$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/p4YTias249-9aZLFUXb8LgmF654.roa File: p4YTias249-9aZLFUXb8LgmF654.roa (raw, json) Hash identifier: Q6gh0IanW+x/zSQx5VGKc4h9bdlRuE9NgIeLEufzGtM= Subject key identifier: A7:86:13:89:AB:36:E3:DF:BD:69:92:C5:51:76:FC:2E:09:85:EB:9E Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 07A3 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/p4YTias249-9aZLFUXb8LgmF654.roa Signing time: Tue 30 Apr 2024 02:06:30 +0000 ROA not before: Tue 30 Apr 2024 02:06:30 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 1.73.232.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1955 (0x7a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:06:30 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=A7861389AB36E3DFBD6992C55176FC2E0985EB9E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:97:c9:d9:73:08:ec:9f:83:61:61:eb:3e:33: ee:6e:61:bd:54:27:94:65:3d:40:f2:c1:14:39:c1: fa:a5:3d:ca:b4:37:42:01:2e:3c:02:85:f7:41:09: 8c:7f:6b:6b:6f:9b:fd:ec:ca:3b:bc:c4:b2:ec:92: 3c:84:eb:ee:2c:75:67:41:98:03:0b:d0:d1:7e:c1: 55:f0:0d:c2:f8:72:a2:17:8f:3b:52:39:bb:ac:97: 4f:2f:83:1a:38:5d:b6:55:a5:af:ea:e9:eb:46:73: 13:81:20:43:28:e8:d3:91:81:45:92:3a:0c:b7:61: 7a:70:0b:6f:05:18:d4:d9:e2:0a:a7:9f:12:0d:69: bf:2e:3a:39:8b:73:93:c6:71:46:0d:67:59:7d:6f: 3d:57:f5:da:aa:73:6b:39:d4:85:28:36:5d:91:23: e1:db:d3:fb:b8:a3:be:b3:0d:dc:4c:32:3b:88:83: ad:b7:15:f5:4b:5b:36:24:ff:1a:c6:40:c8:b6:77: 9e:72:04:6c:7f:dd:39:37:64:64:55:81:81:6a:5c: b8:ef:2e:b6:c6:4a:ff:d4:e2:87:1d:af:d6:c8:fd: d7:38:33:00:87:44:01:21:8b:3e:c8:00:83:d6:b1: eb:4f:23:47:10:a5:ad:8c:4e:05:2f:8c:87:88:eb: d7:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:86:13:89:AB:36:E3:DF:BD:69:92:C5:51:76:FC:2E:09:85:EB:9E X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/p4YTias249-9aZLFUXb8LgmF654.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.73.232.0/22 Signature Algorithm: sha256WithRSAEncryption 70:af:16:21:ac:fb:fc:0e:44:7b:7b:42:d4:b3:fe:f5:88:a5: 6e:7e:56:70:e5:5e:bf:c7:9f:de:94:15:4b:67:78:9d:79:ba: 98:1c:36:39:f7:05:dd:34:47:f3:7f:01:f9:d2:14:e1:ab:f8: c6:5a:8a:7c:59:27:b5:8e:f9:e9:8f:1e:a7:45:df:de:7d:b0: dc:61:4e:b6:57:38:98:50:5a:26:d9:ea:78:fe:42:c3:05:01: bd:fe:bd:a2:b7:2e:06:c8:97:ce:9c:b4:f8:dc:a7:fb:5a:29: d6:7d:55:c0:5f:31:d7:39:c5:4d:fe:d1:5a:06:6b:72:8b:5a: bd:0e:13:60:c3:bb:1c:da:9d:13:c8:c5:64:00:b6:53:6c:80: 06:26:76:48:1f:3d:b0:a7:c9:05:02:cc:91:94:13:8e:7d:ac: 08:ab:bc:c2:25:77:08:3d:49:49:5a:f7:fd:5a:29:a3:91:e1: 63:55:ed:54:69:1e:52:a3:44:cd:31:47:9a:05:b1:f8:3a:eb: 88:6b:bc:b1:12:4b:e4:67:e2:19:cd:fa:92:7b:29:80:65:c7: aa:85:b6:ea:21:59:99:1a:13:9e:d2:7b:03:8d:76:49:25:8d: ea:b1:9d:dd:50:c2:49:df:8d:50:8e:6c:89:f6:68:81:43:cf: c1:98:aa:f2 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICB6MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjA2MzBaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEE3ODYxMzg5QUIzNkUz REZCRDY5OTJDNTUxNzZGQzJFMDk4NUVCOUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9l8nZcwjsn4NhYes+M+5uYb1UJ5RlPUDywRQ5wfqlPcq0N0IB LjwChfdBCYx/a2tvm/3syju8xLLskjyE6+4sdWdBmAML0NF+wVXwDcL4cqIXjztS Obusl08vgxo4XbZVpa/q6etGcxOBIEMo6NORgUWSOgy3YXpwC28FGNTZ4gqnnxIN ab8uOjmLc5PGcUYNZ1l9bz1X9dqqc2s51IUoNl2RI+Hb0/u4o76zDdxMMjuIg623 FfVLWzYk/xrGQMi2d55yBGx/3Tk3ZGRVgYFqXLjvLrbGSv/U4ocdr9bI/dc4MwCH RAEhiz7IAIPWsetPI0cQpa2MTgUvjIeI69exAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUp4YTias249+9aZLFUXb8LgmF654wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3A0WVRpYXMyNDktOWFaTEZVWGI4TGdtRjY1NC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBSegwDQYJKoZIhvcNAQELBQADggEBAHCvFiGs+/wORHt7QtSz/vWIpW5+ VnDlXr/Hn96UFUtneJ15upgcNjn3Bd00R/N/AfnSFOGr+MZainxZJ7WO+emPHqdF 3959sNxhTrZXOJhQWibZ6nj+QsMFAb3+vaK3LgbIl86ctPjcp/taKdZ9VcBfMdc5 xU3+0VoGa3KLWr0OE2DDuxzanRPIxWQAtlNsgAYmdkgfPbCnyQUCzJGUE459rAir vMIldwg9SUla9/1aKaOR4WNV7VRpHlKjRM0xR5oFsfg664hrvLESS+Rn4hnN+pJ7 KYBlx6qFtuohWZkaE57SewONdkkljeqxnd1QwknfjVCObIn2aIFDz8GYqvI= -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:48 2024 by rpki-client on console-fra.rpki-client.org