$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/kAC3xhaBfhzNPGuA1j3Cbhv3u6U.roa File: kAC3xhaBfhzNPGuA1j3Cbhv3u6U.roa (raw, json) Hash identifier: L5606G6Hw6rG32sNFnfylA6AczmXBQFsk6JpSuSHtFo= Subject key identifier: 90:00:B7:C6:16:81:7E:1C:CD:3C:6B:80:D6:3D:C2:6E:1B:F7:BB:A5 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 07AC Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/kAC3xhaBfhzNPGuA1j3Cbhv3u6U.roa Signing time: Tue 30 Apr 2024 02:06:34 +0000 ROA not before: Tue 30 Apr 2024 02:06:34 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.46.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1964 (0x7ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:06:34 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=9000B7C616817E1CCD3C6B80D63DC26E1BF7BBA5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:9d:fd:6b:ef:2b:f8:34:f9:b5:a1:55:38:01: 78:55:d3:cd:d3:94:d8:90:dd:02:5f:b2:e3:60:c6: 67:f0:6a:4c:1e:8f:a1:33:6b:7d:8d:37:a2:43:b8: 58:64:1b:5b:2b:9a:d7:31:4a:ab:21:bb:1d:8b:5d: 28:d9:a1:ba:0a:b1:b5:dc:95:01:ab:d9:6c:dc:48: ed:78:a5:3f:88:26:82:0e:f2:26:65:af:08:6c:52: 21:66:d8:70:9b:e2:cc:ae:8e:d7:e4:63:0b:13:88: 39:60:1b:f4:e6:2b:40:ad:81:b2:77:41:59:85:0c: 08:3f:fa:65:ba:52:b5:03:0c:2e:85:49:b7:e5:9c: c3:18:ee:09:9a:23:1c:fb:b2:36:8c:64:de:5e:a2: d7:38:7f:ef:99:27:d1:e0:7f:38:96:be:e8:f5:07: 40:77:bf:ed:2c:ac:92:3d:31:ca:1d:2e:71:ab:d6: 34:b0:37:d1:0b:3c:39:a0:17:f8:d3:f6:24:3f:a4: e5:ec:d5:e3:cf:05:f1:6b:46:07:d5:ed:a9:fa:4d: 91:d6:2c:5c:a0:1d:05:cc:4b:27:a6:4a:00:64:af: 62:e5:2e:47:53:72:75:79:61:49:90:da:70:b2:8f: 8d:b5:7d:fe:b4:92:cb:88:f4:e6:a2:02:c6:32:e0: b8:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:00:B7:C6:16:81:7E:1C:CD:3C:6B:80:D6:3D:C2:6E:1B:F7:BB:A5 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/kAC3xhaBfhzNPGuA1j3Cbhv3u6U.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.46.0/23 Signature Algorithm: sha256WithRSAEncryption 68:dc:53:75:5e:e3:03:b6:60:c7:ee:35:16:d4:cf:22:5a:dc: 8e:e7:c3:90:f7:94:1c:b1:96:b6:81:0d:f5:e7:9d:85:75:d2: 6b:9f:42:e2:34:74:d7:a8:e2:7f:eb:02:5a:6e:a8:db:7c:fd: 1c:bd:a1:28:bb:fd:34:e8:78:00:9a:88:00:9e:5f:0b:de:19: 9d:96:a1:58:d1:08:29:52:2b:dc:9f:2e:62:bf:1d:5f:71:66: 98:ab:d8:8c:79:7a:36:29:12:45:9a:d7:0d:f1:76:45:04:e4: f1:dd:d5:95:72:19:07:fa:8e:46:2d:cf:0d:f1:f9:04:76:70: 7e:d1:45:30:47:8d:75:34:4b:74:2a:97:5d:7d:cd:c3:07:0b: ac:4e:bb:29:ab:72:e4:5a:09:df:3b:1f:cf:28:48:06:ba:f6: 79:44:d2:4f:34:2e:5f:54:13:be:6f:86:b7:1e:2c:34:01:89: 25:1a:ed:8b:0a:20:47:b1:f5:5e:ff:00:0b:97:cf:69:40:fd: 15:d0:39:1e:b9:bd:3e:cc:ad:11:4d:db:75:d8:ea:b8:d5:a7: 7a:96:c2:af:16:49:b9:c7:e9:4b:00:4b:51:e3:4d:64:9f:69: b4:1c:a6:eb:fd:fa:d2:96:18:85:94:75:b9:7b:2c:43:65:b9: b4:c2:d0:05 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICB6wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjA2MzRaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDkwMDBCN0M2MTY4MTdF MUNDRDNDNkI4MEQ2M0RDMjZFMUJGN0JCQTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVnf1r7yv4NPm1oVU4AXhV083TlNiQ3QJfsuNgxmfwakwej6Ez a32NN6JDuFhkG1srmtcxSqshux2LXSjZoboKsbXclQGr2WzcSO14pT+IJoIO8iZl rwhsUiFm2HCb4syujtfkYwsTiDlgG/TmK0CtgbJ3QVmFDAg/+mW6UrUDDC6FSbfl nMMY7gmaIxz7sjaMZN5eotc4f++ZJ9HgfziWvuj1B0B3v+0srJI9McodLnGr1jSw N9ELPDmgF/jT9iQ/pOXs1ePPBfFrRgfV7an6TZHWLFygHQXMSyemSgBkr2LlLkdT cnV5YUmQ2nCyj421ff60ksuI9OaiAsYy4Lg5AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUkAC3xhaBfhzNPGuA1j3Cbhv3u6UwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2tBQzN4aGFCZmh6TlBHdUExajNDYmh2M3U2VS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYC4wDQYJKoZIhvcNAQELBQADggEBAGjcU3Ve4wO2YMfuNRbUzyJa3I7n w5D3lByxlraBDfXnnYV10mufQuI0dNeo4n/rAlpuqNt8/Ry9oSi7/TToeACaiACe XwveGZ2WoVjRCClSK9yfLmK/HV9xZpir2Ix5ejYpEkWa1w3xdkUE5PHd1ZVyGQf6 jkYtzw3x+QR2cH7RRTBHjXU0S3Qql119zcMHC6xOuymrcuRaCd87H88oSAa69nlE 0k80Ll9UE75vhrceLDQBiSUa7YsKIEex9V7/AAuXz2lA/RXQOR65vT7MrRFN23XY 6rjVp3qWwq8WSbnH6UsAS1HjTWSfabQcpuv9+tKWGIWUdbl7LENlubTC0AU= -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:48 2024 by rpki-client on console-fra.rpki-client.org