$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/tQxKBWdlMa_8iRcC6a-trqFjGfQ.roa File: tQxKBWdlMa_8iRcC6a-trqFjGfQ.roa (raw, json) Hash identifier: 5PIdj6L/HehSzz/kUzea5nq2IhTxDbtN6OjI5ozpHyU= Subject key identifier: B5:0C:4A:05:67:65:31:AF:FC:89:17:02:E9:AF:AD:AE:A1:63:19:F4 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 010A Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/tQxKBWdlMa_8iRcC6a-trqFjGfQ.roa Signing time: Wed 24 May 2023 16:10:15 +0000 ROA not before: Wed 24 May 2023 16:10:15 +0000 ROA not after: Tue 14 May 2024 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.144.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 13:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 266 (0x10a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: May 24 16:10:15 2023 GMT Not After : May 14 01:30:02 2024 GMT Subject: CN=B50C4A05676531AFFC891702E9AFADAEA16319F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:71:76:77:7f:14:39:0d:67:ad:16:bd:4f:79: 72:a4:fa:77:fd:24:b9:fe:f5:c6:d0:2c:95:ef:16: 22:e4:d0:e7:38:5c:d6:f7:c8:d9:c8:85:57:2b:d1: 3d:af:69:15:71:5a:b7:01:72:51:e2:b8:16:93:84: 6a:07:3b:c4:fb:b2:b1:18:67:31:b1:38:a3:fe:6f: 0c:60:2b:a0:bc:d8:ae:d1:7f:ee:01:50:eb:7c:d0: 90:a8:5b:0c:98:ee:f1:62:67:04:d5:39:44:9b:3a: 38:40:f2:0b:16:7b:0d:84:7b:c2:9b:34:3b:e8:0a: 7b:fd:cb:b0:bc:5e:04:7a:79:b0:6d:c4:ed:37:67: 7a:0c:d8:28:c6:92:96:51:24:1a:5f:46:72:e7:b7: f8:0c:eb:67:82:95:7d:3c:46:cb:e0:b1:7b:5f:b0: e0:3a:e3:b0:38:c2:2e:28:6a:85:73:eb:ff:c7:d7: 39:71:e3:e7:f1:46:6a:1f:50:95:23:9e:61:43:84: bf:49:05:a2:78:3e:3a:35:a4:0f:cd:7a:77:29:fd: e6:6d:be:6e:d8:57:c7:1f:62:a6:14:5b:2a:3b:19: aa:9d:3e:7f:78:b6:94:94:da:55:b3:6b:fd:b6:12: da:b1:c7:c3:d3:44:97:85:be:2b:2f:8a:b4:63:4c: 78:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:0C:4A:05:67:65:31:AF:FC:89:17:02:E9:AF:AD:AE:A1:63:19:F4 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/tQxKBWdlMa_8iRcC6a-trqFjGfQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.144.0/22 Signature Algorithm: sha256WithRSAEncryption 36:57:61:96:96:18:e9:09:cb:49:49:76:8e:0d:9d:67:48:b2: 3e:ba:2c:d1:2a:59:12:cc:e0:c1:c5:3f:26:f9:1a:69:0b:0b: 92:d6:b1:34:f0:f4:a4:80:0c:20:df:b8:5f:9c:b5:b3:46:6b: fd:9a:ce:d5:ee:9b:1e:87:3a:7a:3b:e8:2e:a7:a9:91:3e:a6: d8:ca:67:e7:26:a9:c5:da:98:e9:d4:e5:1e:b8:6b:ff:7f:ed: ed:ea:52:18:90:96:49:b8:22:a4:18:2b:7f:b9:08:35:a9:89: e9:ad:69:33:5d:4c:1c:36:9e:a1:3d:f9:fc:18:ec:77:6a:ab: 28:8e:a1:ec:2b:12:55:b4:2e:99:2a:98:1b:ed:6a:50:40:0a: 13:8a:80:c6:75:4c:d8:5d:32:4b:b9:35:78:8c:a5:cb:78:5e: bd:56:65:c3:8c:b4:24:33:11:ae:9c:06:1d:33:bc:be:38:47: 55:ad:56:22:2d:68:5b:6b:0d:54:76:82:7f:b0:c5:a3:01:da: c6:ee:6e:5f:b1:bb:0b:7b:a9:e1:7f:f7:11:61:c0:b2:b0:9b: de:44:35:74:8c:97:10:4a:95:60:ab:20:b2:8b:fa:98:46:3b: 58:b1:ff:3f:20:49:5b:57:8a:ec:79:ec:fc:39:e6:23:ef:f1: 6d:b7:43:76 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAQowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MjQx NjEwMTVaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKEI1MEM0QTA1Njc2NTMx QUZGQzg5MTcwMkU5QUZBREFFQTE2MzE5RjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzcXZ3fxQ5DWetFr1PeXKk+nf9JLn+9cbQLJXvFiLk0Oc4XNb3 yNnIhVcr0T2vaRVxWrcBclHiuBaThGoHO8T7srEYZzGxOKP+bwxgK6C82K7Rf+4B UOt80JCoWwyY7vFiZwTVOUSbOjhA8gsWew2Ee8KbNDvoCnv9y7C8XgR6ebBtxO03 Z3oM2CjGkpZRJBpfRnLnt/gM62eClX08RsvgsXtfsOA647A4wi4oaoVz6//H1zlx 4+fxRmofUJUjnmFDhL9JBaJ4Pjo1pA/Nencp/eZtvm7YV8cfYqYUWyo7GaqdPn94 tpSU2lWza/22Etqxx8PTRJeFvisvirRjTHjDAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUtQxKBWdlMa/8iRcC6a+trqFjGfQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3RReEtCV2RsTWFfOGlSY0M2YS10cnFGakdmUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIxYpAwDQYJKoZIhvcNAQELBQADggEBADZXYZaWGOkJy0lJdo4NnWdIsj66 LNEqWRLM4MHFPyb5GmkLC5LWsTTw9KSADCDfuF+ctbNGa/2aztXumx6HOno76C6n qZE+ptjKZ+cmqcXamOnU5R64a/9/7e3qUhiQlkm4IqQYK3+5CDWpiemtaTNdTBw2 nqE9+fwY7HdqqyiOoewrElW0LpkqmBvtalBAChOKgMZ1TNhdMku5NXiMpct4Xr1W ZcOMtCQzEa6cBh0zvL44R1WtViItaFtrDVR2gn+wxaMB2sbubl+xuwt7qeF/9xFh wLKwm95ENXSMlxBKlWCrILKL+phGO1ix/z8gSVtXiux57Pw55iPv8W23Q3Y= -----END CERTIFICATE-----Generated at Sat Apr 27 10:15:58 2024 by rpki-client on console-ams.rpki-client.org