$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/N9S9b3RUj8QBPt4HD_u5RR1hDhE.roa File: N9S9b3RUj8QBPt4HD_u5RR1hDhE.roa (raw, json) Hash identifier: FoylxScSv6vlx0Z/hR2BmpokX21WlPPoX9GszewfXvg= Subject key identifier: 37:D4:BD:6F:74:54:8F:C4:01:3E:DE:07:0F:FB:B9:45:1D:61:0E:11 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 05BA Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/N9S9b3RUj8QBPt4HD_u5RR1hDhE.roa Signing time: Tue 22 Aug 2023 05:29:30 +0000 ROA not before: Tue 22 Aug 2023 05:29:30 +0000 ROA not after: Wed 14 Aug 2024 01:30:02 +0000 asID: 9605 IP address blocks: 49.109.16.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1466 (0x5ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Aug 22 05:29:30 2023 GMT Not After : Aug 14 01:30:02 2024 GMT Subject: CN=37D4BD6F74548FC4013EDE070FFBB9451D610E11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:92:89:0b:02:5f:8e:1b:69:18:35:f3:e8:72: 5e:f7:99:40:08:18:b4:56:bd:47:17:72:5b:c6:8c: af:7e:8b:3e:6a:be:8a:86:27:f6:79:2c:b8:89:7e: c8:c7:58:55:6e:1e:af:53:91:b7:ae:b7:f5:34:fe: f3:b3:18:26:6a:43:8c:89:73:52:a3:db:89:27:1d: 47:91:3e:14:12:98:24:9a:dd:13:08:47:f1:2a:62: 5d:f6:92:f8:58:05:30:f7:41:a9:fb:a2:bc:8c:33: 8b:79:ce:a8:6c:d2:b9:c1:34:37:a9:16:4b:30:41: cf:31:46:ba:48:73:65:1e:ea:49:bf:f6:66:46:78: f7:de:5d:8b:86:1a:3d:90:9b:c5:d5:6c:a2:b5:01: 6c:f4:d6:a3:11:db:76:1c:b0:b1:d3:d2:7c:c5:d5: b0:04:ee:e6:83:d3:bb:33:16:19:53:ae:e9:48:3d: 36:e4:37:e8:90:ed:48:4a:d3:17:bb:9a:7a:ba:08: dc:f0:65:6b:b0:80:2c:65:5b:e4:81:e5:b1:c5:44: e5:4a:79:a6:30:de:67:60:d8:a1:c0:14:02:07:08: 27:65:30:8b:ef:48:3c:99:8b:28:20:65:67:b0:5e: e4:ce:ff:1a:8a:04:87:eb:fe:84:6f:57:df:f7:35: af:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:D4:BD:6F:74:54:8F:C4:01:3E:DE:07:0F:FB:B9:45:1D:61:0E:11 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/N9S9b3RUj8QBPt4HD_u5RR1hDhE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.109.16.0/20 Signature Algorithm: sha256WithRSAEncryption a5:44:7e:7f:dc:44:7b:e5:9c:88:e5:77:1c:5c:1d:c2:2b:99: b9:dd:17:76:22:75:73:65:25:8e:ef:47:16:76:28:03:69:6c: 55:d2:4f:77:87:1e:d8:2a:14:10:2a:4e:b0:d2:f2:0a:ce:88: 24:5b:7f:7e:a1:0d:4e:b8:84:fe:f1:d7:aa:25:b0:44:fa:4a: 66:d5:af:80:b0:f6:47:dd:1f:0b:0a:47:97:e5:fa:c1:22:97: 5b:e0:61:4f:3e:f5:98:2f:a8:d6:2d:76:86:14:29:57:8f:c5: ef:28:ac:c9:85:f3:31:18:da:74:02:82:4c:6c:ab:30:22:90: 71:60:a9:da:37:48:d9:17:0e:4b:a0:16:28:9b:4c:b8:99:75: 8f:d5:c4:57:f1:56:79:b2:ff:b7:24:5d:98:be:61:df:d4:6b: 64:d0:3a:11:60:fa:4f:8e:97:6f:59:52:58:d3:37:a8:66:24: 7a:ce:95:ca:e3:b9:42:4c:e9:7e:26:ad:75:f6:04:84:38:ec: a5:0b:1e:01:c6:f8:b6:5d:7c:67:ce:62:ae:1d:1b:7b:12:77: eb:76:6c:ad:3b:ba:c8:61:de:2c:d1:8c:7f:d0:5c:ed:0d:74: a9:f8:51:8d:49:9d:10:09:50:3d:a9:8a:d1:6d:67:34:a9:5b: ec:21:90:c0 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBbowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA4MjIw NTI5MzBaFw0yNDA4MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDM3RDRCRDZGNzQ1NDhG QzQwMTNFREUwNzBGRkJCOTQ1MUQ2MTBFMTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIkokLAl+OG2kYNfPocl73mUAIGLRWvUcXclvGjK9+iz5qvoqG J/Z5LLiJfsjHWFVuHq9Tkbeut/U0/vOzGCZqQ4yJc1Kj24knHUeRPhQSmCSa3RMI R/EqYl32kvhYBTD3Qan7oryMM4t5zqhs0rnBNDepFkswQc8xRrpIc2Ue6km/9mZG ePfeXYuGGj2Qm8XVbKK1AWz01qMR23YcsLHT0nzF1bAE7uaD07szFhlTrulIPTbk N+iQ7UhK0xe7mnq6CNzwZWuwgCxlW+SB5bHFROVKeaYw3mdg2KHAFAIHCCdlMIvv SDyZiyggZWewXuTO/xqKBIfr/oRvV9/3Na9TAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUN9S9b3RUj8QBPt4HD/u5RR1hDhEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L045UzliM1JVajhRQlB0NEhEX3U1UlIxaERoRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQxbRAwDQYJKoZIhvcNAQELBQADggEBAKVEfn/cRHvlnIjldxxcHcIrmbnd F3YidXNlJY7vRxZ2KANpbFXST3eHHtgqFBAqTrDS8grOiCRbf36hDU64hP7x16ol sET6SmbVr4Cw9kfdHwsKR5fl+sEil1vgYU8+9ZgvqNYtdoYUKVePxe8orMmF8zEY 2nQCgkxsqzAikHFgqdo3SNkXDkugFiibTLiZdY/VxFfxVnmy/7ckXZi+Yd/Ua2TQ OhFg+k+Ol29ZUljTN6hmJHrOlcrjuUJM6X4mrXX2BIQ47KULHgHG+LZdfGfOYq4d G3sSd+t2bK07ushh3izRjH/QXO0NdKn4UY1JnRAJUD2pitFtZzSpW+whkMA= -----END CERTIFICATE-----Generated at Sat Jun 1 15:54:30 2024 by rpki-client on console-ams.rpki-client.org