$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/iYpU6DcdFCIMxqDjxG2kDa0UeMc.roa File: iYpU6DcdFCIMxqDjxG2kDa0UeMc.roa (raw, json) Hash identifier: GWlxfAJTa2YNKfrPCh3UBXbk+2gWI3Wif+Sw3b/YRTM= Subject key identifier: 89:8A:54:E8:37:1D:14:22:0C:C6:A0:E3:C4:6D:A4:0D:AD:14:78:C7 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0162 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iYpU6DcdFCIMxqDjxG2kDa0UeMc.roa Signing time: Wed 24 May 2023 16:31:25 +0000 ROA not before: Wed 24 May 2023 16:31:25 +0000 ROA not after: Tue 14 May 2024 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.8.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 13:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 354 (0x162) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: May 24 16:31:25 2023 GMT Not After : May 14 01:30:02 2024 GMT Subject: CN=898A54E8371D14220CC6A0E3C46DA40DAD1478C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:e5:ad:21:70:11:98:80:99:b1:e1:83:7d:12: f6:51:91:e6:67:c8:75:06:73:7b:fd:7c:02:c1:00: c8:c4:d6:42:ac:2f:6b:95:76:eb:81:fd:78:ab:4a: 68:81:6e:3b:7f:c6:09:12:36:ff:8d:6e:e7:8c:f3: e0:f9:80:d1:3c:a5:ff:55:f8:dd:98:e3:64:a4:45: e1:24:73:dd:33:54:85:82:89:5f:af:f2:0b:91:18: 61:51:7c:53:9f:f6:99:94:26:c7:c2:1f:38:bb:55: 9a:8b:0a:d1:8e:dd:14:db:64:37:f6:ff:06:54:26: d1:a9:ca:6e:b5:90:68:1d:92:66:fe:b2:24:79:07: ad:57:eb:bd:0c:ed:a9:0b:5a:6f:cb:91:30:c8:25: 38:5f:d5:21:d7:5e:83:64:37:fd:12:40:2d:33:51: f5:b2:af:2e:2f:b8:8b:5c:48:bf:18:01:25:3e:4f: a1:a6:18:19:75:a7:7d:d7:33:53:93:15:f4:94:ce: 71:28:76:a4:7d:be:d1:94:8c:c7:90:20:38:48:57: e9:39:6d:f0:36:0b:3f:9d:33:10:19:54:40:d9:b3: d0:d0:af:47:58:3e:b4:a1:d9:13:b6:82:50:58:34: 41:aa:c3:0b:d7:64:24:51:7d:9b:2a:8b:c2:44:4d: 8d:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:8A:54:E8:37:1D:14:22:0C:C6:A0:E3:C4:6D:A4:0D:AD:14:78:C7 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iYpU6DcdFCIMxqDjxG2kDa0UeMc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.8.0/22 Signature Algorithm: sha256WithRSAEncryption bc:41:bf:b9:60:e6:a7:b4:2a:34:14:f0:70:56:f3:e2:c6:a0: 75:0f:d0:35:1d:82:4b:a0:80:3b:c6:7e:4b:cb:41:5f:c8:30: fd:e6:6b:c3:59:f4:57:b4:c3:79:0b:1a:2f:f6:30:df:2b:cc: 61:8c:78:50:d2:75:81:41:91:3d:48:fc:0b:f3:ed:1e:4d:6f: 95:36:dc:2f:d5:49:d8:53:d9:66:9d:d4:ef:3b:65:45:cc:08: 0d:08:e6:42:51:34:ec:3b:2a:68:e7:39:b7:4a:0c:0a:6e:23: 84:35:b8:28:9e:ec:61:1b:99:aa:95:e5:bd:32:57:d6:84:55: 96:cf:48:da:37:96:d9:d3:2f:e6:0b:6c:4c:b4:a1:a4:eb:19: 42:cc:8b:cf:c2:2d:59:18:9c:06:2b:6d:d6:b7:af:84:66:dd: e1:4d:0d:be:99:fe:a9:05:f6:3d:d1:9d:d7:dd:34:2c:bb:fe: 25:fd:83:39:96:69:e5:49:c3:89:bd:cb:23:34:0b:2a:2b:11: 72:ac:7a:1f:92:4a:64:d0:23:30:a0:a6:58:c0:17:aa:4f:1e: 13:56:42:42:65:ba:3c:88:da:06:07:71:e9:68:7c:a0:94:e4: 63:84:a2:09:b2:ca:dc:93:cd:a5:ac:76:b8:a7:c3:b8:5e:ee: 88:65:b5:f4 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAWIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MjQx NjMxMjVaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDg5OEE1NEU4MzcxRDE0 MjIwQ0M2QTBFM0M0NkRBNDBEQUQxNDc4QzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDs5a0hcBGYgJmx4YN9EvZRkeZnyHUGc3v9fALBAMjE1kKsL2uV duuB/XirSmiBbjt/xgkSNv+NbueM8+D5gNE8pf9V+N2Y42SkReEkc90zVIWCiV+v 8guRGGFRfFOf9pmUJsfCHzi7VZqLCtGO3RTbZDf2/wZUJtGpym61kGgdkmb+siR5 B61X670M7akLWm/LkTDIJThf1SHXXoNkN/0SQC0zUfWyry4vuItcSL8YASU+T6Gm GBl1p33XM1OTFfSUznEodqR9vtGUjMeQIDhIV+k5bfA2Cz+dMxAZVEDZs9DQr0dY PrSh2RO2glBYNEGqwwvXZCRRfZsqi8JETY2LAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUiYpU6DcdFCIMxqDjxG2kDa0UeMcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2lZcFU2RGNkRkNJTXhxRGp4RzJrRGEwVWVNYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYggwDQYJKoZIhvcNAQELBQADggEBALxBv7lg5qe0KjQU8HBW8+LGoHUP 0DUdgkuggDvGfkvLQV/IMP3ma8NZ9Fe0w3kLGi/2MN8rzGGMeFDSdYFBkT1I/Avz 7R5Nb5U23C/VSdhT2Wad1O87ZUXMCA0I5kJRNOw7KmjnObdKDApuI4Q1uCie7GEb maqV5b0yV9aEVZbPSNo3ltnTL+YLbEy0oaTrGULMi8/CLVkYnAYrbda3r4Rm3eFN Db6Z/qkF9j3RndfdNCy7/iX9gzmWaeVJw4m9yyM0CyorEXKseh+SSmTQIzCgpljA F6pPHhNWQkJlujyI2gYHcelofKCU5GOEogmyytyTzaWsdrinw7he7ohltfQ= -----END CERTIFICATE-----Generated at Sat Apr 27 10:15:57 2024 by rpki-client on console-ams.rpki-client.org