$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/UXh8FyCaRR4VXAb3uRoBAZovR9c.roa File: UXh8FyCaRR4VXAb3uRoBAZovR9c.roa (raw, json) Hash identifier: QVwOYLVV2Nw05//dZlIEzbMJ63G5xGPJqTXakz9hbVk= Subject key identifier: 51:78:7C:17:20:9A:45:1E:15:5C:06:F7:B9:1A:01:01:9A:2F:47:D7 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 068F Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/UXh8FyCaRR4VXAb3uRoBAZovR9c.roa Signing time: Tue 30 Apr 2024 01:38:09 +0000 ROA not before: Tue 30 Apr 2024 01:38:09 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.78.12.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Jun 2024 11:53:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1679 (0x68f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:38:09 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=51787C17209A451E155C06F7B91A01019A2F47D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:74:ae:e0:59:d5:9b:80:cb:b5:92:bc:2d:6f: 97:ed:88:ff:cc:e9:f7:ed:61:d8:62:64:74:37:12: e8:44:32:f1:4b:45:02:74:c1:15:00:70:07:d0:6b: 04:1a:8a:8f:db:9a:d5:c0:5e:ce:01:b9:bf:d7:83: b9:3c:5c:87:3f:13:6e:7a:5a:d0:85:d1:21:26:40: 68:bb:a2:a1:94:23:85:64:75:06:14:24:4a:94:42: 01:73:13:cc:a3:d0:d6:42:5a:de:45:7c:17:bc:46: 58:5b:8d:76:26:97:e5:ab:72:8a:16:c5:8e:ab:7d: 09:67:1b:dc:6d:bb:50:60:b6:48:8a:75:94:ed:3f: a0:4c:12:2c:be:d1:26:d4:25:44:c4:bf:f5:0d:15: 3c:1b:c8:66:ec:f8:83:fa:e7:87:e6:3a:8e:c3:04: 5e:32:db:2c:c3:82:b5:f4:00:c5:37:5c:24:bc:5d: 0d:0c:ac:32:98:66:29:71:8a:c0:bf:70:a9:77:35: e0:5f:ea:88:bc:cf:a5:88:d9:cc:f8:66:c4:72:f4: 85:b6:aa:08:24:a7:a8:21:1b:8a:aa:12:ee:08:6c: 79:af:29:2b:bb:1d:4f:42:6e:3d:d7:d1:56:f1:fe: 44:c8:d4:e8:f9:10:9a:d4:61:25:df:a9:99:95:63: e7:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:78:7C:17:20:9A:45:1E:15:5C:06:F7:B9:1A:01:01:9A:2F:47:D7 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/UXh8FyCaRR4VXAb3uRoBAZovR9c.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.78.12.0/22 Signature Algorithm: sha256WithRSAEncryption 40:01:7e:47:bd:e4:a5:87:42:0a:12:84:61:3b:61:41:46:da: 8b:bc:9c:14:ca:52:64:41:a7:36:26:bf:c9:5d:93:45:3c:5f: ab:b8:53:69:41:ce:2a:b1:d3:0e:61:15:e0:45:94:0d:3e:a7: c4:1d:02:27:fb:86:c7:38:2c:43:fe:ca:e3:5e:97:db:e0:50: e7:0c:b5:81:1d:6e:de:c9:54:c1:b8:a0:9f:ae:8c:c9:0d:c8: c0:6b:26:2d:ad:ca:36:f0:94:cc:2c:0c:cd:c9:cf:9b:71:04: 37:0a:a1:c9:b2:d8:73:b7:03:39:19:e7:a0:3f:08:16:c1:51: a5:d9:a5:46:73:1e:5c:b3:51:bf:1c:5a:4d:5f:8b:43:c5:40: 9b:96:c6:fc:1b:20:d9:b4:92:82:52:61:1e:c8:4f:30:b2:2f: e1:d2:eb:47:12:57:e0:f9:63:b7:3c:d9:64:99:a9:45:02:12: c4:87:74:a5:ea:2e:fc:42:46:63:3e:4c:e7:e2:30:22:97:a9: 86:7d:50:1f:bc:34:e9:be:ed:02:4d:82:17:fa:f9:c3:d9:17: 7c:96:f1:dc:a5:8d:c4:39:79:07:e2:19:94:bb:b9:c7:e6:b0: 18:bc:00:91:c6:11:41:f2:3c:51:94:c5:34:65:f4:00:ae:1e: 4d:55:30:27 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBo8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTM4MDlaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDUxNzg3QzE3MjA5QTQ1 MUUxNTVDMDZGN0I5MUEwMTAxOUEyRjQ3RDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGdK7gWdWbgMu1krwtb5ftiP/M6fftYdhiZHQ3EuhEMvFLRQJ0 wRUAcAfQawQaio/bmtXAXs4Bub/Xg7k8XIc/E256WtCF0SEmQGi7oqGUI4VkdQYU JEqUQgFzE8yj0NZCWt5FfBe8RlhbjXYml+WrcooWxY6rfQlnG9xtu1BgtkiKdZTt P6BMEiy+0SbUJUTEv/UNFTwbyGbs+IP654fmOo7DBF4y2yzDgrX0AMU3XCS8XQ0M rDKYZilxisC/cKl3NeBf6oi8z6WI2cz4ZsRy9IW2qggkp6ghG4qqEu4IbHmvKSu7 HU9Cbj3X0Vbx/kTI1Oj5EJrUYSXfqZmVY+ezAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUUXh8FyCaRR4VXAb3uRoBAZovR9cwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1VYaDhGeUNhUlI0VlhBYjN1Um9CQVpvdlI5Yy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBTgwwDQYJKoZIhvcNAQELBQADggEBAEABfke95KWHQgoShGE7YUFG2ou8 nBTKUmRBpzYmv8ldk0U8X6u4U2lBziqx0w5hFeBFlA0+p8QdAif7hsc4LEP+yuNe l9vgUOcMtYEdbt7JVMG4oJ+ujMkNyMBrJi2tyjbwlMwsDM3Jz5txBDcKocmy2HO3 AzkZ56A/CBbBUaXZpUZzHlyzUb8cWk1fi0PFQJuWxvwbINm0koJSYR7ITzCyL+HS 60cSV+D5Y7c82WSZqUUCEsSHdKXqLvxCRmM+TOfiMCKXqYZ9UB+8NOm+7QJNghf6 +cPZF3yW8dyljcQ5eQfiGZS7ucfmsBi8AJHGEUHyPFGUxTRl9ACuHk1VMCc= -----END CERTIFICATE-----Generated at Sun Jun 16 14:31:53 2024 by rpki-client on console-ams.rpki-client.org