$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZUxZicEM4l673ANjlgcVbQN5hqE.roa File: ZUxZicEM4l673ANjlgcVbQN5hqE.roa (raw, json) Hash identifier: Bo4xD/L7Bl5EenXfztNqg4L618MAoVpbDuwqrStzOJg= Subject key identifier: 65:4C:59:89:C1:0C:E2:5E:BB:DC:03:63:96:07:15:6D:03:79:86:A1 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0623 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZUxZicEM4l673ANjlgcVbQN5hqE.roa Signing time: Thu 29 Feb 2024 01:38:36 +0000 ROA not before: Thu 29 Feb 2024 01:38:36 +0000 ROA not after: Fri 14 Feb 2025 01:30:03 +0000 asID: 9605 IP address blocks: 1.72.2.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Jun 2024 11:53:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1571 (0x623) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Feb 29 01:38:36 2024 GMT Not After : Feb 14 01:30:03 2025 GMT Subject: CN=654C5989C10CE25EBBDC03639607156D037986A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:53:d9:f8:32:64:3a:21:23:d9:ed:ec:9d:06: c9:94:0a:ed:56:52:bb:bb:54:aa:ab:a1:54:15:1c: 04:d9:cd:6b:48:21:ca:8e:6b:a7:63:07:9d:74:2a: af:30:14:f5:b5:59:0a:da:8f:14:3b:9c:01:2c:59: 02:b8:2d:98:d5:93:f6:3b:e9:78:ae:f6:f0:03:c4: a1:6c:62:95:51:8d:d4:4e:26:e3:3e:bc:84:d3:dc: fe:2c:88:c1:69:60:98:b2:e2:18:94:ad:e6:c0:83: 2c:52:b7:d4:96:c4:b9:24:9b:41:dc:e7:0a:79:04: 1e:f6:d6:6f:c9:6e:f1:35:89:96:18:28:44:35:40: 92:fa:f9:60:87:89:1e:ce:28:01:02:8f:26:c7:d3: de:d7:95:d2:76:30:63:65:22:7d:49:79:c6:6b:1d: 20:a2:78:e9:d9:6c:e2:39:df:17:6f:38:0e:92:24: 8f:dc:94:c6:1a:36:7e:b6:f6:99:6a:b9:32:06:7a: 3b:af:40:95:b5:8a:e9:b6:85:36:9d:31:a9:5e:2d: 9a:88:42:05:e7:97:d4:21:bc:1b:a0:c3:7b:33:48: f2:24:47:01:e3:3e:d7:6c:2c:18:cc:fa:07:03:4c: a6:4c:25:78:18:70:5d:ef:ba:47:60:b1:d3:e2:f1: 70:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:4C:59:89:C1:0C:E2:5E:BB:DC:03:63:96:07:15:6D:03:79:86:A1 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZUxZicEM4l673ANjlgcVbQN5hqE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.72.2.0/23 Signature Algorithm: sha256WithRSAEncryption 96:4f:83:59:40:ec:ea:c2:04:56:da:54:bc:18:0a:cb:18:38: c0:28:0e:93:07:e3:41:c4:3c:62:e4:f6:ed:52:1b:f2:69:99: ef:fd:a9:88:fc:11:a7:a6:d7:38:05:36:8b:3e:89:7d:cb:b3: c5:16:c6:9f:90:e7:d6:28:57:db:c8:34:a1:6e:72:48:d8:aa: b8:7c:b3:fb:27:f9:4f:ac:39:fe:11:43:62:dc:ce:21:bf:5a: 3a:b1:8a:9d:6c:78:ca:08:af:77:5e:97:f4:5e:8e:b0:65:08: e1:f8:76:31:45:69:33:06:70:be:93:50:ae:d3:01:7a:bb:d6: 21:9d:fc:72:4f:f2:bf:31:b7:6b:c9:e8:4e:65:29:1b:db:8d: c6:d9:c2:8c:3c:d1:97:19:c9:67:15:99:a1:4a:46:02:d0:e0: 1f:b1:7f:82:48:d5:21:b8:c1:b3:fc:b4:bb:1a:34:43:53:b9: 48:41:28:78:4a:65:7d:6c:5c:47:c4:14:ac:0c:91:5c:55:94: 8d:a5:48:f0:91:5b:1d:65:8f:34:e4:f7:6c:eb:48:b5:27:45: ef:65:8e:3d:dd:a8:84:5d:9e:e8:4b:34:40:0a:f1:80:97:0a: 41:6d:ad:b1:19:4b:e2:fc:71:bc:28:8e:a7:5a:0e:d6:b6:cc: 9c:54:e1:a7 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBiMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDAyMjkw MTM4MzZaFw0yNTAyMTQwMTMwMDNaMDMxMTAvBgNVBAMTKDY1NEM1OTg5QzEwQ0Uy NUVCQkRDMDM2Mzk2MDcxNTZEMDM3OTg2QTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUU9n4MmQ6ISPZ7eydBsmUCu1WUru7VKqroVQVHATZzWtIIcqO a6djB510Kq8wFPW1WQrajxQ7nAEsWQK4LZjVk/Y76Xiu9vADxKFsYpVRjdROJuM+ vITT3P4siMFpYJiy4hiUrebAgyxSt9SWxLkkm0Hc5wp5BB721m/JbvE1iZYYKEQ1 QJL6+WCHiR7OKAECjybH097XldJ2MGNlIn1JecZrHSCieOnZbOI53xdvOA6SJI/c lMYaNn629plquTIGejuvQJW1ium2hTadMaleLZqIQgXnl9QhvBugw3szSPIkRwHj PtdsLBjM+gcDTKZMJXgYcF3vukdgsdPi8XBhAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUZUxZicEM4l673ANjlgcVbQN5hqEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L1pVeFppY0VNNGw2NzNBTmpsZ2NWYlFONWhxRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBSAIwDQYJKoZIhvcNAQELBQADggEBAJZPg1lA7OrCBFbaVLwYCssYOMAo DpMH40HEPGLk9u1SG/Jpme/9qYj8Eaem1zgFNos+iX3Ls8UWxp+Q59YoV9vINKFu ckjYqrh8s/sn+U+sOf4RQ2LcziG/Wjqxip1seMoIr3del/RejrBlCOH4djFFaTMG cL6TUK7TAXq71iGd/HJP8r8xt2vJ6E5lKRvbjcbZwow80ZcZyWcVmaFKRgLQ4B+x f4JI1SG4wbP8tLsaNENTuUhBKHhKZX1sXEfEFKwMkVxVlI2lSPCRWx1ljzTk92zr SLUnRe9ljj3dqIRdnuhLNEAK8YCXCkFtrbEZS+L8cbwojqdaDta2zJxU4ac= -----END CERTIFICATE-----Generated at Sun Jun 16 12:57:21 2024 by rpki-client on console-fra.rpki-client.org