$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/S4Idi__ibkTFKlKEzh7p2_fsQcs.roa File: S4Idi__ibkTFKlKEzh7p2_fsQcs.roa (raw, json) Hash identifier: uqU+NqaFCvxcUhKQTdSFtbSPSBi7g3mq/vnCLXil3O0= Subject key identifier: 4B:82:1D:8B:FF:E2:6E:44:C5:2A:52:84:CE:1E:E9:DB:F7:EC:41:CB Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0921 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/S4Idi__ibkTFKlKEzh7p2_fsQcs.roa Signing time: Tue 30 Apr 2024 02:30:26 +0000 ROA not before: Tue 30 Apr 2024 02:30:26 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2337 (0x921) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:30:26 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=4B821D8BFFE26E44C52A5284CE1EE9DBF7EC41CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:3c:c3:04:b7:be:ea:98:d7:36:2c:17:9c:75: 85:9a:a3:1b:54:9a:52:d4:65:0e:9e:2e:7f:5c:06: 35:d0:95:d4:59:4c:89:e9:f3:2f:4a:6a:a6:90:7b: 11:48:1d:3f:b1:cf:43:62:15:f7:f1:a9:82:86:3f: e0:32:03:b6:d8:d9:58:a0:e9:35:08:68:9d:c3:9d: 87:99:11:61:68:4d:a7:4d:7e:42:ae:4b:81:0e:59: ef:ba:70:22:53:c9:6d:18:1f:c2:e2:39:cc:ec:83: 24:33:87:ad:16:ad:89:99:ba:b1:3b:64:2f:95:26: da:9c:55:f2:c5:5a:0a:73:e2:0c:ab:b8:f2:3b:36: a5:5f:44:b9:57:65:49:00:8b:be:ac:8e:d6:9a:40: 0f:4f:67:b4:1a:5a:f8:6f:38:4b:79:b4:9e:89:b9: 63:0b:f4:f2:68:01:f6:47:76:83:48:50:27:95:19: 4d:73:da:22:15:f0:cf:0a:e3:76:2f:f1:7b:37:38: 34:c1:0d:78:b8:a7:11:91:04:9a:14:88:95:c7:f5: 04:f1:0a:8a:b6:68:65:82:d3:80:24:b2:16:dc:ec: c6:c8:96:05:e4:b8:5d:7a:f1:61:c5:b4:61:0c:39: 30:73:d0:90:35:4c:16:ee:52:fc:b1:e4:b8:be:4d: f0:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:82:1D:8B:FF:E2:6E:44:C5:2A:52:84:CE:1E:E9:DB:F7:EC:41:CB X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/S4Idi__ibkTFKlKEzh7p2_fsQcs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.4.0/22 Signature Algorithm: sha256WithRSAEncryption 86:ef:e1:1c:78:dc:e2:c7:eb:9f:cb:2f:c4:94:25:d2:b6:ee: 9b:56:f2:92:b2:1a:14:19:a4:1b:1b:6c:a7:72:f8:67:b4:76: 5e:bc:25:16:a7:6f:39:f3:ce:a1:18:9e:2e:c5:40:85:d7:d6: 8a:fd:af:5e:4f:20:b0:f5:c0:b4:eb:06:21:57:da:7c:cb:74: 3f:f8:2b:3d:67:bf:b8:a6:a0:d0:77:fb:30:95:d7:cb:5b:58: 34:f2:1a:c5:56:93:33:91:8b:44:a0:43:85:d7:95:25:b5:d1: fc:57:5e:53:88:6f:a9:e5:d5:7c:1a:06:1d:6e:76:64:ed:63: 92:93:19:6f:05:a9:bf:6f:86:41:f5:36:f0:25:9e:65:e0:6e: 41:25:dc:0a:ee:6d:50:3e:39:ee:c9:2a:17:93:ca:ad:c6:17: 20:31:57:07:66:d1:ac:5b:b1:17:ec:df:a3:5d:4f:99:f0:63: aa:57:9b:b0:10:42:e8:f4:46:1e:ff:a7:d2:07:b0:b2:f6:bf: 64:9b:7f:4a:14:52:44:68:8e:87:02:c4:cf:44:56:15:03:52: d3:1a:56:23:4a:2e:ef:d2:45:a1:20:87:32:fe:c1:6e:61:1c: c5:31:b6:e3:04:17:62:7a:30:d5:a2:1f:5b:79:04:e9:48:05: 5f:78:b6:0b -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCSEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjMwMjZaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDRCODIxRDhCRkZFMjZF NDRDNTJBNTI4NENFMUVFOURCRjdFQzQxQ0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClPMMEt77qmNc2LBecdYWaoxtUmlLUZQ6eLn9cBjXQldRZTInp 8y9KaqaQexFIHT+xz0NiFffxqYKGP+AyA7bY2Vig6TUIaJ3DnYeZEWFoTadNfkKu S4EOWe+6cCJTyW0YH8LiOczsgyQzh60WrYmZurE7ZC+VJtqcVfLFWgpz4gyruPI7 NqVfRLlXZUkAi76sjtaaQA9PZ7QaWvhvOEt5tJ6JuWML9PJoAfZHdoNIUCeVGU1z 2iIV8M8K43Yv8Xs3ODTBDXi4pxGRBJoUiJXH9QTxCoq2aGWC04Akshbc7MbIlgXk uF168WHFtGEMOTBz0JA1TBbuUvyx5Li+TfAvAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUS4Idi//ibkTFKlKEzh7p2/fsQcswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1M0SWRpX19pYmtURktsS0V6aDdwMl9mc1Fjcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYAQwDQYJKoZIhvcNAQELBQADggEBAIbv4Rx43OLH65/LL8SUJdK27ptW 8pKyGhQZpBsbbKdy+Ge0dl68JRanbznzzqEYni7FQIXX1or9r15PILD1wLTrBiFX 2nzLdD/4Kz1nv7imoNB3+zCV18tbWDTyGsVWkzORi0SgQ4XXlSW10fxXXlOIb6nl 1XwaBh1udmTtY5KTGW8Fqb9vhkH1NvAlnmXgbkEl3ArubVA+Oe7JKheTyq3GFyAx Vwdm0axbsRfs36NdT5nwY6pXm7AQQuj0Rh7/p9IHsLL2v2Sbf0oUUkRojocCxM9E VhUDUtMaViNKLu/SRaEghzL+wW5hHMUxtuMEF2J6MNWiH1t5BOlIBV94tgs= -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:00 2024 by rpki-client on console-fra.rpki-client.org