$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ax8WU7RYU5zUcDSSBu-V35tPJEU.roa File: ax8WU7RYU5zUcDSSBu-V35tPJEU.roa (raw, json) Hash identifier: Omo4JKuy9V3k4vS8xyEEjXrytj0k3AFgNtz8ffJHWqE= Subject key identifier: 6B:1F:16:53:B4:58:53:9C:D4:70:34:92:06:EF:95:DF:9B:4F:24:45 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 040B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ax8WU7RYU5zUcDSSBu-V35tPJEU.roa Signing time: Tue 06 Jun 2023 16:05:53 +0000 ROA not before: Tue 06 Jun 2023 16:05:53 +0000 ROA not after: Tue 14 May 2024 01:30:02 +0000 asID: 9605 IP address blocks: 49.106.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 13:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1035 (0x40b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 6 16:05:53 2023 GMT Not After : May 14 01:30:02 2024 GMT Subject: CN=6B1F1653B458539CD470349206EF95DF9B4F2445 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:3b:5a:7f:8f:f8:8f:e8:f4:de:41:f8:6b:e1: c8:6d:40:9c:85:ac:0f:b6:8d:d0:7f:6c:46:d0:f5: 17:66:15:b4:cb:7d:cd:45:17:13:ce:a6:98:d5:88: e3:be:7b:c2:19:46:58:80:ca:7c:ce:f9:5e:6a:10: bd:9a:bf:60:da:7a:55:33:d3:3c:78:3f:7f:d1:b8: 62:6d:25:51:10:59:19:66:11:d0:68:68:39:90:4f: f0:6f:be:fb:b7:52:35:60:00:37:62:97:39:49:8e: e2:f5:2f:67:6b:0c:30:69:b7:04:af:c3:0e:09:47: ef:36:bf:94:a0:f0:e8:db:e3:9d:f7:39:08:c5:80: b7:2a:17:20:98:dc:d4:69:7b:01:72:4b:2c:c8:da: e1:19:e1:7d:53:9b:98:03:17:56:a8:e6:59:5e:99: 16:d1:bd:70:89:1b:81:a9:03:e7:af:a6:f7:4e:04: d8:19:a9:ff:13:5c:fd:12:03:ce:2d:c0:2d:16:3d: 77:19:55:52:59:31:2d:6d:1a:94:28:4f:a2:f1:5f: 20:7f:e7:e6:91:2b:fa:3a:64:f2:2c:ff:cb:2b:58: af:ff:34:66:2e:35:93:fd:d5:13:6e:0f:38:22:39: ba:a3:12:36:76:0f:c6:70:9e:18:38:8b:58:da:5e: 1e:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:1F:16:53:B4:58:53:9C:D4:70:34:92:06:EF:95:DF:9B:4F:24:45 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ax8WU7RYU5zUcDSSBu-V35tPJEU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.106.203.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:34:7c:9a:c7:c4:f7:98:ca:34:50:e7:46:99:0f:05:65:db: 3c:60:9f:dc:e8:e8:ac:b4:f0:48:6f:7d:0d:40:9e:3a:ef:bb: 40:f9:7c:fb:a5:5b:ca:cb:81:37:0f:ca:a6:ac:d6:e7:ed:19: 23:4a:a7:44:e4:3a:a2:fe:19:8d:bd:a3:2d:c0:de:bd:03:bf: c0:42:7b:45:a0:e6:07:d4:6e:ef:44:82:03:ba:6c:bc:92:65: bb:84:e2:e8:09:f3:68:b7:40:2f:e9:c7:9f:13:bd:9d:37:93: 6e:d9:7d:8c:96:7e:2f:73:c5:13:13:9f:cb:ee:29:fe:6b:50: 47:62:96:79:19:1b:9f:e7:0b:57:52:f2:c7:6c:ab:3e:40:7e: 13:cc:97:ab:66:cc:32:3c:61:b9:a1:26:51:2c:6c:23:e4:d3: 4e:38:55:bd:a1:ba:f2:11:2b:df:9d:0b:15:84:3e:9b:58:e9: ce:df:7b:78:a3:ba:15:0e:5f:92:47:92:fd:5e:1c:17:5b:13: 7d:08:7a:8c:a5:a9:a9:e8:90:84:53:56:45:ee:51:27:c0:a9: 67:cb:5a:7b:98:98:41:e7:83:20:db:71:d3:17:a2:98:82:83: 1b:37:76:6c:a0:c1:0b:66:5e:20:c4:62:ab:45:9f:c5:64:df: cb:18:3e:60 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBAswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA2MDYx NjA1NTNaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDZCMUYxNjUzQjQ1ODUz OUNENDcwMzQ5MjA2RUY5NURGOUI0RjI0NDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5O1p/j/iP6PTeQfhr4chtQJyFrA+2jdB/bEbQ9RdmFbTLfc1F FxPOppjViOO+e8IZRliAynzO+V5qEL2av2DaelUz0zx4P3/RuGJtJVEQWRlmEdBo aDmQT/Bvvvu3UjVgADdilzlJjuL1L2drDDBptwSvww4JR+82v5Sg8Ojb4533OQjF gLcqFyCY3NRpewFySyzI2uEZ4X1Tm5gDF1ao5llemRbRvXCJG4GpA+evpvdOBNgZ qf8TXP0SA84twC0WPXcZVVJZMS1tGpQoT6LxXyB/5+aRK/o6ZPIs/8srWK//NGYu NZP91RNuDzgiObqjEjZ2D8Zwnhg4i1jaXh5VAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUax8WU7RYU5zUcDSSBu+V35tPJEUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2F4OFdVN1JZVTV6VWNEU1NCdS1WMzV0UEpFVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxasswDQYJKoZIhvcNAQELBQADggEBAF80fJrHxPeYyjRQ50aZDwVl2zxg n9zo6Ky08EhvfQ1Anjrvu0D5fPulW8rLgTcPyqas1uftGSNKp0TkOqL+GY29oy3A 3r0Dv8BCe0Wg5gfUbu9EggO6bLySZbuE4ugJ82i3QC/px58TvZ03k27ZfYyWfi9z xRMTn8vuKf5rUEdilnkZG5/nC1dS8sdsqz5AfhPMl6tmzDI8YbmhJlEsbCPk0044 Vb2huvIRK9+dCxWEPptY6c7fe3ijuhUOX5JHkv1eHBdbE30IeoylqanokIRTVkXu USfAqWfLWnuYmEHngyDbcdMXopiCgxs3dmygwQtmXiDEYqtFn8Vk38sYPmA= -----END CERTIFICATE-----Generated at Sat Apr 27 10:15:57 2024 by rpki-client on console-ams.rpki-client.org