$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/MG60cWyaCKdfas03nzwLrtFofoI.roa File: MG60cWyaCKdfas03nzwLrtFofoI.roa (raw, json) Hash identifier: 1qaWugpCduugvf0VbMtFqH2F/hSE8ra/da331KiZCQg= Subject key identifier: 30:6E:B4:71:6C:9A:08:A7:5F:6A:CD:37:9F:3C:0B:AE:D1:68:7E:82 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 065D Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/MG60cWyaCKdfas03nzwLrtFofoI.roa Signing time: Tue 30 Apr 2024 01:34:48 +0000 ROA not before: Tue 30 Apr 2024 01:34:48 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.105.76.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1629 (0x65d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:34:48 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=306EB4716C9A08A75F6ACD379F3C0BAED1687E82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:56:a4:92:29:a4:1e:1d:ae:15:a0:e6:26:67: 62:26:19:43:a9:4a:11:95:23:ec:18:d0:e1:b2:21: 1d:92:aa:f3:8b:e1:44:70:1a:cb:dc:64:36:fe:c5: 87:1b:b0:0b:a9:79:58:2a:7d:f7:d4:21:10:7e:2d: 04:53:ac:9b:73:e6:2a:03:b0:be:a4:59:07:cf:19: eb:d7:4c:68:8d:d0:73:da:5b:66:3d:ca:cc:7c:4c: 22:d4:13:49:01:9f:1e:27:49:fc:a5:9a:6b:f6:93: 0a:52:f5:0a:ad:2e:ea:54:41:92:bc:39:03:95:2b: dd:13:da:ea:d7:c3:53:35:e5:bd:f7:b6:ff:13:ca: ee:61:31:2c:82:a4:9c:6c:9c:fc:62:d8:b4:4d:95: a5:1f:b7:82:91:08:2c:e5:7a:ca:36:a8:3b:ae:2f: 73:79:23:08:22:4b:ae:5f:28:b6:68:10:4d:36:08: 13:0c:6a:0a:27:54:64:0d:ae:04:5e:34:91:6c:dc: dc:0a:6c:05:b6:a3:67:9c:9c:9e:f1:17:2c:df:72: f0:d3:30:bb:e1:8a:81:03:28:7d:4a:c3:b3:57:cb: 0f:b9:18:b9:f7:8f:37:65:ff:14:12:cf:08:e0:30: cb:98:59:e8:48:4c:a4:68:21:d3:90:69:27:48:c7: b0:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:6E:B4:71:6C:9A:08:A7:5F:6A:CD:37:9F:3C:0B:AE:D1:68:7E:82 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/MG60cWyaCKdfas03nzwLrtFofoI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.105.76.0/23 Signature Algorithm: sha256WithRSAEncryption 58:5d:6c:0f:3b:62:25:9e:2a:7a:b5:dd:82:a5:b7:82:4e:16: 56:67:f6:ac:8e:b5:cf:b6:0f:14:21:5f:fd:05:ed:be:0a:33: c6:32:b5:1e:00:c7:31:53:1f:2e:aa:56:d7:91:03:3c:fa:1a: 9b:5c:51:9e:ea:c5:ec:c5:24:cd:16:a6:e8:4c:a1:8a:19:7f: 96:80:0b:7a:01:f7:b3:6d:05:4c:3c:13:e1:22:c2:ae:11:d6: 0c:39:f4:7c:3f:9f:79:f9:3a:07:c1:20:11:10:ba:00:04:25: 07:39:03:b6:a8:e2:4a:d3:a3:0e:87:66:44:ee:19:dc:64:47: b3:28:f5:72:56:8e:9a:a1:ef:23:b0:ae:61:bd:fc:85:8d:76: 7b:27:8f:88:ff:6f:14:12:b1:96:4d:36:cb:33:51:fd:73:99: 0a:56:08:fb:17:41:82:fc:02:10:f9:37:ee:aa:7c:1e:0e:c1: b1:ff:f6:5c:e6:0f:98:aa:04:d6:47:6d:12:6d:00:6a:51:5c: 19:1a:28:7c:62:38:ad:f4:0a:49:59:2d:b7:14:10:cb:0e:59: 71:a3:1c:76:1d:0f:8d:f1:e4:7d:8a:1d:ba:38:2c:c9:d1:41: 3e:7c:14:e9:5c:5d:2c:e9:7b:97:90:1d:e3:1b:cd:4b:63:54: 9c:a4:20:26 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBl0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTM0NDhaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDMwNkVCNDcxNkM5QTA4 QTc1RjZBQ0QzNzlGM0MwQkFFRDE2ODdFODIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCcVqSSKaQeHa4VoOYmZ2ImGUOpShGVI+wY0OGyIR2SqvOL4URw GsvcZDb+xYcbsAupeVgqfffUIRB+LQRTrJtz5ioDsL6kWQfPGevXTGiN0HPaW2Y9 ysx8TCLUE0kBnx4nSfylmmv2kwpS9QqtLupUQZK8OQOVK90T2urXw1M15b33tv8T yu5hMSyCpJxsnPxi2LRNlaUft4KRCCzleso2qDuuL3N5IwgiS65fKLZoEE02CBMM agonVGQNrgReNJFs3NwKbAW2o2ecnJ7xFyzfcvDTMLvhioEDKH1Kw7NXyw+5GLn3 jzdl/xQSzwjgMMuYWehITKRoIdOQaSdIx7DxAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUMG60cWyaCKdfas03nzwLrtFofoIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L01HNjBjV3lhQ0tkZmFzMDNuendMcnRGb2ZvSS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExaUwwDQYJKoZIhvcNAQELBQADggEBAFhdbA87YiWeKnq13YKlt4JOFlZn 9qyOtc+2DxQhX/0F7b4KM8YytR4AxzFTHy6qVteRAzz6GptcUZ7qxezFJM0WpuhM oYoZf5aAC3oB97NtBUw8E+Eiwq4R1gw59Hw/n3n5OgfBIBEQugAEJQc5A7ao4krT ow6HZkTuGdxkR7Mo9XJWjpqh7yOwrmG9/IWNdnsnj4j/bxQSsZZNNsszUf1zmQpW CPsXQYL8AhD5N+6qfB4OwbH/9lzmD5iqBNZHbRJtAGpRXBkaKHxiOK30CklZLbcU EMsOWXGjHHYdD43x5H2KHbo4LMnRQT58FOlcXSzpe5eQHeMbzUtjVJykICY= -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:00 2024 by rpki-client on console-fra.rpki-client.org