$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/NAGsMxHFY7mNpP1KaFnvOGu_kl0.roa File: NAGsMxHFY7mNpP1KaFnvOGu_kl0.roa (raw, json) Hash identifier: 3l2s5OsCnrP7AlHk3ACT2mrgnmAnKxGHeQ2v1fRj+tw= Subject key identifier: 34:01:AC:33:11:C5:63:B9:8D:A4:FD:4A:68:59:EF:38:6B:BF:92:5D Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 06D8 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NAGsMxHFY7mNpP1KaFnvOGu_kl0.roa Signing time: Tue 30 Apr 2024 01:49:34 +0000 ROA not before: Tue 30 Apr 2024 01:49:34 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.254.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1752 (0x6d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:49:34 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=3401AC3311C563B98DA4FD4A6859EF386BBF925D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b4:21:18:69:0a:41:86:8a:b3:8d:2a:45:c5: 88:6a:47:10:98:fa:0b:9b:6f:04:89:71:30:3d:a2: f8:aa:a0:43:60:b8:de:58:b2:ec:6f:98:58:bd:28: b9:72:66:8a:e3:d1:f1:2a:15:46:81:cd:02:20:7e: e6:4a:72:cb:ad:41:6c:f5:4d:bc:be:44:e7:5e:05: 1e:d3:54:7e:37:b1:e9:2a:60:f4:77:b0:8b:c2:fb: 29:2d:69:1a:9f:a5:22:e9:be:b6:bb:f9:58:66:e6: 2d:df:21:5d:06:30:a1:d0:77:5c:d3:a1:22:17:48: c8:a7:5f:c1:3f:3a:4f:e5:2d:62:e9:31:3d:5c:7b: ce:f0:cf:50:31:e8:a4:e7:04:8f:69:ed:a0:55:37: b3:b0:57:9c:4a:9a:79:34:9c:78:d7:65:65:54:35: f4:88:d6:19:22:41:da:1c:46:18:d6:24:da:b9:14: 95:0e:e2:7a:49:d7:fd:d7:47:9e:2b:00:55:65:53: ec:42:c1:8e:69:62:63:15:bf:26:cc:42:04:88:aa: 09:5b:a2:33:2e:52:66:e6:dc:b3:ee:7e:99:07:d7: e1:fc:9a:14:0a:d5:91:0f:73:da:30:be:88:bc:fb: 09:15:94:2b:d8:d4:5e:85:53:1c:b8:36:18:4f:22: 1d:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:01:AC:33:11:C5:63:B9:8D:A4:FD:4A:68:59:EF:38:6B:BF:92:5D X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NAGsMxHFY7mNpP1KaFnvOGu_kl0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.254.0/23 Signature Algorithm: sha256WithRSAEncryption b3:c9:62:e7:23:61:68:b2:c9:9c:41:79:1c:b2:ac:1e:c0:ec: e6:75:fd:49:19:b9:84:04:25:39:84:6c:fe:42:0f:e3:df:c0: d7:65:7c:d2:e6:1f:f2:4c:f2:6a:d3:e8:96:13:6c:b8:e3:c8: 64:92:e9:96:db:ee:8a:9f:54:c3:e6:5d:c7:9c:b8:c4:eb:68: 6a:c6:0c:d7:5d:bb:61:bb:ea:dd:1e:87:01:79:dc:36:51:1c: d7:ca:fc:6a:40:5f:3b:fa:34:5d:37:4b:08:1c:0f:26:86:dd: 69:f1:36:da:9b:8e:52:f6:f8:ab:c6:f5:ed:3c:38:68:d3:ea: da:ed:ad:fb:3e:75:97:fe:98:8e:e6:c6:bb:91:4b:08:cb:9f: 1d:30:37:9c:c9:8c:89:5c:85:d6:43:d9:62:09:ea:5e:90:3b: f0:72:5b:c1:94:27:94:56:69:96:67:32:8b:04:12:44:c0:a8: a5:88:9c:c5:65:23:0d:6f:02:8a:06:11:44:fd:b7:c7:bc:57: ce:cd:fb:9d:44:2b:62:b7:f7:11:69:00:9d:6f:01:b2:46:d0: f8:94:35:2c:6a:b2:23:cb:17:26:dd:ee:22:ed:6e:a2:23:2b: d5:ac:72:23:e7:c3:24:e7:ef:6a:2d:45:88:d0:1d:58:76:a3: 51:da:3a:77 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBtgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTQ5MzRaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDM0MDFBQzMzMTFDNTYz Qjk4REE0RkQ0QTY4NTlFRjM4NkJCRjkyNUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+tCEYaQpBhoqzjSpFxYhqRxCY+gubbwSJcTA9oviqoENguN5Y suxvmFi9KLlyZorj0fEqFUaBzQIgfuZKcsutQWz1Tby+ROdeBR7TVH43sekqYPR3 sIvC+yktaRqfpSLpvra7+Vhm5i3fIV0GMKHQd1zToSIXSMinX8E/Ok/lLWLpMT1c e87wz1Ax6KTnBI9p7aBVN7OwV5xKmnk0nHjXZWVUNfSI1hkiQdocRhjWJNq5FJUO 4npJ1/3XR54rAFVlU+xCwY5pYmMVvybMQgSIqglbojMuUmbm3LPufpkH1+H8mhQK 1ZEPc9owvoi8+wkVlCvY1F6FUxy4NhhPIh1hAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUNAGsMxHFY7mNpP1KaFnvOGu/kl0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L05BR3NNeEhGWTdtTnBQMUthRm52T0d1X2tsMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYP4wDQYJKoZIhvcNAQELBQADggEBALPJYucjYWiyyZxBeRyyrB7A7OZ1 /UkZuYQEJTmEbP5CD+PfwNdlfNLmH/JM8mrT6JYTbLjjyGSS6Zbb7oqfVMPmXcec uMTraGrGDNddu2G76t0ehwF53DZRHNfK/GpAXzv6NF03SwgcDyaG3WnxNtqbjlL2 +KvG9e08OGjT6trtrfs+dZf+mI7mxruRSwjLnx0wN5zJjIlchdZD2WIJ6l6QO/By W8GUJ5RWaZZnMosEEkTAqKWInMVlIw1vAooGEUT9t8e8V87N+51EK2K39xFpAJ1v AbJG0PiUNSxqsiPLFybd7iLtbqIjK9WsciPnwyTn72otRYjQHVh2o1HaOnc= -----END CERTIFICATE-----Generated at Sat Jun 1 15:54:30 2024 by rpki-client on console-ams.rpki-client.org