$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/i76FklkZLH4I-BI_hX2V_5ZA5yU.roa File: i76FklkZLH4I-BI_hX2V_5ZA5yU.roa (raw, json) Hash identifier: /eqCPBXmLr1dbzUYUewvnLwB34gzHbxF7PnigzMPCRI= Subject key identifier: 8B:BE:85:92:59:19:2C:7E:08:F8:12:3F:85:7D:95:FF:96:40:E7:25 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 06F7 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/i76FklkZLH4I-BI_hX2V_5ZA5yU.roa Signing time: Tue 30 Apr 2024 01:49:47 +0000 ROA not before: Tue 30 Apr 2024 01:49:47 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.8.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1783 (0x6f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 01:49:47 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=8BBE859259192C7E08F8123F857D95FF9640E725 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:e6:5b:a0:20:75:46:f6:21:79:ad:f8:39:d1: 77:80:ca:c4:f8:a8:ab:08:f3:18:ac:6c:c0:62:e5: 60:0b:77:9e:6f:11:d3:2c:cd:d8:80:8b:2e:83:d8: 80:70:03:53:e2:41:99:b8:dd:bb:ea:ae:62:a3:58: 92:6f:86:62:63:3c:a9:6d:fd:d2:99:02:06:4b:34: 0c:f4:e9:8c:e4:b2:eb:b4:79:58:3d:37:8c:05:cd: 03:8e:02:79:be:96:c1:d9:a0:e2:e3:ec:a6:f2:ea: c3:9d:7f:c0:d6:e5:5f:1a:7c:74:1b:f2:80:f7:b6: 34:0e:6b:63:62:ef:b3:83:1b:27:59:52:f2:79:64: ab:46:77:89:b6:28:96:8f:63:e9:57:22:53:04:4b: 69:59:66:11:e4:43:7a:60:08:a7:1a:b5:53:46:72: 1f:a1:30:ae:8e:49:6a:b5:bb:92:6e:1f:36:c4:7e: 51:48:33:4b:eb:9a:d6:a1:6a:90:29:6e:6e:0e:77: 34:4d:ed:02:fc:4c:5e:57:47:8f:35:0f:71:6f:7e: db:3d:1a:7c:3a:c8:e8:59:8d:d4:04:36:3a:d6:8b: 1d:ac:dc:d4:f8:1c:1f:fe:03:72:6c:6d:44:12:08: af:67:b0:71:cc:d2:c7:3a:0d:4e:d8:0f:1c:e5:b9: 09:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:BE:85:92:59:19:2C:7E:08:F8:12:3F:85:7D:95:FF:96:40:E7:25 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/i76FklkZLH4I-BI_hX2V_5ZA5yU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.8.0/23 Signature Algorithm: sha256WithRSAEncryption 28:10:ce:11:62:a4:d5:48:9c:bb:d3:05:30:d1:9f:97:ab:63: 09:f4:b5:4a:8a:ad:b7:d0:b2:6b:d6:02:cc:70:85:26:83:31: f2:5f:ff:fb:9c:06:22:54:8c:bb:91:b8:27:d5:fe:17:f4:cd: 33:09:dc:44:23:6f:20:66:77:8f:2d:c1:68:40:62:c8:70:af: 00:77:47:91:f6:3d:c1:68:b3:25:ed:3c:33:26:d6:d9:09:7c: a7:43:0d:bc:95:1e:69:17:ca:dd:c7:0a:6a:f9:44:69:95:4d: b2:97:4c:b8:0b:fa:2f:c5:67:b1:ce:fc:e5:b7:45:12:47:0b: 83:fe:ba:71:c9:c5:37:8c:9f:1a:6d:6a:e8:c5:08:05:64:c1: 77:85:53:c4:19:eb:78:bb:f8:af:42:8b:c4:78:3d:d1:8f:2e: 3b:ad:3c:d0:f8:73:04:55:55:a9:34:fd:3d:40:9c:99:30:61: ad:8d:4a:75:09:77:26:b4:7d:87:a4:fd:b1:8a:92:aa:ce:54: 23:36:57:ea:00:df:39:dc:90:22:59:92:f9:cc:1f:b6:a9:a4: 7b:44:60:07:f3:5a:96:62:70:d0:65:0d:a3:53:f3:3f:e5:0c: 62:7d:34:ef:cf:50:78:95:bd:a9:12:91:92:da:78:9b:e1:a7: de:ce:89:4d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBvcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MTQ5NDdaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDhCQkU4NTkyNTkxOTJD N0UwOEY4MTIzRjg1N0Q5NUZGOTY0MEU3MjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDn5lugIHVG9iF5rfg50XeAysT4qKsI8xisbMBi5WALd55vEdMs zdiAiy6D2IBwA1PiQZm43bvqrmKjWJJvhmJjPKlt/dKZAgZLNAz06Yzksuu0eVg9 N4wFzQOOAnm+lsHZoOLj7Kby6sOdf8DW5V8afHQb8oD3tjQOa2Ni77ODGydZUvJ5 ZKtGd4m2KJaPY+lXIlMES2lZZhHkQ3pgCKcatVNGch+hMK6OSWq1u5JuHzbEflFI M0vrmtahapApbm4OdzRN7QL8TF5XR481D3Fvfts9Gnw6yOhZjdQENjrWix2s3NT4 HB/+A3JsbUQSCK9nsHHM0sc6DU7YDxzluQmTAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUi76FklkZLH4I+BI/hX2V/5ZA5yUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2k3NkZrbGtaTEg0SS1CSV9oWDJWXzVaQTV5VS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYAgwDQYJKoZIhvcNAQELBQADggEBACgQzhFipNVInLvTBTDRn5erYwn0 tUqKrbfQsmvWAsxwhSaDMfJf//ucBiJUjLuRuCfV/hf0zTMJ3EQjbyBmd48twWhA YshwrwB3R5H2PcFosyXtPDMm1tkJfKdDDbyVHmkXyt3HCmr5RGmVTbKXTLgL+i/F Z7HO/OW3RRJHC4P+unHJxTeMnxptaujFCAVkwXeFU8QZ63i7+K9Ci8R4PdGPLjut PND4cwRVVak0/T1AnJkwYa2NSnUJdya0fYek/bGKkqrOVCM2V+oA3znckCJZkvnM H7appHtEYAfzWpZicNBlDaNT8z/lDGJ9NO/PUHiVvakSkZLaeJvhp97OiU0= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:41 2024 by rpki-client on console-ams.rpki-client.org