$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/O2zFY_HWIoxaeG4GNm1O0cjKBKA.roa File: O2zFY_HWIoxaeG4GNm1O0cjKBKA.roa (raw, json) Hash identifier: pSRz7FihYLQy2uRJ8WzvzUZgLiUHfsBiw4dVmwqnllg= Subject key identifier: 3B:6C:C5:63:F1:D6:22:8C:5A:78:6E:06:36:6D:4E:D1:C8:CA:04:A0 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0510 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/O2zFY_HWIoxaeG4GNm1O0cjKBKA.roa Signing time: Thu 27 Jul 2023 16:52:12 +0000 ROA not before: Thu 27 Jul 2023 16:52:12 +0000 ROA not after: Sun 14 Jul 2024 01:30:03 +0000 asID: 9605 IP address blocks: 1.76.84.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1296 (0x510) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jul 27 16:52:12 2023 GMT Not After : Jul 14 01:30:03 2024 GMT Subject: CN=3B6CC563F1D6228C5A786E06366D4ED1C8CA04A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:40:b6:6c:64:8a:4a:ce:c7:c2:5d:c2:33:7e: 53:7c:da:0f:7f:80:2f:c8:b8:cd:3f:11:dd:14:72: 97:11:dd:1e:bc:95:e3:0e:a1:7a:d3:2b:ac:0f:05: 2b:1b:7a:76:82:86:33:54:22:23:50:6c:4f:e8:24: 8d:b5:f8:a6:da:99:68:c3:33:e3:2e:e4:7e:3a:81: 12:71:aa:a8:8c:58:7c:63:de:65:a2:20:eb:9c:63: a3:e6:35:11:9b:35:bd:5a:96:33:2a:e1:15:96:5b: b3:16:71:c3:3c:60:d6:05:62:5d:25:e8:46:34:b0: 3e:02:c2:a2:4d:8f:e4:8e:84:e8:52:71:b5:29:b2: f5:c3:9f:cf:10:2c:20:af:28:10:1d:54:5f:d6:16: 11:ce:b1:21:41:30:c7:ed:65:04:0b:cf:55:e4:c5: a6:5e:de:aa:ed:df:6d:ac:ea:ec:9a:e8:9f:42:a4: 1b:c4:0d:0f:f5:c8:59:fd:3f:1a:2d:04:de:18:e8: 8a:57:83:90:0c:44:e8:bc:17:82:01:69:ed:41:34: 53:90:d9:ca:e3:a7:70:6b:46:7f:11:0e:38:af:bd: 11:b0:79:14:5d:0d:f4:8e:0f:69:3f:d0:b1:84:ee: 07:a2:52:48:6f:da:36:09:a6:80:89:70:6c:01:49: 37:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:6C:C5:63:F1:D6:22:8C:5A:78:6E:06:36:6D:4E:D1:C8:CA:04:A0 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/O2zFY_HWIoxaeG4GNm1O0cjKBKA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.76.84.0/22 Signature Algorithm: sha256WithRSAEncryption 1b:22:4a:7b:a5:b4:00:57:56:23:da:d6:e0:f2:48:43:ca:8a: 01:63:4b:15:41:ea:5a:95:1f:69:8f:53:42:83:e5:d9:3e:16: 0e:d6:b6:b6:dd:df:82:1e:8c:68:dd:a8:59:21:47:1b:b9:ac: a7:2d:16:0b:ea:37:67:7c:d2:28:38:32:98:98:a4:02:f2:56: 42:81:61:24:bc:68:74:84:ae:39:0e:72:3b:03:5d:f0:00:24: 7f:01:80:a8:fb:c8:8a:15:ec:19:c6:6e:7b:e6:f1:94:6e:7c: d0:21:39:fb:cb:f7:85:01:8f:91:ea:b4:9d:4d:9e:e3:23:46: 63:5d:e9:c9:40:61:ac:6e:2a:8a:d0:77:c1:78:3b:c6:73:38: d8:af:a8:9b:84:f7:58:19:1d:00:46:06:6d:5d:32:21:86:6b: a1:ad:75:fe:8c:8f:11:e3:70:53:3c:ee:7b:56:bc:89:42:c5: 93:72:9f:aa:c3:e8:db:76:58:cf:0b:8e:79:5e:43:f0:b7:ef: 1b:67:43:c1:8a:a8:2b:5e:a2:48:a0:c1:36:27:14:1d:0e:4e: 9c:45:14:2b:20:4a:d7:5f:61:3c:e2:64:32:42:ce:07:69:a9: ea:17:dc:d3:68:48:22:83:67:d7:7c:f5:17:a7:46:7d:66:52: e4:91:ff:45 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBRAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA3Mjcx NjUyMTJaFw0yNDA3MTQwMTMwMDNaMDMxMTAvBgNVBAMTKDNCNkNDNTYzRjFENjIy OEM1QTc4NkUwNjM2NkQ0RUQxQzhDQTA0QTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQQLZsZIpKzsfCXcIzflN82g9/gC/IuM0/Ed0UcpcR3R68leMO oXrTK6wPBSsbenaChjNUIiNQbE/oJI21+KbamWjDM+Mu5H46gRJxqqiMWHxj3mWi IOucY6PmNRGbNb1aljMq4RWWW7MWccM8YNYFYl0l6EY0sD4CwqJNj+SOhOhScbUp svXDn88QLCCvKBAdVF/WFhHOsSFBMMftZQQLz1XkxaZe3qrt322s6uya6J9CpBvE DQ/1yFn9PxotBN4Y6IpXg5AMROi8F4IBae1BNFOQ2crjp3BrRn8RDjivvRGweRRd DfSOD2k/0LGE7geiUkhv2jYJpoCJcGwBSTejAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUO2zFY/HWIoxaeG4GNm1O0cjKBKAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L08yekZZX0hXSW94YWVHNEdObTFPMGNqS0JLQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBTFQwDQYJKoZIhvcNAQELBQADggEBABsiSnultABXViPa1uDySEPKigFj SxVB6lqVH2mPU0KD5dk+Fg7Wtrbd34IejGjdqFkhRxu5rKctFgvqN2d80ig4MpiY pALyVkKBYSS8aHSErjkOcjsDXfAAJH8BgKj7yIoV7BnGbnvm8ZRufNAhOfvL94UB j5HqtJ1NnuMjRmNd6clAYaxuKorQd8F4O8ZzONivqJuE91gZHQBGBm1dMiGGa6Gt df6MjxHjcFM87ntWvIlCxZNyn6rD6Nt2WM8LjnleQ/C37xtnQ8GKqCteokigwTYn FB0OTpxFFCsgStdfYTziZDJCzgdpqeoX3NNoSCKDZ9d89RenRn1mUuSR/0U= -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:47 2024 by rpki-client on console-fra.rpki-client.org