$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZNa17W1SpkeOhTWttlAS1qlLuME.roa File: ZNa17W1SpkeOhTWttlAS1qlLuME.roa (raw, json) Hash identifier: kFE047aHPX6D86IGtyFVYfxFBuGmpV7qM4C1G/+P884= Subject key identifier: 64:D6:B5:ED:6D:52:A6:47:8E:85:35:AD:B6:50:12:D6:A9:4B:B8:C1 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 01D3 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZNa17W1SpkeOhTWttlAS1qlLuME.roa Signing time: Wed 24 May 2023 16:40:34 +0000 ROA not before: Wed 24 May 2023 16:40:34 +0000 ROA not after: Tue 14 May 2024 01:30:02 +0000 asID: 9605 IP address blocks: 110.163.20.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 13:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 467 (0x1d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: May 24 16:40:34 2023 GMT Not After : May 14 01:30:02 2024 GMT Subject: CN=64D6B5ED6D52A6478E8535ADB65012D6A94BB8C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:19:ca:93:6c:b2:0f:10:a6:60:10:18:af:55: fc:90:e1:05:3b:16:9d:6c:71:8a:17:6b:6c:c1:56: 29:c2:65:69:a8:ea:f6:26:82:2c:ba:53:8b:93:b1: 2d:23:84:7a:19:83:f9:e7:03:d6:86:f7:83:6c:09: e8:20:f4:31:c5:1a:c7:f7:53:56:73:4e:83:70:c0: 5d:6b:3d:50:21:6e:18:0a:58:ce:91:c7:8c:e7:ec: 31:c5:fe:54:32:44:60:16:d5:90:5b:fd:85:b4:89: 45:00:46:d2:b2:50:f0:48:4c:83:d6:7d:b5:54:27: e4:a1:6c:19:92:10:c1:11:93:09:aa:af:58:65:59: 48:e8:a2:39:7e:7a:8e:1f:81:5c:d7:c5:c3:48:63: 85:b1:76:39:ce:0f:51:84:e5:f9:ca:51:6c:91:b2: 79:b7:d6:35:36:ea:5f:f8:88:c8:2b:62:50:98:36: 87:d0:43:0d:86:9e:90:7d:ff:a3:48:01:e2:9e:fd: a1:1d:7e:2d:de:6a:7c:cf:5c:7d:30:5e:9d:18:f6: 3a:12:84:e8:27:39:1d:9f:e0:77:66:5b:eb:3e:da: 36:71:5a:db:85:0b:eb:2c:5d:90:87:a2:c5:5a:8d: 65:ae:04:70:de:6d:53:9d:c1:95:9d:b9:7b:12:bb: f3:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:D6:B5:ED:6D:52:A6:47:8E:85:35:AD:B6:50:12:D6:A9:4B:B8:C1 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZNa17W1SpkeOhTWttlAS1qlLuME.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.163.20.0/23 Signature Algorithm: sha256WithRSAEncryption 0b:d8:20:7e:fa:ed:3c:76:c0:37:02:89:f9:bb:8d:f6:1a:e4: 5d:63:d4:b1:ce:11:92:72:40:fc:fe:3d:12:4c:19:08:9c:fa: 76:4b:0c:aa:c4:90:0f:94:e1:64:b5:23:18:02:c0:19:5d:30: c2:4c:7d:54:58:cd:4a:e3:36:8e:3b:cf:d3:3a:09:17:1e:a9: 2b:a5:5a:f8:05:be:82:07:3e:d0:98:5b:2a:d1:47:a2:36:b8: a8:29:be:dd:74:4b:ab:ff:e1:8c:85:77:10:a1:7b:f3:30:45: ea:f8:a9:58:49:c3:85:2a:1f:f9:02:3f:ac:95:37:61:6f:98: 13:8f:77:fb:44:2e:01:46:c9:38:ad:6c:96:bf:47:7c:17:57: 88:d3:3d:e5:e2:74:27:1f:72:12:cf:6e:ee:98:4f:7f:67:ce: f3:ed:64:e0:89:6b:14:9a:94:5e:47:0b:63:1e:f0:95:60:d4: e1:d4:78:8f:73:7a:65:4c:f1:3e:44:00:be:36:84:b6:71:bd: bf:c7:b6:1b:e9:e1:d3:ab:56:56:19:ea:fa:1b:49:fb:7c:99: 8a:a6:55:12:13:0c:18:6f:03:41:61:68:9f:47:7f:15:97:32: 01:85:6a:b0:8d:30:cd:9c:79:31:ec:f6:01:ce:da:00:ab:d5: a1:01:21:cd -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAdMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MjQx NjQwMzRaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDY0RDZCNUVENkQ1MkE2 NDc4RTg1MzVBREI2NTAxMkQ2QTk0QkI4QzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRGcqTbLIPEKZgEBivVfyQ4QU7Fp1scYoXa2zBVinCZWmo6vYm giy6U4uTsS0jhHoZg/nnA9aG94NsCegg9DHFGsf3U1ZzToNwwF1rPVAhbhgKWM6R x4zn7DHF/lQyRGAW1ZBb/YW0iUUARtKyUPBITIPWfbVUJ+ShbBmSEMERkwmqr1hl WUjoojl+eo4fgVzXxcNIY4WxdjnOD1GE5fnKUWyRsnm31jU26l/4iMgrYlCYNofQ Qw2GnpB9/6NIAeKe/aEdfi3eanzPXH0wXp0Y9joShOgnOR2f4HdmW+s+2jZxWtuF C+ssXZCHosVajWWuBHDebVOdwZWduXsSu/NbAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUZNa17W1SpkeOhTWttlAS1qlLuMEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1pOYTE3VzFTcGtlT2hUV3R0bEFTMXFsTHVNRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFuoxQwDQYJKoZIhvcNAQELBQADggEBAAvYIH767Tx2wDcCifm7jfYa5F1j 1LHOEZJyQPz+PRJMGQic+nZLDKrEkA+U4WS1IxgCwBldMMJMfVRYzUrjNo47z9M6 CRceqSulWvgFvoIHPtCYWyrRR6I2uKgpvt10S6v/4YyFdxChe/MwRer4qVhJw4Uq H/kCP6yVN2FvmBOPd/tELgFGyTitbJa/R3wXV4jTPeXidCcfchLPbu6YT39nzvPt ZOCJaxSalF5HC2Me8JVg1OHUeI9zemVM8T5EAL42hLZxvb/Hthvp4dOrVlYZ6vob Sft8mYqmVRITDBhvA0FhaJ9HfxWXMgGFarCNMM2ceTHs9gHO2gCr1aEBIc0= -----END CERTIFICATE-----Generated at Sat Apr 27 10:15:57 2024 by rpki-client on console-ams.rpki-client.org