$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/QNXQPFLn4RMWtbmUfzRAtfLm0-A.roa File: QNXQPFLn4RMWtbmUfzRAtfLm0-A.roa (raw, json) Hash identifier: j7uU33CsWb/4j3zHVsBbGF1VSsrPoKY1fVuAsEm2Hb4= Subject key identifier: 40:D5:D0:3C:52:E7:E1:13:16:B5:B9:94:7F:34:40:B5:F2:E6:D3:E0 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 04E1 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/QNXQPFLn4RMWtbmUfzRAtfLm0-A.roa Signing time: Thu 27 Jul 2023 16:50:11 +0000 ROA not before: Thu 27 Jul 2023 16:50:11 +0000 ROA not after: Sun 14 Jul 2024 01:30:03 +0000 asID: 9605 IP address blocks: 49.103.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1249 (0x4e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jul 27 16:50:11 2023 GMT Not After : Jul 14 01:30:03 2024 GMT Subject: CN=40D5D03C52E7E11316B5B9947F3440B5F2E6D3E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:93:7a:80:de:bf:d4:26:51:f6:87:12:3f:25: 81:3c:1b:63:1f:77:2b:ec:04:55:30:d8:6e:c7:42: bd:72:f8:49:6b:01:2b:0b:36:36:76:e7:3b:e0:85: cc:53:7a:4e:0f:ec:05:5d:e3:8e:ce:30:8c:9c:3c: be:fa:df:d9:18:08:59:dc:b8:07:f4:e8:d7:c4:8e: 46:6a:c4:1c:52:43:82:2d:d2:5e:f0:e2:f5:06:85: 01:4e:d0:be:f9:a5:c4:80:a3:23:49:92:25:ac:9b: a2:a8:07:4c:64:cb:8e:c6:e2:01:eb:c7:22:20:13: 74:cc:74:9a:ee:41:06:7e:db:32:a6:97:fa:03:a0: be:47:ed:97:a2:3c:16:30:cd:2f:ac:09:ba:b7:58: da:bf:73:40:80:74:c8:e1:c5:58:cd:54:fb:fa:d7: 21:5f:aa:2a:3e:02:27:02:be:63:e4:80:b3:bc:1f: d9:8f:21:9d:de:d8:b7:4b:f6:2d:3f:83:4c:24:74: ca:4d:f7:51:b8:40:81:ee:c9:37:bc:0e:15:cb:c4: 28:c7:1a:fd:aa:ba:42:4f:c1:99:ad:ee:80:e7:d4: 11:cc:85:df:41:28:75:c9:5c:97:f9:78:5a:11:c7: b2:9f:5d:db:4b:b3:7a:6f:a1:ce:eb:8c:03:9d:c7: ce:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:D5:D0:3C:52:E7:E1:13:16:B5:B9:94:7F:34:40:B5:F2:E6:D3:E0 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/QNXQPFLn4RMWtbmUfzRAtfLm0-A.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.103.18.0/24 Signature Algorithm: sha256WithRSAEncryption b4:aa:27:9a:d6:ca:34:a6:8c:b0:06:19:2e:36:67:55:42:b8: cb:82:b2:93:e3:90:fa:18:ce:ad:d7:23:99:29:a3:6c:1a:65: b9:0f:4c:3a:f1:b0:0f:20:ad:21:87:b5:4b:4b:85:1f:77:9b: 3b:33:bc:2e:78:78:94:dd:81:2a:8c:f6:c8:8b:d9:f8:77:ef: eb:a3:1a:14:4e:54:45:b6:9c:b9:d4:66:d6:e6:5f:0f:39:2a: 32:0f:a8:81:8b:a2:c8:dc:6b:98:1e:55:c7:ad:fa:36:2a:ea: 76:de:45:b8:ae:13:55:cb:b2:9a:57:69:6f:a8:35:e3:c5:83: fe:29:df:84:78:e0:21:59:0c:a3:f8:d3:dc:fe:7a:d9:8e:55: bc:99:6c:61:b9:7f:fb:89:54:3c:bb:a0:d8:e9:ea:be:b3:d4: a9:fe:a6:c9:68:5a:2f:18:40:f7:07:5a:fc:cd:08:5b:34:2a: 16:f9:ce:d3:fc:87:a9:c7:58:c7:6a:36:a2:64:22:b2:85:f1: 51:69:7a:d5:f6:2a:3e:d9:e8:bf:3d:bc:3c:2e:f8:d2:f0:3f: 37:e9:a9:c6:88:d0:e1:54:ce:05:04:99:84:2a:c1:08:86:b3: 78:37:45:11:e1:ce:cb:eb:7e:74:17:70:3f:7d:d5:3a:4f:d7: e1:38:5e:a5 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBOEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA3Mjcx NjUwMTFaFw0yNDA3MTQwMTMwMDNaMDMxMTAvBgNVBAMTKDQwRDVEMDNDNTJFN0Ux MTMxNkI1Qjk5NDdGMzQ0MEI1RjJFNkQzRTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCUk3qA3r/UJlH2hxI/JYE8G2MfdyvsBFUw2G7HQr1y+ElrASsL NjZ25zvghcxTek4P7AVd447OMIycPL7639kYCFncuAf06NfEjkZqxBxSQ4It0l7w 4vUGhQFO0L75pcSAoyNJkiWsm6KoB0xky47G4gHrxyIgE3TMdJruQQZ+2zKml/oD oL5H7ZeiPBYwzS+sCbq3WNq/c0CAdMjhxVjNVPv61yFfqio+AicCvmPkgLO8H9mP IZ3e2LdL9i0/g0wkdMpN91G4QIHuyTe8DhXLxCjHGv2qukJPwZmt7oDn1BHMhd9B KHXJXJf5eFoRx7KfXdtLs3pvoc7rjAOdx85vAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUQNXQPFLn4RMWtbmUfzRAtfLm0+AwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1FOWFFQRkxuNFJNV3RibVVmelJBdGZMbTAtQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxZxIwDQYJKoZIhvcNAQELBQADggEBALSqJ5rWyjSmjLAGGS42Z1VCuMuC spPjkPoYzq3XI5kpo2waZbkPTDrxsA8grSGHtUtLhR93mzszvC54eJTdgSqM9siL 2fh37+ujGhROVEW2nLnUZtbmXw85KjIPqIGLosjca5geVcet+jYq6nbeRbiuE1XL sppXaW+oNePFg/4p34R44CFZDKP409z+etmOVbyZbGG5f/uJVDy7oNjp6r6z1Kn+ psloWi8YQPcHWvzNCFs0Khb5ztP8h6nHWMdqNqJkIrKF8VFpetX2Kj7Z6L89vDwu +NLwPzfpqcaI0OFUzgUEmYQqwQiGs3g3RRHhzsvrfnQXcD991TpP1+E4XqU= -----END CERTIFICATE-----Generated at Sat Jun 1 15:54:30 2024 by rpki-client on console-ams.rpki-client.org