$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/T7Ido3w_RZP1c5-Lhy7Q6Ta4sv4.roa File: T7Ido3w_RZP1c5-Lhy7Q6Ta4sv4.roa (raw, json) Hash identifier: 63mlUxtK8VIlHvSqpSspJYeqDPr6iuj5fxmDPfi2bcY= Subject key identifier: 4F:B2:1D:A3:7C:3F:45:93:F5:73:9F:8B:87:2E:D0:E9:36:B8:B2:FE Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 06CC Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/T7Ido3w_RZP1c5-Lhy7Q6Ta4sv4.roa Signing time: Tue 30 Apr 2024 01:47:00 +0000 ROA not before: Tue 30 Apr 2024 01:47:00 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 220.210.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1740 (0x6cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:47:00 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=4FB21DA37C3F4593F5739F8B872ED0E936B8B2FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:14:17:ff:6e:08:40:a9:a4:26:53:4e:b7:85: a2:fe:75:ed:00:02:1b:c8:ec:34:18:e9:40:bc:1e: ce:94:83:21:80:cd:c2:a8:3d:3f:85:af:96:d6:aa: 86:ff:c7:ef:3e:52:fb:de:90:26:54:53:b3:59:3f: be:89:2a:82:9d:12:3f:80:df:6d:20:eb:87:12:21: 0f:a5:92:93:aa:85:35:a7:4a:52:4f:57:f1:35:3d: fb:7e:25:57:50:12:86:30:1a:c6:fd:98:3a:57:88: 8d:4e:81:4d:5c:e3:2a:2d:56:2d:f1:65:16:db:80: 76:c8:05:56:4a:6c:94:75:4e:b4:c4:ed:f4:86:23: 7d:d3:41:e0:fb:02:0c:4e:0c:84:a6:2e:9f:30:84: bf:f9:f7:cf:50:2f:5c:68:5c:74:2b:8a:fd:22:99: 0b:0d:d5:ab:f0:c1:ee:2a:12:a9:2f:5e:32:9d:63: 5e:fb:05:cd:4f:a3:09:0e:b3:f4:9c:82:8c:65:c4: 64:4d:ca:81:73:f2:de:45:fd:0f:33:77:32:f8:a4: cc:8a:6f:89:4a:88:a5:f9:c9:46:1a:c9:ab:7c:9b: 7b:6c:26:83:48:24:38:f3:15:2a:5a:4b:c8:3f:45: 65:df:14:c9:97:84:29:ed:7a:12:2c:80:e9:52:3f: c3:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:B2:1D:A3:7C:3F:45:93:F5:73:9F:8B:87:2E:D0:E9:36:B8:B2:FE X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/T7Ido3w_RZP1c5-Lhy7Q6Ta4sv4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.22.0/24 Signature Algorithm: sha256WithRSAEncryption 88:f1:5b:be:58:e2:e3:19:6d:fc:9a:97:4b:92:07:87:04:a5: 8b:f9:5a:60:fd:ad:39:54:e1:28:2e:fc:c5:66:84:8c:f4:af: c8:ed:4a:82:90:8b:e3:d0:6c:bb:70:d5:36:32:16:c9:63:a2: bb:dc:94:17:54:35:be:eb:07:bb:18:a0:71:54:dc:1c:1b:de: da:2b:3a:60:01:5c:59:db:dc:3e:e0:97:1c:fe:ac:df:a4:91: fc:7a:67:24:92:a1:99:57:70:da:f4:46:36:c8:d5:1f:52:b2: ce:61:7e:78:4d:b5:db:53:cb:ee:76:e8:9e:90:2c:b2:40:c6: 4a:9c:1a:45:63:a3:a3:e7:3f:90:03:ab:2e:72:42:6f:8a:8c: 92:44:32:59:dc:2e:f9:99:4f:c7:ca:b4:db:d5:0c:05:b9:54: d7:89:18:50:43:39:f1:0e:e7:79:a1:75:e2:3b:39:f6:de:7b: e7:69:16:28:b4:03:99:54:d1:2d:a7:5e:dc:9e:d1:16:0a:18: 75:a2:10:2b:91:db:b5:5e:ae:22:58:2f:32:80:c5:58:d8:69: 35:05:62:c4:a4:a1:0f:43:a5:c6:bd:9d:10:62:ac:71:73:0f: 01:3e:3f:3f:7e:b3:77:8b:e6:f1:8c:60:02:f7:88:40:64:92: 8c:57:e8:8c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBswwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTQ3MDBaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDRGQjIxREEzN0MzRjQ1 OTNGNTczOUY4Qjg3MkVEMEU5MzZCOEIyRkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHFBf/bghAqaQmU063haL+de0AAhvI7DQY6UC8Hs6UgyGAzcKo PT+Fr5bWqob/x+8+UvvekCZUU7NZP76JKoKdEj+A320g64cSIQ+lkpOqhTWnSlJP V/E1Pft+JVdQEoYwGsb9mDpXiI1OgU1c4yotVi3xZRbbgHbIBVZKbJR1TrTE7fSG I33TQeD7AgxODISmLp8whL/5989QL1xoXHQriv0imQsN1avwwe4qEqkvXjKdY177 Bc1PowkOs/ScgoxlxGRNyoFz8t5F/Q8zdzL4pMyKb4lKiKX5yUYayat8m3tsJoNI JDjzFSpaS8g/RWXfFMmXhCntehIsgOlSP8OHAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUT7Ido3w/RZP1c5+Lhy7Q6Ta4sv4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1Q3SWRvM3dfUlpQMWM1LUxoeTdRNlRhNHN2NC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADc0hYwDQYJKoZIhvcNAQELBQADggEBAIjxW75Y4uMZbfyal0uSB4cEpYv5 WmD9rTlU4Sgu/MVmhIz0r8jtSoKQi+PQbLtw1TYyFsljorvclBdUNb7rB7sYoHFU 3Bwb3torOmABXFnb3D7glxz+rN+kkfx6ZySSoZlXcNr0RjbI1R9Sss5hfnhNtdtT y+526J6QLLJAxkqcGkVjo6PnP5ADqy5yQm+KjJJEMlncLvmZT8fKtNvVDAW5VNeJ GFBDOfEO53mhdeI7Ofbee+dpFii0A5lU0S2nXtye0RYKGHWiECuR27VeriJYLzKA xVjYaTUFYsSkoQ9Dpca9nRBirHFzDwE+Pz9+s3eL5vGMYAL3iEBkkoxX6Iw= -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:47 2024 by rpki-client on console-fra.rpki-client.org