$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/vaQS_1d8s_6GgvpSjVdK6mkbG_M.roa File: vaQS_1d8s_6GgvpSjVdK6mkbG_M.roa (raw, json) Hash identifier: PCLJ3W9+CkNt5NfO3lqo1Q+MrUW8O78HZ5pWYSrMD4Y= Subject key identifier: BD:A4:12:FF:57:7C:B3:FE:86:82:FA:52:8D:57:4A:EA:69:1B:1B:F3 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 04B2 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/vaQS_1d8s_6GgvpSjVdK6mkbG_M.roa Signing time: Thu 27 Jul 2023 16:48:08 +0000 ROA not before: Thu 27 Jul 2023 16:48:08 +0000 ROA not after: Sun 14 Jul 2024 01:30:03 +0000 asID: 9605 IP address blocks: 1.72.12.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1202 (0x4b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jul 27 16:48:08 2023 GMT Not After : Jul 14 01:30:03 2024 GMT Subject: CN=BDA412FF577CB3FE8682FA528D574AEA691B1BF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:1e:5f:13:5a:a7:99:0d:92:c1:6a:1d:06:33: da:24:81:ff:d3:10:c0:ce:ac:d6:35:3b:4f:f6:94: 84:cd:be:65:d3:c9:ee:89:c4:6a:88:54:f6:d6:cd: 53:9c:fe:9d:ab:36:e1:6c:9e:90:39:b4:12:79:ba: 43:9b:7a:ef:5d:86:aa:84:44:4c:3d:05:46:b6:f4: 25:b9:26:b0:fa:bd:c5:60:5c:b3:93:0d:82:36:1a: c0:cf:2e:4f:07:b3:2f:03:22:aa:5c:3d:c0:4e:f1: c2:bb:ad:99:14:f1:50:40:50:ed:88:fe:7f:20:cc: 17:b2:75:ca:d1:4b:12:6a:0e:dc:2f:d3:e8:89:c8: e4:a0:05:f8:cf:25:a5:6c:47:c8:56:c5:17:d8:37: 38:a3:24:97:c7:ba:36:d8:c1:18:b3:85:18:a1:7a: 70:bc:75:1e:c8:a7:5b:2f:b1:e8:c9:c2:9b:00:e4: 85:f3:51:bd:08:ec:95:cd:f7:7a:e6:b2:b8:29:52: de:1d:d5:ab:cb:b0:44:26:39:32:6b:d7:e5:f3:e2: a9:15:8f:da:0b:87:09:86:be:ba:21:1a:70:3e:72: 5e:1e:b9:69:ba:8c:5f:ed:80:5d:eb:03:0d:ce:6b: b8:41:da:2b:61:ed:c3:7d:e5:3f:62:e1:da:f9:cf: fb:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:A4:12:FF:57:7C:B3:FE:86:82:FA:52:8D:57:4A:EA:69:1B:1B:F3 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/vaQS_1d8s_6GgvpSjVdK6mkbG_M.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.72.12.0/23 Signature Algorithm: sha256WithRSAEncryption 33:2c:7e:f7:48:a3:66:e6:05:ea:62:02:c3:d2:ee:e5:aa:4e: b2:82:94:94:59:c4:8a:cf:a7:a4:bf:36:82:b5:5d:38:6b:c9: 36:b1:cc:ce:72:09:d0:73:70:db:94:1b:51:d9:70:87:ab:ca: 23:4e:e3:90:db:88:96:df:cf:e8:11:41:3d:39:43:20:75:a0: 61:23:17:cd:90:60:6f:aa:3b:37:e4:5a:35:e8:04:b4:f6:77: 39:4c:8f:e4:64:02:eb:ea:e9:a9:49:ad:e2:86:7b:79:56:f7: 58:d0:56:c0:be:68:b3:9d:e6:a0:14:ab:62:3b:08:f8:8c:49: c7:f0:0e:21:b2:2d:4f:e3:77:90:2d:f8:0d:b0:92:0c:97:fb: f3:ef:1a:51:63:e8:d9:a5:65:eb:81:e7:14:03:63:cf:ed:64: 17:e6:d9:d6:e1:9f:6e:a9:11:ad:b8:64:2a:c8:24:3e:07:51: a6:05:44:3b:7f:28:e4:c1:a3:29:f9:8a:87:33:40:21:bf:c7: 69:ab:cf:7f:e1:43:1f:71:28:5b:55:05:5a:a6:34:52:b9:78: b0:d8:df:80:fd:90:64:c4:3d:10:b0:e1:b8:81:a6:9b:49:8e: ec:f0:87:44:c5:09:8d:77:ea:9e:16:73:83:b4:66:6d:67:b2: 67:85:4c:56 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBLIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA3Mjcx NjQ4MDhaFw0yNDA3MTQwMTMwMDNaMDMxMTAvBgNVBAMTKEJEQTQxMkZGNTc3Q0Iz RkU4NjgyRkE1MjhENTc0QUVBNjkxQjFCRjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJHl8TWqeZDZLBah0GM9okgf/TEMDOrNY1O0/2lITNvmXTye6J xGqIVPbWzVOc/p2rNuFsnpA5tBJ5ukObeu9dhqqEREw9BUa29CW5JrD6vcVgXLOT DYI2GsDPLk8Hsy8DIqpcPcBO8cK7rZkU8VBAUO2I/n8gzBeydcrRSxJqDtwv0+iJ yOSgBfjPJaVsR8hWxRfYNzijJJfHujbYwRizhRihenC8dR7Ip1svsejJwpsA5IXz Ub0I7JXN93rmsrgpUt4d1avLsEQmOTJr1+Xz4qkVj9oLhwmGvrohGnA+cl4euWm6 jF/tgF3rAw3Oa7hB2ith7cN95T9i4dr5z/sxAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUvaQS/1d8s/6GgvpSjVdK6mkbG/MwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3ZhUVNfMWQ4c182R2d2cFNqVmRLNm1rYkdfTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBSAwwDQYJKoZIhvcNAQELBQADggEBADMsfvdIo2bmBepiAsPS7uWqTrKC lJRZxIrPp6S/NoK1XThryTaxzM5yCdBzcNuUG1HZcIeryiNO45DbiJbfz+gRQT05 QyB1oGEjF82QYG+qOzfkWjXoBLT2dzlMj+RkAuvq6alJreKGe3lW91jQVsC+aLOd 5qAUq2I7CPiMScfwDiGyLU/jd5At+A2wkgyX+/PvGlFj6NmlZeuB5xQDY8/tZBfm 2dbhn26pEa24ZCrIJD4HUaYFRDt/KOTBoyn5ioczQCG/x2mrz3/hQx9xKFtVBVqm NFK5eLDY34D9kGTEPRCw4biBpptJjuzwh0TFCY136p4Wc4O0Zm1nsmeFTFY= -----END CERTIFICATE-----Generated at Sat Jun 1 15:54:38 2024 by rpki-client on console-ams.rpki-client.org