$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/a9gDYgetVkXpAHlg7zUwwRFs9ss.roa File: a9gDYgetVkXpAHlg7zUwwRFs9ss.roa (raw, json) Hash identifier: Y6tNNdmYjxbEMMS/Ar66Y3tWlU8UGybyEW/ko00EDBs= Subject key identifier: 6B:D8:03:62:07:AD:56:45:E9:00:79:60:EF:35:30:C1:11:6C:F6:CB Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 06DA Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/a9gDYgetVkXpAHlg7zUwwRFs9ss.roa Signing time: Tue 30 Apr 2024 01:49:35 +0000 ROA not before: Tue 30 Apr 2024 01:49:35 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.104.36.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1754 (0x6da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:49:35 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=6BD8036207AD5645E9007960EF3530C1116CF6CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:dd:9a:64:e2:97:95:7f:fb:5d:e0:d8:6e:b5: 3d:3f:1d:b1:d3:25:33:42:d7:bd:1c:c2:29:5a:55: fe:04:ee:20:36:25:f4:7b:4f:d5:b9:7f:94:ab:ac: d6:4b:a0:8b:e4:0f:d9:69:23:75:07:8b:63:d5:51: 83:e4:fb:0d:e2:64:36:7f:b9:39:a4:16:99:47:78: e6:e8:18:eb:d0:48:00:98:53:d7:f9:08:df:e6:18: fe:23:79:7e:23:2d:13:97:fe:13:28:3f:39:d7:c0: 59:3f:f7:3f:98:c8:74:f5:32:57:0e:1d:32:0a:7b: 3f:04:8a:d5:ce:ef:b5:1e:36:bf:7b:de:93:b6:ae: b3:e7:1c:87:87:88:d2:8b:38:19:01:04:a9:8a:e6: 02:3a:2d:0e:c2:a4:07:87:f8:dc:96:0c:ef:fc:0c: c5:21:94:42:d7:5c:a4:e4:05:20:1c:25:d6:f2:73: 16:04:e4:97:5d:1c:14:58:9e:66:58:d1:06:d1:b2: b1:bc:93:b4:2b:d0:1d:b7:1f:84:45:46:97:87:99: d5:d0:d8:0a:a1:91:f3:c3:91:0e:83:37:df:8a:bf: 78:08:fa:66:f3:66:52:67:86:fb:0c:80:03:5b:c2: 23:dd:b5:11:51:d5:12:6c:ea:cf:47:b1:e2:c5:64: cf:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:D8:03:62:07:AD:56:45:E9:00:79:60:EF:35:30:C1:11:6C:F6:CB X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/a9gDYgetVkXpAHlg7zUwwRFs9ss.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.104.36.0/23 Signature Algorithm: sha256WithRSAEncryption 0e:b8:e3:03:10:1a:f6:d2:6e:e5:a7:3c:27:36:9a:e9:1e:a0: cd:e6:45:52:af:09:3c:60:27:a0:f2:06:23:ad:98:60:98:92: ab:c8:d2:60:21:4a:36:82:7c:c8:19:59:a3:a3:60:31:e1:43: de:3b:21:da:5c:a7:81:b3:19:72:12:dd:3c:f0:27:4b:26:3a: 66:b6:18:f6:9f:5e:2d:f7:ea:84:39:ca:de:14:ce:a9:a6:fa: 12:fc:88:80:7f:b3:d8:86:3a:10:e1:ce:a5:ea:94:48:83:17: 9b:60:f0:5d:f7:fe:fd:96:c3:e9:6a:f3:c6:73:76:67:f0:c5: 72:bd:df:3a:d2:d9:ae:df:21:83:5a:3e:f1:f5:43:0c:dc:1e: ed:8b:e5:19:8b:38:b9:e2:e6:27:a7:14:a1:16:8b:be:87:55: 23:e4:5d:2c:ab:99:fe:15:fc:17:1c:ae:b7:81:0b:be:7d:8d: 50:a5:b4:a2:8e:01:5a:4b:ec:fd:35:55:35:c4:a9:4c:36:bb: a0:20:f7:36:72:07:19:de:0c:64:86:1e:85:4d:7b:a4:e9:81: 0b:9b:50:df:03:5f:39:6d:b4:dd:18:e9:1e:99:f8:42:aa:3b: 5d:62:30:8b:58:46:f7:cb:3b:98:0b:3b:4f:1b:73:42:ce:14: 7a:cc:3d:a0 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBtowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTQ5MzVaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDZCRDgwMzYyMDdBRDU2 NDVFOTAwNzk2MEVGMzUzMEMxMTE2Q0Y2Q0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJ3Zpk4peVf/td4NhutT0/HbHTJTNC170cwilaVf4E7iA2JfR7 T9W5f5SrrNZLoIvkD9lpI3UHi2PVUYPk+w3iZDZ/uTmkFplHeOboGOvQSACYU9f5 CN/mGP4jeX4jLROX/hMoPznXwFk/9z+YyHT1MlcOHTIKez8EitXO77UeNr973pO2 rrPnHIeHiNKLOBkBBKmK5gI6LQ7CpAeH+NyWDO/8DMUhlELXXKTkBSAcJdbycxYE 5JddHBRYnmZY0QbRsrG8k7Qr0B23H4RFRpeHmdXQ2AqhkfPDkQ6DN9+Kv3gI+mbz ZlJnhvsMgANbwiPdtRFR1RJs6s9HseLFZM93AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUa9gDYgetVkXpAHlg7zUwwRFs9sswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2E5Z0RZZ2V0VmtYcEFIbGc3elV3d1JGczlzcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExaCQwDQYJKoZIhvcNAQELBQADggEBAA644wMQGvbSbuWnPCc2mukeoM3m RVKvCTxgJ6DyBiOtmGCYkqvI0mAhSjaCfMgZWaOjYDHhQ947Idpcp4GzGXIS3Tzw J0smOma2GPafXi336oQ5yt4Uzqmm+hL8iIB/s9iGOhDhzqXqlEiDF5tg8F33/v2W w+lq88ZzdmfwxXK93zrS2a7fIYNaPvH1QwzcHu2L5RmLOLni5ienFKEWi76HVSPk XSyrmf4V/BccrreBC759jVCltKKOAVpL7P01VTXEqUw2u6Ag9zZyBxneDGSGHoVN e6TpgQubUN8DXzlttN0Y6R6Z+EKqO11iMItYRvfLO5gLO08bc0LOFHrMPaA= -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:47 2024 by rpki-client on console-fra.rpki-client.org