$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/WMZQzZPneKm25ScT90678FS2iS8.roa File: WMZQzZPneKm25ScT90678FS2iS8.roa (raw, json) Hash identifier: o5DLyfaoHj8MxaNWRFI90lLSEo0wVlfYlrtpjDdimFk= Subject key identifier: 58:C6:50:CD:93:E7:78:A9:B6:E5:27:13:F7:4E:BB:F0:54:B6:89:2F Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 06CA Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/WMZQzZPneKm25ScT90678FS2iS8.roa Signing time: Tue 30 Apr 2024 01:46:59 +0000 ROA not before: Tue 30 Apr 2024 01:46:59 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 220.210.104.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Jun 2024 11:53:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1738 (0x6ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:46:59 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=58C650CD93E778A9B6E52713F74EBBF054B6892F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:eb:69:57:7c:cc:e7:69:e4:e0:5a:34:6a:75: ca:33:12:98:ec:76:5a:b6:c3:35:b0:f5:e3:58:5b: c7:18:50:6c:b1:81:77:8b:e0:58:6e:5a:dc:3c:04: 38:27:e4:c9:06:bf:9d:2b:5b:49:45:2c:6c:f5:f6: 6e:2d:55:12:00:9a:99:36:5e:f0:7b:d2:b0:bc:14: c3:4d:4d:5c:ea:42:70:66:eb:4a:1d:63:be:8a:3d: 5a:ab:ac:3b:d4:c1:ce:cc:54:a5:e0:c9:60:43:f9: 37:bb:7c:af:f6:48:c7:c0:8c:50:9f:66:00:93:90: fe:ad:ef:94:18:fc:88:f1:ab:78:4b:8d:15:95:c6: a8:d3:35:75:7d:e4:29:90:53:59:98:3f:96:95:65: 4e:1d:7d:c1:a6:c8:0d:3e:c7:95:1f:36:d4:d5:97: d9:a6:9a:b4:f6:3e:31:23:48:71:53:f7:80:95:3e: ef:d3:3f:3d:94:ea:22:ea:d8:34:26:91:6d:c9:d6: 86:86:f7:72:bc:33:b8:e1:96:79:0d:8c:05:1a:ef: b5:86:71:b1:cd:77:7d:7d:aa:cf:bb:f6:a4:c7:f4: 34:82:e5:2f:84:4c:ab:ec:5c:58:6d:48:d8:2c:3e: b5:98:f6:08:0b:51:ae:2b:c6:77:99:e4:92:1e:62: 0f:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:C6:50:CD:93:E7:78:A9:B6:E5:27:13:F7:4E:BB:F0:54:B6:89:2F X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/WMZQzZPneKm25ScT90678FS2iS8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.104.0/23 Signature Algorithm: sha256WithRSAEncryption 94:4c:a8:36:cb:bf:c8:aa:52:72:8a:db:03:c2:5a:69:bc:8d: d2:23:f8:e9:81:5d:50:d1:f6:c8:1f:37:2f:af:e7:50:88:38: 04:90:db:bb:85:74:80:8a:53:c1:22:6c:69:cc:54:a6:20:77: 02:e4:31:5d:b1:f4:7d:8a:b0:8e:08:93:0f:7f:6c:e4:41:c9: 5a:40:84:da:4e:bc:c1:53:e9:51:d6:e5:43:1a:44:f1:06:64: c1:b8:11:a4:77:2b:93:21:a1:50:22:62:32:c7:bb:32:10:27: 23:10:96:37:42:71:ca:e0:cc:37:6c:b3:c5:80:97:06:61:31: f8:23:78:7d:3a:e0:ff:89:bd:81:8f:7f:6a:db:fa:5c:60:d6: 2b:2b:49:e1:84:09:a9:88:19:70:e8:99:d4:8b:f4:7f:8c:46: d7:7c:d1:66:5b:86:40:8d:3e:e1:88:7d:40:1f:96:f6:36:31: 1d:05:5d:1b:1a:76:9c:44:64:34:c1:46:12:1e:8f:c3:ef:e3: 40:21:f0:d4:b2:4b:fe:01:8f:af:8e:80:98:c9:36:82:29:ad: 98:3a:b9:ed:b7:48:c4:75:4c:d5:2e:cd:45:48:ef:de:bf:6d: 4b:14:00:87:3d:27:cd:dc:11:77:b8:6b:d6:f1:67:d7:ad:50: 10:c9:cd:f5 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBsowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTQ2NTlaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDU4QzY1MENEOTNFNzc4 QTlCNkU1MjcxM0Y3NEVCQkYwNTRCNjg5MkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDE62lXfMznaeTgWjRqdcozEpjsdlq2wzWw9eNYW8cYUGyxgXeL 4FhuWtw8BDgn5MkGv50rW0lFLGz19m4tVRIAmpk2XvB70rC8FMNNTVzqQnBm60od Y76KPVqrrDvUwc7MVKXgyWBD+Te7fK/2SMfAjFCfZgCTkP6t75QY/Ijxq3hLjRWV xqjTNXV95CmQU1mYP5aVZU4dfcGmyA0+x5UfNtTVl9mmmrT2PjEjSHFT94CVPu/T Pz2U6iLq2DQmkW3J1oaG93K8M7jhlnkNjAUa77WGcbHNd319qs+79qTH9DSC5S+E TKvsXFhtSNgsPrWY9ggLUa4rxneZ5JIeYg9rAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUWMZQzZPneKm25ScT90678FS2iS8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1dNWlF6WlBuZUttMjVTY1Q5MDY3OEZTMmlTOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHc0mgwDQYJKoZIhvcNAQELBQADggEBAJRMqDbLv8iqUnKK2wPCWmm8jdIj +OmBXVDR9sgfNy+v51CIOASQ27uFdICKU8EibGnMVKYgdwLkMV2x9H2KsI4Ikw9/ bORByVpAhNpOvMFT6VHW5UMaRPEGZMG4EaR3K5MhoVAiYjLHuzIQJyMQljdCccrg zDdss8WAlwZhMfgjeH064P+JvYGPf2rb+lxg1isrSeGECamIGXDomdSL9H+MRtd8 0WZbhkCNPuGIfUAflvY2MR0FXRsadpxEZDTBRhIej8Pv40Ah8NSyS/4Bj6+OgJjJ NoIprZg6ue23SMR1TNUuzUVI796/bUsUAIc9J83cEXe4a9bxZ9etUBDJzfU= -----END CERTIFICATE-----Generated at Sun Jun 16 12:57:21 2024 by rpki-client on console-fra.rpki-client.org