$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/QznFkzbLa60HsY3doWx30CZYVMQ.roa File: QznFkzbLa60HsY3doWx30CZYVMQ.roa (raw, json) Hash identifier: vsisr2IwzXt8PzoFJPCka5p6rRF6MFwOUjBYLuQOwrQ= Subject key identifier: 43:39:C5:93:36:CB:6B:AD:07:B1:8D:DD:A1:6C:77:D0:26:58:54:C4 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 07FC Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/QznFkzbLa60HsY3doWx30CZYVMQ.roa Signing time: Tue 30 Apr 2024 02:12:17 +0000 ROA not before: Tue 30 Apr 2024 02:12:17 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.106.160.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2044 (0x7fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:12:17 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=4339C59336CB6BAD07B18DDDA16C77D0265854C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b4:71:c0:cc:9e:0d:c3:31:74:44:1d:3d:2c: eb:11:a6:b8:c1:ef:ac:4f:7a:62:d6:2a:a5:69:36: 9d:4f:8b:60:a6:34:f1:da:1c:3e:36:6d:ec:07:72: 80:69:94:09:ab:b4:ac:69:51:9d:79:90:dc:32:39: d7:9e:ba:d5:da:3b:b8:bb:0d:ba:ff:39:22:2a:d9: e2:79:de:c9:5c:38:52:1a:7a:96:c1:5b:ee:72:03: a9:2a:bc:49:de:13:22:71:54:0a:8a:d3:80:b0:bf: 7b:27:75:85:10:2c:53:49:38:1f:69:b6:97:02:28: b7:69:c2:03:ed:15:c6:1f:7c:e0:a1:0e:f6:76:7c: 1e:48:68:6a:bd:ee:46:22:ff:62:b6:1f:90:76:43: ab:86:16:3d:05:2c:55:9d:8f:98:e6:cd:6c:18:88: a6:03:e1:b3:c1:c7:b5:50:8d:93:74:0d:d3:fd:9f: ad:1e:a2:7d:b3:8c:b5:fb:17:20:8e:ac:7b:ad:5a: 7e:64:2c:2c:d4:a4:0c:70:93:6b:65:c5:7a:59:22: e0:cb:5d:20:a0:ce:9e:2b:f8:45:a2:88:94:d8:3d: c0:cd:48:ae:12:d7:9f:d4:12:cf:12:d9:32:6e:d0: 2c:32:f6:fe:32:27:f2:c5:07:14:ab:ba:26:78:41: e4:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:39:C5:93:36:CB:6B:AD:07:B1:8D:DD:A1:6C:77:D0:26:58:54:C4 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/QznFkzbLa60HsY3doWx30CZYVMQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.106.160.0/21 Signature Algorithm: sha256WithRSAEncryption 18:12:be:8f:b3:79:14:de:56:45:71:79:5a:4e:a8:17:fe:cc: 2b:3f:50:ca:d8:09:49:48:57:1c:78:38:75:e4:14:cb:fe:37: 74:cd:3d:09:9b:c4:c2:3b:be:a0:8b:55:7f:62:94:85:e9:a1: ff:3d:35:bd:9c:ef:56:38:0a:1d:18:6e:46:9c:c5:14:08:41: 98:05:37:44:55:0c:74:e0:72:74:5a:80:d0:ae:47:2c:80:44: 4e:c7:60:f4:fe:af:fd:0d:62:be:5b:c1:9e:2c:4c:4a:d8:e6: 99:04:71:3d:a6:81:e6:a2:a9:ef:93:b1:c3:7a:72:d9:86:14: b6:e6:69:f8:83:84:74:bc:69:5e:4a:a0:05:1a:b0:4d:7e:06: e6:2e:61:52:c2:a1:af:b8:04:fd:63:48:da:7e:81:18:21:1e: e9:67:e8:be:7c:50:50:15:66:58:62:15:3b:75:80:66:83:c6: 77:19:15:da:5e:42:5c:3c:73:2f:eb:52:3e:26:d6:99:5b:92: c6:1a:b3:b0:f9:29:3f:25:24:ff:fa:ec:cb:12:29:6f:92:14: 00:e8:b5:56:2f:c8:80:9d:72:71:79:70:7a:bf:0a:54:9b:8e: 02:2d:71:fd:18:f9:67:26:c1:94:3d:f4:02:28:9c:a3:33:12: a3:a6:aa:0d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICB/wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjEyMTdaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDQzMzlDNTkzMzZDQjZC QUQwN0IxOEREREExNkM3N0QwMjY1ODU0QzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCtHHAzJ4NwzF0RB09LOsRprjB76xPemLWKqVpNp1Pi2CmNPHa HD42bewHcoBplAmrtKxpUZ15kNwyOdeeutXaO7i7Dbr/OSIq2eJ53slcOFIaepbB W+5yA6kqvEneEyJxVAqK04Cwv3sndYUQLFNJOB9ptpcCKLdpwgPtFcYffOChDvZ2 fB5IaGq97kYi/2K2H5B2Q6uGFj0FLFWdj5jmzWwYiKYD4bPBx7VQjZN0DdP9n60e on2zjLX7FyCOrHutWn5kLCzUpAxwk2tlxXpZIuDLXSCgzp4r+EWiiJTYPcDNSK4S 15/UEs8S2TJu0Cwy9v4yJ/LFBxSruiZ4QeTfAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUQznFkzbLa60HsY3doWx30CZYVMQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1F6bkZremJMYTYwSHNZM2RvV3gzMENaWVZNUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMxaqAwDQYJKoZIhvcNAQELBQADggEBABgSvo+zeRTeVkVxeVpOqBf+zCs/ UMrYCUlIVxx4OHXkFMv+N3TNPQmbxMI7vqCLVX9ilIXpof89Nb2c71Y4Ch0Ybkac xRQIQZgFN0RVDHTgcnRagNCuRyyARE7HYPT+r/0NYr5bwZ4sTErY5pkEcT2mgeai qe+TscN6ctmGFLbmafiDhHS8aV5KoAUasE1+BuYuYVLCoa+4BP1jSNp+gRghHuln 6L58UFAVZlhiFTt1gGaDxncZFdpeQlw8cy/rUj4m1plbksYas7D5KT8lJP/67MsS KW+SFADotVYvyICdcnF5cHq/ClSbjgItcf0Y+WcmwZQ99AIonKMzEqOmqg0= -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:00 2024 by rpki-client on console-fra.rpki-client.org