$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/riUykY1DLl03wpio7JxlWUcYCKE.roa File: riUykY1DLl03wpio7JxlWUcYCKE.roa (raw, json) Hash identifier: dK/jhSeMFi3yYhX3aoytO/26GQbgkjIIiz6/Mqo69FI= Subject key identifier: AE:25:32:91:8D:43:2E:5D:37:C2:98:A8:EC:9C:65:59:47:18:08:A1 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 08ED Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/riUykY1DLl03wpio7JxlWUcYCKE.roa Signing time: Tue 30 Apr 2024 02:26:31 +0000 ROA not before: Tue 30 Apr 2024 02:26:31 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.96.42.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2285 (0x8ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:26:31 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=AE2532918D432E5D37C298A8EC9C6559471808A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d6:24:fe:d3:6a:0c:18:91:ed:64:73:9f:b0: 6b:ef:e7:3c:a8:fc:e1:3b:e6:26:ce:e5:8b:09:de: 3a:5a:f6:67:6e:53:91:a8:47:42:fb:fa:c0:9d:f7: 27:45:71:2f:c1:37:df:96:18:2a:c7:a6:a1:5f:ea: 0a:32:f2:2d:19:99:e3:a9:a5:2a:bd:36:e0:f7:9d: e7:91:be:2e:df:4b:a8:0d:23:74:1d:41:8d:b5:70: 00:f9:c8:51:a5:26:65:76:66:3c:39:50:2c:26:87: 2f:2b:f1:41:4d:1d:10:42:3d:f5:96:ed:8d:99:fd: 8e:8b:fd:bf:71:64:f7:80:86:e7:73:e1:ca:e8:70: 39:6c:e5:39:60:bc:7d:f1:43:b2:79:4d:75:20:13: 48:9f:fe:df:c4:00:dc:4f:0f:ca:80:f2:55:eb:0f: 23:fd:f6:69:e3:98:fd:3d:fa:50:f9:b9:9e:b4:d6: a9:e1:71:c0:9b:3b:62:97:ff:d5:52:ac:60:5f:2b: 0d:bf:8d:a1:5b:a4:7b:03:4f:f5:5a:38:4d:b6:47: 7a:9a:f0:06:a8:ce:bb:7f:fc:e2:c2:02:10:a9:80: 5f:68:df:f6:de:7c:e4:4a:b3:c5:0f:3d:27:a4:68: d2:b7:97:40:21:72:8a:6a:64:5f:39:d8:fd:9a:0f: d2:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:25:32:91:8D:43:2E:5D:37:C2:98:A8:EC:9C:65:59:47:18:08:A1 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/riUykY1DLl03wpio7JxlWUcYCKE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.96.42.0/23 Signature Algorithm: sha256WithRSAEncryption 87:48:13:01:94:16:ea:d6:65:f3:68:62:58:0c:43:b8:bd:96: 5f:0b:e3:41:4b:de:16:cf:40:85:f5:4e:a6:77:ed:03:86:97: 67:0b:e3:82:48:a5:34:83:c5:f0:70:82:5a:8f:a2:46:d3:c6: d9:b4:80:36:fd:51:07:73:89:3e:17:f3:5a:04:2d:02:ce:7e: 57:bc:6d:92:e6:11:81:87:ca:af:55:27:33:fd:a0:76:64:bd: 9a:ef:2d:d1:e5:38:37:34:8c:d8:44:d2:a9:87:c1:ca:f3:e8: 15:4f:d9:82:63:14:d3:51:61:05:93:39:b3:22:2a:4d:4f:60: d5:83:35:c4:3d:53:56:31:7a:2f:e6:1e:3f:f4:90:9e:2b:e7: 41:13:0f:ad:5a:24:09:4b:a4:8c:81:f6:ab:93:ac:97:17:e8: ad:80:ab:24:bf:f1:97:eb:67:d3:f8:09:88:b0:c8:07:69:3a: 79:1b:5d:da:c9:4a:64:11:a7:19:4f:37:d8:59:fe:28:09:7a: 59:f3:31:91:6e:68:cb:98:a8:fa:64:e4:ca:fe:c5:25:71:14: b6:d3:76:64:27:56:5d:1b:f6:ef:cb:7a:c0:89:c9:cc:8b:b2: 0f:ac:f5:1e:1e:b7:bd:f4:c3:18:f8:92:c4:cd:44:72:93:41: 8a:81:a8:16 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCO0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjI2MzFaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEFFMjUzMjkxOEQ0MzJF NUQzN0MyOThBOEVDOUM2NTU5NDcxODA4QTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDN1iT+02oMGJHtZHOfsGvv5zyo/OE75ibO5YsJ3jpa9mduU5Go R0L7+sCd9ydFcS/BN9+WGCrHpqFf6goy8i0ZmeOppSq9NuD3neeRvi7fS6gNI3Qd QY21cAD5yFGlJmV2Zjw5UCwmhy8r8UFNHRBCPfWW7Y2Z/Y6L/b9xZPeAhudz4cro cDls5TlgvH3xQ7J5TXUgE0if/t/EANxPD8qA8lXrDyP99mnjmP09+lD5uZ601qnh ccCbO2KX/9VSrGBfKw2/jaFbpHsDT/VaOE22R3qa8Aaozrt//OLCAhCpgF9o3/be fORKs8UPPSekaNK3l0AhcopqZF852P2aD9KNAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUriUykY1DLl03wpio7JxlWUcYCKEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3JpVXlrWTFETGwwM3dwaW83SnhsV1VjWUNLRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYCowDQYJKoZIhvcNAQELBQADggEBAIdIEwGUFurWZfNoYlgMQ7i9ll8L 40FL3hbPQIX1TqZ37QOGl2cL44JIpTSDxfBwglqPokbTxtm0gDb9UQdziT4X81oE LQLOfle8bZLmEYGHyq9VJzP9oHZkvZrvLdHlODc0jNhE0qmHwcrz6BVP2YJjFNNR YQWTObMiKk1PYNWDNcQ9U1Yxei/mHj/0kJ4r50ETD61aJAlLpIyB9quTrJcX6K2A qyS/8ZfrZ9P4CYiwyAdpOnkbXdrJSmQRpxlPN9hZ/igJelnzMZFuaMuYqPpk5Mr+ xSVxFLbTdmQnVl0b9u/LesCJycyLsg+s9R4et730wxj4ksTNRHKTQYqBqBY= -----END CERTIFICATE-----Generated at Mon Nov 25 23:59:12 2024 by rpki-client on console-fra.rpki-client.org