$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Skxgy5UM2YCywZTRmzfTefPGs6U.roa File: Skxgy5UM2YCywZTRmzfTefPGs6U.roa (raw, json) Hash identifier: Jw9loj3bsBaFYWONgezd85jNCptoAKZTaKRQktw3HIY= Subject key identifier: 4A:4C:60:CB:95:0C:D9:80:B2:C1:94:D1:9B:37:D3:79:F3:C6:B3:A5 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0836 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Skxgy5UM2YCywZTRmzfTefPGs6U.roa Signing time: Tue 30 Apr 2024 02:14:29 +0000 ROA not before: Tue 30 Apr 2024 02:14:29 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.67.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2102 (0x836) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:14:29 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=4A4C60CB950CD980B2C194D19B37D379F3C6B3A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:ab:7b:f2:fe:e7:c9:3a:cc:60:b0:df:60:8e: 09:22:02:dc:78:0f:cf:92:1a:8d:f1:4e:2d:f9:04: 0a:a3:05:e8:db:1a:bc:2b:8d:fd:66:f5:ad:79:9e: 27:81:77:64:95:1b:0c:39:38:b4:6c:95:50:77:e1: 32:8f:82:b4:f8:a2:41:45:99:6d:e5:d8:4c:8d:cf: 45:5a:69:d1:7f:79:00:24:fb:48:49:7e:7e:3b:82: c0:87:98:f0:68:40:dd:22:c3:15:aa:4c:dc:a2:00: 37:66:c8:90:2d:44:39:df:d9:9b:9b:f1:4d:ff:a7: 22:b2:ed:fd:aa:0c:c5:5f:3c:da:b9:73:64:97:73: 2d:f7:36:83:f2:62:ff:34:54:88:dc:05:9e:26:50: e8:ef:1f:a7:55:cc:28:94:81:34:ba:9e:d0:6e:99: 7e:3d:fb:27:10:f1:59:e4:74:a7:ce:33:64:4f:14: 93:d4:b4:5e:ef:ad:ff:02:2e:aa:3b:10:4a:1c:03: a5:bc:12:86:7a:a4:eb:06:cb:29:c5:99:dd:56:5c: 49:c7:40:77:e7:c6:d0:ff:3b:6d:bd:fd:8f:84:08: 6e:28:b3:cb:d4:63:5d:f6:bd:2f:3f:6c:de:3e:f6: 0a:3a:2e:f9:60:d3:2b:ed:43:b6:5f:6f:48:d7:ac: 55:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:4C:60:CB:95:0C:D9:80:B2:C1:94:D1:9B:37:D3:79:F3:C6:B3:A5 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Skxgy5UM2YCywZTRmzfTefPGs6U.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.67.0.0/17 Signature Algorithm: sha256WithRSAEncryption 1c:e2:43:08:a2:2c:1d:40:b0:ca:0c:07:ca:24:12:5a:75:75: 78:7f:55:ef:57:7e:04:02:10:79:90:d1:23:56:5c:d8:6e:5c: f7:ea:b6:aa:4f:28:b0:5e:82:5a:6f:68:88:e0:31:e5:6c:a0: 54:7a:2d:22:8f:65:0a:f3:49:20:4d:64:da:6d:cb:93:77:be: 97:22:de:9c:4c:ad:0a:63:a1:d3:c6:94:a2:50:ae:1a:5d:54: 64:21:75:d7:f0:aa:42:57:40:f9:7c:05:fc:4b:8a:29:1a:a9: cb:93:b4:76:26:43:a5:cd:2f:83:eb:3e:b4:80:d0:6f:83:79: f5:f4:c5:1d:b3:5f:9a:12:41:35:aa:f9:f3:c6:e3:57:01:f4: 21:34:82:74:68:c6:0a:e8:ec:27:2d:89:87:b1:42:04:f3:61: 8a:74:64:14:90:ec:9a:a9:e1:73:c6:a4:a4:ea:43:18:1e:5c: b7:e1:91:fe:2e:6e:cb:6b:1b:be:60:ea:6c:39:3f:6f:dc:9a: 71:48:ac:24:f6:7c:24:80:60:e5:97:9b:18:8f:b4:60:6b:c6: 64:2b:70:f9:d9:6a:e3:3f:fb:78:c0:4c:43:a8:87:bb:10:d1: ad:bb:63:35:6b:f2:4a:8e:94:62:2c:ad:d4:92:cc:a9:fe:82: 99:9c:4c:a7 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCDYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjE0MjlaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDRBNEM2MENCOTUwQ0Q5 ODBCMkMxOTREMTlCMzdEMzc5RjNDNkIzQTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCdq3vy/ufJOsxgsN9gjgkiAtx4D8+SGo3xTi35BAqjBejbGrwr jf1m9a15nieBd2SVGww5OLRslVB34TKPgrT4okFFmW3l2EyNz0VaadF/eQAk+0hJ fn47gsCHmPBoQN0iwxWqTNyiADdmyJAtRDnf2Zub8U3/pyKy7f2qDMVfPNq5c2SX cy33NoPyYv80VIjcBZ4mUOjvH6dVzCiUgTS6ntBumX49+ycQ8VnkdKfOM2RPFJPU tF7vrf8CLqo7EEocA6W8EoZ6pOsGyynFmd1WXEnHQHfnxtD/O229/Y+ECG4os8vU Y132vS8/bN4+9go6Lvlg0yvtQ7Zfb0jXrFUjAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUSkxgy5UM2YCywZTRmzfTefPGs6UwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1NreGd5NVVNMllDeXdaVFJtemZUZWZQR3M2VS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcBQwAwDQYJKoZIhvcNAQELBQADggEBABziQwiiLB1AsMoMB8okElp1dXh/ Ve9XfgQCEHmQ0SNWXNhuXPfqtqpPKLBeglpvaIjgMeVsoFR6LSKPZQrzSSBNZNpt y5N3vpci3pxMrQpjodPGlKJQrhpdVGQhddfwqkJXQPl8BfxLiikaqcuTtHYmQ6XN L4PrPrSA0G+DefX0xR2zX5oSQTWq+fPG41cB9CE0gnRoxgro7CctiYexQgTzYYp0 ZBSQ7Jqp4XPGpKTqQxgeXLfhkf4ubstrG75g6mw5P2/cmnFIrCT2fCSAYOWXmxiP tGBrxmQrcPnZauM/+3jATEOoh7sQ0a27YzVr8kqOlGIsrdSSzKn+gpmcTKc= -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:47 2024 by rpki-client on console-fra.rpki-client.org