$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/bDTZVHcVs7pKrBrOvsQQ79da2n0.roa File: bDTZVHcVs7pKrBrOvsQQ79da2n0.roa (raw, json) Hash identifier: vehfmlL2oKveqm3FSu8ofLJeAyQEFTzIDAUy4XlqPuk= Subject key identifier: 6C:34:D9:54:77:15:B3:BA:4A:AC:1A:CE:BE:C4:10:EF:D7:5A:DA:7D Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 01D9 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/bDTZVHcVs7pKrBrOvsQQ79da2n0.roa Signing time: Wed 24 May 2023 16:40:36 +0000 ROA not before: Wed 24 May 2023 16:40:36 +0000 ROA not after: Tue 14 May 2024 01:30:02 +0000 asID: 9605 IP address blocks: 1.75.232.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 13:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 473 (0x1d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: May 24 16:40:36 2023 GMT Not After : May 14 01:30:02 2024 GMT Subject: CN=6C34D9547715B3BA4AAC1ACEBEC410EFD75ADA7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:05:5f:db:45:68:62:09:cf:cf:4d:9a:c8:40: 73:aa:8a:07:4e:e9:4f:39:bf:88:24:1f:5f:df:61: 12:31:44:2b:49:3e:dc:c5:29:e9:67:e8:31:a1:47: fc:67:fe:b2:32:b0:2d:36:f6:36:29:1e:9a:0d:39: 1c:43:cf:d1:20:41:4e:4e:26:85:19:6d:f0:d5:5f: e5:27:87:b8:19:8c:b4:f0:b9:5a:af:d1:0d:31:7d: 2f:ae:34:30:42:13:d8:cf:e4:2a:fc:77:f4:d2:0c: b9:7e:6f:21:3e:30:97:6d:29:c3:b2:9c:29:e0:87: fb:36:f7:ab:6e:3a:c4:8c:f7:87:04:77:d3:8f:7e: 12:41:2a:25:70:0b:4c:86:81:28:fa:30:88:90:d7: bf:22:31:9b:5d:01:50:67:d8:45:a6:22:d2:38:1f: 7d:87:18:f3:1b:8a:d1:c0:63:1c:aa:8e:57:08:27: 96:90:15:55:1c:ec:22:15:69:4d:78:79:bf:dc:ca: 12:d5:39:71:77:2d:c2:ff:82:4f:4e:ce:ed:fe:48: 4e:ef:b7:ab:71:c1:76:c1:c0:51:0a:78:d3:da:94: 60:50:ce:d4:c6:7f:0e:e0:40:e1:d1:b2:83:f5:6b: d8:3d:2a:12:84:d9:51:d2:2f:49:d5:84:c0:77:89: 16:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:34:D9:54:77:15:B3:BA:4A:AC:1A:CE:BE:C4:10:EF:D7:5A:DA:7D X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/bDTZVHcVs7pKrBrOvsQQ79da2n0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.232.0/22 Signature Algorithm: sha256WithRSAEncryption 3c:25:d4:dd:57:08:f2:78:35:4b:56:99:54:1d:b1:2a:bb:37: 6a:4b:27:bb:ed:bf:f6:f6:dc:dd:e7:25:ae:c7:6e:63:ce:b0: fd:1e:15:69:82:a2:96:10:86:75:0b:b9:16:ae:05:e7:e5:d3: 69:d9:63:e8:86:62:bb:bd:7f:7b:54:de:7f:27:4a:dd:6a:09: aa:4d:8d:bc:e0:c7:27:01:16:73:00:d1:f0:aa:84:f1:3f:2e: 47:f6:37:e4:e0:5f:0c:44:90:ed:11:2e:95:d7:d4:92:f3:5b: 92:20:07:6a:47:03:2e:45:28:8e:e8:1e:fd:b8:d0:64:84:33: e4:21:70:a5:17:86:f1:08:3b:36:e7:15:64:aa:68:d2:60:f5: 8c:e0:30:d7:06:d7:e6:b2:42:ee:a4:63:4d:a9:1f:3b:56:f6: 35:79:a2:43:f2:11:90:74:3a:49:64:76:44:ff:0c:1c:17:37: 8f:75:6e:74:3e:ff:d3:51:1e:f0:74:9f:d5:bc:e1:a3:43:46: 47:8b:f1:d3:07:6d:aa:e3:49:cf:6e:28:6f:74:c5:ad:05:bb: da:40:b4:e5:5c:34:6c:60:df:cd:dd:12:bd:2b:ad:1a:93:57: 14:5c:c0:3b:e2:0b:81:54:ba:91:18:bc:d0:4c:4a:37:7e:0b: 88:17:10:01 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAdkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MjQx NjQwMzZaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDZDMzREOTU0NzcxNUIz QkE0QUFDMUFDRUJFQzQxMEVGRDc1QURBN0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJBV/bRWhiCc/PTZrIQHOqigdO6U85v4gkH1/fYRIxRCtJPtzF Keln6DGhR/xn/rIysC029jYpHpoNORxDz9EgQU5OJoUZbfDVX+Unh7gZjLTwuVqv 0Q0xfS+uNDBCE9jP5Cr8d/TSDLl+byE+MJdtKcOynCngh/s296tuOsSM94cEd9OP fhJBKiVwC0yGgSj6MIiQ178iMZtdAVBn2EWmItI4H32HGPMbitHAYxyqjlcIJ5aQ FVUc7CIVaU14eb/cyhLVOXF3LcL/gk9Ozu3+SE7vt6txwXbBwFEKeNPalGBQztTG fw7gQOHRsoP1a9g9KhKE2VHSL0nVhMB3iRZfAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUbDTZVHcVs7pKrBrOvsQQ79da2n0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2JEVFpWSGNWczdwS3JCck92c1FRNzlkYTJuMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBS+gwDQYJKoZIhvcNAQELBQADggEBADwl1N1XCPJ4NUtWmVQdsSq7N2pL J7vtv/b23N3nJa7HbmPOsP0eFWmCopYQhnULuRauBefl02nZY+iGYru9f3tU3n8n St1qCapNjbzgxycBFnMA0fCqhPE/Lkf2N+TgXwxEkO0RLpXX1JLzW5IgB2pHAy5F KI7oHv240GSEM+QhcKUXhvEIOzbnFWSqaNJg9YzgMNcG1+ayQu6kY02pHztW9jV5 okPyEZB0OklkdkT/DBwXN491bnQ+/9NRHvB0n9W84aNDRkeL8dMHbarjSc9uKG90 xa0Fu9pAtOVcNGxg383dEr0rrRqTVxRcwDviC4FUupEYvNBMSjd+C4gXEAE= -----END CERTIFICATE-----Generated at Sat Apr 27 10:15:57 2024 by rpki-client on console-ams.rpki-client.org