$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/gESoTw318dCklZHltAbdB9Y3YPQ.roa File: gESoTw318dCklZHltAbdB9Y3YPQ.roa (raw, json) Hash identifier: Z+jKiT8hImlvRsQZXYwRbddd5ONeNf2Bu+yJ55r/NiI= Subject key identifier: 80:44:A8:4F:0D:F5:F1:D0:A4:95:91:E5:B4:06:DD:07:D6:37:60:F4 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 04A3 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/gESoTw318dCklZHltAbdB9Y3YPQ.roa Signing time: Thu 27 Jul 2023 16:46:13 +0000 ROA not before: Thu 27 Jul 2023 16:46:13 +0000 ROA not after: Sun 14 Jul 2024 01:30:03 +0000 asID: 9605 IP address blocks: 220.159.224.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1187 (0x4a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jul 27 16:46:13 2023 GMT Not After : Jul 14 01:30:03 2024 GMT Subject: CN=8044A84F0DF5F1D0A49591E5B406DD07D63760F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:da:11:54:a1:0e:8b:f0:5f:a1:70:c9:8c:8b: 5b:5c:ec:66:4b:0b:1d:4a:e7:aa:ef:86:5d:12:63: 39:07:1d:23:35:d0:ce:55:2e:32:28:f5:a3:2a:25: 79:65:7c:f5:a5:a0:27:5b:30:23:7e:44:80:36:ad: d5:52:c8:0e:6f:4d:b0:d8:1f:5f:f8:58:98:29:4e: be:6e:a0:81:a9:0c:47:5f:15:d1:3c:12:5c:cb:13: bd:b1:c2:2c:ef:dd:05:b7:90:b0:5b:3c:14:e8:34: 56:0c:e9:42:02:be:8f:40:30:1d:b0:34:97:9f:68: 89:c4:fc:91:51:fc:db:d7:90:39:f1:7c:1c:d3:38: 61:4d:13:80:75:38:84:42:df:62:00:5a:fe:53:95: c6:21:8f:f7:c6:93:99:5a:93:e0:75:47:b4:05:b3: 6c:dd:ea:99:42:dc:15:aa:9c:15:14:3e:3d:52:1f: a7:c3:a8:f8:99:cc:22:97:d0:56:7d:18:26:aa:84: c0:2b:c3:0a:95:5c:b5:1d:1b:5c:76:d4:4e:49:0e: fd:70:00:14:4e:80:e5:ea:1c:1e:ef:23:e9:2f:6c: c9:42:4d:55:da:77:4d:f2:14:fa:ac:4b:0d:77:39: 3e:c1:f8:f2:fc:62:9e:15:e6:76:5f:6c:70:25:b7: a2:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:44:A8:4F:0D:F5:F1:D0:A4:95:91:E5:B4:06:DD:07:D6:37:60:F4 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/gESoTw318dCklZHltAbdB9Y3YPQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.224.0/23 Signature Algorithm: sha256WithRSAEncryption 55:4d:0c:a4:ff:97:25:36:60:1a:9a:c2:42:86:eb:d9:99:dc: 5e:02:d4:bd:3d:7b:5c:5c:26:54:a1:ea:88:91:7b:92:aa:88: 22:5a:ac:74:c9:37:a9:a1:6e:fb:89:0b:de:64:14:6c:9c:fb: 22:50:97:09:e2:49:8a:36:0e:56:67:33:45:ed:b5:05:9e:f3: 42:3d:28:aa:f8:a4:44:a6:3c:dd:d0:44:23:ea:68:00:1c:8f: e2:54:40:83:2f:a3:1d:82:da:0a:49:06:b0:4a:9c:3e:ad:2d: 44:2a:75:9f:36:38:cf:b3:71:8e:c4:1b:de:6e:e4:03:08:cc: 89:8c:87:02:41:86:29:25:5b:c1:f0:ae:36:45:61:21:d6:b7: 34:97:6e:92:ef:55:6e:b9:6d:20:e7:cb:81:db:53:46:b2:f3: c8:9e:48:7a:84:13:a9:31:a9:9a:d8:ab:5a:77:e5:bd:f4:52: 07:9a:b7:7b:27:9c:88:85:35:c9:2a:80:8c:c2:2f:1d:95:09: 49:91:00:41:66:43:43:49:d1:0a:1d:25:52:be:11:63:8b:8c: bd:a8:c7:2f:fa:a0:0a:e8:01:01:a6:a1:0b:13:71:b9:ac:b9: 72:cc:d4:bf:28:fe:6d:cb:4d:93:d0:5f:38:fd:29:08:49:9b: 4c:17:70:07 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBKMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA3Mjcx NjQ2MTNaFw0yNDA3MTQwMTMwMDNaMDMxMTAvBgNVBAMTKDgwNDRBODRGMERGNUYx RDBBNDk1OTFFNUI0MDZERDA3RDYzNzYwRjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC22hFUoQ6L8F+hcMmMi1tc7GZLCx1K56rvhl0SYzkHHSM10M5V LjIo9aMqJXllfPWloCdbMCN+RIA2rdVSyA5vTbDYH1/4WJgpTr5uoIGpDEdfFdE8 ElzLE72xwizv3QW3kLBbPBToNFYM6UICvo9AMB2wNJefaInE/JFR/NvXkDnxfBzT OGFNE4B1OIRC32IAWv5TlcYhj/fGk5lak+B1R7QFs2zd6plC3BWqnBUUPj1SH6fD qPiZzCKX0FZ9GCaqhMArwwqVXLUdG1x21E5JDv1wABROgOXqHB7vI+kvbMlCTVXa d03yFPqsSw13OT7B+PL8Yp4V5nZfbHAlt6LtAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUgESoTw318dCklZHltAbdB9Y3YPQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2dFU29UdzMxOGRDa2xaSGx0QWJkQjlZM1lQUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHcn+AwDQYJKoZIhvcNAQELBQADggEBAFVNDKT/lyU2YBqawkKG69mZ3F4C 1L09e1xcJlSh6oiRe5KqiCJarHTJN6mhbvuJC95kFGyc+yJQlwniSYo2DlZnM0Xt tQWe80I9KKr4pESmPN3QRCPqaAAcj+JUQIMvox2C2gpJBrBKnD6tLUQqdZ82OM+z cY7EG95u5AMIzImMhwJBhiklW8HwrjZFYSHWtzSXbpLvVW65bSDny4HbU0ay88ie SHqEE6kxqZrYq1p35b30Ugeat3snnIiFNckqgIzCLx2VCUmRAEFmQ0NJ0QodJVK+ EWOLjL2oxy/6oAroAQGmoQsTcbmsuXLM1L8o/m3LTZPQXzj9KQhJm0wXcAc= -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:48 2024 by rpki-client on console-fra.rpki-client.org