$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/sFIOj3KcbtSeM8cXe8PpxnrrLME.roa File: sFIOj3KcbtSeM8cXe8PpxnrrLME.roa (raw, json) Hash identifier: xJnxQOTMOf6tYy/MMx6rWxAyaGU9JnxkhwnKcqpXyUQ= Subject key identifier: B0:52:0E:8F:72:9C:6E:D4:9E:33:C7:17:7B:C3:E9:C6:7A:EB:2C:C1 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0891 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/sFIOj3KcbtSeM8cXe8PpxnrrLME.roa Signing time: Tue 30 Apr 2024 02:20:36 +0000 ROA not before: Tue 30 Apr 2024 02:20:36 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.104.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2193 (0x891) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:20:36 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=B0520E8F729C6ED49E33C7177BC3E9C67AEB2CC1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:43:47:62:d9:e5:02:71:87:b3:cb:35:f2:17: 92:4b:ea:eb:e6:0d:60:d9:5f:25:7d:7a:d0:df:4b: 89:b0:ce:a9:67:c3:c4:67:f7:4d:c5:2b:df:da:f3: c6:e7:e8:09:d4:56:02:9c:ee:9c:41:94:55:f3:df: c4:e9:74:5f:e5:0a:6d:10:00:20:e7:e7:62:64:ba: a7:b6:86:64:21:8c:67:b3:b6:40:e5:0c:81:c7:a1: 6e:7c:39:1e:85:87:d6:7c:cb:3c:21:7e:15:7d:91: 00:13:f0:a2:fe:90:c8:4a:27:00:32:7b:86:7a:be: 1b:27:7d:69:fe:62:93:bd:a5:bc:b5:1e:1c:5e:8b: 68:52:12:58:52:e0:30:82:6d:e2:6c:3f:53:51:a2: d5:7a:48:ca:18:0c:eb:a3:2b:78:df:e9:2f:a2:60: d6:53:a1:2d:71:d6:9c:0c:21:a1:0b:1f:e9:36:db: 8a:aa:ae:03:f9:c7:f8:e1:6a:a1:9b:f0:8c:e1:ba: e5:52:73:a2:a8:c7:0b:3f:c7:9d:c0:e6:05:99:05: 98:5d:59:00:23:27:97:b8:46:f7:8e:28:1a:b3:7a: af:10:33:67:21:37:2b:09:49:14:05:64:30:5f:f5: f2:a5:e0:c6:ab:4e:18:ee:43:2c:fc:32:9e:ea:4f: e2:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:52:0E:8F:72:9C:6E:D4:9E:33:C7:17:7B:C3:E9:C6:7A:EB:2C:C1 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/sFIOj3KcbtSeM8cXe8PpxnrrLME.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.104.9.0/24 Signature Algorithm: sha256WithRSAEncryption 00:a6:0c:93:a2:25:3b:04:53:ae:0b:07:65:bd:5c:be:d1:49: 9a:0b:4a:55:d4:d8:d1:77:f5:c7:6a:d6:b0:3c:88:88:e7:cc: 3d:2b:3e:2e:3f:cc:fb:d3:8f:bf:bb:38:95:ef:d6:e5:8a:a8: 1a:ea:95:2c:ac:3c:25:1e:77:55:28:ea:4d:05:10:06:7e:a7: ad:8b:c7:d0:48:a8:e0:ed:9a:5c:52:9c:37:1d:ad:ef:db:38: fb:96:20:ce:c7:65:20:01:52:ac:30:69:83:eb:aa:78:69:c3: f5:77:f5:8e:56:12:2e:7f:42:1e:d8:12:ba:f8:06:65:a0:07: 57:21:fc:2f:9e:dc:22:05:3f:50:80:bc:bc:4f:90:bc:15:2f: 08:2f:25:8a:c0:75:91:f9:04:cb:d1:18:c3:ff:06:9f:dd:59: 60:ff:b7:93:b5:1e:1c:ae:a7:fe:db:52:a1:87:0f:db:74:6e: 3c:a5:94:65:2c:a2:08:e8:76:b9:13:16:91:e6:8b:89:b9:11: d1:f3:05:3a:71:d2:f9:be:db:bb:cc:ef:e6:0c:97:18:6e:69: f4:14:20:02:6a:ef:6e:33:55:e7:e9:46:1a:d6:65:dc:4b:f6: 07:18:8c:89:5b:eb:2b:1f:d7:5c:47:91:21:7b:df:5b:61:3a: af:18:eb:22 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCJEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjIwMzZaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEIwNTIwRThGNzI5QzZF RDQ5RTMzQzcxNzdCQzNFOUM2N0FFQjJDQzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTQ0di2eUCcYezyzXyF5JL6uvmDWDZXyV9etDfS4mwzqlnw8Rn 903FK9/a88bn6AnUVgKc7pxBlFXz38TpdF/lCm0QACDn52Jkuqe2hmQhjGeztkDl DIHHoW58OR6Fh9Z8yzwhfhV9kQAT8KL+kMhKJwAye4Z6vhsnfWn+YpO9pby1Hhxe i2hSElhS4DCCbeJsP1NRotV6SMoYDOujK3jf6S+iYNZToS1x1pwMIaELH+k224qq rgP5x/jhaqGb8IzhuuVSc6Koxws/x53A5gWZBZhdWQAjJ5e4RveOKBqzeq8QM2ch NysJSRQFZDBf9fKl4MarThjuQyz8Mp7qT+KxAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUsFIOj3KcbtSeM8cXe8PpxnrrLMEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3NGSU9qM0tjYnRTZU04Y1hlOFBweG5yckxNRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAxaAkwDQYJKoZIhvcNAQELBQADggEBAACmDJOiJTsEU64LB2W9XL7RSZoL SlXU2NF39cdq1rA8iIjnzD0rPi4/zPvTj7+7OJXv1uWKqBrqlSysPCUed1Uo6k0F EAZ+p62Lx9BIqODtmlxSnDcdre/bOPuWIM7HZSABUqwwaYPrqnhpw/V39Y5WEi5/ Qh7YErr4BmWgB1ch/C+e3CIFP1CAvLxPkLwVLwgvJYrAdZH5BMvRGMP/Bp/dWWD/ t5O1Hhyup/7bUqGHD9t0bjyllGUsogjodrkTFpHmi4m5EdHzBTpx0vm+27vM7+YM lxhuafQUIAJq724zVefpRhrWZdxL9gcYjIlb6ysf11xHkSF731thOq8Y6yI= -----END CERTIFICATE-----Generated at Sat Jun 1 15:54:32 2024 by rpki-client on console-ams.rpki-client.org