$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Qxk-NE_2g4LbXPEikLb0RUuGMEQ.roa File: Qxk-NE_2g4LbXPEikLb0RUuGMEQ.roa (raw, json) Hash identifier: FsF0+Q4QQTp6Sk35WbfM3/U/5eWrS+1fLcTCSasjShU= Subject key identifier: 43:19:3E:34:4F:F6:83:82:DB:5C:F1:22:90:B6:F4:45:4B:86:30:44 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0631 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Qxk-NE_2g4LbXPEikLb0RUuGMEQ.roa Signing time: Thu 29 Feb 2024 01:41:06 +0000 ROA not before: Thu 29 Feb 2024 01:41:06 +0000 ROA not after: Fri 14 Feb 2025 01:30:03 +0000 asID: 9605 IP address blocks: 49.97.116.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Dec 2024 00:11:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1585 (0x631) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Feb 29 01:41:06 2024 GMT Not After : Feb 14 01:30:03 2025 GMT Subject: CN=43193E344FF68382DB5CF12290B6F4454B863044 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:25:22:ac:d0:4a:85:f7:9e:2d:6a:a4:29:b0: 10:5c:0c:60:3b:0c:4a:84:99:6a:d6:0e:96:eb:42: dc:69:42:1b:ed:2b:92:90:a7:6c:99:8d:93:f9:db: aa:5a:4f:02:e1:5f:a9:5f:4b:b4:01:62:5b:f0:83: 14:fb:56:3b:8c:d6:ca:0e:dd:a4:11:d6:84:e5:54: 16:c0:9f:30:ee:e3:82:3c:7f:c3:54:fd:a7:54:fd: 28:c1:b3:91:8f:74:45:db:49:15:f1:2a:97:4f:7e: bd:58:ad:fc:7e:5c:d3:75:60:3e:a2:2c:e0:e1:ca: 3d:5b:06:69:26:61:9d:98:86:09:ba:86:54:f3:c7: 6b:ce:db:9b:36:6a:6c:72:de:7f:36:c6:74:1e:8a: fc:00:51:bb:f1:6e:f2:c9:84:7a:f6:4e:91:49:69: 3c:e2:a1:7c:e6:8c:b0:43:7d:8f:7e:1a:06:c0:84: d1:26:2c:e6:b6:b8:a6:8d:be:0b:98:1e:29:30:d1: 31:ff:4e:26:3d:bb:11:96:d9:45:80:e2:b2:58:2f: b0:56:fe:fd:de:28:9d:f0:aa:25:a3:f4:af:00:db: 2d:f2:e2:c6:32:6a:ea:e3:72:53:9c:e6:ec:a8:e4: 1b:e9:63:bd:f8:ea:4f:87:7e:1e:90:f7:22:f4:95: 14:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:19:3E:34:4F:F6:83:82:DB:5C:F1:22:90:B6:F4:45:4B:86:30:44 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Qxk-NE_2g4LbXPEikLb0RUuGMEQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.97.116.0/22 Signature Algorithm: sha256WithRSAEncryption 79:40:b2:49:b9:f9:11:b1:b8:f0:71:a7:27:20:7d:b7:c0:20: 75:84:8f:dd:78:08:34:2c:5a:d5:04:7b:08:5f:4c:40:7c:78: 22:5d:12:78:c3:71:ee:81:7b:ce:95:e7:04:2e:d5:c9:06:da: 28:98:23:0f:37:34:d1:3a:46:b3:4a:41:dd:14:e6:1b:37:6e: 67:81:ea:7d:39:b5:12:99:0c:ba:f7:6d:36:c1:cf:c6:af:8f: 49:69:62:32:23:ed:27:d6:1b:43:d1:df:05:78:a3:3c:a8:83: c9:63:0d:9a:29:d4:c0:17:d5:b1:b9:28:92:b2:b9:ff:33:12: 99:12:42:4b:b3:69:b8:54:9e:0a:63:55:7e:d0:f1:87:c8:fd: c5:6a:af:4f:af:48:96:53:a2:f7:16:9b:ae:14:b6:1b:a2:73: f7:42:de:8b:1f:18:27:b2:e1:69:87:8e:4a:41:aa:13:f5:9b: 18:23:03:2b:b6:53:07:75:99:97:70:10:a8:2b:fb:46:fb:cd: da:4a:88:7b:4c:90:4e:73:c6:a5:03:b4:a1:4d:66:a0:0a:fe: d7:4f:e6:65:d2:22:ab:90:0a:c7:69:a7:74:bb:45:e6:72:8e: 8e:86:70:f4:35:67:47:e6:50:c7:f7:17:f8:23:84:60:21:b3: 3c:84:1b:7d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBjEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDAyMjkw MTQxMDZaFw0yNTAyMTQwMTMwMDNaMDMxMTAvBgNVBAMTKDQzMTkzRTM0NEZGNjgz ODJEQjVDRjEyMjkwQjZGNDQ1NEI4NjMwNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCiJSKs0EqF954taqQpsBBcDGA7DEqEmWrWDpbrQtxpQhvtK5KQ p2yZjZP526paTwLhX6lfS7QBYlvwgxT7VjuM1soO3aQR1oTlVBbAnzDu44I8f8NU /adU/SjBs5GPdEXbSRXxKpdPfr1Yrfx+XNN1YD6iLODhyj1bBmkmYZ2Yhgm6hlTz x2vO25s2amxy3n82xnQeivwAUbvxbvLJhHr2TpFJaTzioXzmjLBDfY9+GgbAhNEm LOa2uKaNvguYHikw0TH/TiY9uxGW2UWA4rJYL7BW/v3eKJ3wqiWj9K8A2y3y4sYy aurjclOc5uyo5BvpY7346k+Hfh6Q9yL0lRTFAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUQxk+NE/2g4LbXPEikLb0RUuGMEQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1F4ay1ORV8yZzRMYlhQRWlrTGIwUlV1R01FUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYXQwDQYJKoZIhvcNAQELBQADggEBAHlAskm5+RGxuPBxpycgfbfAIHWE j914CDQsWtUEewhfTEB8eCJdEnjDce6Be86V5wQu1ckG2iiYIw83NNE6RrNKQd0U 5hs3bmeB6n05tRKZDLr3bTbBz8avj0lpYjIj7SfWG0PR3wV4ozyog8ljDZop1MAX 1bG5KJKyuf8zEpkSQkuzabhUngpjVX7Q8YfI/cVqr0+vSJZTovcWm64Uthuic/dC 3osfGCey4WmHjkpBqhP1mxgjAyu2Uwd1mZdwEKgr+0b7zdpKiHtMkE5zxqUDtKFN ZqAK/tdP5mXSIquQCsdpp3S7ReZyjo6GcPQ1Z0fmUMf3F/gjhGAhszyEG30= -----END CERTIFICATE-----Generated at Tue Nov 26 02:17:10 2024 by rpki-client on console-fra.rpki-client.org