$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/hFBOsSBDnC6HhLwYDR9152JCL1c.roa File: hFBOsSBDnC6HhLwYDR9152JCL1c.roa (raw, json) Hash identifier: IUOer3Nj7OzLR1KMBNdHLruv8GKEL4D9XtaCBmhelG0= Subject key identifier: 84:50:4E:B1:20:43:9C:2E:87:84:BC:18:0D:1F:75:E7:62:42:2F:57 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0568 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hFBOsSBDnC6HhLwYDR9152JCL1c.roa Signing time: Thu 27 Jul 2023 16:56:21 +0000 ROA not before: Thu 27 Jul 2023 16:56:21 +0000 ROA not after: Sun 14 Jul 2024 01:30:03 +0000 asID: 9605 IP address blocks: 219.114.144.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1384 (0x568) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jul 27 16:56:21 2023 GMT Not After : Jul 14 01:30:03 2024 GMT Subject: CN=84504EB120439C2E8784BC180D1F75E762422F57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:68:bf:71:2c:fc:1d:c2:ea:a0:36:76:57:f7: 44:fd:76:7e:8c:3e:f0:b2:6b:26:7b:65:6d:25:59: b7:0b:23:f1:38:6e:e6:dd:66:08:f1:70:50:8d:69: 94:82:54:d2:79:c5:0b:54:40:4a:3f:7d:55:82:01: 37:07:9f:c5:42:f1:bc:b1:31:8e:fd:47:80:d8:70: 49:9f:f5:41:be:b2:3e:3b:76:02:a1:9c:85:53:24: 34:a3:4e:84:82:63:b0:4f:57:1c:1f:b6:d4:76:b7: d0:53:6f:6c:ff:24:36:9d:e0:da:b8:55:58:49:af: 1d:71:fd:3c:74:a1:fd:4b:3a:21:73:c6:32:9e:5d: b7:f0:11:84:cd:2b:90:71:ce:aa:11:ba:0d:fe:22: 30:1c:ea:82:cf:68:cb:de:38:05:e1:59:ab:7a:e6: 34:01:35:b6:78:cc:54:38:bc:fb:65:68:46:d0:d5: 5b:f2:2d:6f:10:d6:9a:e7:4e:26:bc:14:31:70:c8: 3c:56:2b:cf:4c:98:f2:82:ec:32:f8:ec:93:20:6e: 5f:bb:14:eb:67:f1:fb:33:03:71:80:e8:8b:aa:e4: be:f4:70:72:9f:4d:5e:53:78:a8:97:8c:58:af:94: 44:75:11:01:47:7d:f5:b0:ee:6b:a9:a8:8e:df:3e: 0e:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:50:4E:B1:20:43:9C:2E:87:84:BC:18:0D:1F:75:E7:62:42:2F:57 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hFBOsSBDnC6HhLwYDR9152JCL1c.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.114.144.0/20 Signature Algorithm: sha256WithRSAEncryption 36:92:5e:36:e2:59:41:ab:c4:58:92:7d:ae:70:e3:2d:dd:7c: 29:fd:34:a7:bb:de:04:98:b4:b7:7f:d8:85:19:bd:bf:6a:4a: 1d:c7:e2:3e:f1:a4:8b:95:fa:4c:c0:9a:58:e8:aa:5e:34:49: 67:8d:3b:6d:c1:59:d6:12:a2:16:62:b6:e0:fa:94:bf:e6:45: fe:79:f8:85:0e:f6:c0:95:2c:91:1a:97:04:43:6d:19:52:4f: 69:de:90:d7:d7:11:f5:eb:f5:d7:d3:bb:6f:c4:cd:41:d1:62: 4f:9f:7c:76:be:75:84:ce:e5:c3:3f:4c:a6:4c:d3:d4:df:53: e9:ae:e4:96:85:92:4a:b0:65:42:6a:31:60:05:f7:2b:57:6e: 29:52:6b:d3:02:8f:08:95:72:10:90:5f:11:81:8e:b4:e4:ae: 94:50:95:56:78:f7:e8:c0:54:a8:4a:fa:2a:bd:91:cc:61:8a: e1:52:f4:60:82:d5:1c:1e:ac:e3:eb:0d:9d:77:c6:c4:5c:68: 95:65:d5:60:03:24:4e:49:66:8b:83:cb:ee:43:d0:3e:17:91: 15:c4:34:85:72:b6:8e:0d:0f:1d:a2:4e:1f:24:b1:5a:89:b5: 24:32:35:b7:a7:bf:a6:cb:d3:17:14:e1:3f:83:40:3f:38:53: a4:97:46:d5 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBWgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA3Mjcx NjU2MjFaFw0yNDA3MTQwMTMwMDNaMDMxMTAvBgNVBAMTKDg0NTA0RUIxMjA0MzlD MkU4Nzg0QkMxODBEMUY3NUU3NjI0MjJGNTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLaL9xLPwdwuqgNnZX90T9dn6MPvCyayZ7ZW0lWbcLI/E4bubd ZgjxcFCNaZSCVNJ5xQtUQEo/fVWCATcHn8VC8byxMY79R4DYcEmf9UG+sj47dgKh nIVTJDSjToSCY7BPVxwfttR2t9BTb2z/JDad4Nq4VVhJrx1x/Tx0of1LOiFzxjKe XbfwEYTNK5BxzqoRug3+IjAc6oLPaMveOAXhWat65jQBNbZ4zFQ4vPtlaEbQ1Vvy LW8Q1prnTia8FDFwyDxWK89MmPKC7DL47JMgbl+7FOtn8fszA3GA6Iuq5L70cHKf TV5TeKiXjFivlER1EQFHffWw7mupqI7fPg4rAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUhFBOsSBDnC6HhLwYDR9152JCL1cwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2hGQk9zU0JEbkM2SGhMd1lEUjkxNTJKQ0wxYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATbcpAwDQYJKoZIhvcNAQELBQADggEBADaSXjbiWUGrxFiSfa5w4y3dfCn9 NKe73gSYtLd/2IUZvb9qSh3H4j7xpIuV+kzAmljoql40SWeNO23BWdYSohZituD6 lL/mRf55+IUO9sCVLJEalwRDbRlST2nekNfXEfXr9dfTu2/EzUHRYk+ffHa+dYTO 5cM/TKZM09TfU+mu5JaFkkqwZUJqMWAF9ytXbilSa9MCjwiVchCQXxGBjrTkrpRQ lVZ49+jAVKhK+iq9kcxhiuFS9GCC1RwerOPrDZ13xsRcaJVl1WADJE5JZouDy+5D 0D4XkRXENIVyto4NDx2iTh8ksVqJtSQyNbenv6bL0xcU4T+DQD84U6SXRtU= -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:48 2024 by rpki-client on console-fra.rpki-client.org