$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/bF1KSuqEc7nxtLZU0bhBt2mcN-M.roa File: bF1KSuqEc7nxtLZU0bhBt2mcN-M.roa (raw, json) Hash identifier: 3LAkWmqOHGo0DUmr0QWeSppKEbfWBpZdGPdC0H1vVkc= Subject key identifier: 6C:5D:4A:4A:EA:84:73:B9:F1:B4:B6:54:D1:B8:41:B7:69:9C:37:E3 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 059C Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/bF1KSuqEc7nxtLZU0bhBt2mcN-M.roa Signing time: Thu 27 Jul 2023 17:00:14 +0000 ROA not before: Thu 27 Jul 2023 17:00:14 +0000 ROA not after: Sun 14 Jul 2024 01:30:03 +0000 asID: 9605 IP address blocks: 1.76.72.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1436 (0x59c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jul 27 17:00:14 2023 GMT Not After : Jul 14 01:30:03 2024 GMT Subject: CN=6C5D4A4AEA8473B9F1B4B654D1B841B7699C37E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:8e:71:6d:04:a5:1e:22:7f:4f:1f:19:b2:15: 9f:49:39:1e:10:84:3c:9e:5d:8d:da:69:7b:06:c7: fa:e0:62:2a:4b:61:ec:6d:42:73:a5:9f:6b:bc:24: b7:15:9b:fd:5f:6c:fe:95:1f:17:9a:e1:0c:e8:50: c4:da:e0:53:25:21:3a:db:f6:e3:a9:e1:d6:5a:63: 76:21:1a:89:06:5e:4a:6e:22:a5:c2:bd:18:bd:49: 32:71:56:04:2f:e1:89:11:26:b2:40:ce:1d:01:0d: 19:e4:8f:0c:58:85:c0:e3:c9:07:50:9c:00:93:41: a4:5a:08:14:39:1c:1c:c7:0a:9b:97:f3:d4:da:c9: 16:ce:00:34:17:f8:2f:0f:87:75:41:ea:68:90:60: 66:ba:ac:72:f6:f8:ad:9d:66:2b:82:b4:86:dd:d4: 82:d2:ba:74:fe:02:02:de:5c:41:43:ef:08:b8:a7: 41:44:41:38:9b:91:aa:62:db:7f:99:8d:ba:ad:df: 42:eb:81:3c:bd:af:33:a4:45:ca:3a:85:58:0f:59: 8c:ad:2b:c0:14:c5:a7:3c:ff:8b:92:8b:d8:f6:3e: ff:3e:ec:b8:36:d7:b5:d8:f0:38:9d:a0:38:37:08: 14:a2:b3:ef:5e:76:91:d7:cf:10:a6:c2:7d:e4:78: 88:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:5D:4A:4A:EA:84:73:B9:F1:B4:B6:54:D1:B8:41:B7:69:9C:37:E3 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/bF1KSuqEc7nxtLZU0bhBt2mcN-M.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.76.72.0/23 Signature Algorithm: sha256WithRSAEncryption 72:ad:8d:ca:db:ae:24:ba:a3:e2:d4:a8:4a:c0:15:96:f2:bf: 82:fa:9a:38:95:86:9e:cc:10:ef:15:9e:33:4e:2c:a4:de:c4: 3c:91:66:c5:ef:34:ac:e7:a6:c2:68:9c:c8:a1:50:a8:a2:89: f7:d4:aa:ea:2f:e3:d5:02:c7:0a:9c:e9:04:f5:20:b1:f2:6f: 7c:9f:5e:6d:4a:0e:1a:6b:39:ec:84:b5:7a:44:de:9b:31:84: 20:f1:17:37:4d:89:cc:1e:d2:44:c8:56:0f:65:d9:8f:a1:36: 4d:e8:19:2e:01:8d:5a:e1:15:14:62:13:66:b2:ae:69:58:56: 36:ca:9a:e9:2c:79:d1:5e:70:4b:27:25:d3:2c:ab:aa:ab:98: 45:e7:fc:5d:c5:e7:36:5e:c9:22:f6:fb:8a:bd:05:52:46:c5: 90:50:26:e9:db:2b:f8:6f:cb:ea:e3:ef:30:6b:61:6d:88:a6: 1a:3d:52:9b:0f:36:1b:2f:37:f1:c6:f2:17:b4:23:d4:a5:97: df:de:a3:25:0b:24:4c:ab:3d:94:fa:72:c3:a1:4d:82:61:1e: ee:30:08:6d:c6:96:d6:4e:d7:14:66:28:ab:dd:94:8c:c1:39: 73:bc:ac:84:62:27:bb:06:0f:27:f6:c5:49:5d:4d:ba:92:4e: 51:f7:70:15 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBZwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA3Mjcx NzAwMTRaFw0yNDA3MTQwMTMwMDNaMDMxMTAvBgNVBAMTKDZDNUQ0QTRBRUE4NDcz QjlGMUI0QjY1NEQxQjg0MUI3Njk5QzM3RTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDwjnFtBKUeIn9PHxmyFZ9JOR4QhDyeXY3aaXsGx/rgYipLYext QnOln2u8JLcVm/1fbP6VHxea4QzoUMTa4FMlITrb9uOp4dZaY3YhGokGXkpuIqXC vRi9STJxVgQv4YkRJrJAzh0BDRnkjwxYhcDjyQdQnACTQaRaCBQ5HBzHCpuX89Ta yRbOADQX+C8Ph3VB6miQYGa6rHL2+K2dZiuCtIbd1ILSunT+AgLeXEFD7wi4p0FE QTibkapi23+Zjbqt30LrgTy9rzOkRco6hVgPWYytK8AUxac8/4uSi9j2Pv8+7Lg2 17XY8DidoDg3CBSis+9edpHXzxCmwn3keIizAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUbF1KSuqEc7nxtLZU0bhBt2mcN+MwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2JGMUtTdXFFYzdueHRMWlUwYmhCdDJtY04tTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBTEgwDQYJKoZIhvcNAQELBQADggEBAHKtjcrbriS6o+LUqErAFZbyv4L6 mjiVhp7MEO8VnjNOLKTexDyRZsXvNKznpsJonMihUKiiiffUquov49UCxwqc6QT1 ILHyb3yfXm1KDhprOeyEtXpE3psxhCDxFzdNicwe0kTIVg9l2Y+hNk3oGS4BjVrh FRRiE2ayrmlYVjbKmuksedFecEsnJdMsq6qrmEXn/F3F5zZeySL2+4q9BVJGxZBQ JunbK/hvy+rj7zBrYW2Ipho9UpsPNhsvN/HG8he0I9Sll9/eoyULJEyrPZT6csOh TYJhHu4wCG3GltZO1xRmKKvdlIzBOXO8rIRiJ7sGDyf2xUldTbqSTlH3cBU= -----END CERTIFICATE-----Generated at Sat Jun 1 15:54:31 2024 by rpki-client on console-ams.rpki-client.org