$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ufPpnB8swbvtxAaN3K8lIhF6iXQ.roa File: ufPpnB8swbvtxAaN3K8lIhF6iXQ.roa (raw, json) Hash identifier: JEn9ioXRStg9KWh011FsRko5wSkyHOIFwsSTw79fGWE= Subject key identifier: B9:F3:E9:9C:1F:2C:C1:BB:ED:C4:06:8D:DC:AF:25:22:11:7A:89:74 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 04D5 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ufPpnB8swbvtxAaN3K8lIhF6iXQ.roa Signing time: Thu 27 Jul 2023 16:50:03 +0000 ROA not before: Thu 27 Jul 2023 16:50:03 +0000 ROA not after: Sun 14 Jul 2024 01:30:03 +0000 asID: 9605 IP address blocks: 220.159.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1237 (0x4d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jul 27 16:50:03 2023 GMT Not After : Jul 14 01:30:03 2024 GMT Subject: CN=B9F3E99C1F2CC1BBEDC4068DDCAF2522117A8974 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a1:80:53:a4:aa:7a:9b:c9:0b:bd:8d:52:a9: 08:a7:6a:b6:6f:69:34:39:21:0f:4c:7f:0a:62:2b: 27:ca:37:f7:2b:12:b6:2b:c4:c5:b3:e8:66:54:5e: 2a:ce:92:a5:67:f3:cb:aa:ef:ad:84:33:b3:d3:17: bd:8c:38:9d:19:62:2f:a4:9f:2c:6d:ac:d3:d7:bb: 0d:e9:14:e4:6a:a1:ce:bb:ba:57:0b:34:2e:7b:49: 65:7f:aa:67:c7:14:89:1e:85:09:d7:ef:40:72:6e: d8:ca:86:74:b7:d4:09:77:23:20:97:b8:b3:91:0e: d0:b3:6b:91:18:51:5d:e5:d8:c0:93:c9:f1:c3:85: 56:2d:40:46:a5:c1:29:83:80:04:9b:59:3e:24:a7: 1a:7f:62:fc:26:50:7b:2e:70:06:91:40:d9:44:b7: e1:f9:f8:e9:14:ae:50:24:4c:44:d1:a1:71:6b:b7: 36:6c:0e:1d:b6:5e:54:a9:29:54:51:cb:9f:31:12: 30:56:2b:d3:f3:4e:d7:82:f2:ad:b6:ef:ed:d2:fd: f3:ed:bc:50:bb:cd:40:b7:21:ed:01:aa:fa:4b:e4: d1:57:b0:b0:0e:70:51:40:9a:fb:f7:65:c9:44:9f: a8:45:a2:06:0c:65:5f:50:7f:eb:78:ab:62:fc:e5: bb:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:F3:E9:9C:1F:2C:C1:BB:ED:C4:06:8D:DC:AF:25:22:11:7A:89:74 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ufPpnB8swbvtxAaN3K8lIhF6iXQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.251.0/24 Signature Algorithm: sha256WithRSAEncryption 00:55:a1:c6:87:df:a1:e6:3c:37:82:e4:62:0f:f9:88:3e:9a: 86:63:c7:e2:d5:11:be:84:ec:47:39:e0:fa:78:9a:f1:1a:8b: bc:95:78:1d:9a:e5:0d:ab:e5:96:b8:f9:68:8b:9f:b3:90:2e: 37:4a:b0:2c:40:11:b5:e8:64:5f:14:32:2d:56:89:ea:fc:b7: 5b:02:b6:8c:a8:a0:32:8a:d0:b8:e2:9c:0c:20:91:ef:fb:2c: 9d:70:e4:4d:93:92:08:31:7c:f2:00:42:80:25:fc:41:ae:c5: de:95:4d:cb:ef:42:31:f7:48:9a:79:03:e8:29:69:90:e3:68: 73:9f:03:0c:fc:6a:06:de:db:93:32:a2:ee:94:8e:9f:76:13: c1:ca:d1:76:54:03:57:b4:2b:7b:d6:7e:12:e3:81:b0:9c:1b: 9a:aa:f6:7e:eb:87:ad:da:ac:3f:06:c1:d6:50:3c:74:90:18: bf:ab:ab:fd:84:49:87:cf:36:34:9c:14:d4:3a:f3:b8:e5:27: 14:33:7e:da:3b:80:b6:f1:91:57:e1:01:e9:5e:7d:2d:fa:42: 09:ee:f0:e6:40:76:e6:f8:5b:7b:f8:04:22:6b:9c:f1:b7:e4: 83:76:21:14:de:0d:98:59:c7:60:ad:cd:ac:2a:6d:00:1e:f9: 0a:04:f1:c7 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBNUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA3Mjcx NjUwMDNaFw0yNDA3MTQwMTMwMDNaMDMxMTAvBgNVBAMTKEI5RjNFOTlDMUYyQ0Mx QkJFREM0MDY4RERDQUYyNTIyMTE3QTg5NzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEoYBTpKp6m8kLvY1SqQinarZvaTQ5IQ9MfwpiKyfKN/crErYr xMWz6GZUXirOkqVn88uq762EM7PTF72MOJ0ZYi+knyxtrNPXuw3pFORqoc67ulcL NC57SWV/qmfHFIkehQnX70BybtjKhnS31Al3IyCXuLORDtCza5EYUV3l2MCTyfHD hVYtQEalwSmDgASbWT4kpxp/YvwmUHsucAaRQNlEt+H5+OkUrlAkTETRoXFrtzZs Dh22XlSpKVRRy58xEjBWK9PzTteC8q227+3S/fPtvFC7zUC3Ie0BqvpL5NFXsLAO cFFAmvv3ZclEn6hFogYMZV9Qf+t4q2L85bvDAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUufPpnB8swbvtxAaN3K8lIhF6iXQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3VmUHBuQjhzd2J2dHhBYU4zSzhsSWhGNmlYUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADcn/swDQYJKoZIhvcNAQELBQADggEBAABVocaH36HmPDeC5GIP+Yg+moZj x+LVEb6E7Ec54Pp4mvEai7yVeB2a5Q2r5Za4+WiLn7OQLjdKsCxAEbXoZF8UMi1W ier8t1sCtoyooDKK0LjinAwgke/7LJ1w5E2TkggxfPIAQoAl/EGuxd6VTcvvQjH3 SJp5A+gpaZDjaHOfAwz8agbe25Myou6Ujp92E8HK0XZUA1e0K3vWfhLjgbCcG5qq 9n7rh63arD8GwdZQPHSQGL+rq/2ESYfPNjScFNQ687jlJxQzfto7gLbxkVfhAele fS36Qgnu8OZAdub4W3v4BCJrnPG35IN2IRTeDZhZx2CtzawqbQAe+QoE8cc= -----END CERTIFICATE-----Generated at Sat Jun 1 15:54:37 2024 by rpki-client on console-ams.rpki-client.org