$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/S56k9GNAEZNLsQ4a-wL1_MD3Jy8.roa File: S56k9GNAEZNLsQ4a-wL1_MD3Jy8.roa (raw, json) Hash identifier: eTK+LoJYnLMDJQW2XekHY2OXuVLgs/1YYbANFLj+xx0= Subject key identifier: 4B:9E:A4:F4:63:40:11:93:4B:B1:0E:1A:FB:02:F5:FC:C0:F7:27:2F Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0487 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/S56k9GNAEZNLsQ4a-wL1_MD3Jy8.roa Signing time: Thu 27 Jul 2023 16:44:13 +0000 ROA not before: Thu 27 Jul 2023 16:44:13 +0000 ROA not after: Sun 14 Jul 2024 01:30:03 +0000 asID: 9605 IP address blocks: 1.66.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1159 (0x487) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jul 27 16:44:13 2023 GMT Not After : Jul 14 01:30:03 2024 GMT Subject: CN=4B9EA4F4634011934BB10E1AFB02F5FCC0F7272F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ea:b5:c7:32:59:f5:f1:21:cf:48:c0:e2:51: 0f:64:03:eb:8f:37:15:54:ab:cc:d2:75:be:8b:4e: 61:72:00:4a:78:7e:5d:02:5c:25:64:7e:e8:d7:00: d7:0f:42:d3:82:38:8a:4d:a5:5e:bc:0b:f4:de:49: 24:45:24:6d:75:fe:ac:8a:fa:7c:e4:78:72:0c:1b: e7:fb:0e:7a:e5:6c:76:c4:4e:a6:df:c7:b1:01:1e: 04:9d:d8:ec:e6:94:ba:3c:05:1d:05:9a:c4:11:e5: 42:92:4a:07:8c:10:2a:50:3b:1c:6f:4a:c0:c9:d5: b4:49:63:f1:95:e6:e4:b5:52:44:69:8c:39:74:25: 49:a5:ef:0e:59:57:05:7a:b4:a8:e5:01:22:03:a6: a1:39:5c:d1:b3:79:18:14:c7:f4:87:fe:7a:4c:71: 8b:ef:ad:10:c2:19:ea:7c:c2:23:70:e8:fd:67:42: 5d:ae:76:d6:c8:b2:33:c7:aa:63:9e:65:b9:c2:f5: 0b:df:3c:e1:be:db:fe:d0:50:c4:86:ac:ad:bc:e1: fe:43:24:99:83:b4:79:37:4c:50:da:0c:6d:ab:f9: bc:a4:6f:4b:1f:4a:39:59:0c:5f:06:b0:de:7a:d6: 0a:5f:98:2f:d8:22:0d:54:a5:d2:4d:43:72:54:9d: fa:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:9E:A4:F4:63:40:11:93:4B:B1:0E:1A:FB:02:F5:FC:C0:F7:27:2F X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/S56k9GNAEZNLsQ4a-wL1_MD3Jy8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.66.107.0/24 Signature Algorithm: sha256WithRSAEncryption da:19:44:75:97:e5:6b:e8:17:8e:06:6a:0f:04:62:0c:d2:a0: bd:0c:07:20:80:df:f2:d9:e3:d0:a7:c1:5c:7b:63:1a:2b:cb: a9:90:91:68:fd:72:b6:e4:6d:03:a8:05:06:12:ae:b0:ba:78: f4:47:8f:03:b1:da:d0:73:fe:73:2a:67:05:12:a9:e1:2c:e9: a4:ab:db:3c:c6:1a:bc:db:9a:37:8a:6f:d3:8f:5f:aa:9c:6a: 96:62:fe:e3:ba:2e:2e:62:06:59:5a:68:40:4d:87:8a:e4:4a: d2:f8:66:98:5b:ec:2c:27:4b:b2:5b:77:2d:dc:f9:1c:67:96: 0e:77:09:dd:6a:20:0c:4f:30:e9:41:ba:e9:fc:67:e0:a9:6b: 28:b1:ba:5c:5a:63:3f:7c:02:2e:96:89:4d:da:91:e4:02:cf: 8e:75:2e:9c:18:12:4a:6f:59:95:ce:ad:be:0c:66:ab:03:19: f6:8f:2d:5c:44:c5:da:2f:e8:30:69:5e:c2:bc:88:7d:2b:f6: 7f:08:3c:1a:9b:ef:5b:55:ba:dd:a7:e5:67:8f:1c:ef:7f:80: 11:e3:30:fa:9c:6a:ad:4c:16:5f:89:31:a7:da:9f:3b:5e:cf: 9b:a1:66:f2:46:2f:ff:37:f4:2d:10:39:d9:ca:ea:05:85:55: 95:ac:e3:99 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBIcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA3Mjcx NjQ0MTNaFw0yNDA3MTQwMTMwMDNaMDMxMTAvBgNVBAMTKDRCOUVBNEY0NjM0MDEx OTM0QkIxMEUxQUZCMDJGNUZDQzBGNzI3MkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDa6rXHMln18SHPSMDiUQ9kA+uPNxVUq8zSdb6LTmFyAEp4fl0C XCVkfujXANcPQtOCOIpNpV68C/TeSSRFJG11/qyK+nzkeHIMG+f7DnrlbHbETqbf x7EBHgSd2OzmlLo8BR0FmsQR5UKSSgeMECpQOxxvSsDJ1bRJY/GV5uS1UkRpjDl0 JUml7w5ZVwV6tKjlASIDpqE5XNGzeRgUx/SH/npMcYvvrRDCGep8wiNw6P1nQl2u dtbIsjPHqmOeZbnC9QvfPOG+2/7QUMSGrK284f5DJJmDtHk3TFDaDG2r+bykb0sf SjlZDF8GsN561gpfmC/YIg1UpdJNQ3JUnfonAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUS56k9GNAEZNLsQ4a+wL1/MD3Jy8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1M1Nms5R05BRVpOTHNRNGEtd0wxX01EM0p5OC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABQmswDQYJKoZIhvcNAQELBQADggEBANoZRHWX5WvoF44Gag8EYgzSoL0M ByCA3/LZ49CnwVx7Yxory6mQkWj9crbkbQOoBQYSrrC6ePRHjwOx2tBz/nMqZwUS qeEs6aSr2zzGGrzbmjeKb9OPX6qcapZi/uO6Li5iBllaaEBNh4rkStL4Zphb7Cwn S7Jbdy3c+Rxnlg53Cd1qIAxPMOlBuun8Z+CpayixulxaYz98Ai6WiU3akeQCz451 LpwYEkpvWZXOrb4MZqsDGfaPLVxExdov6DBpXsK8iH0r9n8IPBqb71tVut2n5WeP HO9/gBHjMPqcaq1MFl+JMafanztez5uhZvJGL/839C0QOdnK6gWFVZWs45k= -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:47 2024 by rpki-client on console-fra.rpki-client.org