$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/dqrDDfDj9WtPezhFk-TE_onm12w.roa File: dqrDDfDj9WtPezhFk-TE_onm12w.roa (raw, json) Hash identifier: P6RJlnVKhUFYMwq06K2veC9xuwfiV2/KD8eyYnB+Zcg= Subject key identifier: 76:AA:C3:0D:F0:E3:F5:6B:4F:7B:38:45:93:E4:C4:FE:89:E6:D7:6C Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 04BC Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/dqrDDfDj9WtPezhFk-TE_onm12w.roa Signing time: Thu 27 Jul 2023 16:48:12 +0000 ROA not before: Thu 27 Jul 2023 16:48:12 +0000 ROA not after: Sun 14 Jul 2024 01:30:03 +0000 asID: 9605 IP address blocks: 49.103.24.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1212 (0x4bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jul 27 16:48:12 2023 GMT Not After : Jul 14 01:30:03 2024 GMT Subject: CN=76AAC30DF0E3F56B4F7B384593E4C4FE89E6D76C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:3f:86:5e:f9:4d:38:17:54:e1:32:12:c4:ca: 76:16:de:5e:c2:aa:0b:ef:5c:58:d0:da:d2:05:2e: 05:74:ef:0e:db:e8:3c:6f:06:9f:28:16:d0:41:c5: ed:c9:a3:e6:5a:45:9d:c6:dc:e2:84:aa:39:af:8e: b7:eb:bd:5f:8c:a0:da:0a:11:65:03:f2:1c:16:cb: 7a:b9:a3:64:c0:40:25:b6:f2:37:ea:03:ba:b2:87: 71:cc:6f:0d:c9:af:32:e9:dd:62:2c:f5:0d:8d:83: 1d:83:a0:a6:c2:63:70:46:2f:14:6f:07:3e:bc:b2: 5f:d9:82:27:66:56:f8:4e:23:d2:25:ac:56:5a:85: 66:63:ff:90:f4:3e:e8:e2:7f:1d:57:f4:fa:24:36: 17:6c:3a:83:fe:59:0c:60:7d:09:17:49:91:0c:5a: 10:8e:34:3a:c9:28:e8:0a:da:fa:31:87:1e:26:bc: d2:a1:46:9d:36:61:04:1f:d3:5e:ef:3e:01:52:8c: 0a:fc:b2:ec:e2:38:2c:db:ba:18:e3:78:f4:d5:f1: fb:a2:33:72:b9:9b:8a:d2:07:e7:d7:7b:86:dc:5b: 91:80:2e:c8:80:b3:5f:81:7e:15:a9:8d:88:8b:0f: 80:30:f1:ab:30:99:bd:64:3f:c7:be:88:0e:1b:d5: e1:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:AA:C3:0D:F0:E3:F5:6B:4F:7B:38:45:93:E4:C4:FE:89:E6:D7:6C X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/dqrDDfDj9WtPezhFk-TE_onm12w.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.103.24.0/22 Signature Algorithm: sha256WithRSAEncryption 56:07:8f:0f:e5:61:f6:ae:f2:61:c2:e5:86:ab:80:08:a4:e1: 3b:4d:d3:aa:6d:1c:e6:fe:54:91:51:93:8b:a1:83:92:91:5d: 21:12:8d:21:bf:44:df:b9:81:28:30:fc:d6:00:78:21:bf:ea: bd:4d:01:1f:a0:33:9e:04:86:87:84:30:7d:81:1c:0a:1e:8a: 2c:93:fc:28:2e:0e:95:b4:8f:2a:b2:f5:98:84:b6:22:9c:a5: 43:a4:7c:60:39:1b:37:80:93:1e:3a:66:f5:e5:80:28:97:97: 0b:bc:87:35:25:9e:b8:e1:d4:cb:8d:5d:fb:b6:e3:69:f3:36: 11:6c:70:df:6d:c3:80:69:69:64:29:83:92:ba:9a:29:41:7e: 56:25:39:2a:fb:70:e0:32:2e:e7:7d:dd:e5:12:28:62:1d:02: bd:09:d0:5b:83:9c:e9:71:e4:16:3e:1b:29:4a:93:32:5c:0d: c0:51:fb:73:51:bf:97:e2:b4:10:2a:26:56:12:91:2a:29:af: f4:29:54:60:8a:d5:1e:d3:0d:86:b9:c3:df:fd:f8:fa:81:17: 19:20:80:10:42:56:7e:6f:be:00:9f:c7:6a:d1:04:9a:cc:26: d5:50:0f:18:09:d0:1f:5f:d7:0c:01:6e:ad:e6:3c:3a:52:e7: 6b:39:eb:ad -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBLwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA3Mjcx NjQ4MTJaFw0yNDA3MTQwMTMwMDNaMDMxMTAvBgNVBAMTKDc2QUFDMzBERjBFM0Y1 NkI0RjdCMzg0NTkzRTRDNEZFODlFNkQ3NkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8P4Ze+U04F1ThMhLEynYW3l7CqgvvXFjQ2tIFLgV07w7b6Dxv Bp8oFtBBxe3Jo+ZaRZ3G3OKEqjmvjrfrvV+MoNoKEWUD8hwWy3q5o2TAQCW28jfq A7qyh3HMbw3JrzLp3WIs9Q2Ngx2DoKbCY3BGLxRvBz68sl/ZgidmVvhOI9IlrFZa hWZj/5D0Pujifx1X9PokNhdsOoP+WQxgfQkXSZEMWhCONDrJKOgK2voxhx4mvNKh Rp02YQQf017vPgFSjAr8suziOCzbuhjjePTV8fuiM3K5m4rSB+fXe4bcW5GALsiA s1+BfhWpjYiLD4Aw8aswmb1kP8e+iA4b1eFzAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUdqrDDfDj9WtPezhFk+TE/onm12wwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2RxckREZkRqOVd0UGV6aEZrLVRFX29ubTEydy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxZxgwDQYJKoZIhvcNAQELBQADggEBAFYHjw/lYfau8mHC5YargAik4TtN 06ptHOb+VJFRk4uhg5KRXSESjSG/RN+5gSgw/NYAeCG/6r1NAR+gM54EhoeEMH2B HAoeiiyT/CguDpW0jyqy9ZiEtiKcpUOkfGA5GzeAkx46ZvXlgCiXlwu8hzUlnrjh 1MuNXfu242nzNhFscN9tw4BpaWQpg5K6milBflYlOSr7cOAyLud93eUSKGIdAr0J 0FuDnOlx5BY+GylKkzJcDcBR+3NRv5fitBAqJlYSkSopr/QpVGCK1R7TDYa5w9/9 +PqBFxkggBBCVn5vvgCfx2rRBJrMJtVQDxgJ0B9f1wwBbq3mPDpS52s5660= -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:48 2024 by rpki-client on console-fra.rpki-client.org