$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Z7N5_5Sj22W7epA02ytwXcdZGS4.roa File: Z7N5_5Sj22W7epA02ytwXcdZGS4.roa (raw, json) Hash identifier: j4mWi0/lBFUIL8I2ej4rVYOfPRHASvmylNksLHYtM5Y= Subject key identifier: 67:B3:79:FF:94:A3:DB:65:BB:7A:90:34:DB:2B:70:5D:C7:59:19:2E Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0329 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Z7N5_5Sj22W7epA02ytwXcdZGS4.roa Signing time: Thu 01 Jun 2023 16:07:27 +0000 ROA not before: Thu 01 Jun 2023 16:07:27 +0000 ROA not after: Tue 14 May 2024 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.126.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 13:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 809 (0x329) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 1 16:07:27 2023 GMT Not After : May 14 01:30:02 2024 GMT Subject: CN=67B379FF94A3DB65BB7A9034DB2B705DC759192E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:fb:af:52:d9:38:78:92:e4:68:64:63:77:4b: a0:41:9a:2e:3a:7c:0e:10:3c:ba:7e:48:9d:a9:06: 94:25:64:03:eb:b4:e9:40:48:f9:bf:30:b1:18:8f: 8b:83:6d:54:5e:59:e5:18:67:6d:e8:c6:f5:eb:3c: 3e:4e:55:9a:81:f5:11:14:e2:57:05:28:dc:63:10: f0:44:22:78:f3:a8:aa:54:4b:92:7e:44:cf:9f:f1: 2a:53:c7:ff:47:b5:ca:76:27:5a:cf:67:72:a0:8f: 54:1c:9a:e6:e8:39:45:59:92:d9:16:35:e3:73:e5: 1a:41:76:6c:e7:d4:03:dc:8f:dc:d5:40:75:65:54: 64:36:42:1a:c1:b0:19:1e:97:00:71:ab:37:73:94: e0:2d:cf:22:ec:51:2e:39:97:be:23:ea:14:d1:a6: 64:4a:a3:a3:4b:85:b9:4f:0a:d9:6e:96:60:f1:20: 65:b9:2b:46:96:11:f8:06:24:cf:86:e9:5e:b4:1a: d8:f1:6e:da:c6:af:21:ad:fa:0f:f3:36:84:8c:57: 4e:03:50:18:23:90:60:b1:26:ec:1c:ee:08:9f:81: c6:c0:b2:0e:67:ef:9b:6b:b3:e7:1f:ad:96:2f:c9: 36:87:1c:1f:be:5d:0a:cf:6f:ad:41:f8:8f:05:71: 33:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:B3:79:FF:94:A3:DB:65:BB:7A:90:34:DB:2B:70:5D:C7:59:19:2E X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Z7N5_5Sj22W7epA02ytwXcdZGS4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.126.0/23 Signature Algorithm: sha256WithRSAEncryption 7b:39:37:2d:a8:08:20:63:c2:99:ff:eb:f6:a0:2a:d3:04:d6: 55:95:4d:ca:ad:8b:c8:c8:13:94:bb:08:9f:c0:de:9d:d5:2c: 36:4b:d0:ee:94:80:7c:2b:e9:49:c6:ee:6f:d2:ee:3f:65:60: d1:b4:de:c6:23:64:34:91:21:0a:59:a9:73:5c:49:38:94:73: 13:65:3a:fd:99:37:58:2e:95:7f:ef:22:c5:ec:89:66:11:77: 71:e7:3c:0a:2e:eb:ab:d7:83:6f:96:c3:1e:0d:c5:cb:c7:99: 6c:c1:38:32:bb:d3:f9:00:a3:2e:53:0e:89:52:c6:e0:32:b6: 03:dc:29:58:e6:a6:bc:bf:07:0d:76:bf:18:fc:1c:2c:83:5b: 6c:5c:ed:a9:6a:ca:bd:df:ab:81:81:38:73:a4:14:26:ef:5b: 06:f5:18:83:35:4d:78:18:03:42:ec:e5:9f:95:ed:84:68:40: 29:e0:8d:c5:e7:2b:43:f1:db:48:9e:27:c6:10:3c:c1:3d:9a: 0b:df:25:b3:f8:2b:c1:87:3e:a6:2e:d9:46:3e:42:10:ab:fa: 5c:db:4a:84:94:ef:67:5b:b7:bf:04:f8:48:79:8a:93:2e:e0: 67:a4:c0:89:9d:32:6c:4d:f3:47:a0:5b:70:23:8e:62:94:3f: d6:98:da:80 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAykwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA2MDEx NjA3MjdaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDY3QjM3OUZGOTRBM0RC NjVCQjdBOTAzNERCMkI3MDVEQzc1OTE5MkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDD+69S2Th4kuRoZGN3S6BBmi46fA4QPLp+SJ2pBpQlZAPrtOlA SPm/MLEYj4uDbVReWeUYZ23oxvXrPD5OVZqB9REU4lcFKNxjEPBEInjzqKpUS5J+ RM+f8SpTx/9Htcp2J1rPZ3Kgj1QcmuboOUVZktkWNeNz5RpBdmzn1APcj9zVQHVl VGQ2QhrBsBkelwBxqzdzlOAtzyLsUS45l74j6hTRpmRKo6NLhblPCtlulmDxIGW5 K0aWEfgGJM+G6V60GtjxbtrGryGt+g/zNoSMV04DUBgjkGCxJuwc7gifgcbAsg5n 75trs+cfrZYvyTaHHB++XQrPb61B+I8FcTOXAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUZ7N5/5Sj22W7epA02ytwXcdZGS4wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1o3TjVfNVNqMjJXN2VwQTAyeXR3WGNkWkdTNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYn4wDQYJKoZIhvcNAQELBQADggEBAHs5Ny2oCCBjwpn/6/agKtME1lWV Tcqti8jIE5S7CJ/A3p3VLDZL0O6UgHwr6UnG7m/S7j9lYNG03sYjZDSRIQpZqXNc STiUcxNlOv2ZN1gulX/vIsXsiWYRd3HnPAou66vXg2+Wwx4NxcvHmWzBODK70/kA oy5TDolSxuAytgPcKVjmpry/Bw12vxj8HCyDW2xc7alqyr3fq4GBOHOkFCbvWwb1 GIM1TXgYA0Ls5Z+V7YRoQCngjcXnK0Px20ieJ8YQPME9mgvfJbP4K8GHPqYu2UY+ QhCr+lzbSoSU72dbt78E+Eh5ipMu4GekwImdMmxN80egW3AjjmKUP9aY2oA= -----END CERTIFICATE-----Generated at Sat Apr 27 10:15:57 2024 by rpki-client on console-ams.rpki-client.org