$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/s4_wmtJwAUhUdtbcK-xtMS4khts.roa File: s4_wmtJwAUhUdtbcK-xtMS4khts.roa (raw, json) Hash identifier: 6kpzZ82M7mEQsNQnTT+9tsfI1cimKIpTKozCCzjgLJo= Subject key identifier: B3:8F:F0:9A:D2:70:01:48:54:76:D6:DC:2B:EC:6D:31:2E:24:86:DB Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 023B Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/s4_wmtJwAUhUdtbcK-xtMS4khts.roa Signing time: Tue 30 May 2023 16:32:21 +0000 ROA not before: Tue 30 May 2023 16:32:21 +0000 ROA not after: Tue 14 May 2024 01:30:02 +0000 asID: 9605 IP address blocks: 1.76.72.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 13:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 571 (0x23b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: May 30 16:32:21 2023 GMT Not After : May 14 01:30:02 2024 GMT Subject: CN=B38FF09AD27001485476D6DC2BEC6D312E2486DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:df:55:0a:89:81:1d:1b:ae:45:e4:42:2a:f8: ae:16:09:c5:48:de:d9:25:fc:9b:53:44:df:3d:64: 80:50:fa:ae:80:0b:b2:9e:9a:e7:11:18:c9:ac:fe: 37:6b:d1:6d:0d:1b:d2:96:31:88:57:a2:9a:10:a4: d3:72:cc:91:58:a5:f9:3b:ba:85:fa:7e:77:97:81: c1:84:23:8b:01:2e:ce:75:40:b2:4a:1d:f3:2c:88: 6f:09:61:24:61:52:ab:56:aa:69:62:a2:1d:60:0e: 69:a2:40:b4:05:2c:b2:f1:b1:97:37:c5:a9:44:d4: b1:57:27:37:2a:b2:07:75:49:61:85:e6:dc:88:c7: 00:b6:8d:9a:0f:8f:c1:6a:dc:11:a8:7f:a1:49:a6: f0:88:fb:ad:03:64:df:72:17:0e:9e:9d:1f:9d:d0: 2c:6b:b8:04:de:19:fd:85:6e:fd:d6:1f:ef:ae:a2: f5:9c:77:9e:b3:90:8a:a2:35:8b:21:d6:a6:f2:97: 1b:62:0f:cb:2f:77:21:8d:a5:ad:05:ea:3c:15:59: e2:c8:42:8a:4f:aa:d9:f8:9d:dc:bb:e7:02:59:56: 1d:73:df:7c:12:a4:d4:9d:19:ca:11:93:df:d5:fd: e8:2b:60:6a:a8:cb:54:ae:33:aa:84:a3:a6:93:99: b0:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:8F:F0:9A:D2:70:01:48:54:76:D6:DC:2B:EC:6D:31:2E:24:86:DB X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/s4_wmtJwAUhUdtbcK-xtMS4khts.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.76.72.0/22 Signature Algorithm: sha256WithRSAEncryption 4b:22:53:e7:61:71:6f:56:ed:21:68:d5:85:f7:9b:cd:ea:3f: 24:b9:f9:43:6e:fe:af:c4:e7:68:78:c6:eb:ba:0a:63:7d:e6: be:00:b4:1f:a8:1d:40:92:f7:39:db:26:c2:8c:ba:b0:6d:c2: c8:68:12:6b:9a:07:99:70:f5:17:aa:09:64:94:0e:22:96:b9: fa:8d:77:64:5b:0c:9c:f7:e8:ba:70:ce:bd:fb:06:44:fb:0b: cf:4c:44:66:2c:e2:19:6d:42:f9:04:db:80:ef:ee:a0:1d:61: d6:38:53:a9:f7:2c:65:e8:1b:93:dd:d9:ce:33:f8:e9:91:1f: 8f:ae:be:ba:86:6d:09:1a:9e:51:ba:83:23:e3:ba:b6:cb:bc: 6f:17:7a:4d:f9:15:c4:74:22:76:0a:6b:23:7e:1a:26:db:f8: 48:e5:33:b3:9b:29:66:bc:b1:66:bd:d9:17:09:56:8a:bc:f8: cc:1e:e8:cf:64:47:d7:59:d2:0b:31:42:ed:9b:29:44:4c:bf: e1:19:82:39:e6:38:0a:92:6f:95:8b:f7:a9:24:6a:81:f3:5e: 99:2a:c0:e8:34:ab:30:64:5b:dd:58:f2:a9:2f:aa:30:19:5b: 2c:89:5d:4c:0f:45:b8:c2:4b:b0:f5:1d:9a:8d:e5:99:cb:13: 63:df:4d:50 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAjswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MzAx NjMyMjFaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKEIzOEZGMDlBRDI3MDAx NDg1NDc2RDZEQzJCRUM2RDMxMkUyNDg2REIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCt31UKiYEdG65F5EIq+K4WCcVI3tkl/JtTRN89ZIBQ+q6AC7Ke mucRGMms/jdr0W0NG9KWMYhXopoQpNNyzJFYpfk7uoX6fneXgcGEI4sBLs51QLJK HfMsiG8JYSRhUqtWqmlioh1gDmmiQLQFLLLxsZc3xalE1LFXJzcqsgd1SWGF5tyI xwC2jZoPj8Fq3BGof6FJpvCI+60DZN9yFw6enR+d0CxruATeGf2Fbv3WH++uovWc d56zkIqiNYsh1qbylxtiD8svdyGNpa0F6jwVWeLIQopPqtn4ndy75wJZVh1z33wS pNSdGcoRk9/V/egrYGqoy1SuM6qEo6aTmbAxAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUs4/wmtJwAUhUdtbcK+xtMS4khtswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3M0X3dtdEp3QVVoVWR0YmNLLXh0TVM0a2h0cy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBTEgwDQYJKoZIhvcNAQELBQADggEBAEsiU+dhcW9W7SFo1YX3m83qPyS5 +UNu/q/E52h4xuu6CmN95r4AtB+oHUCS9znbJsKMurBtwshoEmuaB5lw9ReqCWSU DiKWufqNd2RbDJz36Lpwzr37BkT7C89MRGYs4hltQvkE24Dv7qAdYdY4U6n3LGXo G5Pd2c4z+OmRH4+uvrqGbQkanlG6gyPjurbLvG8Xek35FcR0InYKayN+Gibb+Ejl M7ObKWa8sWa92RcJVoq8+Mwe6M9kR9dZ0gsxQu2bKURMv+EZgjnmOAqSb5WL96kk aoHzXpkqwOg0qzBkW91Y8qkvqjAZWyyJXUwPRbjCS7D1HZqN5ZnLE2PfTVA= -----END CERTIFICATE-----Generated at Sat Apr 27 10:15:58 2024 by rpki-client on console-ams.rpki-client.org