$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/aXdDVnxMZNOPaPX7hOLjL4HkCks.roa File: aXdDVnxMZNOPaPX7hOLjL4HkCks.roa (raw, json) Hash identifier: yBDOyHhO3bsfWfyzX9E4huvS7CjDt9S++DTlhOpyDfg= Subject key identifier: 69:77:43:56:7C:4C:64:D3:8F:68:F5:FB:84:E2:E3:2F:81:E4:0A:4B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0A76 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aXdDVnxMZNOPaPX7hOLjL4HkCks.roa Signing time: Sun 30 Jun 2024 01:50:33 +0000 ROA not before: Sun 30 Jun 2024 01:50:33 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 49.106.98.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2678 (0xa76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 30 01:50:33 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=697743567C4C64D38F68F5FB84E2E32F81E40A4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:16:55:95:06:52:82:b9:12:e6:b2:cb:aa:7b: f3:28:b7:d5:36:86:c9:0d:e6:ee:fe:82:c5:ee:e1: c7:64:b6:d5:3a:03:fd:5f:ab:7c:32:c2:ef:d6:88: 00:00:aa:b0:b8:9b:98:ca:b3:f2:33:97:e7:11:6b: e7:6a:3f:c9:60:88:f3:79:d2:a4:40:5a:2d:86:8b: 43:15:ed:a0:64:31:66:1e:30:37:09:81:3d:34:12: e3:0e:ad:3c:a9:84:18:de:03:1a:88:f1:1a:e6:f3: 02:0c:53:3c:09:e9:e7:86:d3:88:bd:21:94:15:52: bb:32:ec:8f:ad:17:7f:db:68:41:64:ad:06:04:81: c0:ee:f3:61:88:20:06:8d:23:c0:97:a8:09:3b:83: 2b:7c:97:d8:46:a2:60:fb:08:af:f7:2e:92:65:15: 57:3e:5d:95:85:8c:7c:bd:17:cd:a4:30:6b:fb:46: be:98:ee:b3:e6:73:17:4b:ac:15:85:26:75:80:31: c2:93:87:cd:13:ee:04:f4:81:c5:d4:5c:d7:b2:ef: 78:2a:cc:84:99:25:96:38:3a:4c:a0:13:fc:89:29: c9:60:29:2a:b7:37:a2:3f:2e:3c:41:6c:c6:04:43: 9f:cd:d1:70:1c:91:ed:ba:61:1a:27:be:03:44:52: cf:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:77:43:56:7C:4C:64:D3:8F:68:F5:FB:84:E2:E3:2F:81:E4:0A:4B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aXdDVnxMZNOPaPX7hOLjL4HkCks.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.106.98.0/23 Signature Algorithm: sha256WithRSAEncryption 21:91:2f:49:93:03:65:7c:24:f3:1c:e4:a2:c9:46:28:38:fd: 3e:0f:04:e1:23:e4:d3:96:c7:2a:6f:ed:9d:2a:ac:a6:f3:1e: fc:52:64:1d:55:bb:17:70:8c:a7:fa:5b:50:ee:60:59:2d:47: 1f:1a:ca:41:66:05:8f:4e:6e:4d:d2:7d:98:6d:ee:3f:dc:a2: 57:24:ac:d6:53:ea:cd:f6:a1:53:b6:bf:7e:01:46:1c:1c:d3: 91:cd:e2:07:a5:80:dc:a1:27:7f:f3:5d:03:a1:94:2f:38:d4: 2f:ee:24:60:f2:f2:42:cc:0d:55:af:68:95:7c:29:9f:f3:6d: 8b:28:b8:8a:27:37:bf:4e:39:e4:f7:e1:46:56:d9:e7:77:5a: 55:02:5e:77:76:c3:af:76:5e:d7:bb:a9:71:2c:72:57:3b:c5: 3b:ee:71:0d:ce:3f:e6:83:f0:d6:52:06:36:94:22:6e:d3:d9: 98:81:fa:36:43:de:0d:6a:38:39:cf:88:c8:18:7e:bf:3e:9a: c1:c6:2f:d9:15:91:fb:27:76:df:bd:be:cc:62:32:ec:b6:e8: 1d:26:95:99:e0:47:bd:f5:b5:fd:d8:56:76:d4:51:3c:67:8c: 84:89:ee:b3:ef:fe:91:82:29:cd:26:f7:a3:4d:02:ca:64:6d: 75:9a:41:b5 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCnYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MzAw MTUwMzNaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDY5Nzc0MzU2N0M0QzY0 RDM4RjY4RjVGQjg0RTJFMzJGODFFNDBBNEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1FlWVBlKCuRLmssuqe/Mot9U2hskN5u7+gsXu4cdkttU6A/1f q3wywu/WiAAAqrC4m5jKs/Izl+cRa+dqP8lgiPN50qRAWi2Gi0MV7aBkMWYeMDcJ gT00EuMOrTyphBjeAxqI8Rrm8wIMUzwJ6eeG04i9IZQVUrsy7I+tF3/baEFkrQYE gcDu82GIIAaNI8CXqAk7gyt8l9hGomD7CK/3LpJlFVc+XZWFjHy9F82kMGv7Rr6Y 7rPmcxdLrBWFJnWAMcKTh80T7gT0gcXUXNey73gqzISZJZY4OkygE/yJKclgKSq3 N6I/LjxBbMYEQ5/N0XAcke26YRonvgNEUs97AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUaXdDVnxMZNOPaPX7hOLjL4HkCkswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2FYZERWbnhNWk5PUGFQWDdoT0xqTDRIa0Nrcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExamIwDQYJKoZIhvcNAQELBQADggEBACGRL0mTA2V8JPMc5KLJRig4/T4P BOEj5NOWxypv7Z0qrKbzHvxSZB1VuxdwjKf6W1DuYFktRx8aykFmBY9Obk3SfZht 7j/colckrNZT6s32oVO2v34BRhwc05HN4gelgNyhJ3/zXQOhlC841C/uJGDy8kLM DVWvaJV8KZ/zbYsouIonN79OOeT34UZW2ed3WlUCXnd2w692Xte7qXEsclc7xTvu cQ3OP+aD8NZSBjaUIm7T2ZiB+jZD3g1qODnPiMgYfr8+msHGL9kVkfsndt+9vsxi Muy26B0mlZngR731tf3YVnbUUTxnjISJ7rPv/pGCKc0m96NNAspkbXWaQbU= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:40 2024 by rpki-client on console-ams.rpki-client.org