$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/STNPKKd4GseDTNb0pzvgB3VlImw.roa File: STNPKKd4GseDTNb0pzvgB3VlImw.roa (raw, json) Hash identifier: YC0M9vpdfuG5D4lanejAQl57yCkQqbj+cX0KL1FAmmI= Subject key identifier: 49:33:4F:28:A7:78:1A:C7:83:4C:D6:F4:A7:3B:E0:07:75:65:22:6C Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0595 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/STNPKKd4GseDTNb0pzvgB3VlImw.roa Signing time: Thu 27 Jul 2023 16:58:18 +0000 ROA not before: Thu 27 Jul 2023 16:58:18 +0000 ROA not after: Sun 14 Jul 2024 01:30:03 +0000 asID: 9605 IP address blocks: 1.79.56.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1429 (0x595) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jul 27 16:58:18 2023 GMT Not After : Jul 14 01:30:03 2024 GMT Subject: CN=49334F28A7781AC7834CD6F4A73BE0077565226C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:0a:40:fe:0f:7f:e3:0d:ec:66:e5:96:5d:39: b1:26:da:f9:02:d2:da:97:d2:8f:7d:68:0f:a2:b9: 7a:e9:77:7a:16:29:44:78:20:0e:99:d9:1b:b1:ca: 97:38:27:43:00:1d:e3:ee:e3:ab:a3:31:71:c5:b4: bc:af:58:f6:01:4e:8d:30:44:bd:7f:86:42:6f:f4: 30:41:8a:6d:9d:a3:46:54:4b:b7:35:d2:11:9f:89: d9:3b:bd:9c:27:1a:35:87:2b:12:12:68:70:4f:7f: 5c:d5:de:49:dc:d0:d7:43:3f:54:35:16:9a:29:da: a2:8d:2d:e2:ac:f3:13:d6:81:78:c4:c2:15:6b:e7: 3e:1a:7a:b9:bc:d0:4b:81:ca:81:b0:e3:65:07:f5: 56:49:c9:8b:65:1a:d4:61:a4:1d:07:9e:0b:c3:78: 89:99:8a:25:bd:9c:07:67:8a:37:e7:ec:25:54:65: 9e:f3:92:8b:46:f7:39:48:46:71:50:ef:e0:8b:f1: a5:55:00:94:ed:ae:b7:21:fa:c2:0b:15:a7:3c:4a: 82:27:e5:54:32:52:30:79:68:94:75:6c:af:41:e5: 9f:0e:98:6c:63:0a:86:53:b4:ef:60:1b:7c:f7:46: c1:70:5e:af:14:b1:71:36:14:ea:7d:1b:32:f7:80: 6d:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:33:4F:28:A7:78:1A:C7:83:4C:D6:F4:A7:3B:E0:07:75:65:22:6C X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/STNPKKd4GseDTNb0pzvgB3VlImw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.56.0/21 Signature Algorithm: sha256WithRSAEncryption 96:b8:8e:c3:e5:42:3b:2b:b8:46:65:36:b6:79:74:98:32:b9: 3f:8b:76:bb:4f:f4:53:c9:2a:9c:7a:28:c6:62:31:0f:b7:bb: bd:c1:15:87:a1:94:aa:cd:d5:fc:07:fe:9f:9d:52:ba:46:dd: fe:7d:92:d6:bb:70:9f:37:a4:18:5f:c9:98:45:74:56:39:d0: 10:2d:88:02:12:98:b7:c6:da:e8:85:60:f7:44:34:69:8a:07: 46:ee:73:89:1f:d2:48:c4:d2:4d:56:47:06:03:49:37:01:51: bb:fc:a5:8b:be:33:8f:68:aa:67:54:b1:40:9e:ff:0b:ef:dc: b1:3f:7e:80:7a:fb:ba:eb:b5:1e:f7:fc:fe:8d:85:59:bb:0f: 8c:03:7a:23:79:d5:f7:2e:b6:ad:96:24:fa:5d:a5:d4:1b:d8: af:73:bc:19:77:42:36:04:04:2e:37:89:e0:03:39:ae:5d:ca: 09:f3:7e:7d:a4:0f:69:66:72:ac:a5:e0:6e:41:b6:d8:6e:c2: aa:45:5e:6a:bb:4c:7a:5b:f2:2c:13:40:f0:bc:eb:07:25:12: 8b:61:86:02:4b:52:99:45:81:74:b5:44:40:13:37:fa:01:ad: 09:24:a8:fe:62:a1:8e:e8:9b:45:88:9c:be:8a:9d:fc:19:20: ca:df:91:b3 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBZUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA3Mjcx NjU4MThaFw0yNDA3MTQwMTMwMDNaMDMxMTAvBgNVBAMTKDQ5MzM0RjI4QTc3ODFB Qzc4MzRDRDZGNEE3M0JFMDA3NzU2NTIyNkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDICkD+D3/jDexm5ZZdObEm2vkC0tqX0o99aA+iuXrpd3oWKUR4 IA6Z2Ruxypc4J0MAHePu46ujMXHFtLyvWPYBTo0wRL1/hkJv9DBBim2do0ZUS7c1 0hGfidk7vZwnGjWHKxISaHBPf1zV3knc0NdDP1Q1Fpop2qKNLeKs8xPWgXjEwhVr 5z4aerm80EuByoGw42UH9VZJyYtlGtRhpB0HngvDeImZiiW9nAdnijfn7CVUZZ7z kotG9zlIRnFQ7+CL8aVVAJTtrrch+sILFac8SoIn5VQyUjB5aJR1bK9B5Z8OmGxj CoZTtO9gG3z3RsFwXq8UsXE2FOp9GzL3gG05AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUSTNPKKd4GseDTNb0pzvgB3VlImwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1NUTlBLS2Q0R3NlRFROYjBwenZnQjNWbEltdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMBTzgwDQYJKoZIhvcNAQELBQADggEBAJa4jsPlQjsruEZlNrZ5dJgyuT+L drtP9FPJKpx6KMZiMQ+3u73BFYehlKrN1fwH/p+dUrpG3f59kta7cJ83pBhfyZhF dFY50BAtiAISmLfG2uiFYPdENGmKB0buc4kf0kjE0k1WRwYDSTcBUbv8pYu+M49o qmdUsUCe/wvv3LE/foB6+7rrtR73/P6NhVm7D4wDeiN51fcutq2WJPpdpdQb2K9z vBl3QjYEBC43ieADOa5dygnzfn2kD2lmcqyl4G5BtthuwqpFXmq7THpb8iwTQPC8 6wclEothhgJLUplFgXS1REATN/oBrQkkqP5ioY7om0WInL6KnfwZIMrfkbM= -----END CERTIFICATE-----Generated at Sat Jun 1 15:54:30 2024 by rpki-client on console-ams.rpki-client.org