$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/sINTbaNk5NzBRd5L7t2sRracuJM.roa File: sINTbaNk5NzBRd5L7t2sRracuJM.roa (raw, json) Hash identifier: rm5WHNQ/m+kY9OPODUSdya05SS5Q0olVUPIMLcN8FG8= Subject key identifier: B0:83:53:6D:A3:64:E4:DC:C1:45:DE:4B:EE:DD:AC:46:B6:9C:B8:93 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 08CD Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/sINTbaNk5NzBRd5L7t2sRracuJM.roa Signing time: Tue 30 Apr 2024 02:24:38 +0000 ROA not before: Tue 30 Apr 2024 02:24:38 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.104.34.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2253 (0x8cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:24:38 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=B083536DA364E4DCC145DE4BEEDDAC46B69CB893 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:59:87:56:e8:34:bb:d8:57:4c:47:99:b6:7c: a2:1a:04:60:fd:cc:55:79:96:06:da:c2:2a:f5:9f: cf:5b:41:f2:99:59:eb:ae:ca:02:f7:7b:62:16:ef: bc:41:86:7c:7a:0e:da:2a:39:ee:b0:40:f3:6f:86: 3b:e2:87:9b:63:6e:b4:b3:f4:69:6d:77:22:65:7f: 99:08:e2:05:89:37:65:f1:08:cb:03:3e:1b:8c:22: b9:a7:8e:9e:42:d5:db:7c:20:c8:a1:03:e2:3a:50: 75:38:45:b9:6e:14:6c:ca:f5:1e:32:30:08:f0:7a: 50:24:ef:fe:58:a0:09:69:91:1e:11:33:c2:f6:5f: 9c:9d:4b:29:a5:b4:69:fb:99:fa:c1:71:ae:c8:1f: 49:e1:70:49:ca:08:11:95:33:a4:52:6e:7f:15:53: d1:91:8e:b3:0c:82:3b:91:91:b0:ff:9a:dd:68:84: 36:f1:d9:d8:47:65:32:1b:33:24:52:a2:b5:f3:74: 3f:2c:ea:4c:bd:a1:12:77:c0:f6:aa:32:20:ec:5d: 59:ec:5c:de:0d:ff:43:23:ed:50:71:c8:37:ac:ab: c3:c1:12:42:49:92:e2:bf:77:33:54:0a:5e:02:da: 07:95:84:39:fb:5d:88:48:ae:6b:33:01:db:86:52: 9e:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:83:53:6D:A3:64:E4:DC:C1:45:DE:4B:EE:DD:AC:46:B6:9C:B8:93 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/sINTbaNk5NzBRd5L7t2sRracuJM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.104.34.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:00:45:44:52:9f:4e:4f:60:ae:aa:52:e0:04:92:33:95:af: 6b:50:b2:98:ee:f8:8d:c3:42:b8:84:5b:3b:b3:ca:db:82:78: a1:ad:87:5c:c2:37:e8:33:55:01:7c:b9:98:cb:34:e3:a0:32: b2:ad:04:31:02:a5:03:95:25:3c:04:0e:6e:59:25:ce:e9:f0: 23:dc:34:9b:a1:15:1b:81:2e:a6:56:d0:fc:d4:93:80:c4:b6: 8c:a4:cc:59:51:ee:dd:a7:51:37:b9:eb:bd:36:17:9a:87:a7: 29:a5:0b:2c:10:43:c8:f9:c9:ed:cd:89:19:e6:a3:98:4e:9e: 55:70:a8:00:92:fa:47:14:92:29:12:94:cc:d7:02:03:4f:38: a7:b2:61:17:3d:c6:f5:98:75:d0:6d:97:70:d1:ac:e8:f9:89: 21:b9:d5:b9:f0:2c:29:6b:91:27:80:b5:14:b7:d1:57:a4:c7: df:30:e1:6d:8e:68:de:ae:85:32:24:c3:78:2b:21:ec:e5:78: e7:6f:6f:4e:ea:60:16:58:26:5a:b8:10:b9:a5:c0:72:a1:a5: 72:65:2e:95:53:ab:ba:7a:63:8d:89:91:05:82:e4:cc:a3:af: 42:e4:c6:ea:0f:8f:39:5e:97:72:55:82:26:54:fc:6b:83:29: 80:3c:98:88 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCM0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjI0MzhaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEIwODM1MzZEQTM2NEU0 RENDMTQ1REU0QkVFRERBQzQ2QjY5Q0I4OTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCWYdW6DS72FdMR5m2fKIaBGD9zFV5lgbawir1n89bQfKZWeuu ygL3e2IW77xBhnx6DtoqOe6wQPNvhjvih5tjbrSz9GltdyJlf5kI4gWJN2XxCMsD PhuMIrmnjp5C1dt8IMihA+I6UHU4RbluFGzK9R4yMAjwelAk7/5YoAlpkR4RM8L2 X5ydSymltGn7mfrBca7IH0nhcEnKCBGVM6RSbn8VU9GRjrMMgjuRkbD/mt1ohDbx 2dhHZTIbMyRSorXzdD8s6ky9oRJ3wPaqMiDsXVnsXN4N/0Mj7VBxyDesq8PBEkJJ kuK/dzNUCl4C2geVhDn7XYhIrmszAduGUp5NAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUsINTbaNk5NzBRd5L7t2sRracuJMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3NJTlRiYU5rNU56QlJkNUw3dDJzUnJhY3VKTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExaCIwDQYJKoZIhvcNAQELBQADggEBAG0ARURSn05PYK6qUuAEkjOVr2tQ spju+I3DQriEWzuzytuCeKGth1zCN+gzVQF8uZjLNOOgMrKtBDECpQOVJTwEDm5Z Jc7p8CPcNJuhFRuBLqZW0PzUk4DEtoykzFlR7t2nUTe56702F5qHpymlCywQQ8j5 ye3NiRnmo5hOnlVwqACS+kcUkikSlMzXAgNPOKeyYRc9xvWYddBtl3DRrOj5iSG5 1bnwLClrkSeAtRS30Vekx98w4W2OaN6uhTIkw3grIezleOdvb07qYBZYJlq4ELml wHKhpXJlLpVTq7p6Y42JkQWC5Myjr0LkxuoPjzlel3JVgiZU/GuDKYA8mIg= -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:48 2024 by rpki-client on console-fra.rpki-client.org