$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/OIwJohAknNXmcWuSs1pyZDZjXcs.roa File: OIwJohAknNXmcWuSs1pyZDZjXcs.roa (raw, json) Hash identifier: hqfUPMIqzf9w8Towcgj2eOdHLq/odTXm4knJAiQda54= Subject key identifier: 38:8C:09:A2:10:24:9C:D5:E6:71:6B:92:B3:5A:72:64:36:63:5D:CB Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 066B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/OIwJohAknNXmcWuSs1pyZDZjXcs.roa Signing time: Tue 30 Apr 2024 01:34:56 +0000 ROA not before: Tue 30 Apr 2024 01:34:56 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1643 (0x66b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:34:56 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=388C09A210249CD5E6716B92B35A726436635DCB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:6c:4f:b9:2b:dd:63:d4:88:31:e6:eb:a4:2d: b6:82:1d:f1:f5:c0:4e:51:cf:7e:2f:9a:76:65:5c: d7:56:cf:0c:b9:de:f7:d8:45:e2:00:7a:fb:84:fe: 36:b0:cf:7a:07:4b:ef:4f:a7:e3:5b:0a:61:41:0e: d0:ae:2f:81:a1:d4:9f:71:45:93:a8:34:e8:76:52: 8a:6e:37:1d:9a:14:47:53:ec:50:af:23:28:2b:51: 27:1a:9f:c2:a9:c9:29:06:21:2f:3d:3b:cc:0c:05: e0:10:8b:9e:a5:58:fb:03:0d:5f:4f:f1:dc:1f:88: 11:59:19:f2:c4:01:37:12:80:36:b1:59:1c:87:79: 86:df:ed:ac:c0:38:2e:53:76:28:54:55:a9:22:da: 0f:5b:7c:70:f7:f0:a1:af:c3:e8:64:6f:21:87:f9: 97:d8:71:bb:36:30:59:98:f1:2c:04:a2:6e:a6:42: f8:a5:83:ba:f9:c7:ea:5d:bf:1f:9d:0b:5a:10:e3: 53:37:5e:85:85:14:45:f7:34:f6:94:80:10:7d:59: 15:4d:58:3f:8e:b8:40:13:3e:d7:68:0e:d6:88:ec: 10:a0:38:21:da:c1:df:5b:ff:4b:4f:d2:2b:64:09: 10:cd:b0:79:39:66:aa:20:b3:da:7c:31:7d:52:fa: fb:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:8C:09:A2:10:24:9C:D5:E6:71:6B:92:B3:5A:72:64:36:63:5D:CB X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/OIwJohAknNXmcWuSs1pyZDZjXcs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.48.0/24 Signature Algorithm: sha256WithRSAEncryption d0:90:03:b6:f2:1e:4f:b5:0e:9b:29:c6:27:46:b7:d0:e7:ce: 40:6a:06:73:94:03:f1:05:8e:10:0e:d7:a0:6d:99:ef:cc:7b: b6:58:7c:1c:3f:23:8d:5a:47:56:c2:8c:d4:48:3e:2e:b6:3b: f2:2b:bd:c1:d0:d5:09:8e:01:31:06:57:b7:61:97:07:26:a1: 3a:b6:88:73:98:27:44:63:b6:7d:f8:fb:39:61:3e:04:33:b5: 3c:ab:51:c6:45:3a:70:15:13:7c:8c:0e:72:99:29:f1:fb:65: 09:b0:aa:1e:05:64:75:c8:ba:b3:c8:72:03:5a:ba:a1:69:3e: 5b:cb:fc:f4:3f:0a:45:42:50:86:3d:1c:73:d8:d1:2b:aa:95: 9a:9f:e6:45:d0:75:10:3d:63:74:33:02:68:d0:a4:56:5a:c3: c7:63:b3:21:21:52:40:de:e8:8b:40:0e:32:50:64:44:a7:8e: 6f:f9:18:ce:0d:97:5f:5b:cf:c1:44:86:01:cf:f2:82:41:c9: ff:83:34:8b:c6:ae:a0:3c:2d:6b:ea:3a:91:f7:8d:a8:46:1a: f6:1c:d3:5a:1d:75:70:c8:5f:30:25:c5:5f:3f:cd:d4:2c:2e: f2:7a:98:9c:a8:46:8c:4d:09:4d:45:1e:3d:29:cb:72:e7:5e: e1:15:2b:a7 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBmswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTM0NTZaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDM4OEMwOUEyMTAyNDlD RDVFNjcxNkI5MkIzNUE3MjY0MzY2MzVEQ0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCobE+5K91j1Igx5uukLbaCHfH1wE5Rz34vmnZlXNdWzwy53vfY ReIAevuE/jawz3oHS+9Pp+NbCmFBDtCuL4Gh1J9xRZOoNOh2UopuNx2aFEdT7FCv IygrUScan8KpySkGIS89O8wMBeAQi56lWPsDDV9P8dwfiBFZGfLEATcSgDaxWRyH eYbf7azAOC5TdihUVaki2g9bfHD38KGvw+hkbyGH+ZfYcbs2MFmY8SwEom6mQvil g7r5x+pdvx+dC1oQ41M3XoWFFEX3NPaUgBB9WRVNWD+OuEATPtdoDtaI7BCgOCHa wd9b/0tP0itkCRDNsHk5Zqogs9p8MX1S+vsRAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUOIwJohAknNXmcWuSs1pyZDZjXcswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L09Jd0pvaEFrbk5YbWNXdVNzMXB5WkRaalhjcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxYDAwDQYJKoZIhvcNAQELBQADggEBANCQA7byHk+1DpspxidGt9DnzkBq BnOUA/EFjhAO16Btme/Me7ZYfBw/I41aR1bCjNRIPi62O/IrvcHQ1QmOATEGV7dh lwcmoTq2iHOYJ0Rjtn34+zlhPgQztTyrUcZFOnAVE3yMDnKZKfH7ZQmwqh4FZHXI urPIcgNauqFpPlvL/PQ/CkVCUIY9HHPY0SuqlZqf5kXQdRA9Y3QzAmjQpFZaw8dj syEhUkDe6ItADjJQZESnjm/5GM4Nl19bz8FEhgHP8oJByf+DNIvGrqA8LWvqOpH3 jahGGvYc01oddXDIXzAlxV8/zdQsLvJ6mJyoRoxNCU1FHj0py3LnXuEVK6c= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:40 2024 by rpki-client on console-ams.rpki-client.org