$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/iF4jVBJFH6H7DaLb-x8WS6_9_1o.roa File: iF4jVBJFH6H7DaLb-x8WS6_9_1o.roa (raw, json) Hash identifier: jvA+B7FxvffL/ny95v+0kP0r224Q/N+CyTSEou45DCw= Subject key identifier: 88:5E:23:54:12:45:1F:A1:FB:0D:A2:DB:FB:1F:16:4B:AF:FD:FF:5A Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0939 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iF4jVBJFH6H7DaLb-x8WS6_9_1o.roa Signing time: Mon 17 Jun 2024 08:36:02 +0000 ROA not before: Mon 17 Jun 2024 08:36:02 +0000 ROA not after: Sun 15 Jun 2025 01:30:03 +0000 asID: 9605 IP address blocks: 49.96.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Dec 2024 00:11:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2361 (0x939) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jun 17 08:36:02 2024 GMT Not After : Jun 15 01:30:03 2025 GMT Subject: CN=885E235412451FA1FB0DA2DBFB1F164BAFFDFF5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3f:14:cc:e5:12:05:f7:e3:2b:fd:78:95:23: 17:bb:22:b0:9f:ba:fd:57:1b:5e:4b:a3:5c:0c:59: cf:e1:31:3c:32:a2:a8:b1:b6:68:34:a5:69:cf:f8: 80:54:40:ce:d6:32:c1:da:dc:2d:8f:42:2b:fe:97: bf:4f:22:25:d1:15:22:bb:93:15:c0:2f:3e:d7:ec: 52:33:6e:2e:09:59:8b:78:7a:22:d3:fb:60:76:73: 70:6c:14:3a:c1:69:16:0f:de:95:b6:42:11:e7:3b: 79:37:ba:4a:5d:c2:09:09:f3:47:6c:21:65:a4:56: 11:95:59:f6:2a:44:f9:f2:3c:36:80:20:67:2c:8b: e4:90:0d:4c:ce:5d:4d:ad:4f:44:2a:50:3f:7f:eb: a5:77:9b:bd:1c:00:53:21:33:b3:25:18:ee:bd:34: 9e:72:d3:2a:eb:b2:8a:c0:eb:f5:43:22:d8:33:00: e8:db:04:52:0b:5e:60:93:48:6d:85:5d:11:f9:93: e2:1f:fa:4e:f2:8f:48:d7:9e:83:7f:85:76:3b:04: 42:d5:dc:66:5a:00:07:fa:6b:59:16:0d:0b:3e:e8: 10:86:6f:e9:ad:f2:6f:1b:c7:0a:95:cf:78:ea:16: ae:10:fa:e9:ad:fe:ca:c3:8f:09:6c:02:ce:94:38: 71:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:5E:23:54:12:45:1F:A1:FB:0D:A2:DB:FB:1F:16:4B:AF:FD:FF:5A X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iF4jVBJFH6H7DaLb-x8WS6_9_1o.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.160.0/19 Signature Algorithm: sha256WithRSAEncryption b5:68:a0:f9:59:29:13:06:e0:01:13:58:a6:b4:d1:f7:83:e8: b8:b9:6a:5d:7f:d6:75:ac:5a:43:a3:ba:88:4e:75:61:76:77: b2:9a:50:59:16:b0:af:48:39:a5:9a:43:aa:1a:dd:37:b7:72: e1:c3:47:bb:f2:a2:0f:4f:9e:18:e0:5b:e0:d0:e9:9a:1b:f2: e7:64:54:9a:87:29:30:a7:52:23:b7:0f:df:26:47:59:97:84: 4f:fa:49:74:91:77:8f:c6:27:6e:06:72:a0:56:dc:fa:9b:84: 53:d0:e2:12:8b:8a:58:42:1c:a1:fc:cc:90:b6:29:28:eb:99: 71:52:cc:9b:04:48:4b:ee:b2:c4:b2:84:59:38:6e:70:74:87: 57:b7:39:a5:d0:2d:ff:1d:b7:47:d8:01:7a:e9:aa:5b:82:cd: 83:2f:69:7f:0e:d9:1c:53:fe:16:c2:3f:00:9a:6d:80:1f:8f: 37:79:17:c8:6f:fb:96:1b:9a:ae:ae:9d:8e:97:89:32:08:2a: 81:19:83:5a:dc:ac:4e:47:5a:2c:d4:64:07:3a:47:1c:21:d5: 5a:ea:59:d6:79:07:7d:aa:49:6d:cd:f9:62:ff:f5:84:0e:2f: 02:07:1f:c5:f1:be:11:f3:12:e9:c0:44:c6:13:99:fd:ff:ce: e9:af:40:4a -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCTkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA2MTcw ODM2MDJaFw0yNTA2MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDg4NUUyMzU0MTI0NTFG QTFGQjBEQTJEQkZCMUYxNjRCQUZGREZGNUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6PxTM5RIF9+Mr/XiVIxe7IrCfuv1XG15Lo1wMWc/hMTwyoqix tmg0pWnP+IBUQM7WMsHa3C2PQiv+l79PIiXRFSK7kxXALz7X7FIzbi4JWYt4eiLT +2B2c3BsFDrBaRYP3pW2QhHnO3k3ukpdwgkJ80dsIWWkVhGVWfYqRPnyPDaAIGcs i+SQDUzOXU2tT0QqUD9/66V3m70cAFMhM7MlGO69NJ5y0yrrsorA6/VDItgzAOjb BFILXmCTSG2FXRH5k+If+k7yj0jXnoN/hXY7BELV3GZaAAf6a1kWDQs+6BCGb+mt 8m8bxwqVz3jqFq4Q+umt/srDjwlsAs6UOHEVAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUiF4jVBJFH6H7DaLb+x8WS6/9/1owHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2lGNGpWQkpGSDZIN0RhTGIteDhXUzZfOV8xby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUxYKAwDQYJKoZIhvcNAQELBQADggEBALVooPlZKRMG4AETWKa00feD6Li5 al1/1nWsWkOjuohOdWF2d7KaUFkWsK9IOaWaQ6oa3Te3cuHDR7vyog9PnhjgW+DQ 6Zob8udkVJqHKTCnUiO3D98mR1mXhE/6SXSRd4/GJ24GcqBW3PqbhFPQ4hKLilhC HKH8zJC2KSjrmXFSzJsESEvussSyhFk4bnB0h1e3OaXQLf8dt0fYAXrpqluCzYMv aX8O2RxT/hbCPwCabYAfjzd5F8hv+5Ybmq6unY6XiTIIKoEZg1rcrE5HWizUZAc6 Rxwh1VrqWdZ5B32qSW3N+WL/9YQOLwIHH8XxvhHzEunARMYTmf3/zumvQEo= -----END CERTIFICATE-----Generated at Tue Nov 26 02:27:15 2024 by rpki-client on console-ams.rpki-client.org