$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/SXwtiynp3Sas4b5ewXjaQlmxVZM.roa File: SXwtiynp3Sas4b5ewXjaQlmxVZM.roa (raw, json) Hash identifier: 74Mjmh6tYxMNDf6SV8efwbLxLqvppHfaabxyk9wK9oY= Subject key identifier: 49:7C:2D:8B:29:E9:DD:26:AC:E1:BE:5E:C1:78:DA:42:59:B1:55:93 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0332 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/SXwtiynp3Sas4b5ewXjaQlmxVZM.roa Signing time: Thu 01 Jun 2023 16:07:31 +0000 ROA not before: Thu 01 Jun 2023 16:07:31 +0000 ROA not after: Tue 14 May 2024 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.232.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 13:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 818 (0x332) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 1 16:07:31 2023 GMT Not After : May 14 01:30:02 2024 GMT Subject: CN=497C2D8B29E9DD26ACE1BE5EC178DA4259B15593 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f2:af:3c:02:60:63:4a:dc:d4:ed:a1:2c:1d: f7:e9:3d:1b:b4:9c:6d:c2:20:80:36:13:3a:f6:5e: 01:4d:a4:48:e3:1b:89:43:17:41:52:ba:a5:9d:9d: 8d:35:a5:1a:8c:c2:07:82:3e:0d:5e:4d:83:e8:d5: c3:b4:b4:9a:0c:df:7b:e4:63:02:30:c1:8e:25:71: 23:a0:9c:9a:43:cd:23:0a:34:d9:3d:fb:40:a8:37: 2d:7d:79:a6:3d:c1:73:e8:cc:c2:ca:bf:b3:04:07: a4:0f:64:41:24:e9:39:15:79:9f:4f:0f:bf:04:b6: af:75:55:81:14:a5:5b:94:ac:a8:05:c0:22:74:35: f3:b8:4b:15:7d:6f:6d:c4:58:65:28:2e:65:af:7a: 6a:c6:63:84:ed:0c:b7:c3:f3:6a:d6:b9:a6:8e:14: 29:2b:d2:22:67:fa:a4:df:1b:4e:60:67:3e:9c:8a: aa:1f:d0:fe:54:43:6b:d2:4e:33:bf:47:6c:6b:27: 54:12:2d:f4:dc:32:20:fe:10:80:fd:26:1f:94:1f: 1b:86:65:a5:d5:01:45:ce:08:d5:c7:4c:59:cb:b9: 6d:52:3b:09:43:2c:d7:36:f6:40:52:40:4c:f4:e5: ee:82:0b:8c:2d:45:14:17:8d:fe:f0:d4:be:18:71: de:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:7C:2D:8B:29:E9:DD:26:AC:E1:BE:5E:C1:78:DA:42:59:B1:55:93 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/SXwtiynp3Sas4b5ewXjaQlmxVZM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.232.0/21 Signature Algorithm: sha256WithRSAEncryption d7:db:1e:55:ac:cd:b1:7a:54:06:df:cd:d5:ad:6a:57:83:f5: 4b:46:e2:55:1c:a8:66:70:b4:c8:3b:0f:eb:5f:7d:7c:26:d3: 5c:f1:7d:1a:53:09:39:0e:65:cf:38:3d:26:77:6d:4f:ec:73: a4:d6:85:35:ea:ff:b5:ff:db:b5:06:26:a2:1b:3c:6d:84:1f: 1b:d9:1a:23:07:d7:bb:f4:99:b7:76:4a:13:85:00:c3:29:70: 6c:51:12:34:c4:df:40:3c:cd:ff:03:2e:70:78:63:6a:e3:0c: ba:9d:25:0c:75:21:37:39:b5:d5:d9:b8:51:58:aa:f8:51:6a: 92:ed:41:d5:d5:d7:f5:ed:6a:a8:6c:0b:64:8f:6b:09:05:cd: 6b:e9:4b:66:3b:a1:ed:96:ab:3f:4f:4f:b2:52:77:af:c6:9b: cb:05:c7:98:46:9c:4a:c6:3a:b3:da:11:90:f7:13:25:64:48: a5:1f:c0:4d:9f:a9:ed:b2:a9:20:9f:42:05:27:3e:76:e1:b6: c4:5b:a9:84:fe:b0:85:ab:5d:47:83:c6:80:98:5f:d1:e5:fb: fe:2c:13:58:93:54:54:4f:14:95:30:74:ba:13:b5:d8:a6:11: e2:b6:0f:96:6b:56:63:51:d4:ea:b8:c1:96:f7:e2:03:4d:ff: e6:57:cf:4c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAzIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA2MDEx NjA3MzFaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDQ5N0MyRDhCMjlFOURE MjZBQ0UxQkU1RUMxNzhEQTQyNTlCMTU1OTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCq8q88AmBjStzU7aEsHffpPRu0nG3CIIA2Ezr2XgFNpEjjG4lD F0FSuqWdnY01pRqMwgeCPg1eTYPo1cO0tJoM33vkYwIwwY4lcSOgnJpDzSMKNNk9 +0CoNy19eaY9wXPozMLKv7MEB6QPZEEk6TkVeZ9PD78Etq91VYEUpVuUrKgFwCJ0 NfO4SxV9b23EWGUoLmWvemrGY4TtDLfD82rWuaaOFCkr0iJn+qTfG05gZz6ciqof 0P5UQ2vSTjO/R2xrJ1QSLfTcMiD+EID9Jh+UHxuGZaXVAUXOCNXHTFnLuW1SOwlD LNc29kBSQEz05e6CC4wtRRQXjf7w1L4Ycd6LAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUSXwtiynp3Sas4b5ewXjaQlmxVZMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1NYd3RpeW5wM1NhczRiNWV3WGphUWxteFZaTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMxYugwDQYJKoZIhvcNAQELBQADggEBANfbHlWszbF6VAbfzdWtaleD9UtG 4lUcqGZwtMg7D+tffXwm01zxfRpTCTkOZc84PSZ3bU/sc6TWhTXq/7X/27UGJqIb PG2EHxvZGiMH17v0mbd2ShOFAMMpcGxREjTE30A8zf8DLnB4Y2rjDLqdJQx1ITc5 tdXZuFFYqvhRapLtQdXV1/XtaqhsC2SPawkFzWvpS2Y7oe2Wqz9PT7JSd6/Gm8sF x5hGnErGOrPaEZD3EyVkSKUfwE2fqe2yqSCfQgUnPnbhtsRbqYT+sIWrXUeDxoCY X9Hl+/4sE1iTVFRPFJUwdLoTtdimEeK2D5ZrVmNR1Oq4wZb34gNN/+ZXz0w= -----END CERTIFICATE-----Generated at Sat Apr 27 10:15:56 2024 by rpki-client on console-ams.rpki-client.org