$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/h0W99blRv1ol-_wltTQM77Dzko0.roa File: h0W99blRv1ol-_wltTQM77Dzko0.roa (raw, json) Hash identifier: 9dTzlNjUQiUHz5bDUdMkHkyynu6Ox7aqHJ9UmYH3yXk= Subject key identifier: 87:45:BD:F5:B9:51:BF:5A:25:FB:FC:25:B5:34:0C:EF:B0:F3:92:8D Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0619 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/h0W99blRv1ol-_wltTQM77Dzko0.roa Signing time: Thu 29 Feb 2024 01:38:32 +0000 ROA not before: Thu 29 Feb 2024 01:38:32 +0000 ROA not after: Fri 14 Feb 2025 01:30:03 +0000 asID: 9605 IP address blocks: 49.97.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1561 (0x619) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Feb 29 01:38:32 2024 GMT Not After : Feb 14 01:30:03 2025 GMT Subject: CN=8745BDF5B951BF5A25FBFC25B5340CEFB0F3928D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5c:20:db:67:24:8d:f2:10:83:f3:34:05:8c: ef:0a:45:f8:76:2c:9a:27:cb:ff:39:60:2e:70:4e: b5:13:2c:1d:6a:eb:9a:26:63:8b:94:73:40:0f:32: 1f:51:ff:78:1d:c1:f7:e5:2c:da:51:73:7c:95:50: 28:be:d0:ed:ec:57:1f:87:f3:4d:72:8c:18:2c:79: 9c:91:52:4c:74:32:02:34:3a:78:89:34:81:2f:19: b5:5e:dd:a4:01:29:57:b9:b3:4b:8c:1b:41:da:8c: 77:69:89:bd:5e:f6:84:4d:7a:71:3c:68:c4:7c:2d: 77:16:5b:37:44:97:1a:18:37:e7:6d:ac:d8:a7:a6: 3b:56:ce:bd:ac:6e:2e:b9:cb:2f:e2:d4:58:98:ee: 9e:92:96:6f:4a:d7:3f:67:9f:4c:3f:a7:f5:d7:ed: 4b:26:45:c3:be:f2:83:36:98:57:fc:56:ec:a4:94: 9c:71:21:33:8f:29:1a:7a:f9:03:82:ed:9d:52:ca: c3:d1:f4:e2:6f:1a:f5:69:40:48:cf:e7:6d:1c:7c: 98:ad:0c:2a:87:5e:c7:90:4f:dd:29:50:f7:45:e1: 83:5b:db:ab:c7:cf:af:2b:19:d7:eb:a6:15:a5:a5: 3d:81:c6:e0:49:e9:45:e1:ac:f5:9b:2b:7d:cb:79: ad:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:45:BD:F5:B9:51:BF:5A:25:FB:FC:25:B5:34:0C:EF:B0:F3:92:8D X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/h0W99blRv1ol-_wltTQM77Dzko0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.97.120.0/22 Signature Algorithm: sha256WithRSAEncryption 26:79:4c:b4:d0:4e:a0:0a:59:4b:4d:fa:f5:2a:01:e8:aa:5d: 8c:a1:09:7c:82:4b:ba:a8:4f:c7:de:82:fe:f8:c7:b8:85:f4: c4:59:e7:b4:c0:56:de:6c:39:9f:82:7a:5a:ea:06:ae:43:79: 0c:7f:6f:08:e5:80:cb:f0:84:30:37:c0:04:97:49:da:b7:d1: c3:5f:14:2f:15:7c:09:52:b3:5d:85:8b:68:a9:62:49:cb:39: 9c:26:e8:00:24:c5:29:c9:93:7e:91:04:62:3a:23:7c:55:8f: 2f:6d:bf:19:4a:63:db:39:b3:83:49:b8:6f:88:09:de:d3:0d: 21:48:58:82:ca:4f:65:9d:36:2b:1c:c3:e6:3f:35:b0:d6:f8: 6a:1b:35:02:a9:81:2c:21:38:db:1c:df:4e:75:f6:75:1f:1c: 24:57:00:c9:28:10:81:1e:0a:9d:6d:5d:a3:f0:c8:81:81:c6: b4:3d:4c:36:a3:b9:86:d0:1e:bf:da:bd:d0:38:7e:d5:70:9b: 4c:4d:12:36:2a:6e:aa:77:f1:c6:c0:5e:fe:73:8c:89:2d:71: d2:18:cb:7e:4a:76:0f:99:a4:dc:9f:33:cf:fc:af:28:3b:f1: e6:d0:05:34:0e:84:42:44:ce:3b:a1:df:8c:d3:b1:2f:ab:03: 2d:d3:d7:d1 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBhkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDAyMjkw MTM4MzJaFw0yNTAyMTQwMTMwMDNaMDMxMTAvBgNVBAMTKDg3NDVCREY1Qjk1MUJG NUEyNUZCRkMyNUI1MzQwQ0VGQjBGMzkyOEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKXCDbZySN8hCD8zQFjO8KRfh2LJony/85YC5wTrUTLB1q65om Y4uUc0APMh9R/3gdwfflLNpRc3yVUCi+0O3sVx+H801yjBgseZyRUkx0MgI0OniJ NIEvGbVe3aQBKVe5s0uMG0HajHdpib1e9oRNenE8aMR8LXcWWzdElxoYN+dtrNin pjtWzr2sbi65yy/i1FiY7p6Slm9K1z9nn0w/p/XX7UsmRcO+8oM2mFf8VuyklJxx ITOPKRp6+QOC7Z1SysPR9OJvGvVpQEjP520cfJitDCqHXseQT90pUPdF4YNb26vH z68rGdfrphWlpT2BxuBJ6UXhrPWbK33Lea25AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUh0W99blRv1ol+/wltTQM77Dzko0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2gwVzk5YmxSdjFvbC1fd2x0VFFNNzdEemtvMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYXgwDQYJKoZIhvcNAQELBQADggEBACZ5TLTQTqAKWUtN+vUqAeiqXYyh CXyCS7qoT8fegv74x7iF9MRZ57TAVt5sOZ+CelrqBq5DeQx/bwjlgMvwhDA3wASX Sdq30cNfFC8VfAlSs12Fi2ipYknLOZwm6AAkxSnJk36RBGI6I3xVjy9tvxlKY9s5 s4NJuG+ICd7TDSFIWILKT2WdNiscw+Y/NbDW+GobNQKpgSwhONsc30519nUfHCRX AMkoEIEeCp1tXaPwyIGBxrQ9TDajuYbQHr/avdA4ftVwm0xNEjYqbqp38cbAXv5z jIktcdIYy35Kdg+ZpNyfM8/8ryg78ebQBTQOhEJEzjuh34zTsS+rAy3T19E= -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:48 2024 by rpki-client on console-fra.rpki-client.org