$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/XdGPAfPcZ1rZJVX20lT0MrjqeDM.roa File: XdGPAfPcZ1rZJVX20lT0MrjqeDM.roa (raw, json) Hash identifier: g9TkMoI2+txyLiQblVyvZtxp/ANqvlsO6j48Ac99ZCg= Subject key identifier: 5D:D1:8F:01:F3:DC:67:5A:D9:25:55:F6:D2:54:F4:32:B8:EA:78:33 Certificate issuer: /CN=F89E0F15C1E20E191AAF17288F6E30FF01869A6E Certificate serial: 3D Authority key identifier: F8:9E:0F:15:C1:E2:0E:19:1A:AF:17:28:8F:6E:30:FF:01:86:9A:6E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/XdGPAfPcZ1rZJVX20lT0MrjqeDM.roa Signing time: Tue 30 Apr 2024 01:58:42 +0000 ROA not before: Tue 30 Apr 2024 01:58:42 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 146.99.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F89E0F15C1E20E191AAF17288F6E30FF01869A6E Validity Not Before: Apr 30 01:58:42 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=5DD18F01F3DC675AD92555F6D254F432B8EA7833 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:79:36:54:25:a3:db:e3:35:8d:60:c3:c2:22: 87:27:fd:bc:6e:4f:86:35:67:0e:35:b7:f8:69:d6: 21:85:9a:c6:0e:42:ab:f1:ec:2c:3c:f5:af:81:56: 3d:e2:4e:4c:2c:c4:92:7f:63:89:23:ad:99:9d:54: ad:41:61:35:07:5c:f0:9b:fd:2e:cd:73:72:fd:1e: f3:de:62:76:f6:55:4b:08:74:63:3b:6e:36:1a:3d: b5:4d:f8:5f:0d:93:23:4a:ba:72:11:01:11:93:7d: 7d:d8:a5:37:c8:64:97:9c:15:43:08:09:14:31:21: b9:42:6c:50:ef:1d:a4:ec:82:53:ac:d3:fc:88:d6: ec:16:36:77:f9:e3:32:27:e4:3d:cc:d6:94:ab:45: c1:bf:33:a9:16:91:04:73:90:8e:0f:2a:3f:90:f2: 73:84:11:7c:c5:79:9c:c6:5b:21:37:11:cf:10:51: b9:18:d9:14:9e:01:37:9e:e3:cc:54:92:20:ce:d9: 73:3d:58:e2:ae:fc:b0:90:09:f1:d1:ee:d2:43:8a: 81:fc:2b:4e:9a:05:a5:d8:7f:50:23:d2:5b:9d:6a: 4f:f5:ad:4b:0c:9a:71:97:13:61:4b:85:13:be:f6: 27:63:81:0b:a1:dd:46:bc:02:a3:6d:a4:15:76:19: ec:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:D1:8F:01:F3:DC:67:5A:D9:25:55:F6:D2:54:F4:32:B8:EA:78:33 X509v3 Authority Key Identifier: keyid:F8:9E:0F:15:C1:E2:0E:19:1A:AF:17:28:8F:6E:30:FF:01:86:9A:6E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/XdGPAfPcZ1rZJVX20lT0MrjqeDM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 146.99.