$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/g2_SoQXOpVa7yRBxbl4hao6F_70.roa File: g2_SoQXOpVa7yRBxbl4hao6F_70.roa (raw, json) Hash identifier: BkRMB8dmm8QtsUOdUVZ+aKe4Jz9syiYWctO0ei6W38w= Subject key identifier: 83:6F:D2:A1:05:CE:A5:56:BB:C9:10:71:6E:5E:21:6A:8E:85:FF:BD Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 019F Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/g2_SoQXOpVa7yRBxbl4hao6F_70.roa Signing time: Wed 24 May 2023 16:35:16 +0000 ROA not before: Wed 24 May 2023 16:35:16 +0000 ROA not after: Tue 14 May 2024 01:30:02 +0000 asID: 9605 IP address blocks: 1.79.90.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 13:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 415 (0x19f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: May 24 16:35:16 2023 GMT Not After : May 14 01:30:02 2024 GMT Subject: CN=836FD2A105CEA556BBC910716E5E216A8E85FFBD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:fe:8a:14:ee:0a:c5:28:2f:76:f6:af:7a:52: 16:79:92:fb:7b:91:f8:24:27:ab:68:81:88:87:5e: b2:e2:b5:57:98:42:42:36:49:56:f1:a6:27:3d:03: 5a:8f:a3:6d:b1:76:30:c6:8a:c7:65:05:1f:f3:b6: c7:e6:6e:eb:89:6f:96:56:a6:83:90:6d:45:2c:27: 21:7b:77:30:36:64:8f:25:5f:77:a2:ba:61:ab:1a: fc:fe:ac:98:f2:79:b5:bb:46:8a:c2:db:b3:8d:3a: 18:5d:a1:77:f5:9e:9e:b6:59:9b:a4:72:a8:0e:08: 98:89:a6:34:44:7e:5a:b1:f6:9a:80:3c:77:bf:ad: ff:a8:8e:8c:0e:81:fc:50:b7:98:95:9b:a4:a3:e0: 25:93:bb:07:2c:a2:d6:71:42:b7:3d:9e:59:1c:b5: c8:01:ad:20:90:9d:75:09:6f:13:21:6d:8a:4d:fe: 94:2f:b8:e3:48:24:40:fe:b4:b5:52:a5:7a:bd:b1: 5d:1a:bc:68:6d:76:aa:55:1f:a2:61:ca:09:98:a7: 15:78:0c:1c:5f:e5:c5:61:ec:e7:44:50:41:25:ce: ce:0a:5b:1a:1b:81:ec:f1:b4:26:c5:b9:08:10:7a: 17:ec:e6:63:b5:a9:50:cd:e0:8f:65:04:67:dc:fc: 2d:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:6F:D2:A1:05:CE:A5:56:BB:C9:10:71:6E:5E:21:6A:8E:85:FF:BD X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/g2_SoQXOpVa7yRBxbl4hao6F_70.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.79.90.0/23 Signature Algorithm: sha256WithRSAEncryption 52:9c:97:70:1d:1a:39:06:f3:78:4e:d3:09:86:50:5c:85:b1: 6c:9c:d0:ed:04:40:95:fd:3d:26:7d:20:10:2d:db:bb:97:2b: 1f:79:c4:56:5d:03:04:1e:1b:cd:d9:7f:7c:3a:f1:4e:3b:10: 8d:62:d0:d8:03:3e:5d:c5:b0:b4:c4:09:ed:0c:34:7c:ea:a2: a7:4b:7c:9a:9f:27:56:68:78:bd:e1:54:43:8f:32:4e:75:ab: 9a:f3:d9:d5:b6:85:ff:59:ba:8e:a5:57:be:9e:63:7b:75:d2: 60:7d:5c:cf:30:96:2c:c0:3e:95:eb:51:c1:94:d7:d8:c5:84: 9b:d4:bc:52:3f:22:01:3f:fd:af:40:10:35:2e:a7:dd:94:3c: 74:f1:85:ab:1c:fb:03:82:02:73:d4:1d:f8:91:83:d6:52:a0: 12:b7:45:3a:4b:da:03:a1:7f:df:ea:75:1a:5e:c9:a1:6d:24: 80:45:4f:47:12:68:a1:6f:a1:b6:a1:c7:df:8e:19:25:18:b3: 9d:e0:f6:38:f5:52:97:41:96:7f:50:11:f9:cf:30:e7:5c:2b: 1e:24:44:be:a5:81:fb:0a:49:57:55:e8:10:17:6c:cf:09:45: d5:9f:76:18:c7:84:62:59:48:47:d4:44:e0:5a:96:b8:c4:12: fb:6f:9c:d1 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAZ8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MjQx NjM1MTZaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDgzNkZEMkExMDVDRUE1 NTZCQkM5MTA3MTZFNUUyMTZBOEU4NUZGQkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDO/ooU7grFKC929q96UhZ5kvt7kfgkJ6togYiHXrLitVeYQkI2 SVbxpic9A1qPo22xdjDGisdlBR/ztsfmbuuJb5ZWpoOQbUUsJyF7dzA2ZI8lX3ei umGrGvz+rJjyebW7RorC27ONOhhdoXf1np62WZukcqgOCJiJpjREflqx9pqAPHe/ rf+ojowOgfxQt5iVm6Sj4CWTuwcsotZxQrc9nlkctcgBrSCQnXUJbxMhbYpN/pQv uONIJED+tLVSpXq9sV0avGhtdqpVH6JhygmYpxV4DBxf5cVh7OdEUEElzs4KWxob gezxtCbFuQgQehfs5mO1qVDN4I9lBGfc/C2nAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUg2/SoQXOpVa7yRBxbl4hao6F/70wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2cyX1NvUVhPcFZhN3lSQnhibDRoYW82Rl83MC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBT1owDQYJKoZIhvcNAQELBQADggEBAFKcl3AdGjkG83hO0wmGUFyFsWyc 0O0EQJX9PSZ9IBAt27uXKx95xFZdAwQeG83Zf3w68U47EI1i0NgDPl3FsLTECe0M NHzqoqdLfJqfJ1ZoeL3hVEOPMk51q5rz2dW2hf9Zuo6lV76eY3t10mB9XM8wlizA PpXrUcGU19jFhJvUvFI/IgE//a9AEDUup92UPHTxhasc+wOCAnPUHfiRg9ZSoBK3 RTpL2gOhf9/qdRpeyaFtJIBFT0cSaKFvobahx9+OGSUYs53g9jj1UpdBln9QEfnP MOdcKx4kRL6lgfsKSVdV6BAXbM8JRdWfdhjHhGJZSEfUROBalrjEEvtvnNE= -----END CERTIFICATE-----Generated at Sat Apr 27 10:15:57 2024 by rpki-client on console-ams.rpki-client.org