$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/kwJXS3Cl4nk2XaZ_OxC1XAS0C2s.roa File: kwJXS3Cl4nk2XaZ_OxC1XAS0C2s.roa (raw, json) Hash identifier: ksqTFfk4C/n6M+iOAwLij9778tlslqAjfiohF+wW62M= Subject key identifier: 93:02:57:4B:70:A5:E2:79:36:5D:A6:7F:3B:10:B5:5C:04:B4:0B:6B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 08FB Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/kwJXS3Cl4nk2XaZ_OxC1XAS0C2s.roa Signing time: Tue 30 Apr 2024 02:26:38 +0000 ROA not before: Tue 30 Apr 2024 02:26:38 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.224.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2299 (0x8fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:26:38 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=9302574B70A5E279365DA67F3B10B55C04B40B6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:02:78:94:cd:53:c4:91:80:b7:4e:e5:6c:1b: 2f:bb:98:fa:2b:c5:77:21:6a:58:23:e1:53:e8:f0: 24:ce:ed:1b:a2:da:1b:7b:68:59:da:10:1b:83:8f: 98:1c:6d:56:10:1c:c6:de:88:59:00:06:83:ce:b0: 14:33:f5:0b:f5:96:6c:59:8e:93:13:c3:12:33:31: e6:27:9a:2c:9b:5b:92:d7:b3:3e:3a:72:fd:32:18: 1c:0d:2e:b8:85:53:42:9f:1d:36:c4:99:f4:cc:25: 48:80:1b:0e:bf:39:6a:64:c2:81:f7:b7:cf:52:83: e1:39:21:fd:30:69:77:bf:43:84:3a:2c:b3:d7:49: 2b:0a:73:f7:31:26:3d:c9:ac:48:9e:8d:6d:51:46: 74:30:ee:10:7d:47:c7:cd:f4:fc:49:28:9a:1f:fa: a9:0e:a4:2b:fc:17:83:fd:73:07:f5:16:a3:4e:a2: 10:a7:14:79:ca:24:c9:5d:cc:9a:ad:ad:e7:c4:94: 7b:27:5c:81:68:65:6c:82:c6:61:f7:82:4f:8b:13: 22:2f:69:f0:6c:47:a3:f9:ce:e7:e8:27:ae:a2:9c: 3c:78:54:a1:74:04:ff:ea:30:15:43:86:be:82:c6: db:f8:61:61:9c:ba:82:a2:21:10:37:fc:ca:a3:6d: 51:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:02:57:4B:70:A5:E2:79:36:5D:A6:7F:3B:10:B5:5C:04:B4:0B:6B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/kwJXS3Cl4nk2XaZ_OxC1XAS0C2s.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.224.0/22 Signature Algorithm: sha256WithRSAEncryption bd:42:bb:b5:21:e5:9f:70:e1:67:b1:c4:7c:22:d4:7e:24:3e: 38:86:b1:96:85:c8:18:6c:bf:df:bd:86:ef:95:15:09:5c:f4: 24:cd:66:9f:03:b8:0d:b6:fc:6c:51:b2:2e:c7:36:56:1c:0a: 45:41:74:bb:0c:91:25:2a:6f:fa:c8:f4:01:f6:60:ae:21:f4: 4f:70:b8:c0:fa:65:9c:03:db:a2:74:b1:a4:30:9f:37:33:39: 9a:ca:96:3c:25:c2:f9:64:c5:4e:a4:76:91:ac:34:65:94:ae: 99:ba:f1:10:a9:f1:ee:62:05:a1:cc:b4:52:62:9e:24:fa:df: ff:d5:ca:b3:24:6b:71:aa:e4:dd:77:bd:ca:f6:ea:cc:ee:6b: 4d:3a:23:f0:06:c4:54:91:14:ea:d1:e5:81:0a:68:9e:1e:54: 25:ae:9f:32:39:d3:b6:01:e9:72:29:3b:36:51:cd:16:5a:1e: 41:e9:c7:86:ee:5c:b1:cc:9e:7b:ae:c6:9b:db:4b:30:4f:4b: 04:ff:27:92:2b:16:30:94:82:1d:76:b5:85:1b:c2:d3:89:f7: 50:a6:7f:3e:ae:f0:23:4e:82:c4:03:bc:4a:1e:3f:95:22:63: 3e:28:4e:33:6e:f8:ab:e9:6d:b2:0b:fb:a4:b1:79:31:d0:69: 11:3d:9f:e7 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCPswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjI2MzhaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDkzMDI1NzRCNzBBNUUy NzkzNjVEQTY3RjNCMTBCNTVDMDRCNDBCNkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGAniUzVPEkYC3TuVsGy+7mPorxXchalgj4VPo8CTO7Rui2ht7 aFnaEBuDj5gcbVYQHMbeiFkABoPOsBQz9Qv1lmxZjpMTwxIzMeYnmiybW5LXsz46 cv0yGBwNLriFU0KfHTbEmfTMJUiAGw6/OWpkwoH3t89Sg+E5If0waXe/Q4Q6LLPX SSsKc/cxJj3JrEiejW1RRnQw7hB9R8fN9PxJKJof+qkOpCv8F4P9cwf1FqNOohCn FHnKJMldzJqtrefElHsnXIFoZWyCxmH3gk+LEyIvafBsR6P5zufoJ66inDx4VKF0 BP/qMBVDhr6Cxtv4YWGcuoKiIRA3/MqjbVHjAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUkwJXS3Cl4nk2XaZ/OxC1XAS0C2swHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2t3SlhTM0NsNG5rMlhhWl9PeEMxWEFTMEMycy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYuAwDQYJKoZIhvcNAQELBQADggEBAL1Cu7Uh5Z9w4WexxHwi1H4kPjiG sZaFyBhsv9+9hu+VFQlc9CTNZp8DuA22/GxRsi7HNlYcCkVBdLsMkSUqb/rI9AH2 YK4h9E9wuMD6ZZwD26J0saQwnzczOZrKljwlwvlkxU6kdpGsNGWUrpm68RCp8e5i BaHMtFJiniT63//VyrMka3Gq5N13vcr26szua006I/AGxFSRFOrR5YEKaJ4eVCWu nzI507YB6XIpOzZRzRZaHkHpx4buXLHMnnuuxpvbSzBPSwT/J5IrFjCUgh12tYUb wtOJ91Cmfz6u8CNOgsQDvEoeP5UiYz4oTjNu+KvpbbIL+6SxeTHQaRE9n+c= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:41 2024 by rpki-client on console-ams.rpki-client.org