$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/SHCYn7ARnga8F0uK7fbZItTw03g.roa File: SHCYn7ARnga8F0uK7fbZItTw03g.roa (raw, json) Hash identifier: OYni8Mdyltnw+m3/dYELi/C9bY9LHlOFwIGExIq8kVM= Subject key identifier: 48:70:98:9F:B0:11:9E:06:BC:17:4B:8A:ED:F6:D9:22:D4:F0:D3:78 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 06ED Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/SHCYn7ARnga8F0uK7fbZItTw03g.roa Signing time: Tue 30 Apr 2024 01:49:43 +0000 ROA not before: Tue 30 Apr 2024 01:49:43 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.156.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1773 (0x6ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:49:43 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=4870989FB0119E06BC174B8AEDF6D922D4F0D378 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:7e:34:09:64:bc:f5:6b:48:70:e9:ac:78:c0: 93:30:9d:8e:6e:52:cd:98:32:08:55:d1:fb:fb:ea: 95:e1:67:08:0f:e6:bc:ea:fc:9f:79:39:8d:ca:7f: 35:8c:47:8e:c7:d2:10:ad:30:a9:e2:d1:77:92:2d: 6f:47:4a:06:42:9f:01:85:95:07:fa:f6:c8:c0:c9: 79:a8:b3:a8:63:16:ef:5a:4f:05:f2:9d:ba:37:9c: 71:ce:37:25:30:5e:56:62:80:56:9f:b6:6c:e2:57: d4:4e:65:89:cc:aa:a7:89:43:de:4b:2a:e2:ae:a3: ae:ad:45:d5:99:b7:9c:3e:96:f4:ae:6b:e7:00:ab: 84:bb:c0:4a:c9:11:54:f4:88:2a:df:58:d1:28:14: 63:ca:03:69:28:1d:28:f7:b2:17:93:d3:7d:d0:74: 17:af:9c:53:8a:82:9c:ac:08:20:c2:3a:ae:ff:4b: 5b:09:1f:19:b6:51:5c:af:0e:7d:3e:86:a1:7f:6b: 57:a2:9c:5b:43:03:5f:28:97:e5:1a:bf:ef:ac:2d: f6:6f:a5:52:bf:95:85:de:50:27:bc:1e:30:a7:e2: f4:64:f1:08:a9:5e:a9:e1:2f:1c:c1:8a:e5:57:4b: 48:54:f5:38:d8:f3:04:33:44:34:85:2c:75:24:51: ec:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:70:98:9F:B0:11:9E:06:BC:17:4B:8A:ED:F6:D9:22:D4:F0:D3:78 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/SHCYn7ARnga8F0uK7fbZItTw03g.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.156.0/22 Signature Algorithm: sha256WithRSAEncryption d2:ca:11:fc:48:09:11:3b:65:82:72:6e:65:67:82:c6:25:5d: e3:c9:50:c6:01:a6:24:14:3d:5f:71:5c:d5:6c:87:38:35:dd: 33:6e:69:cb:f6:f1:b2:4d:58:cc:8a:a2:e4:99:78:c9:7c:11: 6e:2d:8c:e4:21:ca:b9:60:50:2b:54:23:84:c8:03:e2:6a:dd: 95:2f:2e:58:a4:91:14:f9:d5:6d:b0:36:92:b8:e9:ca:d6:92: 11:d7:07:15:22:cc:0c:73:e0:8a:b0:44:88:2f:13:77:a2:ad: b2:2a:3b:25:09:c7:dd:08:df:fb:22:4c:44:cc:1a:31:45:1b: 3e:e2:43:c0:da:45:c2:da:31:95:84:d8:6a:35:40:8b:ff:85: fe:a0:2d:cd:bb:d1:23:e0:de:40:9a:d6:91:88:b7:dd:d6:d7: 6d:97:2d:8d:a9:47:39:13:69:61:f4:e5:ec:b1:c3:dc:48:07: c1:02:05:21:16:20:4b:c2:99:aa:b6:c7:87:09:78:c5:4a:26: a7:c6:23:9b:ee:36:ed:0f:e6:45:e0:aa:74:19:6e:fe:d4:df: 67:cf:08:bf:6c:4d:63:28:66:20:ae:55:de:18:2e:00:11:8d: 7a:60:42:ed:ac:b9:e9:ba:a1:a0:f3:95:9e:20:e4:7b:a8:79: 03:4b:65:9d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBu0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTQ5NDNaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDQ4NzA5ODlGQjAxMTlF MDZCQzE3NEI4QUVERjZEOTIyRDRGMEQzNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCefjQJZLz1a0hw6ax4wJMwnY5uUs2YMghV0fv76pXhZwgP5rzq /J95OY3KfzWMR47H0hCtMKni0XeSLW9HSgZCnwGFlQf69sjAyXmos6hjFu9aTwXy nbo3nHHONyUwXlZigFaftmziV9ROZYnMqqeJQ95LKuKuo66tRdWZt5w+lvSua+cA q4S7wErJEVT0iCrfWNEoFGPKA2koHSj3sheT033QdBevnFOKgpysCCDCOq7/S1sJ Hxm2UVyvDn0+hqF/a1einFtDA18ol+Uav++sLfZvpVK/lYXeUCe8HjCn4vRk8Qip XqnhLxzBiuVXS0hU9TjY8wQzRDSFLHUkUew9AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUSHCYn7ARnga8F0uK7fbZItTw03gwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1NIQ1luN0FSbmdhOEYwdUs3ZmJaSXRUdzAzZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYpwwDQYJKoZIhvcNAQELBQADggEBANLKEfxICRE7ZYJybmVngsYlXePJ UMYBpiQUPV9xXNVshzg13TNuacv28bJNWMyKouSZeMl8EW4tjOQhyrlgUCtUI4TI A+Jq3ZUvLlikkRT51W2wNpK46crWkhHXBxUizAxz4IqwRIgvE3eirbIqOyUJx90I 3/siTETMGjFFGz7iQ8DaRcLaMZWE2Go1QIv/hf6gLc270SPg3kCa1pGIt93W122X LY2pRzkTaWH05eyxw9xIB8ECBSEWIEvCmaq2x4cJeMVKJqfGI5vuNu0P5kXgqnQZ bv7U32fPCL9sTWMoZiCuVd4YLgARjXpgQu2suem6oaDzlZ4g5HuoeQNLZZ0= -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:00 2024 by rpki-client on console-fra.rpki-client.org