$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/h4WXnN5h9rzA63dgn6uzk7e4rMg.roa File: h4WXnN5h9rzA63dgn6uzk7e4rMg.roa (raw, json) Hash identifier: TiaDfs2Sb1QnziFtqP0KZ3gc5vMdxeE8oNxkWk9QKj8= Subject key identifier: 87:85:97:9C:DE:61:F6:BC:C0:EB:77:60:9F:AB:B3:93:B7:B8:AC:C8 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 01FB Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/h4WXnN5h9rzA63dgn6uzk7e4rMg.roa Signing time: Tue 30 May 2023 16:29:23 +0000 ROA not before: Tue 30 May 2023 16:29:23 +0000 ROA not after: Tue 14 May 2024 01:30:02 +0000 asID: 9605 IP address blocks: 49.103.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 13:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 507 (0x1fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: May 30 16:29:23 2023 GMT Not After : May 14 01:30:02 2024 GMT Subject: CN=8785979CDE61F6BCC0EB77609FABB393B7B8ACC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9f:57:8d:b3:69:1c:bc:0d:86:6c:cb:a4:3b: ac:df:9c:7e:4d:83:28:60:41:6f:e8:8e:90:75:91: 87:93:b2:de:63:f5:e3:7a:f3:aa:1e:bc:1e:47:f0: 12:5e:97:0c:30:0d:95:03:36:07:17:c0:11:73:49: c7:fe:9e:b3:12:ae:fe:27:16:d5:71:05:89:21:66: 2f:64:97:d5:aa:d8:73:99:bc:0b:18:d4:e9:8a:38: 02:4b:e4:fe:78:c0:72:3c:49:6d:eb:7b:38:be:0c: ba:de:29:99:8e:85:6e:de:f5:95:53:e7:80:87:c6: 52:2a:88:94:97:78:10:90:0d:7d:6f:07:61:6b:c2: 20:2e:7a:e1:fd:fb:e5:20:52:59:a9:eb:b8:c0:23: 00:df:bb:1c:a8:7b:dd:6d:0f:c6:79:e4:a8:7f:a4: 4c:08:aa:35:15:dc:fe:3c:e5:41:1d:94:5f:68:61: 42:42:8a:d2:50:64:87:e6:0a:5e:b3:58:7e:42:e5: e3:14:ea:71:69:95:2d:c8:56:1a:93:3d:82:26:c1: e2:98:64:49:3f:00:48:5d:e4:ca:bd:13:f3:9b:45: 8e:8e:73:d4:86:47:59:a4:26:4c:26:f4:c5:01:85: 49:f8:98:4f:05:bd:7b:ac:a5:21:a9:67:11:34:6f: 5f:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:85:97:9C:DE:61:F6:BC:C0:EB:77:60:9F:AB:B3:93:B7:B8:AC:C8 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/h4WXnN5h9rzA63dgn6uzk7e4rMg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.103.128.0/17 Signature Algorithm: sha256WithRSAEncryption 18:95:14:c8:54:ec:d2:bb:69:f8:bb:56:54:43:99:f8:44:f2: f3:3b:eb:4d:0b:84:fb:d0:52:99:41:ca:03:3b:04:ba:45:1e: f9:e3:21:44:3e:07:d5:e1:3c:cd:3c:82:cd:43:95:0e:1d:84: 33:87:a9:84:14:9a:9a:8b:30:2e:73:0c:c8:9e:e8:c1:5b:72: 95:62:06:ff:42:b2:0a:15:77:b2:78:44:90:0c:c8:e4:e1:12: e5:ca:92:8f:c3:7b:75:85:d9:ba:61:83:b1:e9:6a:7f:ef:87: 4e:fc:fc:b2:06:b9:12:37:c0:b0:8b:40:d4:58:d7:a4:1c:d4: 26:8a:93:48:70:e9:0a:7e:2d:09:19:67:da:df:cf:48:83:c7: 26:fd:e6:ad:d9:d1:e4:1b:72:44:f6:cb:bc:ea:52:8c:ba:11: 19:22:24:cc:06:64:c8:fb:fb:f2:a7:81:f0:db:1d:65:28:0c: bd:46:88:d4:fb:f8:b2:90:11:10:50:e6:f1:de:88:0f:04:0f: f0:45:fb:d1:ee:6f:4b:d1:2a:87:1d:d9:79:a9:6e:4f:b0:68: 2a:75:4d:a4:18:67:ce:ca:43:e2:bc:94:19:70:75:7b:4c:2a: 4f:48:9d:41:a0:58:5c:40:3d:02:1c:c5:7b:04:5e:1a:8e:a2: 5d:38:6a:af -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAfswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MzAx NjI5MjNaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDg3ODU5NzlDREU2MUY2 QkNDMEVCNzc2MDlGQUJCMzkzQjdCOEFDQzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4n1eNs2kcvA2GbMukO6zfnH5NgyhgQW/ojpB1kYeTst5j9eN6 86oevB5H8BJelwwwDZUDNgcXwBFzScf+nrMSrv4nFtVxBYkhZi9kl9Wq2HOZvAsY 1OmKOAJL5P54wHI8SW3rezi+DLreKZmOhW7e9ZVT54CHxlIqiJSXeBCQDX1vB2Fr wiAueuH9++UgUlmp67jAIwDfuxyoe91tD8Z55Kh/pEwIqjUV3P485UEdlF9oYUJC itJQZIfmCl6zWH5C5eMU6nFplS3IVhqTPYImweKYZEk/AEhd5Mq9E/ObRY6Oc9SG R1mkJkwm9MUBhUn4mE8FvXuspSGpZxE0b18pAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUh4WXnN5h9rzA63dgn6uzk7e4rMgwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2g0V1huTjVoOXJ6QTYzZGduNnV6azdlNHJNZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcxZ4AwDQYJKoZIhvcNAQELBQADggEBABiVFMhU7NK7afi7VlRDmfhE8vM7 600LhPvQUplBygM7BLpFHvnjIUQ+B9XhPM08gs1DlQ4dhDOHqYQUmpqLMC5zDMie 6MFbcpViBv9CsgoVd7J4RJAMyOThEuXKko/De3WF2bphg7Hpan/vh078/LIGuRI3 wLCLQNRY16Qc1CaKk0hw6Qp+LQkZZ9rfz0iDxyb95q3Z0eQbckT2y7zqUoy6ERki JMwGZMj7+/KngfDbHWUoDL1GiNT7+LKQERBQ5vHeiA8ED/BF+9Hub0vRKocd2Xmp bk+waCp1TaQYZ87KQ+K8lBlwdXtMKk9InUGgWFxAPQIcxXsEXhqOol04aq8= -----END CERTIFICATE-----Generated at Sat Apr 27 10:15:57 2024 by rpki-client on console-ams.rpki-client.org