$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/oJ5mK-KBsMC7vRuVQJktjK8AQ3M.roa File: oJ5mK-KBsMC7vRuVQJktjK8AQ3M.roa (raw, json) Hash identifier: gSM0DsIDJ1KM/aNVK0yCpLeB5+XW5vYdFgki6RIKJ3A= Subject key identifier: A0:9E:66:2B:E2:81:B0:C0:BB:BD:1B:95:40:99:2D:8C:AF:00:43:73 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 07FA Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/oJ5mK-KBsMC7vRuVQJktjK8AQ3M.roa Signing time: Tue 30 Apr 2024 02:10:40 +0000 ROA not before: Tue 30 Apr 2024 02:10:40 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.42.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2042 (0x7fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:10:40 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=A09E662BE281B0C0BBBD1B9540992D8CAF004373 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:5b:af:07:b1:91:7d:13:84:a1:a6:87:08:59: 23:77:ca:9c:64:71:e5:97:0f:eb:49:52:11:37:1d: 9f:78:e4:65:91:e8:a3:58:45:c3:6b:c3:5c:f1:17: 73:ac:23:b5:33:e6:ac:94:61:68:0a:fa:e8:af:6f: 85:26:fd:fb:dc:77:ca:20:3a:2b:ae:0a:56:99:e7: 81:57:26:fb:f7:26:c7:ab:74:9f:01:15:8f:1c:06: 73:fb:b3:2a:cd:44:6f:6b:bf:9a:5e:53:13:81:27: 1c:50:79:e5:d7:f0:76:b8:23:bc:38:18:79:86:bd: 58:09:ac:e0:1d:55:77:44:50:57:d5:6c:3d:57:95: b5:22:56:54:09:a6:fd:ee:de:e4:62:74:42:88:5e: c7:3e:22:3d:8f:57:a2:90:c2:0e:38:c1:f0:6f:18: 1e:ff:47:93:da:88:8d:71:54:b6:d0:9a:62:3d:c0: 68:9b:2e:00:f5:be:62:4e:29:1f:51:f6:57:97:b2: 6b:ab:e1:0b:28:50:ed:06:98:ce:37:b9:f1:3f:22: 01:43:eb:8a:a8:67:2d:d5:59:5b:a0:b7:9c:9b:52: 83:eb:58:bf:1f:39:b6:0b:fd:df:c3:82:5d:cb:79: f4:57:78:79:7a:b0:c0:41:be:3f:04:85:9b:5c:7b: a9:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:9E:66:2B:E2:81:B0:C0:BB:BD:1B:95:40:99:2D:8C:AF:00:43:73 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/oJ5mK-KBsMC7vRuVQJktjK8AQ3M.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.42.0/23 Signature Algorithm: sha256WithRSAEncryption 83:87:36:89:73:af:ef:a3:75:af:58:f9:ad:a1:52:5a:4b:03: 05:a4:42:e7:40:55:75:de:92:4f:40:62:56:91:3c:3f:fe:c6: 94:33:75:57:9a:6d:94:c3:18:0e:9c:96:d4:f6:23:69:68:cb: a2:28:a7:4b:c9:ee:fc:fe:78:22:09:68:07:02:84:23:a2:00: 41:3e:58:cf:0c:2e:52:b4:f1:9c:27:fc:71:d8:c5:bf:17:77: 97:e4:47:ce:e3:62:e0:88:a3:78:32:a7:06:af:fd:a1:fc:26: 5f:34:21:15:bb:dc:2e:f4:23:58:8c:e6:36:4a:75:d5:45:7e: e2:4e:1f:fe:00:80:d0:b9:23:af:8c:03:71:b2:e1:72:58:f4: c8:05:f0:77:f5:a0:f0:73:98:e9:7b:b3:45:df:56:88:07:55: 95:10:70:04:b5:ec:a1:cb:50:61:39:ee:9e:6f:a7:48:00:bf: cc:77:5b:85:08:9c:26:e5:36:a7:da:2d:b1:70:cf:4b:55:07: 4e:b3:ab:87:e8:29:2f:af:cb:3c:93:8a:cf:cc:f1:7d:64:0e: 2e:04:68:52:fb:33:06:74:5a:43:ba:b3:3b:49:1e:6a:ad:33: 17:6f:6a:60:8c:8a:b9:00:22:30:26:fd:41:89:b5:aa:a0:af: 87:6d:af:7d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICB/owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjEwNDBaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEEwOUU2NjJCRTI4MUIw QzBCQkJEMUI5NTQwOTkyRDhDQUYwMDQzNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCfW68HsZF9E4ShpocIWSN3ypxkceWXD+tJUhE3HZ945GWR6KNY RcNrw1zxF3OsI7Uz5qyUYWgK+uivb4Um/fvcd8ogOiuuClaZ54FXJvv3JserdJ8B FY8cBnP7syrNRG9rv5peUxOBJxxQeeXX8Ha4I7w4GHmGvVgJrOAdVXdEUFfVbD1X lbUiVlQJpv3u3uRidEKIXsc+Ij2PV6KQwg44wfBvGB7/R5PaiI1xVLbQmmI9wGib LgD1vmJOKR9R9leXsmur4QsoUO0GmM43ufE/IgFD64qoZy3VWVugt5ybUoPrWL8f ObYL/d/Dgl3LefRXeHl6sMBBvj8EhZtce6nhAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUoJ5mK+KBsMC7vRuVQJktjK8AQ3MwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L29KNW1LLUtCc01DN3ZSdVZRSmt0aks4QVEzTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYiowDQYJKoZIhvcNAQELBQADggEBAIOHNolzr++jda9Y+a2hUlpLAwWk QudAVXXekk9AYlaRPD/+xpQzdVeabZTDGA6cltT2I2loy6Iop0vJ7vz+eCIJaAcC hCOiAEE+WM8MLlK08Zwn/HHYxb8Xd5fkR87jYuCIo3gypwav/aH8Jl80IRW73C70 I1iM5jZKddVFfuJOH/4AgNC5I6+MA3Gy4XJY9MgF8Hf1oPBzmOl7s0XfVogHVZUQ cAS17KHLUGE57p5vp0gAv8x3W4UInCblNqfaLbFwz0tVB06zq4foKS+vyzyTis/M 8X1kDi4EaFL7MwZ0WkO6sztJHmqtMxdvamCMirkAIjAm/UGJtaqgr4dtr30= -----END CERTIFICATE-----Generated at Sat Jun 1 15:54:32 2024 by rpki-client on console-ams.rpki-client.org