$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/UiFk0bsU7skKkmydyEPz8dYtYz4.roa File: UiFk0bsU7skKkmydyEPz8dYtYz4.roa (raw, json) Hash identifier: v1FX2gO4AWA2C/DyGrrDMKje2+ouEYBTl/LzAxLR8kk= Subject key identifier: 52:21:64:D1:BB:14:EE:C9:0A:92:6C:9D:C8:43:F3:F1:D6:2D:63:3E Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0853 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/UiFk0bsU7skKkmydyEPz8dYtYz4.roa Signing time: Tue 30 Apr 2024 02:16:28 +0000 ROA not before: Tue 30 Apr 2024 02:16:28 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.106.104.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2131 (0x853) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:16:28 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=522164D1BB14EEC90A926C9DC843F3F1D62D633E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:8f:cb:ce:0a:b9:89:3c:8b:84:bb:17:bb:ed: c9:0f:24:ef:7b:83:90:4e:73:da:bb:dc:40:8b:b2: e4:d5:3d:85:a2:d9:55:68:c7:05:78:84:d1:99:e0: 71:6f:ee:26:be:06:e0:ef:5f:16:d0:1d:46:52:ff: 6a:d0:05:0a:0d:df:6e:03:01:18:91:3a:84:bb:e5: 00:42:d9:5c:ed:e6:42:a3:ec:44:56:6d:c7:29:ea: c4:e3:1f:28:0c:65:7f:e9:2e:e7:30:89:7a:c0:6d: c6:e2:ed:78:8d:3e:5c:fe:bf:35:c4:56:d6:db:06: 1b:c3:76:fe:aa:3d:06:21:fd:61:87:b1:ce:4d:c6: b0:79:41:9e:98:53:cc:5d:5f:46:aa:86:cb:bd:cb: ac:85:6d:b0:7e:b3:54:bd:99:58:44:5f:e8:0b:b4: e8:73:79:1a:19:82:cd:67:30:a6:4f:f9:b4:5a:60: bc:37:2e:7e:6d:02:d3:18:ca:14:4e:c7:a9:1a:4d: 1e:fa:08:c3:50:8b:d1:22:1e:e5:8f:53:6e:67:98: 39:1a:c5:13:e9:bf:82:ac:fa:b7:04:c2:ee:ec:0c: eb:57:b6:a1:2f:75:13:3d:9f:e7:ca:4b:64:bb:0c: bd:90:98:4e:57:9c:ec:bd:2e:cb:6a:60:c9:95:bf: bd:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:21:64:D1:BB:14:EE:C9:0A:92:6C:9D:C8:43:F3:F1:D6:2D:63:3E X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/UiFk0bsU7skKkmydyEPz8dYtYz4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.106.104.0/21 Signature Algorithm: sha256WithRSAEncryption 3e:a6:96:a2:1f:e4:b9:93:69:63:ba:ba:fb:23:ac:3a:0d:a9: 38:ba:8e:b3:45:86:14:48:02:01:d9:75:f2:73:aa:c5:73:ab: cf:e3:c8:9f:9f:1a:ad:30:11:28:2c:59:31:03:8c:37:e5:1e: 1f:c3:0b:fa:db:d2:52:d0:f2:fe:77:3b:9e:d7:44:74:8c:f0: b2:06:f0:4a:27:84:6e:d4:d6:d5:02:91:e5:4c:f5:02:71:2b: 13:20:4d:db:7f:e1:ff:d7:d0:8c:6d:d1:b9:04:c8:b3:94:ec: 69:0e:ae:e7:f4:e4:00:03:01:b4:f5:38:bd:15:54:cc:f2:58: 0f:7b:87:de:4c:58:31:a8:7f:66:12:7d:8f:c3:c9:65:a6:65: e7:3c:c3:40:bd:ff:ba:42:48:af:5c:c2:bf:0c:3f:48:f5:8e: 4f:20:53:ce:b5:f9:64:cb:55:2b:29:3d:13:4e:66:3f:36:2a: 05:47:4a:0b:f8:6f:ac:60:36:f1:3d:ae:c8:bb:89:5b:63:d2: 1d:67:8b:1f:54:57:18:e5:77:1a:28:e9:aa:6e:02:2b:1c:54: c2:d5:08:44:6e:3e:b3:b2:26:55:08:02:2d:24:90:8a:49:ae: 73:b1:d7:98:4a:e2:52:e3:85:93:6a:72:52:76:68:19:ec:22: f1:ac:a2:71 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCFMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjE2MjhaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDUyMjE2NEQxQkIxNEVF QzkwQTkyNkM5REM4NDNGM0YxRDYyRDYzM0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmj8vOCrmJPIuEuxe77ckPJO97g5BOc9q73ECLsuTVPYWi2VVo xwV4hNGZ4HFv7ia+BuDvXxbQHUZS/2rQBQoN324DARiROoS75QBC2Vzt5kKj7ERW bccp6sTjHygMZX/pLucwiXrAbcbi7XiNPlz+vzXEVtbbBhvDdv6qPQYh/WGHsc5N xrB5QZ6YU8xdX0aqhsu9y6yFbbB+s1S9mVhEX+gLtOhzeRoZgs1nMKZP+bRaYLw3 Ln5tAtMYyhROx6kaTR76CMNQi9EiHuWPU25nmDkaxRPpv4Ks+rcEwu7sDOtXtqEv dRM9n+fKS2S7DL2QmE5XnOy9LstqYMmVv705AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUUiFk0bsU7skKkmydyEPz8dYtYz4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1VpRmswYnNVN3NrS2tteWR5RVB6OGRZdFl6NC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMxamgwDQYJKoZIhvcNAQELBQADggEBAD6mlqIf5LmTaWO6uvsjrDoNqTi6 jrNFhhRIAgHZdfJzqsVzq8/jyJ+fGq0wESgsWTEDjDflHh/DC/rb0lLQ8v53O57X RHSM8LIG8EonhG7U1tUCkeVM9QJxKxMgTdt/4f/X0Ixt0bkEyLOU7GkOruf05AAD AbT1OL0VVMzyWA97h95MWDGof2YSfY/DyWWmZec8w0C9/7pCSK9cwr8MP0j1jk8g U861+WTLVSspPRNOZj82KgVHSgv4b6xgNvE9rsi7iVtj0h1nix9UVxjldxoo6apu AiscVMLVCERuPrOyJlUIAi0kkIpJrnOx15hK4lLjhZNqclJ2aBnsIvGsonE= -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:00 2024 by rpki-client on console-fra.rpki-client.org