$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/aTwHCiWDZfcEsrHK2Z1gf-H6STg.roa File: aTwHCiWDZfcEsrHK2Z1gf-H6STg.roa (raw, json) Hash identifier: Ff4KCDRGANyGmlNr35ChYy2B5DcLvH9FUGZ/Pbjxf+Y= Subject key identifier: 69:3C:07:0A:25:83:65:F7:04:B2:B1:CA:D9:9D:60:7F:E1:FA:49:38 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: FC Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aTwHCiWDZfcEsrHK2Z1gf-H6STg.roa Signing time: Wed 24 May 2023 16:03:15 +0000 ROA not before: Wed 24 May 2023 16:03:15 +0000 ROA not after: Tue 14 May 2024 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.142.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 13:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 252 (0xfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: May 24 16:03:15 2023 GMT Not After : May 14 01:30:02 2024 GMT Subject: CN=693C070A258365F704B2B1CAD99D607FE1FA4938 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:cd:72:9c:a8:05:ca:ec:56:7f:93:66:29:58: 61:79:e7:eb:2a:9d:cc:88:74:c3:09:32:a7:fc:49: e0:6c:58:97:f1:52:c1:93:b9:60:74:47:2f:37:d2: 73:c5:20:06:f2:db:64:8b:d0:eb:52:43:24:cb:fc: b0:d2:56:22:26:21:b6:b0:a2:21:0a:fe:9c:98:f0: dc:01:fe:91:34:ac:5f:5c:16:66:5c:b6:5d:17:4f: bd:bd:32:7a:9a:aa:56:fd:48:48:10:c0:54:a0:0c: 55:75:33:bd:57:e6:64:8d:fe:f0:fa:cf:aa:21:3c: b3:8f:ce:6a:73:5c:5a:86:ec:fa:3c:ef:93:c8:9e: 74:e7:5d:b2:55:d1:1d:54:0f:2f:00:bd:85:e7:e7: ab:2a:db:e2:b4:f6:33:70:20:23:64:5c:49:59:a5: 9e:e9:a2:f2:af:a3:a4:16:2f:08:04:cc:36:fc:9c: e2:55:aa:0e:c6:aa:7a:f5:3a:6c:a3:40:42:8f:61: 61:fb:8c:57:94:28:d8:70:8d:4e:09:f7:00:f0:1b: c7:bb:7b:fd:b5:e8:a9:25:4f:42:77:de:18:49:c7: cb:16:ae:e8:d8:2e:ec:87:c8:82:4e:f6:a3:d7:0c: 93:6a:fa:9c:d5:7a:fe:31:ed:19:18:c5:d2:71:1f: ca:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:3C:07:0A:25:83:65:F7:04:B2:B1:CA:D9:9D:60:7F:E1:FA:49:38 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aTwHCiWDZfcEsrHK2Z1gf-H6STg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.142.0/23 Signature Algorithm: sha256WithRSAEncryption 63:a4:3b:33:99:74:b5:eb:02:21:ef:2b:b9:cd:1a:2e:02:8a: 7c:d5:91:f2:a8:4f:eb:ef:fd:d7:f8:4b:8f:84:81:49:12:52: 85:28:35:10:fb:d5:d2:44:30:e0:5f:cc:23:e9:7b:3e:ee:e5: 56:6f:98:b7:13:38:c5:c8:f4:d2:36:74:63:66:d3:8f:5a:fd: 17:19:ae:65:92:3d:82:16:cf:f2:13:14:24:e5:af:44:45:8b: 10:dd:ec:ce:6d:98:5d:a4:ba:1b:eb:a0:64:9b:51:7b:ca:8c: c8:87:43:1a:c8:e1:19:06:e8:9c:4f:2a:40:0c:64:c9:2e:b0: 30:82:00:c8:78:c5:d8:82:a5:5d:09:ea:e5:58:bd:7b:68:7a: 94:20:67:5a:ea:31:b7:be:0c:c9:e6:fa:50:4f:3c:c0:ca:cc: fb:6f:21:66:62:97:aa:71:79:ca:20:84:51:cb:9e:f6:aa:0b: 21:02:03:02:85:8d:c6:8f:a3:11:a1:c8:2c:9d:80:a3:64:43: e5:ea:04:e8:c4:31:33:34:ee:12:3a:96:4e:1b:85:b3:08:bd: 08:a0:c7:c4:32:e9:19:6c:a6:32:fa:fc:53:2a:8c:d4:20:07: 1e:e6:db:51:fa:71:9c:0c:1d:31:d6:1d:eb:74:6b:11:3f:0b: f9:f7:df:70 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAPwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MjQx NjAzMTVaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDY5M0MwNzBBMjU4MzY1 RjcwNEIyQjFDQUQ5OUQ2MDdGRTFGQTQ5MzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUzXKcqAXK7FZ/k2YpWGF55+sqncyIdMMJMqf8SeBsWJfxUsGT uWB0Ry830nPFIAby22SL0OtSQyTL/LDSViImIbawoiEK/pyY8NwB/pE0rF9cFmZc tl0XT729Mnqaqlb9SEgQwFSgDFV1M71X5mSN/vD6z6ohPLOPzmpzXFqG7Po875PI nnTnXbJV0R1UDy8AvYXn56sq2+K09jNwICNkXElZpZ7povKvo6QWLwgEzDb8nOJV qg7Gqnr1OmyjQEKPYWH7jFeUKNhwjU4J9wDwG8e7e/216KklT0J33hhJx8sWrujY LuyHyIJO9qPXDJNq+pzVev4x7RkYxdJxH8oRAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUaTwHCiWDZfcEsrHK2Z1gf+H6STgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2FUd0hDaVdEWmZjRXNySEsyWjFnZi1INlNUZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYo4wDQYJKoZIhvcNAQELBQADggEBAGOkOzOZdLXrAiHvK7nNGi4CinzV kfKoT+vv/df4S4+EgUkSUoUoNRD71dJEMOBfzCPpez7u5VZvmLcTOMXI9NI2dGNm 049a/RcZrmWSPYIWz/ITFCTlr0RFixDd7M5tmF2kuhvroGSbUXvKjMiHQxrI4RkG 6JxPKkAMZMkusDCCAMh4xdiCpV0J6uVYvXtoepQgZ1rqMbe+DMnm+lBPPMDKzPtv IWZil6pxecoghFHLnvaqCyECAwKFjcaPoxGhyCydgKNkQ+XqBOjEMTM07hI6lk4b hbMIvQigx8Qy6RlspjL6/FMqjNQgBx7m21H6cZwMHTHWHet0axE/C/n333A= -----END CERTIFICATE-----Generated at Sat Apr 27 10:15:57 2024 by rpki-client on console-ams.rpki-client.org