$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/UQHbX8PQGmqfW5c2FI0WOcysyRI.roa File: UQHbX8PQGmqfW5c2FI0WOcysyRI.roa (raw, json) Hash identifier: cCC2onWMLQKmgjEtnA/OAM8ge/dUZWGNdJZvh6zVQwE= Subject key identifier: 51:01:DB:5F:C3:D0:1A:6A:9F:5B:97:36:14:8D:16:39:CC:AC:C9:12 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A87 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/UQHbX8PQGmqfW5c2FI0WOcysyRI.roa Signing time: Sun 30 Jun 2024 01:52:35 +0000 ROA not before: Sun 30 Jun 2024 01:52:35 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 49.103.28.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2695 (0xa87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:52:35 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=5101DB5FC3D01A6A9F5B9736148D1639CCACC912 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:82:cf:ad:25:cc:69:ef:9a:dc:5f:4b:d7:bf: 6c:d7:1b:ce:b1:eb:28:0b:e4:e8:d0:e8:ad:27:12: 40:b0:3e:49:9b:71:c9:3f:a3:35:e9:22:38:b9:1b: 37:c0:5b:1f:9c:c4:5d:1c:d7:54:62:d7:d1:14:9b: 59:7b:3c:ab:be:1a:86:7c:be:fb:62:14:21:f2:a5: da:ef:59:ac:a0:66:c1:05:7f:4e:01:f9:15:81:6e: 51:76:04:29:59:66:45:8a:99:38:f5:55:bb:d4:14: 9f:68:c4:28:ca:db:10:a7:55:22:9a:00:83:a0:65: 0e:8b:72:9e:78:db:30:03:de:da:03:68:2f:c4:5a: 74:7d:ed:ea:47:7a:97:f2:06:74:14:e3:0a:19:31: 11:d1:84:c3:0e:86:4d:23:9c:a7:58:72:8a:0f:a6: 13:9d:f6:9d:8e:3f:d8:26:67:b0:7e:35:b6:c8:10: ad:a9:1e:3e:ae:d6:5f:fd:69:1f:7c:d6:02:7e:da: ba:06:97:76:e5:48:cb:e3:41:9d:f2:77:50:e0:67: 1b:c2:2b:80:b2:5c:fb:1a:b8:21:0d:50:fa:15:81: 00:7f:2c:d7:c8:e3:c9:4a:b3:70:c4:80:79:8d:73: bc:d8:eb:18:2d:d8:4c:f0:cc:99:39:6b:72:92:fb: bc:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:01:DB:5F:C3:D0:1A:6A:9F:5B:97:36:14:8D:16:39:CC:AC:C9:12 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/UQHbX8PQGmqfW5c2FI0WOcysyRI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.103.28.0/22 Signature Algorithm: sha256WithRSAEncryption 9d:1d:38:07:f7:5b:8a:59:1c:7c:01:87:0d:5f:63:ae:ab:f7: 30:3c:23:f6:be:a5:cb:01:91:a8:76:94:ac:80:3b:1d:f3:53: 85:9d:9e:da:58:6e:c5:27:bb:a9:c5:97:cc:d2:7b:10:65:d0: 44:8f:19:cf:ef:26:5d:9b:f6:bf:1e:70:be:61:a9:c5:ae:eb: 61:9b:12:e4:3b:1e:4c:f4:44:d5:3d:bd:74:2f:81:3c:c0:9e: f2:73:ff:e6:4a:1a:4e:7e:40:38:2e:23:82:4c:fc:d9:28:08: 05:da:f9:02:8a:fb:f3:0d:f8:e7:a9:75:5a:fc:ab:8d:54:e1: 04:2f:b8:95:dc:4e:89:0c:9d:5f:80:b9:26:cf:9e:7a:55:24: 26:cd:c1:78:6b:59:cb:9d:9d:69:3c:1b:e7:d2:46:b5:d6:3c: 0c:8a:f0:4a:68:0d:90:5b:63:12:d7:65:a9:2a:6f:53:61:30: fa:26:15:5a:10:7f:53:26:86:eb:2e:ba:d0:7f:52:80:c8:3b: 5c:19:43:ab:26:ce:b9:62:1c:c7:17:e9:91:b6:25:3c:2c:21: 7d:b6:6a:49:18:a6:62:ee:97:b2:0b:33:06:f9:88:cb:c9:bb: 7c:b2:10:99:ef:55:d8:52:be:70:a1:a2:fa:4b:06:02:8d:4f: 94:5b:7a:49 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCocwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTUyMzVaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDUxMDFEQjVGQzNEMDFB NkE5RjVCOTczNjE0OEQxNjM5Q0NBQ0M5MTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDags+tJcxp75rcX0vXv2zXG86x6ygL5OjQ6K0nEkCwPkmbcck/ ozXpIji5GzfAWx+cxF0c11Ri19EUm1l7PKu+GoZ8vvtiFCHypdrvWaygZsEFf04B +RWBblF2BClZZkWKmTj1VbvUFJ9oxCjK2xCnVSKaAIOgZQ6Lcp542zAD3toDaC/E WnR97epHepfyBnQU4woZMRHRhMMOhk0jnKdYcooPphOd9p2OP9gmZ7B+NbbIEK2p Hj6u1l/9aR981gJ+2roGl3blSMvjQZ3yd1DgZxvCK4CyXPsauCENUPoVgQB/LNfI 48lKs3DEgHmNc7zY6xgt2EzwzJk5a3KS+7zVAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUUQHbX8PQGmqfW5c2FI0WOcysyRIwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1VRSGJYOFBRR21xZlc1YzJGSTBXT2N5c3lSSS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxZxwwDQYJKoZIhvcNAQELBQADggEBAJ0dOAf3W4pZHHwBhw1fY66r9zA8 I/a+pcsBkah2lKyAOx3zU4WdntpYbsUnu6nFl8zSexBl0ESPGc/vJl2b9r8ecL5h qcWu62GbEuQ7Hkz0RNU9vXQvgTzAnvJz/+ZKGk5+QDguI4JM/NkoCAXa+QKK+/MN +OepdVr8q41U4QQvuJXcTokMnV+AuSbPnnpVJCbNwXhrWcudnWk8G+fSRrXWPAyK 8EpoDZBbYxLXZakqb1NhMPomFVoQf1MmhusuutB/UoDIO1wZQ6smzrliHMcX6ZG2 JTwsIX22akkYpmLul7ILMwb5iMvJu3yyEJnvVdhSvnChovpLBgKNT5Rbekk= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:40 2024 by rpki-client on console-ams.rpki-client.org