$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/xTvtkTTzx5k9-iBdzaWQ5JOukTU.roa File: xTvtkTTzx5k9-iBdzaWQ5JOukTU.roa (raw, json) Hash identifier: ZEhgCqHYs0LZkqxPPwvLELVmEkOs+ukg5XQqWVRHCKQ= Subject key identifier: C5:3B:ED:91:34:F3:C7:99:3D:FA:20:5D:CD:A5:90:E4:93:AE:91:35 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 08B8 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/xTvtkTTzx5k9-iBdzaWQ5JOukTU.roa Signing time: Tue 30 Apr 2024 02:22:42 +0000 ROA not before: Tue 30 Apr 2024 02:22:42 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.132.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2232 (0x8b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:22:42 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=C53BED9134F3C7993DFA205DCDA590E493AE9135 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:1e:d3:27:76:72:2f:a7:4c:b7:cd:3c:40:54: 3d:29:94:bc:bc:5a:9f:9a:cf:c6:2b:36:5b:20:96: d8:d5:b5:a2:bc:ad:e5:5b:45:8b:56:cb:a9:79:d9: fd:2e:36:e8:4d:65:2d:17:08:3e:a1:f6:b8:0a:38: cc:bc:2a:a1:b3:b2:37:8d:f1:a3:65:ae:42:7f:dd: 95:9a:01:13:22:cf:94:eb:a2:2a:97:ac:2e:ae:83: 60:7e:ba:45:40:e1:d2:9a:c8:6f:61:6e:7a:dc:5a: 58:d6:30:55:59:a0:4b:88:fc:de:61:78:36:32:3e: c0:f6:5b:4a:f1:81:c9:c7:da:f0:73:bc:f4:7e:f8: d8:af:eb:c0:70:ec:25:f9:b4:38:2c:60:7d:85:f4: 30:57:27:8c:b7:f3:50:75:b9:78:c7:1e:f4:c0:90: a2:1f:8e:22:09:78:c1:be:44:80:83:c3:47:b9:31: 09:a4:30:b3:b1:48:67:bc:eb:9a:00:01:26:d6:53: ab:a4:47:b7:d3:ee:dd:4b:bd:dc:89:3b:2f:44:37: e0:6c:75:fe:f2:8f:f9:23:12:db:09:c7:f5:29:07: a6:91:41:49:25:00:81:df:c1:f4:13:2a:61:62:0b: 72:f5:95:15:a0:8a:93:e1:08:db:ab:8d:2a:0c:5d: 7f:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:3B:ED:91:34:F3:C7:99:3D:FA:20:5D:CD:A5:90:E4:93:AE:91:35 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/xTvtkTTzx5k9-iBdzaWQ5JOukTU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.132.0/23 Signature Algorithm: sha256WithRSAEncryption bb:38:dc:aa:91:3e:d3:a3:d3:dc:82:8c:ec:55:98:ab:2d:93: 3a:58:68:76:92:5e:14:4e:7b:23:48:29:4b:88:c6:ba:7c:2e: 53:fa:d6:e4:17:e8:c3:03:57:e5:7d:c2:98:d4:f1:a7:6d:3b: 3a:9f:5e:8f:f9:f8:d3:a5:1a:5f:30:bc:58:81:48:92:c4:7a: 9d:93:ae:1c:9e:d6:fc:d2:2f:4a:81:61:69:7f:2d:58:35:3f: 29:9d:30:d8:09:ba:dd:0e:15:56:f7:42:d0:73:85:9f:58:f3: f2:e1:29:4c:44:53:52:4d:7c:70:3e:9d:cc:52:fb:8c:05:2e: 27:d4:3e:e9:3e:1b:4c:1b:54:25:ba:44:b5:47:2f:40:cc:28: ba:9e:54:3c:a4:fc:f8:1f:58:4d:cb:a3:dc:78:37:71:03:cc: 0a:a7:75:ed:a9:a8:8c:24:03:7f:48:ff:f7:d0:42:f5:a5:eb: 0c:00:94:41:9f:21:3f:0f:d2:48:cd:69:c9:d8:85:ed:f0:a0: c2:db:61:1b:80:32:59:99:ae:77:3b:35:14:5a:66:93:cd:ca: ea:71:84:d4:38:d1:89:1f:4e:12:8c:6d:ee:3f:32:ab:05:c8: e9:6f:e8:96:7b:b7:5d:de:11:7e:a9:ed:68:67:a2:dd:7f:24: 8b:71:30:50 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICCLgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjIyNDJaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEM1M0JFRDkxMzRGM0M3 OTkzREZBMjA1RENEQTU5MEU0OTNBRTkxMzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKHtMndnIvp0y3zTxAVD0plLy8Wp+az8YrNlsgltjVtaK8reVb RYtWy6l52f0uNuhNZS0XCD6h9rgKOMy8KqGzsjeN8aNlrkJ/3ZWaARMiz5TroiqX rC6ug2B+ukVA4dKayG9hbnrcWljWMFVZoEuI/N5heDYyPsD2W0rxgcnH2vBzvPR+ +Niv68Bw7CX5tDgsYH2F9DBXJ4y381B1uXjHHvTAkKIfjiIJeMG+RICDw0e5MQmk MLOxSGe865oAASbWU6ukR7fT7t1LvdyJOy9EN+Bsdf7yj/kjEtsJx/UpB6aRQUkl AIHfwfQTKmFiC3L1lRWgipPhCNurjSoMXX8FAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUxTvtkTTzx5k9+iBdzaWQ5JOukTUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3hUdnRrVFR6eDVrOS1pQmR6YVdRNUpPdWtUVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAExYoQwDQYJKoZIhvcNAQELBQADggEBALs43KqRPtOj09yCjOxVmKstkzpY aHaSXhROeyNIKUuIxrp8LlP61uQX6MMDV+V9wpjU8adtOzqfXo/5+NOlGl8wvFiB SJLEep2Trhye1vzSL0qBYWl/LVg1PymdMNgJut0OFVb3QtBzhZ9Y8/LhKUxEU1JN fHA+ncxS+4wFLifUPuk+G0wbVCW6RLVHL0DMKLqeVDyk/PgfWE3Lo9x4N3EDzAqn de2pqIwkA39I//fQQvWl6wwAlEGfIT8P0kjNacnYhe3woMLbYRuAMlmZrnc7NRRa ZpPNyupxhNQ40YkfThKMbe4/MqsFyOlv6JZ7t13eEX6p7Whnot1/JItxMFA= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:42 2024 by rpki-client on console-ams.rpki-client.org