$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/NGh_eO8ibNPvC1hEIEA-QdJIivc.roa File: NGh_eO8ibNPvC1hEIEA-QdJIivc.roa (raw, json) Hash identifier: ZEAPS0TaeJpQ32+HguiuLABCBH6HnUzG7G/gkJyoQUE= Subject key identifier: 34:68:7F:78:EF:22:6C:D3:EF:0B:58:44:20:40:3E:41:D2:48:8A:F7 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0660 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NGh_eO8ibNPvC1hEIEA-QdJIivc.roa Signing time: Tue 30 Apr 2024 01:34:50 +0000 ROA not before: Tue 30 Apr 2024 01:34:50 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.8.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1632 (0x660) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:34:50 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=34687F78EF226CD3EF0B584420403E41D2488AF7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:60:80:ef:ff:43:4e:fa:4a:35:fd:7e:ec:99: b8:0c:c3:a8:37:78:ef:eb:c8:fd:de:07:7e:57:e8: 5a:cf:6e:17:35:8d:fc:3d:3c:da:eb:9d:78:7f:84: 9d:04:44:b1:0b:d7:01:b3:bd:52:a4:8f:27:50:cf: 30:9e:83:48:79:74:b8:bc:81:77:00:35:e1:4c:f9: ad:6f:e1:b6:df:e2:ea:9c:ef:5a:0f:ef:1c:a0:ff: 47:56:eb:e5:89:4e:20:58:09:7c:63:f8:e4:7a:19: 02:27:87:12:a3:d2:f6:ec:30:1a:7a:c1:e5:0e:95: 51:dd:e8:f5:ea:84:33:d1:f8:05:11:57:d6:d7:9d: 7d:1e:b2:15:c9:e0:5d:0f:d4:37:f6:20:a9:41:e7: fa:bf:38:2d:ae:f2:85:eb:fb:c3:61:76:0a:59:e5: 15:9a:18:81:7c:03:af:4d:7d:2f:14:8a:47:d2:cb: 1c:8a:44:f6:57:cf:eb:4c:cb:d2:0d:cc:93:3e:35: db:90:f7:cc:fb:30:49:09:fd:c0:00:a9:07:bc:ea: 6a:16:f3:f9:0b:9e:96:fa:ba:34:1a:58:b6:f3:1b: d0:ee:0f:37:bf:ea:8d:d2:15:5c:8e:a6:92:00:2b: 4a:d7:27:85:0a:6b:e3:d7:90:f1:b4:6d:66:c7:2f: 73:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:68:7F:78:EF:22:6C:D3:EF:0B:58:44:20:40:3E:41:D2:48:8A:F7 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NGh_eO8ibNPvC1hEIEA-QdJIivc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.8.0/22 Signature Algorithm: sha256WithRSAEncryption 88:ee:ea:f2:77:67:b1:50:f6:f7:c9:52:4b:bd:1c:c2:8c:ed: b7:41:5c:fb:c4:c6:7d:ab:87:92:19:6b:e1:4a:13:de:0f:27: e1:39:4b:ff:99:fd:4c:2b:56:ac:1a:da:47:dc:d2:03:9a:35: ab:e6:37:27:ba:bb:04:47:8f:54:a4:ce:87:39:a7:e3:e7:9f: 86:64:fa:af:fd:8a:9c:c6:f4:28:27:67:b0:9f:ca:3c:88:c5: c0:46:1e:bf:fb:94:e4:2d:66:56:0f:0d:b5:40:0c:1d:84:56: 4d:65:08:6c:f2:19:60:4f:ab:a5:35:81:8e:11:54:d9:2b:2e: 32:05:60:a1:47:22:a1:62:39:ec:52:59:f6:21:da:c8:bc:e8: 86:1a:c8:f1:25:bc:82:fd:c6:bc:06:6b:92:ef:3f:33:af:63: 64:da:f9:f9:77:76:54:6d:1f:9a:5e:2b:7c:13:fb:9c:c2:49: a8:f2:9b:3b:da:e8:69:f7:98:88:b4:97:c3:94:4f:f6:89:62: 3d:56:e3:3d:8b:ac:fb:fb:0e:7c:13:50:d5:79:4c:57:e2:4d: bc:35:49:e9:64:10:96:a3:de:dc:9e:07:55:b2:9d:33:91:e9: 08:26:d3:bd:d9:25:a1:80:5c:a1:0a:91:ed:56:b9:c4:75:d0: 6e:c9:c7:c2 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBmAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTM0NTBaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDM0Njg3Rjc4RUYyMjZD RDNFRjBCNTg0NDIwNDAzRTQxRDI0ODhBRjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsYIDv/0NO+ko1/X7smbgMw6g3eO/ryP3eB35X6FrPbhc1jfw9 PNrrnXh/hJ0ERLEL1wGzvVKkjydQzzCeg0h5dLi8gXcANeFM+a1v4bbf4uqc71oP 7xyg/0dW6+WJTiBYCXxj+OR6GQInhxKj0vbsMBp6weUOlVHd6PXqhDPR+AURV9bX nX0eshXJ4F0P1Df2IKlB5/q/OC2u8oXr+8NhdgpZ5RWaGIF8A69NfS8UikfSyxyK RPZXz+tMy9INzJM+NduQ98z7MEkJ/cAAqQe86moW8/kLnpb6ujQaWLbzG9DuDze/ 6o3SFVyOppIAK0rXJ4UKa+PXkPG0bWbHL3NrAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUNGh/eO8ibNPvC1hEIEA+QdJIivcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L05HaF9lTzhpYk5QdkMxaEVJRUEtUWRKSWl2Yy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYggwDQYJKoZIhvcNAQELBQADggEBAIju6vJ3Z7FQ9vfJUku9HMKM7bdB XPvExn2rh5IZa+FKE94PJ+E5S/+Z/UwrVqwa2kfc0gOaNavmNye6uwRHj1Skzoc5 p+Pnn4Zk+q/9ipzG9CgnZ7CfyjyIxcBGHr/7lOQtZlYPDbVADB2EVk1lCGzyGWBP q6U1gY4RVNkrLjIFYKFHIqFiOexSWfYh2si86IYayPElvIL9xrwGa5LvPzOvY2Ta +fl3dlRtH5peK3wT+5zCSajymzva6Gn3mIi0l8OUT/aJYj1W4z2LrPv7DnwTUNV5 TFfiTbw1SelkEJaj3tyeB1WynTOR6Qgm073ZJaGAXKEKke1WucR10G7Jx8I= -----END CERTIFICATE-----Generated at Mon Nov 25 23:54:41 2024 by rpki-client on console-ams.rpki-client.org