAZKDHFdUnuR7Efv/IaeUpTf4IFLPj5xg7k W6BRkBn7ca2gmZT2PvcqanLy33UjFRdqKn34q49/rc2kayiuYb4APIyfntBa1Jr8 0HWrdaIxGB6avGECXrfs8CZmfToWgw+jb7hJm0L5uUffpRQC2F26s6Ef2YG3rhzE KwCpHtRpQZ6WcSLjaaVIZX19ZUNdUrb6Bo0DFlWHpgQRRqqwYmFIp5B9X30= -----END CERTIFICATE-----Generated at Sat Apr 27 10:15:56 2024 by rpki-client on console-ams.rpki-client.org