$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/PfUP9GaPKz9JZfVS21qjHSrhKeg.roa File: PfUP9GaPKz9JZfVS21qjHSrhKeg.roa (raw, json) Hash identifier: sWrv30W6X4+s8shFLMzqVU1Ou1/93MV/Bgry3E7GohY= Subject key identifier: 3D:F5:0F:F4:66:8F:2B:3F:49:65:F5:52:DB:5A:A3:1D:2A:E1:29:E8 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0149 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/PfUP9GaPKz9JZfVS21qjHSrhKeg.roa Signing time: Wed 24 May 2023 16:31:14 +0000 ROA not before: Wed 24 May 2023 16:31:14 +0000 ROA not after: Tue 14 May 2024 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.246.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 13:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 329 (0x149) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: May 24 16:31:14 2023 GMT Not After : May 14 01:30:02 2024 GMT Subject: CN=3DF50FF4668F2B3F4965F552DB5AA31D2AE129E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:56:15:2e:66:dd:53:70:50:34:ab:2c:ac:78: 6a:93:92:f0:e0:d4:78:02:9e:a1:ab:ef:af:fb:5e: 3a:c5:be:72:f1:92:07:9b:bd:d4:fa:fb:08:5e:46: a8:25:ad:bf:5b:e5:1c:60:73:fa:c1:b3:11:82:2d: 20:f2:e4:ac:58:8f:4f:91:cf:eb:4a:34:bb:d6:8c: 58:c8:af:a8:9d:4e:ac:ae:df:a8:33:31:d4:54:be: 6a:26:fd:a2:23:29:c5:0a:33:55:37:3e:3e:f2:48: c9:50:65:ac:f2:d8:71:5a:c7:bd:87:4e:a5:4b:9b: 20:07:a9:c3:54:79:a8:db:8e:d2:9d:b4:c4:bd:13: a9:93:59:ff:7a:49:21:5a:a9:9f:3f:a2:f2:42:ee: 09:8d:5f:13:62:39:9c:65:31:fc:58:f2:b7:06:42: fb:b8:35:a1:98:3f:fe:1a:47:3f:5c:49:ec:3f:0a: 98:43:39:e3:b1:93:72:e4:46:9a:61:61:ae:9b:8f: ae:20:d7:76:af:77:31:f7:e3:00:60:4e:ba:f9:33: 09:05:df:95:51:a4:72:c6:e7:b5:ba:58:64:5b:78: b5:e7:d5:7e:23:bc:30:e4:7a:14:f6:49:7e:73:d4: 5b:60:8a:2d:61:d4:c8:3e:5c:84:25:cf:25:7c:53: cf:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:F5:0F:F4:66:8F:2B:3F:49:65:F5:52:DB:5A:A3:1D:2A:E1:29:E8 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/PfUP9GaPKz9JZfVS21qjHSrhKeg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.246.0/23 Signature Algorithm: sha256WithRSAEncryption c5:ca:d1:3a:a6:96:cf:48:ba:c5:00:8c:6d:7a:1d:a8:8c:30: 23:f7:2e:3b:02:0f:dd:ce:a5:5e:df:ba:4b:f7:dd:71:f3:3d: fb:0a:9d:43:03:fa:bd:63:42:c1:15:98:36:4b:20:36:01:f6: 16:1e:0d:00:68:20:9b:78:a2:9b:56:cb:e4:57:a2:a5:49:5a: 05:4f:a3:61:70:2b:a5:35:6c:6c:7f:e4:8a:fb:06:83:20:69: db:60:7d:18:d9:1a:92:fa:ce:8f:6a:6f:a1:a9:d2:2e:4d:6a: d4:9f:4d:f8:6f:6f:39:4d:d1:ea:c8:b6:50:b7:96:68:a8:4c: 38:cb:b3:c5:a9:27:9a:82:f9:4c:a0:9d:b5:68:26:e2:36:d5: 2c:18:21:89:09:bb:26:74:e9:6b:dd:4d:6f:8d:91:c9:4f:07: 16:0e:89:29:73:05:cc:9c:59:d7:6d:7d:96:aa:d6:5a:a1:c5: 70:ac:e1:72:09:ab:60:5a:6e:e0:88:65:03:fb:1b:d4:e5:64: 49:7f:08:50:0e:78:35:b8:8d:84:49:5a:a2:9f:55:19:aa:7f: 53:04:68:59:61:70:47:1d:d3:87:ba:19:3e:ca:59:93:7e:96: b8:7e:8f:c5:5e:4f:36:99:50:3d:fe:70:30:77:6a:34:3b:da: 1c:45:65:e6 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAUkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MjQx NjMxMTRaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDNERjUwRkY0NjY4RjJC M0Y0OTY1RjU1MkRCNUFBMzFEMkFFMTI5RTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3VhUuZt1TcFA0qyyseGqTkvDg1HgCnqGr76/7XjrFvnLxkgeb vdT6+wheRqglrb9b5Rxgc/rBsxGCLSDy5KxYj0+Rz+tKNLvWjFjIr6idTqyu36gz MdRUvmom/aIjKcUKM1U3Pj7ySMlQZazy2HFax72HTqVLmyAHqcNUeajbjtKdtMS9 E6mTWf96SSFaqZ8/ovJC7gmNXxNiOZxlMfxY8rcGQvu4NaGYP/4aRz9cSew/CphD OeOxk3LkRpphYa6bj64g13avdzH34wBgTrr5MwkF35VRpHLG57W6WGRbeLXn1X4j vDDkehT2SX5z1Ftgii1h1Mg+XIQlzyV8U8/HAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUPfUP9GaPKz9JZfVS21qjHSrhKegwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1BmVVA5R2FQS3o5SlpmVlMyMXFqSFNyaEtlZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYPYwDQYJKoZIhvcNAQELBQADggEBAMXK0Tqmls9IusUAjG16HaiMMCP3 LjsCD93OpV7fukv33XHzPfsKnUMD+r1jQsEVmDZLIDYB9hYeDQBoIJt4optWy+RX oqVJWgVPo2FwK6U1bGx/5Ir7BoMgadtgfRjZGpL6zo9qb6Gp0i5NatSfTfhvbzlN 0erItlC3lmioTDjLs8WpJ5qC+UygnbVoJuI21SwYIYkJuyZ06WvdTW+NkclPBxYO iSlzBcycWddtfZaq1lqhxXCs4XIJq2BabuCIZQP7G9TlZEl/CFAOeDW4jYRJWqKf VRmqf1MEaFlhcEcd04e6GT7KWZN+lrh+j8VeTzaZUD3+cDB3ajQ72hxFZeY= -----END CERTIFICATE-----Generated at Sat Apr 27 10:15:56 2024 by rpki-client on console-ams.rpki-client.org