$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ibUuvqAsKACW37RzXgunK4HGphU.roa File: ibUuvqAsKACW37RzXgunK4HGphU.roa (raw, json) Hash identifier: eVSvt5j6Ophd3kN+b8SyEhvTiX2pi7jcyToTGLJR1GE= Subject key identifier: 89:B5:2E:BE:A0:2C:28:00:96:DF:B4:73:5E:0B:A7:2B:81:C6:A6:15 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0132 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ibUuvqAsKACW37RzXgunK4HGphU.roa Signing time: Wed 24 May 2023 16:30:22 +0000 ROA not before: Wed 24 May 2023 16:30:22 +0000 ROA not after: Tue 14 May 2024 01:30:02 +0000 asID: 9605 IP address blocks: 1.78.34.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 13:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 306 (0x132) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: May 24 16:30:22 2023 GMT Not After : May 14 01:30:02 2024 GMT Subject: CN=89B52EBEA02C280096DFB4735E0BA72B81C6A615 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:12:10:bc:93:a4:93:e3:09:74:95:70:f8:1f: ad:2b:7a:15:46:e3:ad:6c:3b:25:01:ec:ee:f6:87: 6b:33:23:84:a7:ac:02:05:3e:b5:1c:34:10:09:ca: cd:6b:10:24:93:f8:57:3c:7a:43:9c:18:ce:a7:eb: 5c:91:41:d0:d1:4b:2c:a7:f1:95:cb:95:96:6d:a5: 58:3b:41:db:ef:bc:09:23:1d:8f:00:3c:65:00:e3: 03:b8:7f:81:08:fc:f0:dd:1c:ca:e7:bd:d0:27:4c: e0:46:9a:41:0a:25:30:72:c2:c2:7d:bb:bf:2f:88: bf:ca:af:53:25:e2:1f:54:9e:39:fa:e3:7b:d7:5d: bb:f4:06:a7:a5:49:d1:11:c4:93:3c:30:6c:a9:67: 0d:44:f8:23:ac:16:a1:1f:90:09:cf:23:9e:cb:d2: 41:0a:b8:4f:b1:c3:5c:6c:1e:58:04:da:41:da:0a: d4:bf:49:b5:03:a9:da:e6:66:78:75:ca:74:53:f7: e2:30:36:67:1b:5e:9a:51:db:a8:4b:c1:fd:2a:6b: dd:fc:ab:7b:94:c0:2d:14:e1:f3:4b:f0:89:5a:b4: 8a:d9:80:a0:7d:f2:79:79:ca:85:61:d5:f2:f6:b8: c8:6c:0b:48:4c:96:96:bf:25:39:8a:30:2e:97:0b: 3f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:B5:2E:BE:A0:2C:28:00:96:DF:B4:73:5E:0B:A7:2B:81:C6:A6:15 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ibUuvqAsKACW37RzXgunK4HGphU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.78.34.0/23 Signature Algorithm: sha256WithRSAEncryption a3:c8:75:76:e4:fb:cf:52:c4:7d:0a:62:f7:94:57:ec:eb:6e: a9:d1:b4:ba:c0:76:a5:55:e1:c4:5b:1c:87:1c:84:9c:92:1a: 25:55:3b:4c:27:a6:4e:f1:2a:c6:5a:a7:2f:e5:32:f9:94:a6: a6:13:4b:0d:8d:11:2f:fb:b0:b4:3c:dc:9d:20:16:f6:06:54: d3:92:6a:73:17:d7:8f:13:d5:91:8a:8c:ec:87:68:e8:42:09: 98:97:b3:36:a0:71:db:ee:83:18:c8:e9:e6:30:83:fc:5a:bc: 78:be:6b:ff:81:e2:2c:72:bf:2b:97:76:b8:25:67:6e:d9:78: 04:a7:51:c1:31:af:93:4a:5e:99:45:d6:5c:67:60:80:ab:95: 41:a5:98:1c:0e:65:82:35:a4:9a:77:79:b2:62:38:ab:ae:ff: 73:00:bb:79:81:27:ae:f6:8d:50:b4:79:2d:81:2b:00:da:7e: 2e:d3:00:7b:15:20:53:0a:8e:b6:be:29:b4:b6:9f:92:9f:fc: f6:ee:07:76:0b:88:44:f9:85:75:be:78:0b:a3:7e:0e:80:30: 63:3e:f7:2f:70:26:d5:5a:d9:4d:de:46:11:c3:da:ca:65:49: 59:fe:85:ae:e1:ac:ff:ac:35:7a:90:74:24:c0:95:46:39:46: 8a:7c:aa:e7 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICATIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MjQx NjMwMjJaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDg5QjUyRUJFQTAyQzI4 MDA5NkRGQjQ3MzVFMEJBNzJCODFDNkE2MTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQChEhC8k6ST4wl0lXD4H60rehVG461sOyUB7O72h2szI4SnrAIF PrUcNBAJys1rECST+Fc8ekOcGM6n61yRQdDRSyyn8ZXLlZZtpVg7QdvvvAkjHY8A PGUA4wO4f4EI/PDdHMrnvdAnTOBGmkEKJTBywsJ9u78viL/Kr1Ml4h9Unjn643vX Xbv0BqelSdERxJM8MGypZw1E+COsFqEfkAnPI57L0kEKuE+xw1xsHlgE2kHaCtS/ SbUDqdrmZnh1ynRT9+IwNmcbXppR26hLwf0qa938q3uUwC0U4fNL8IlatIrZgKB9 8nl5yoVh1fL2uMhsC0hMlpa/JTmKMC6XCz8LAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUibUuvqAsKACW37RzXgunK4HGphUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2liVXV2cUFzS0FDVzM3UnpYZ3VuSzRIR3BoVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBTiIwDQYJKoZIhvcNAQELBQADggEBAKPIdXbk+89SxH0KYveUV+zrbqnR tLrAdqVV4cRbHIcchJySGiVVO0wnpk7xKsZapy/lMvmUpqYTSw2NES/7sLQ83J0g FvYGVNOSanMX148T1ZGKjOyHaOhCCZiXszagcdvugxjI6eYwg/xavHi+a/+B4ixy vyuXdrglZ27ZeASnUcExr5NKXplF1lxnYICrlUGlmBwOZYI1pJp3ebJiOKuu/3MA u3mBJ672jVC0eS2BKwDafi7TAHsVIFMKjra+KbS2n5Kf/PbuB3YLiET5hXW+eAuj fg6AMGM+9y9wJtVa2U3eRhHD2splSVn+ha7hrP+sNXqQdCTAlUY5Rop8quc= -----END CERTIFICATE-----Generated at Sat Apr 27 10:15:57 2024 by rpki-client on console-ams.rpki-client.org