$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/p-1HizfwESD2FEW-mP6MT6LoXdo.roa File: p-1HizfwESD2FEW-mP6MT6LoXdo.roa (raw, json) Hash identifier: 7ek/OEWY4DhXEPVV/cKmtowYZnW7HvhcjeeNX9J/omc= Subject key identifier: A7:ED:47:8B:37:F0:11:20:F6:14:45:BE:98:FE:8C:4F:A2:E8:5D:DA Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 089C Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/p-1HizfwESD2FEW-mP6MT6LoXdo.roa Signing time: Tue 30 Apr 2024 02:20:41 +0000 ROA not before: Tue 30 Apr 2024 02:20:41 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.228.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2204 (0x89c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:20:41 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=A7ED478B37F01120F61445BE98FE8C4FA2E85DDA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:12:ae:48:ba:87:41:22:07:49:c3:33:24:75: 3c:38:05:30:26:5e:19:b3:98:4f:c0:16:32:97:b1: 7f:29:c5:7c:53:09:67:40:96:07:07:b1:46:17:4d: d2:0f:57:4c:af:84:13:8b:c9:ab:db:94:d4:ec:00: fb:9f:4c:cb:e9:85:0e:ff:fd:3c:56:4b:77:3d:4d: 7c:3e:11:86:7b:53:71:43:7a:ef:bb:86:14:63:19: 18:3c:31:bd:a2:4a:4c:28:c7:c9:24:56:e8:4d:38: 58:dc:4a:a9:cb:b8:94:c5:a2:8f:23:89:4f:bd:17: 2a:77:50:f3:22:ce:d9:e2:10:bc:2e:15:9e:5e:00: df:d2:91:83:88:8f:6f:70:da:4f:44:5b:b2:a0:2a: 0b:0a:ef:76:03:47:10:98:65:18:c1:59:21:61:b7: e3:0f:d5:b7:9a:b0:58:73:4d:d4:25:f8:ad:65:00: 9d:99:c1:ee:db:11:0b:cd:e8:f3:be:7f:99:05:45: a0:c8:c7:57:fa:3c:1a:cb:db:c7:0a:25:a7:ff:4f: 86:08:a2:38:e4:da:0f:49:15:29:b2:8c:73:68:3c: 58:b3:3f:c2:d3:02:3a:d4:d5:1e:80:cb:cb:24:53: 36:2f:9d:e3:e0:42:e2:5d:8f:e3:af:66:9b:57:d4: 89:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:ED:47:8B:37:F0:11:20:F6:14:45:BE:98:FE:8C:4F:A2:E8:5D:DA X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/p-1HizfwESD2FEW-mP6MT6LoXdo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.228.0/23 Signature Algorithm: sha256WithRSAEncryption ac:e1:67:4f:8a:f3:e1:0d:db:40:a9:d7:96:88:8e:23:00:19: 78:65:12:27:0c:13:48:50:0e:9d:08:a9:c5:7c:0e:c1:20:0f: 5c:6d:21:9f:9c:49:bf:54:48:10:0f:cb:ff:6f:e4:49:ee:6b: 51:8f:a0:81:c5:fc:79:a4:01:c9:03:92:16:b6:d7:52:f4:82: f4:da:b1:00:bf:88:7b:8e:86:09:0c:87:23:a8:92:04:f1:48: 21:56:7a:f2:b2:8c:35:22:be:f4:1e:bd:78:6e:b5:b5:07:37: d5:59:ff:c3:51:21:a4:75:73:ab:04:b5:07:b4:de:55:34:b4: 9c:8e:63:1c:fd:0b:5f:ac:91:c6:23:23:c2:8f:10:78:99:6f: 0a:af:82:eb:00:d2:92:af:55:7f:97:2a:1e:38:b3:d7:fa:f1: 8c:47:47:15:91:70:de:71:23:48:99:70:b8:9b:ff:cd:8a:54: 58:df:fc:e1:e4:8d:1d:15:19:b8:66:0d:f7:b4:78:64:ce:0d: e1:28:48:20:31:f0:55:7e:7a:d9:ec:32:72:ed:09:87:24:6b: bb:f8:53:00:0c:57:89:3a:49:3b:84:4a:d3:52:4c:2d:9d:47: 4c:12:8f:f9:ae:13:29:2e:2e:7d:80:7f:03:29:f6:60:ec:33: 4d:0f:a5:24 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCJwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjIwNDFaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEE3RUQ0NzhCMzdGMDEx MjBGNjE0NDVCRTk4RkU4QzRGQTJFODVEREEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzEq5IuodBIgdJwzMkdTw4BTAmXhmzmE/AFjKXsX8pxXxTCWdA lgcHsUYXTdIPV0yvhBOLyavblNTsAPufTMvphQ7//TxWS3c9TXw+EYZ7U3FDeu+7 hhRjGRg8Mb2iSkwox8kkVuhNOFjcSqnLuJTFoo8jiU+9Fyp3UPMiztniELwuFZ5e AN/SkYOIj29w2k9EW7KgKgsK73YDRxCYZRjBWSFht+MP1beasFhzTdQl+K1lAJ2Z we7bEQvN6PO+f5kFRaDIx1f6PBrL28cKJaf/T4YIojjk2g9JFSmyjHNoPFizP8LT AjrU1R6Ay8skUzYvnePgQuJdj+OvZptX1IlhAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUp+1HizfwESD2FEW+mP6MT6LoXdowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3AtMUhpemZ3RVNEMkZFVy1tUDZNVDZMb1hkby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYOQwDQYJKoZIhvcNAQELBQADggEBAKzhZ0+K8+EN20Cp15aIjiMAGXhl EicME0hQDp0IqcV8DsEgD1xtIZ+cSb9USBAPy/9v5Enua1GPoIHF/HmkAckDkha2 11L0gvTasQC/iHuOhgkMhyOokgTxSCFWevKyjDUivvQevXhutbUHN9VZ/8NRIaR1 c6sEtQe03lU0tJyOYxz9C1+skcYjI8KPEHiZbwqvgusA0pKvVX+XKh44s9f68YxH RxWRcN5xI0iZcLib/82KVFjf/OHkjR0VGbhmDfe0eGTODeEoSCAx8FV+etnsMnLt CYcka7v4UwAMV4k6STuEStNSTC2dR0wSj/muEykuLn2AfwMp9mDsM00PpSQ= -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:48 2024 by rpki-client on console-fra.rpki-client.org