$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ag4WF-wCEtw15v7fC3zcCgR-SDA.roa File: ag4WF-wCEtw15v7fC3zcCgR-SDA.roa (raw, json) Hash identifier: 2HMDDaJzs/CVTShg3YW3DUY9jCpoOhaNp5x1E71cGPw= Subject key identifier: 6A:0E:16:17:EC:02:12:DC:35:E6:FE:DF:0B:7C:DC:0A:04:7E:48:30 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 055B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ag4WF-wCEtw15v7fC3zcCgR-SDA.roa Signing time: Thu 27 Jul 2023 16:56:16 +0000 ROA not before: Thu 27 Jul 2023 16:56:16 +0000 ROA not after: Sun 14 Jul 2024 01:30:03 +0000 asID: 9605 IP address blocks: 211.14.112.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1371 (0x55b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jul 27 16:56:16 2023 GMT Not After : Jul 14 01:30:03 2024 GMT Subject: CN=6A0E1617EC0212DC35E6FEDF0B7CDC0A047E4830 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:2b:0f:b6:6e:ef:08:3a:7e:b6:2a:9d:39:79: 86:0a:ad:2e:4c:89:7b:3f:d1:a7:f7:7f:a7:a6:a4: 60:ee:17:2b:4e:4c:68:b2:69:53:ec:be:88:0e:ff: 26:e9:2c:b6:3d:d7:ca:62:ef:7b:63:c1:50:e7:64: df:f7:7a:82:f3:58:cf:b1:87:64:ac:09:a9:5c:3a: 30:da:26:86:12:54:c2:14:c7:75:4f:2b:c3:c9:d8: 8e:9b:5d:2b:77:3c:4b:5b:1f:84:d5:e0:93:12:90: 63:2a:ab:42:e8:2d:3c:bc:f4:2f:0b:ed:2e:1e:3e: 78:62:b0:c0:37:7d:43:bb:7f:29:93:df:ce:ac:dd: 1c:25:12:71:57:4e:66:42:d1:e5:d9:8d:47:6b:28: 6a:37:cd:26:b2:4c:49:fc:7c:18:00:76:61:d4:90: 28:5b:4a:cc:d0:c7:94:8e:be:6b:5c:12:3f:2c:8f: 94:24:4f:1d:9b:cd:4e:0e:00:a6:0c:20:bf:f0:15: 81:5a:52:64:58:f3:74:d2:15:8a:53:f2:a2:06:74: 41:8c:15:37:74:f2:5d:56:b3:f1:ca:e5:96:5c:0a: 42:47:c2:6f:91:3b:d2:90:cb:d7:67:2a:71:8c:d8: f7:40:d8:75:38:33:57:95:db:64:65:ae:53:18:78: ce:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:0E:16:17:EC:02:12:DC:35:E6:FE:DF:0B:7C:DC:0A:04:7E:48:30 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ag4WF-wCEtw15v7fC3zcCgR-SDA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.14.112.0/23 Signature Algorithm: sha256WithRSAEncryption b6:56:72:2a:f7:7e:88:7f:cd:61:ed:4c:27:4e:6b:63:63:06: 64:7c:c5:e4:b1:d1:1d:1b:6a:30:12:cb:72:af:40:86:49:43: 97:d0:9b:0c:52:83:c0:33:af:92:21:8d:3e:fe:95:be:36:e6: 8c:74:cf:53:e7:bf:6e:26:fd:b2:7f:0c:53:9e:8c:d6:87:91: fc:62:01:4c:86:63:0f:46:8e:41:94:bd:b3:27:a0:85:50:f2: be:00:68:5c:a9:ab:07:7e:92:62:2e:c6:28:2e:29:0d:10:f5: ae:a5:4c:79:65:f5:d2:07:43:75:a8:8c:f4:80:fa:54:d2:43: f9:b9:4f:2b:33:12:77:6b:b3:9c:a9:f4:1d:96:7f:9b:8d:ad: 6a:a3:ef:dc:8d:4b:4a:6d:7a:11:61:79:ce:d6:77:61:7d:df: e4:2e:81:ed:71:69:3d:8c:92:55:73:26:bb:d8:2f:17:3d:30: 34:00:e8:a1:06:d7:f6:93:e8:de:1e:83:79:7b:3e:df:2e:31: a8:c6:d2:8e:57:fc:98:bb:66:d7:5d:93:20:2f:20:0d:86:20: 3d:9a:a2:4f:9a:5a:38:c0:f4:f2:b8:b2:4b:3a:b9:41:fc:9d: cb:4e:b3:5f:b7:7a:5e:2a:60:7c:46:f6:e1:71:e7:fe:0a:e1: 23:15:59:5b -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBVswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA3Mjcx NjU2MTZaFw0yNDA3MTQwMTMwMDNaMDMxMTAvBgNVBAMTKDZBMEUxNjE3RUMwMjEy REMzNUU2RkVERjBCN0NEQzBBMDQ3RTQ4MzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJKw+2bu8IOn62Kp05eYYKrS5MiXs/0af3f6empGDuFytOTGiy aVPsvogO/ybpLLY918pi73tjwVDnZN/3eoLzWM+xh2SsCalcOjDaJoYSVMIUx3VP K8PJ2I6bXSt3PEtbH4TV4JMSkGMqq0LoLTy89C8L7S4ePnhisMA3fUO7fymT386s 3RwlEnFXTmZC0eXZjUdrKGo3zSayTEn8fBgAdmHUkChbSszQx5SOvmtcEj8sj5Qk Tx2bzU4OAKYMIL/wFYFaUmRY83TSFYpT8qIGdEGMFTd08l1Ws/HK5ZZcCkJHwm+R O9KQy9dnKnGM2PdA2HU4M1eV22RlrlMYeM5dAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUag4WF+wCEtw15v7fC3zcCgR+SDAwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2FnNFdGLXdDRXR3MTV2N2ZDM3pjQ2dSLVNEQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHTDnAwDQYJKoZIhvcNAQELBQADggEBALZWcir3foh/zWHtTCdOa2NjBmR8 xeSx0R0bajASy3KvQIZJQ5fQmwxSg8Azr5IhjT7+lb425ox0z1Pnv24m/bJ/DFOe jNaHkfxiAUyGYw9GjkGUvbMnoIVQ8r4AaFypqwd+kmIuxiguKQ0Q9a6lTHll9dIH Q3WojPSA+lTSQ/m5TyszEndrs5yp9B2Wf5uNrWqj79yNS0ptehFhec7Wd2F93+Qu ge1xaT2MklVzJrvYLxc9MDQA6KEG1/aT6N4eg3l7Pt8uMajG0o5X/Ji7ZtddkyAv IA2GID2aok+aWjjA9PK4sks6uUH8nctOs1+3el4qYHxG9uFx5/4K4SMVWVs= -----END CERTIFICATE-----Generated at Sat Jun 1 15:54:31 2024 by rpki-client on console-ams.rpki-client.org