$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/MqKFUVMYxuTlYfsGaIkdBJ3ORKM.roa File: MqKFUVMYxuTlYfsGaIkdBJ3ORKM.roa (raw, json) Hash identifier: tyS5OjLi8mubY8+bVvfg25v+Pb3rAojnllaqBbz8M3M= Subject key identifier: 32:A2:85:51:53:18:C6:E4:E5:61:FB:06:68:89:1D:04:9D:CE:44:A3 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 08EA Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/MqKFUVMYxuTlYfsGaIkdBJ3ORKM.roa Signing time: Tue 30 Apr 2024 02:26:30 +0000 ROA not before: Tue 30 Apr 2024 02:26:30 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.104.12.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2282 (0x8ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:26:30 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=32A285515318C6E4E561FB0668891D049DCE44A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:06:09:00:2b:f2:b0:87:22:84:51:f1:d0:6c: 97:6b:7b:81:a8:b7:43:d6:6c:bc:f9:ba:ef:fb:82: 91:5f:4f:c4:53:dc:77:cc:56:39:3e:12:1d:22:57: 18:01:8f:c5:95:f9:fa:b0:de:b1:dc:e5:a5:96:6e: 89:d8:3b:a4:0d:17:6c:59:7c:5c:22:7b:b7:27:e3: 0d:19:07:c3:9b:51:33:87:6e:db:bb:7a:05:b4:73: 55:8f:9b:79:a2:71:dd:56:c9:f0:0a:78:1a:57:fa: d2:48:d8:e9:5f:b2:9d:b6:07:3e:06:c7:52:53:be: 1d:c3:dc:3d:10:a6:c4:28:6b:3c:8c:77:b0:8f:bf: f3:b8:38:3a:06:fc:76:60:af:c3:2d:a4:cc:b3:28: 00:45:19:83:2e:5d:6b:63:c9:b3:1c:b2:a2:56:fb: 4e:e7:69:34:dd:e1:bc:64:37:91:c3:be:1e:5e:d8: e0:f0:fa:8e:ea:58:5b:73:87:e3:57:2f:36:a1:4b: c0:82:db:b9:95:19:40:4b:d3:7c:61:d9:13:7a:ff: cd:54:1a:1f:c4:37:dd:ae:ee:8a:25:2e:18:d2:d9: af:7b:12:67:18:a1:b4:07:71:b9:87:a8:65:8c:58: 24:ed:ce:5b:c0:11:de:1d:c6:7d:8b:27:cd:4b:30: ad:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:A2:85:51:53:18:C6:E4:E5:61:FB:06:68:89:1D:04:9D:CE:44:A3 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/MqKFUVMYxuTlYfsGaIkdBJ3ORKM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.104.12.0/22 Signature Algorithm: sha256WithRSAEncryption 45:80:3f:60:09:94:e1:fb:28:d6:89:c2:98:7d:ef:50:c1:92: 4c:e6:22:67:07:22:f4:c3:82:00:c0:af:ce:02:f8:2d:69:da: 6a:65:4a:e8:a7:7c:7b:01:06:89:2a:2f:2d:e6:bc:7d:c1:1b: 63:51:25:4c:59:d2:a8:fc:b7:31:be:50:2f:6c:ad:a9:29:65: 6d:33:7f:0f:70:a0:36:d1:22:1a:e6:ec:87:47:72:84:db:fe: 9f:7a:0f:6a:c4:1d:98:c6:5e:63:ee:b7:fe:bd:69:00:d4:f3: fe:86:00:2d:19:de:f9:b9:b3:af:93:0c:5b:2e:88:b4:52:ed: 2f:e7:03:fa:23:57:0e:cc:d0:82:a2:2a:3a:ae:dd:35:c0:8a: b0:1d:65:1f:c2:ac:1f:67:1f:31:ec:f9:44:c5:30:20:07:ca: d7:32:a9:91:ec:b5:7c:3c:60:ef:a0:c5:cd:25:3b:f4:ce:15: 10:ae:57:9b:7b:53:9a:70:fb:67:9c:fb:92:bd:d3:42:bc:07: 33:4a:e9:69:a7:e3:9e:f7:07:ec:25:ea:37:5d:58:a5:3e:c7: a9:bb:18:7f:2d:36:67:b2:44:84:db:e3:fa:ae:57:bf:98:9e: a6:4f:f8:0b:0d:00:65:d3:88:85:e6:af:c6:2e:82:f6:7d:7d: 9a:f1:0e:16 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCOowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjI2MzBaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDMyQTI4NTUxNTMxOEM2 RTRFNTYxRkIwNjY4ODkxRDA0OURDRTQ0QTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYBgkAK/KwhyKEUfHQbJdre4Got0PWbLz5uu/7gpFfT8RT3HfM Vjk+Eh0iVxgBj8WV+fqw3rHc5aWWbonYO6QNF2xZfFwie7cn4w0ZB8ObUTOHbtu7 egW0c1WPm3micd1WyfAKeBpX+tJI2Olfsp22Bz4Gx1JTvh3D3D0QpsQoazyMd7CP v/O4ODoG/HZgr8MtpMyzKABFGYMuXWtjybMcsqJW+07naTTd4bxkN5HDvh5e2ODw +o7qWFtzh+NXLzahS8CC27mVGUBL03xh2RN6/81UGh/EN92u7oolLhjS2a97EmcY obQHcbmHqGWMWCTtzlvAEd4dxn2LJ81LMK2FAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUMqKFUVMYxuTlYfsGaIkdBJ3ORKMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L01xS0ZVVk1ZeHVUbFlmc0dhSWtkQkozT1JLTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxaAwwDQYJKoZIhvcNAQELBQADggEBAEWAP2AJlOH7KNaJwph971DBkkzm ImcHIvTDggDAr84C+C1p2mplSuinfHsBBokqLy3mvH3BG2NRJUxZ0qj8tzG+UC9s rakpZW0zfw9woDbRIhrm7IdHcoTb/p96D2rEHZjGXmPut/69aQDU8/6GAC0Z3vm5 s6+TDFsuiLRS7S/nA/ojVw7M0IKiKjqu3TXAirAdZR/CrB9nHzHs+UTFMCAHytcy qZHstXw8YO+gxc0lO/TOFRCuV5t7U5pw+2ec+5K900K8BzNK6Wmn4573B+wl6jdd WKU+x6m7GH8tNmeyRITb4/quV7+YnqZP+AsNAGXTiIXmr8YugvZ9fZrxDhY= -----END CERTIFICATE-----Generated at Mon Nov 25 23:54:41 2024 by rpki-client on console-ams.rpki-client.org