$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/PdgRqQtsnGpmvTRqNeFazn7uSnk.roa File: PdgRqQtsnGpmvTRqNeFazn7uSnk.roa (raw, json) Hash identifier: d3UBv5MFkj+nHmZwLnOaiFgkAX3mDaffq2LjBNslmlU= Subject key identifier: 3D:D8:11:A9:0B:6C:9C:6A:66:BD:34:6A:35:E1:5A:CE:7E:EE:4A:79 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0611 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/PdgRqQtsnGpmvTRqNeFazn7uSnk.roa Signing time: Thu 29 Feb 2024 01:38:29 +0000 ROA not before: Thu 29 Feb 2024 01:38:29 +0000 ROA not after: Fri 14 Feb 2025 01:30:03 +0000 asID: 9605 IP address blocks: 1.66.96.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1553 (0x611) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Feb 29 01:38:29 2024 GMT Not After : Feb 14 01:30:03 2025 GMT Subject: CN=3DD811A90B6C9C6A66BD346A35E15ACE7EEE4A79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:12:f8:b4:92:81:52:08:88:e2:81:a6:0c:a6: 37:95:e0:d3:7f:34:64:56:c5:76:66:00:7d:c7:58: ed:1a:fc:71:aa:c9:02:15:bf:50:ae:e1:c3:ee:b4: 58:c8:e3:64:02:f9:4d:b0:fe:4f:9f:0c:26:e8:a4: 73:21:9d:f0:30:4e:94:2a:3d:0b:e4:a0:a2:0f:d6: 74:a0:c5:de:0b:c9:77:71:0b:0a:74:18:f8:c2:96: 7c:d1:04:fe:23:2b:04:d9:e6:11:f9:cf:ab:18:93: 6a:3a:c1:be:99:bd:4a:a4:99:4e:d9:bf:36:5a:a8: 04:ca:30:7a:45:53:9f:f5:29:aa:c6:8b:ee:99:55: ca:68:71:57:92:a4:53:fc:02:f6:4f:e4:a3:17:cd: fc:84:0a:40:69:a0:23:58:35:f7:54:24:32:15:b9: d1:8e:0a:51:67:9e:06:cb:5e:31:49:e1:54:15:14: cd:3f:de:6f:52:70:b8:86:bb:37:ed:5f:b9:a2:15: 40:df:cf:e8:8c:b1:29:07:1a:df:7e:de:33:f8:b9: af:3a:41:db:d4:2a:91:cf:e4:59:af:03:bd:eb:99: 77:1d:da:7c:f7:5e:05:2b:f8:a4:60:1a:f9:9d:18: 3a:69:a9:79:04:71:fc:6e:01:68:9d:ca:52:e2:6f: e7:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:D8:11:A9:0B:6C:9C:6A:66:BD:34:6A:35:E1:5A:CE:7E:EE:4A:79 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/PdgRqQtsnGpmvTRqNeFazn7uSnk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.66.96.0/22 Signature Algorithm: sha256WithRSAEncryption 93:28:0f:05:d6:0f:92:e0:b1:51:4c:98:6f:4a:23:ce:e4:41: 16:62:73:0f:97:21:65:2c:19:cc:08:71:3a:e1:49:d5:cc:33: e2:5f:00:41:a7:37:d2:51:57:4a:95:5e:b7:de:1a:7e:06:f7: ac:9e:19:45:56:4c:8b:cc:a5:96:d1:2c:43:8e:91:29:89:d5: 4c:46:08:91:48:60:2c:bd:d0:3b:61:71:3a:d6:5f:75:fb:d2: 1b:75:1b:16:a9:18:7a:3c:16:6b:79:40:bf:b0:bc:a5:1f:f5: 48:45:33:3e:59:27:e3:a5:e1:2b:21:d1:14:54:ea:a7:f5:ea: 3b:e5:d5:9d:c8:20:2b:d7:9c:ce:6f:1c:8b:93:03:3b:9c:d1: f3:ec:28:b6:f3:7a:51:6b:6c:38:d0:00:65:27:bb:c1:fb:47: bf:d8:71:fa:ce:35:90:57:07:6a:ce:93:57:e5:61:b7:b0:1b: 22:a6:90:56:26:87:e8:55:7f:c7:78:d7:7d:20:e3:f9:21:e6: 31:4a:3b:bb:5d:74:7c:8a:aa:99:2e:4a:a8:5f:e0:07:c0:12: 04:d0:98:44:6b:42:6e:e0:c4:b7:6d:ae:97:71:78:62:e2:f4: dc:23:de:f7:fc:0d:ca:38:1a:6a:65:c8:a0:bf:ea:ef:ad:c4: 12:73:16:e2 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBhEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDAyMjkw MTM4MjlaFw0yNTAyMTQwMTMwMDNaMDMxMTAvBgNVBAMTKDNERDgxMUE5MEI2QzlD NkE2NkJEMzQ2QTM1RTE1QUNFN0VFRTRBNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/Evi0koFSCIjigaYMpjeV4NN/NGRWxXZmAH3HWO0a/HGqyQIV v1Cu4cPutFjI42QC+U2w/k+fDCbopHMhnfAwTpQqPQvkoKIP1nSgxd4LyXdxCwp0 GPjClnzRBP4jKwTZ5hH5z6sYk2o6wb6ZvUqkmU7ZvzZaqATKMHpFU5/1KarGi+6Z VcpocVeSpFP8AvZP5KMXzfyECkBpoCNYNfdUJDIVudGOClFnngbLXjFJ4VQVFM0/ 3m9ScLiGuzftX7miFUDfz+iMsSkHGt9+3jP4ua86QdvUKpHP5FmvA73rmXcd2nz3 XgUr+KRgGvmdGDppqXkEcfxuAWidylLib+ddAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUPdgRqQtsnGpmvTRqNeFazn7uSnkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1BkZ1JxUXRzbkdwbXZUUnFOZUZhem43dVNuay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBQmAwDQYJKoZIhvcNAQELBQADggEBAJMoDwXWD5LgsVFMmG9KI87kQRZi cw+XIWUsGcwIcTrhSdXMM+JfAEGnN9JRV0qVXrfeGn4G96yeGUVWTIvMpZbRLEOO kSmJ1UxGCJFIYCy90DthcTrWX3X70ht1GxapGHo8Fmt5QL+wvKUf9UhFMz5ZJ+Ol 4Ssh0RRU6qf16jvl1Z3IICvXnM5vHIuTAzuc0fPsKLbzelFrbDjQAGUnu8H7R7/Y cfrONZBXB2rOk1flYbewGyKmkFYmh+hVf8d4130g4/kh5jFKO7tddHyKqpkuSqhf 4AfAEgTQmERrQm7gxLdtrpdxeGLi9Nwj3vf8Dco4GmplyKC/6u+txBJzFuI= -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:47 2024 by rpki-client on console-fra.rpki-client.org