$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ohT8e86UkQWxf-1HTfzQQw7wWbk.roa File: ohT8e86UkQWxf-1HTfzQQw7wWbk.roa (raw, json) Hash identifier: ve2+M5vbHmDTH36Mao8pdZ7AXHqIP4ekNg4VZd7+AfI= Subject key identifier: A2:14:FC:7B:CE:94:91:05:B1:7F:ED:47:4D:FC:D0:43:0E:F0:59:B9 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 021C Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ohT8e86UkQWxf-1HTfzQQw7wWbk.roa Signing time: Tue 30 May 2023 16:30:28 +0000 ROA not before: Tue 30 May 2023 16:30:28 +0000 ROA not after: Tue 14 May 2024 01:30:02 +0000 asID: 9605 IP address blocks: 1.66.20.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 13:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 540 (0x21c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: May 30 16:30:28 2023 GMT Not After : May 14 01:30:02 2024 GMT Subject: CN=A214FC7BCE949105B17FED474DFCD0430EF059B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:76:51:26:8e:f2:dd:b3:b8:33:90:aa:0a:db: ed:52:4c:a0:a4:ba:af:51:c4:49:77:02:48:f4:43: d6:29:e0:e7:68:40:e9:cc:a3:d8:18:a2:18:01:8d: d3:8c:a0:6f:34:b3:04:f8:74:10:34:61:ac:eb:ff: cf:c0:01:a4:9f:6e:6b:8f:17:dc:46:c8:3f:7c:9b: 74:b3:25:b8:c5:ea:89:fd:e2:59:c0:16:7b:71:3a: bd:2a:db:0f:55:53:1f:cc:0c:35:03:c4:43:0a:d6: 77:43:f2:06:2c:d0:41:cb:07:f2:8b:b4:f1:83:e1: 55:b6:8c:db:d2:24:30:27:ef:83:2e:78:5b:02:c4: f0:36:97:7b:3d:94:a3:19:18:fb:08:d7:2e:34:0b: 80:93:93:bb:18:94:10:f3:a7:3e:c3:1a:87:4f:09: c2:e5:c1:30:58:34:31:02:57:b8:c6:98:96:c8:f2: e9:db:17:72:b0:39:30:ae:67:03:79:e0:a2:0a:f3: 60:0a:24:3e:64:44:16:5f:e2:9d:32:cd:2a:64:d3: 4b:21:ec:ca:19:3c:16:44:e9:10:ac:cd:73:b2:05: 45:a9:89:ff:7a:7f:bb:85:86:72:60:27:b8:ab:f0: 1a:b1:ad:8b:35:54:dd:39:6a:75:5a:1f:44:c6:6a: d9:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:14:FC:7B:CE:94:91:05:B1:7F:ED:47:4D:FC:D0:43:0E:F0:59:B9 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ohT8e86UkQWxf-1HTfzQQw7wWbk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.66.20.0/22 Signature Algorithm: sha256WithRSAEncryption 9c:29:20:d9:08:37:88:6c:4f:5e:35:59:d0:13:3c:f4:b5:81: fd:b5:cd:39:28:23:e9:cf:9c:e2:3c:bf:eb:7f:42:11:f6:45: cf:13:0f:f2:cd:0b:6c:6d:1e:1e:79:c8:5f:42:69:45:27:7c: 5c:e1:fb:00:76:38:f0:6c:78:89:50:31:86:4b:b7:f0:e6:18: 97:4e:8b:c4:0b:2f:67:4c:41:a4:60:6c:46:90:ea:d0:73:61: 5d:4d:1a:cc:ee:52:a4:d5:5b:ca:b7:fa:78:3a:44:a5:09:36: 35:67:1c:ef:58:a8:d8:8f:c1:50:a0:a6:22:84:0a:d8:4c:7f: 40:50:96:09:66:71:39:e1:e2:bd:86:70:a3:f9:45:5a:4b:62: a9:7d:a5:87:06:db:68:20:ce:1c:cd:52:48:fd:01:b6:da:de: cb:60:42:5a:1c:d9:a9:2a:44:64:a6:2e:37:51:f3:50:1d:aa: 2f:ca:87:94:d3:4c:f2:58:2a:d1:e6:8d:f0:a2:84:d9:ec:10: 15:9c:ad:03:a5:07:39:45:5a:f5:5b:c5:55:ee:df:08:d4:73: 84:ce:aa:04:72:ae:2c:a1:89:cd:2d:06:60:64:37:a4:6a:50: 3f:54:fd:c9:13:0b:cb:f3:40:1d:ce:fc:27:96:d5:17:16:be: 9d:57:4e:9f -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAhwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MzAx NjMwMjhaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKEEyMTRGQzdCQ0U5NDkx MDVCMTdGRUQ0NzRERkNEMDQzMEVGMDU5QjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3dlEmjvLds7gzkKoK2+1STKCkuq9RxEl3Akj0Q9Yp4OdoQOnM o9gYohgBjdOMoG80swT4dBA0Yazr/8/AAaSfbmuPF9xGyD98m3SzJbjF6on94lnA FntxOr0q2w9VUx/MDDUDxEMK1ndD8gYs0EHLB/KLtPGD4VW2jNvSJDAn74MueFsC xPA2l3s9lKMZGPsI1y40C4CTk7sYlBDzpz7DGodPCcLlwTBYNDECV7jGmJbI8unb F3KwOTCuZwN54KIK82AKJD5kRBZf4p0yzSpk00sh7MoZPBZE6RCszXOyBUWpif96 f7uFhnJgJ7ir8BqxrYs1VN05anVaH0TGatkdAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUohT8e86UkQWxf+1HTfzQQw7wWbkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L29oVDhlODZVa1FXeGYtMUhUZnpRUXc3d1diay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBQhQwDQYJKoZIhvcNAQELBQADggEBAJwpINkIN4hsT141WdATPPS1gf21 zTkoI+nPnOI8v+t/QhH2Rc8TD/LNC2xtHh55yF9CaUUnfFzh+wB2OPBseIlQMYZL t/DmGJdOi8QLL2dMQaRgbEaQ6tBzYV1NGszuUqTVW8q3+ng6RKUJNjVnHO9YqNiP wVCgpiKECthMf0BQlglmcTnh4r2GcKP5RVpLYql9pYcG22ggzhzNUkj9Abba3stg Qloc2akqRGSmLjdR81Adqi/Kh5TTTPJYKtHmjfCihNnsEBWcrQOlBzlFWvVbxVXu 3wjUc4TOqgRyriyhic0tBmBkN6RqUD9U/ckTC8vzQB3O/CeW1RcWvp1XTp8= -----END CERTIFICATE-----Generated at Sat Apr 27 10:15:57 2024 by rpki-client on console-ams.rpki-client.org