$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/rRIg4EgkOqbgYMNyxNN6SZsDpCY.roa File: rRIg4EgkOqbgYMNyxNN6SZsDpCY.roa (raw, json) Hash identifier: xM8zW0/ijjCK6Wwyf9GdjId5y3hbnf5A6aX958ZE62Y= Subject key identifier: AD:12:20:E0:48:24:3A:A6:E0:60:C3:72:C4:D3:7A:49:9B:03:A4:26 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 076E Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/rRIg4EgkOqbgYMNyxNN6SZsDpCY.roa Signing time: Tue 30 Apr 2024 02:01:44 +0000 ROA not before: Tue 30 Apr 2024 02:01:44 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.106.232.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1902 (0x76e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:01:44 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=AD1220E048243AA6E060C372C4D37A499B03A426 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:1a:3c:d0:aa:b5:0c:c3:02:e2:ce:57:b3:06: 5f:66:d9:fa:87:a3:5f:79:58:56:bd:83:c5:40:fc: 1c:41:bb:5a:aa:65:11:24:43:91:10:cb:36:6d:88: 4b:72:cf:fe:af:b9:76:6f:c1:7a:bb:2f:fb:39:e8: f1:e1:59:06:9c:fd:24:60:02:8a:20:d7:cb:e1:52: 57:30:e6:d0:2e:81:6f:9a:6a:35:f7:e1:c2:bc:d0: d0:17:1d:56:9b:9e:86:48:c4:97:33:65:bc:3e:30: 4d:69:9b:69:2e:97:83:91:d5:5d:59:f0:d8:9a:96: c5:24:23:c7:da:bd:52:40:ef:5e:ac:ab:bf:3a:3c: b9:88:6e:af:b7:1f:a0:6d:4e:ec:5b:0d:2f:5e:ba: 15:c4:1d:30:f5:5e:24:ee:06:10:21:94:23:37:48: bc:1a:81:ae:a9:25:23:ba:3f:98:61:77:33:50:0a: 20:04:03:23:2c:be:09:7a:f2:01:04:26:25:c0:a6: 17:30:46:77:33:02:a9:9b:14:9c:d4:c5:7b:2f:fd: 17:54:f3:6a:52:fe:8d:3f:8d:7a:03:6e:8b:85:53: 70:98:e0:be:5c:ad:51:1d:20:61:df:92:5e:44:64: f9:cc:dd:5b:95:e3:cb:5e:bb:cc:3d:f7:23:d6:14: b8:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:12:20:E0:48:24:3A:A6:E0:60:C3:72:C4:D3:7A:49:9B:03:A4:26 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/rRIg4EgkOqbgYMNyxNN6SZsDpCY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.106.232.0/23 Signature Algorithm: sha256WithRSAEncryption c2:f5:0f:b5:82:72:4c:5c:5e:81:84:54:a2:cb:e8:c4:50:c3: 2e:7a:f2:41:b7:35:63:99:5c:0a:4a:9e:10:27:f3:1d:87:89: bd:02:04:65:39:b7:4e:b5:be:2e:f5:a5:98:e3:7c:62:3f:8d: 48:57:f4:a0:1c:f1:b1:9e:40:72:68:f5:a7:a5:db:e7:e1:70: e3:97:8f:27:95:f1:b1:b3:a5:98:b9:fa:16:4a:d8:8c:10:4c: 44:8c:5b:3a:21:c1:b1:59:7f:44:6e:ca:10:9a:09:5a:4c:f1: aa:8c:5c:00:b9:f1:8b:77:c1:80:89:10:9a:37:5f:ce:92:8a: ee:3f:2a:fe:34:7f:71:de:50:e8:e0:75:9d:36:a4:13:2b:4e: ce:92:00:1f:a2:36:cc:88:bb:64:e9:14:f1:a9:74:82:f5:3c: 79:f9:d0:a6:ed:3f:95:3f:57:ed:45:58:7a:ce:73:08:78:ad: 14:56:18:13:b0:12:1b:52:37:46:1b:86:84:1a:b6:4b:fc:a0: 62:da:6c:20:66:e5:ec:d1:3b:33:20:e2:12:8b:49:00:40:7d: c0:c4:8f:16:e5:65:3c:c0:b1:5b:33:a3:a5:71:c4:12:25:34: 31:6c:3b:36:be:ee:5b:03:f4:01:8f:f8:67:d2:c0:c5:d9:0b: bb:2b:95:4c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICB24wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjAxNDRaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEFEMTIyMEUwNDgyNDNB QTZFMDYwQzM3MkM0RDM3QTQ5OUIwM0E0MjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzGjzQqrUMwwLizlezBl9m2fqHo195WFa9g8VA/BxBu1qqZREk Q5EQyzZtiEtyz/6vuXZvwXq7L/s56PHhWQac/SRgAoog18vhUlcw5tAugW+aajX3 4cK80NAXHVabnoZIxJczZbw+ME1pm2kul4OR1V1Z8NialsUkI8favVJA716sq786 PLmIbq+3H6BtTuxbDS9euhXEHTD1XiTuBhAhlCM3SLwaga6pJSO6P5hhdzNQCiAE AyMsvgl68gEEJiXAphcwRnczAqmbFJzUxXsv/RdU82pS/o0/jXoDbouFU3CY4L5c rVEdIGHfkl5EZPnM3VuV48teu8w99yPWFLiDAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUrRIg4EgkOqbgYMNyxNN6SZsDpCYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3JSSWc0RWdrT3FiZ1lNTnl4Tk42U1pzRHBDWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExaugwDQYJKoZIhvcNAQELBQADggEBAML1D7WCckxcXoGEVKLL6MRQwy56 8kG3NWOZXApKnhAn8x2Hib0CBGU5t061vi71pZjjfGI/jUhX9KAc8bGeQHJo9ael 2+fhcOOXjyeV8bGzpZi5+hZK2IwQTESMWzohwbFZf0RuyhCaCVpM8aqMXAC58Yt3 wYCJEJo3X86Siu4/Kv40f3HeUOjgdZ02pBMrTs6SAB+iNsyIu2TpFPGpdIL1PHn5 0KbtP5U/V+1FWHrOcwh4rRRWGBOwEhtSN0YbhoQatkv8oGLabCBm5ezROzMg4hKL SQBAfcDEjxblZTzAsVszo6VxxBIlNDFsOza+7lsD9AGP+GfSwMXZC7srlUw= -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:03 2024 by rpki-client on console-fra.rpki-client.org