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1d:94:b5:aa:10:15:ea:2b:f1:08:cc:3f:ea:bf:63:82:70:c3: 7e:f9:17:b6:14:d6:68:1e:c2:d8:34:62:9f:06:c4:19:4e:c9: 33:2b:f6:20:77:fe:a5:3e:58:7a:42:11:51:93:3e:2d:1d:f2: ca:99:6e:eb:5d:d5:25:49:9d:d2:71:20:77:8a:79:c5:eb:5a: 7e:ba:8a:af:a3:fd:ff:09:6f:5f:47:d5:e7:0b:69:87:ad:56: ed:d4:e7:7f:01:f8:46:c6:4c:4d:bb:6d:66:03:2f:5b:c5:f8: c4:54:19:99:68:08:03:b3:2f:48:4d:d2:a1:ed:ce:00:42:dd: da:7a:3d:65:f9:a9:a3:16:2f:3f:6e:f7:8b:49:b6:f6:a9:30: f7:48:1e:f7:69:6a:7e:ef:2e:87:6d:52:f3:14:88:cf:3c:b1: 30:80:3c:36:b6:3d:9b:0e:83:24:3a:e5:06:a1:b3:f9:af:f9: fa:1c:5b:22:25:ca:bb:35:46:02:b1:06:1b:d8:55:67:be:5e: 6d:3e:db:5e:44:89:43:3a:d7:a8:18:e5:04:f9:50:c7:00:bc: 8f:b2:ee:cd:fa:fa:24:95:a3:84:ef:0e:6f:1c:74:16:57:43: 43:29:98:7b:cc:dd:a4:70:7a:18:1d:ed:13:92:7b:4a:66:f8: f0:de:c0:34 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIBPTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGODlF MEYxNUMxRTIwRTE5MUFBRjE3Mjg4RjZFMzBGRjAxODY5QTZFMB4XDTI0MDQzMDAx NTg0MloXDTI1MDQxNTAxMzAwMlowMzExMC8GA1UEAxMoNUREMThGMDFGM0RDNjc1 QUQ5MjU1NUY2RDI1NEY0MzJCOEVBNzgzMzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALB5NlQlo9vjNY1gw8Iihyf9vG5PhjVnDjW3+GnWIYWaxg5Cq/Hs LDz1r4FWPeJOTCzEkn9jiSOtmZ1UrUFhNQdc8Jv9Ls1zcv0e895idvZVSwh0Yztu Nho9tU34Xw2TI0q6chEBEZN9fdilN8hkl5wVQwgJFDEhuUJsUO8dpOyCU6zT/IjW 7BY2d/njMifkPczWlKtFwb8zqRaRBHOQjg8qP5Dyc4QRfMV5nMZbITcRzxBRuRjZ FJ4BN57jzFSSIM7Zcz1Y4q78sJAJ8dHu0kOKgfwrTpoFpdh/UCPSW51qT/WtSwya cZcTYUuFE772J2OBC6HdRrwCo22kFXYZ7GsCAwEAAaOCAiMwggIfMB0GA1UdDgQW BBRd0Y8B89xnWtklVfbSVPQyuOp4MzAfBgNVHSMEGDAWgBT4ng8VweIOGRqvFyiP bjD/AYaabjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA5Ly1KNFBGY0hpRGhrYXJ4Y29qMjR3X3dHR21tNC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLy1KNFBGY0hpRGhrYXJ4Y29qMjR3X3dH R21tNC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8zMDkvWGRHUEFmUGNaMXJaSlZYMjBsVDBNcmpxZURNLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEw BQMDAJJjMA0GCSqGSIb3DQEBCwUAA4IBAQAdlLWqEBXqK/EIzD/qv2OCcMN++Re2 FNZoHsLYNGKfBsQZTskzK/Ygd/6lPlh6QhFRkz4tHfLKmW7rXdUlSZ3ScSB3innF 61p+uoqvo/3/CW9fR9XnC2mHrVbt1Od/AfhGxkxNu21mAy9bxfjEVBmZaAgDsy9I TdKh7c4AQt3aej1l+amjFi8/bveLSbb2qTD3SB73aWp+7y6HbVLzFIjPPLEwgDw2 tj2bDoMkOuUGobP5r/n6HFsiJcq7NUYCsQYb2FVnvl5tPtteRIlDOteoGOUE+VDH ALyPsu7N+voklaOE7w5vHHQWV0NDKZh7zN2kcHoYHe0TkntKZvjw3sA0 -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:47 2024 by rpki-client on console-fra.rpki-client.org