$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Pad4BOAZEXXjfgaCuHJUnGs-GDE.roa File: Pad4BOAZEXXjfgaCuHJUnGs-GDE.roa (raw, json) Hash identifier: 2q9MvBte5Whjae4PbtGTPUuIbobyd8XHFjlgdAmPdxk= Subject key identifier: 3D:A7:78:04:E0:19:11:75:E3:7E:06:82:B8:72:54:9C:6B:3E:18:31 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0141 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Pad4BOAZEXXjfgaCuHJUnGs-GDE.roa Signing time: Wed 24 May 2023 16:31:12 +0000 ROA not before: Wed 24 May 2023 16:31:12 +0000 ROA not after: Tue 14 May 2024 01:30:02 +0000 asID: 9605 IP address blocks: 1.78.10.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 13:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 321 (0x141) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: May 24 16:31:12 2023 GMT Not After : May 14 01:30:02 2024 GMT Subject: CN=3DA77804E0191175E37E0682B872549C6B3E1831 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:45:59:29:39:07:51:aa:ea:64:ea:99:e8:17: 3a:72:07:ad:56:88:5e:e1:83:56:c0:f6:a1:9c:9d: 23:f3:eb:b3:05:53:f3:55:c3:b4:94:00:09:1c:f6: 8d:25:3d:f8:7a:9b:4f:70:d2:64:61:01:4d:18:18: f8:52:62:9f:e1:f0:64:7b:1d:ad:1a:13:80:22:1a: 16:6c:d3:c4:ed:68:8d:ce:1e:e4:fe:02:6d:50:92: ff:4e:bd:17:f3:3c:38:13:56:7b:aa:77:6e:28:17: aa:84:61:80:28:54:5a:19:4b:50:1e:4e:cf:d5:f6: f5:b7:20:a4:b9:0e:41:81:16:b1:e1:6a:9b:14:35: e0:12:da:c8:bd:8f:8c:9a:a8:38:7a:39:26:76:24: 08:43:98:99:8d:63:5b:15:23:af:f9:7f:65:25:d6: b6:fc:13:19:a9:15:81:79:f5:ee:90:b6:46:b8:43: e7:5a:8d:17:f0:76:bb:33:91:66:85:0d:d0:89:84: 71:b7:f6:58:df:91:b1:86:65:2c:99:97:a5:dc:b3: 43:fa:83:32:8a:98:a6:5e:bb:24:3d:82:c3:8a:71: 0e:91:2b:14:86:f7:be:97:d5:de:b1:6d:c9:8b:17: d2:c7:d1:c5:45:9f:6b:90:9d:8d:2c:c8:85:f3:02: 68:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:A7:78:04:E0:19:11:75:E3:7E:06:82:B8:72:54:9C:6B:3E:18:31 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Pad4BOAZEXXjfgaCuHJUnGs-GDE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.78.10.0/23 Signature Algorithm: sha256WithRSAEncryption e4:de:7d:b8:1b:3b:aa:86:7e:23:d7:67:ae:cd:e7:fe:a6:8f: 25:c9:f6:4d:aa:0d:aa:b7:7a:d7:fb:e6:91:5a:46:b7:f4:87: 34:71:4b:ab:1c:9a:03:80:8d:34:1c:07:11:ee:fc:b8:83:9a: ac:f9:14:3e:99:3b:c4:77:90:9d:63:f1:bf:20:3e:dd:9f:5e: 1a:f0:53:32:34:4d:c3:84:9a:17:e6:b0:3d:d8:0a:2e:04:27: 58:2d:e7:6e:3b:c0:b9:d2:cd:f8:3f:8b:44:b7:38:b3:88:03: 24:d1:82:c3:fc:c0:04:fd:95:2c:e5:85:9f:bb:22:8c:53:de: 5f:79:b8:93:6b:c6:b2:74:65:f2:1a:b9:75:23:2e:74:e6:45: 8b:3e:64:da:13:dc:e6:fc:6a:6d:96:3f:39:07:97:e7:86:c0: 72:d7:77:71:77:e1:58:77:9c:6f:53:3c:d0:4c:bf:2d:a9:4b: 07:da:f9:6b:6e:3c:60:f3:5a:29:62:9a:45:ba:60:66:ce:15: d6:b1:6d:f8:50:51:db:33:cc:80:e4:3b:b7:66:dc:d4:a5:2b: 31:05:58:a9:3e:a7:50:d6:f3:ff:65:f1:a2:82:d4:f6:77:c6: ed:33:94:b6:bd:13:ba:eb:0e:6c:44:75:c9:2d:39:b8:85:35: 18:f8:88:8c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAUEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MjQx NjMxMTJaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDNEQTc3ODA0RTAxOTEx NzVFMzdFMDY4MkI4NzI1NDlDNkIzRTE4MzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZRVkpOQdRqupk6pnoFzpyB61WiF7hg1bA9qGcnSPz67MFU/NV w7SUAAkc9o0lPfh6m09w0mRhAU0YGPhSYp/h8GR7Ha0aE4AiGhZs08TtaI3OHuT+ Am1Qkv9OvRfzPDgTVnuqd24oF6qEYYAoVFoZS1AeTs/V9vW3IKS5DkGBFrHhapsU NeAS2si9j4yaqDh6OSZ2JAhDmJmNY1sVI6/5f2Ul1rb8ExmpFYF59e6Qtka4Q+da jRfwdrszkWaFDdCJhHG39ljfkbGGZSyZl6Xcs0P6gzKKmKZeuyQ9gsOKcQ6RKxSG 976X1d6xbcmLF9LH0cVFn2uQnY0syIXzAmgvAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUPad4BOAZEXXjfgaCuHJUnGs+GDEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1BhZDRCT0FaRVhYamZnYUN1SEpVbkdzLUdERS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBTgowDQYJKoZIhvcNAQELBQADggEBAOTefbgbO6qGfiPXZ67N5/6mjyXJ 9k2qDaq3etf75pFaRrf0hzRxS6scmgOAjTQcBxHu/LiDmqz5FD6ZO8R3kJ1j8b8g Pt2fXhrwUzI0TcOEmhfmsD3YCi4EJ1gt5247wLnSzfg/i0S3OLOIAyTRgsP8wAT9 lSzlhZ+7IoxT3l95uJNrxrJ0ZfIauXUjLnTmRYs+ZNoT3Ob8am2WPzkHl+eGwHLX d3F34Vh3nG9TPNBMvy2pSwfa+WtuPGDzWilimkW6YGbOFdaxbfhQUdszzIDkO7dm 3NSlKzEFWKk+p1DW8/9l8aKC1PZ3xu0zlLa9E7rrDmxEdcktObiFNRj4iIw= -----END CERTIFICATE-----Generated at Sat Apr 27 10:15:56 2024 by rpki-client on console-ams.rpki-client.org