$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/yXOWCsNCpycPo1sGcflUv-1AVso.roa File: yXOWCsNCpycPo1sGcflUv-1AVso.roa (raw, json) Hash identifier: /w/MH7TLmgM5prEinYrGmewkUrliOOwYLnPNiTibXv4= Subject key identifier: C9:73:96:0A:C3:42:A7:27:0F:A3:5B:06:71:F9:54:BF:ED:40:56:CA Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0272 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/yXOWCsNCpycPo1sGcflUv-1AVso.roa Signing time: Tue 30 May 2023 16:34:19 +0000 ROA not before: Tue 30 May 2023 16:34:19 +0000 ROA not after: Tue 14 May 2024 01:30:02 +0000 asID: 9605 IP address blocks: 211.14.112.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 13:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 626 (0x272) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: May 30 16:34:19 2023 GMT Not After : May 14 01:30:02 2024 GMT Subject: CN=C973960AC342A7270FA35B0671F954BFED4056CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d3:36:16:96:6c:f6:ad:46:51:3c:ec:c2:75: 48:df:48:33:25:55:64:1c:a6:b4:77:c9:6d:d5:9d: fb:3e:1a:1d:00:39:cf:cc:f7:e7:b3:28:c4:0d:03: 49:07:51:27:e7:2d:95:e2:5b:2b:40:a1:0f:b8:d5: e1:44:50:1d:47:4a:90:d5:dc:e9:b3:c6:3b:20:4b: 27:21:fa:eb:c7:c5:1f:7f:2a:09:2e:b5:12:ae:c2: b0:9f:d5:1a:ee:ab:42:63:d7:b4:f7:ac:fe:2d:15: f3:bd:bd:55:3a:ff:80:22:c0:d4:06:f8:0e:ad:87: ea:49:3c:01:b9:b8:7f:a9:87:30:e9:10:9a:67:f3: ac:7d:a0:89:94:cf:0c:1a:9b:6b:14:8c:4a:60:16: dd:35:98:b7:0e:ee:be:9c:8f:60:57:22:1c:91:21: 1b:30:3a:c1:29:63:79:da:5a:8b:d4:8f:66:95:eb: 5a:a9:e0:61:71:bf:8f:d3:5c:09:61:92:b6:08:a5: 22:e8:2d:9e:bc:e7:cb:41:04:ef:e8:a0:02:a4:37: 42:2f:48:3c:eb:60:2e:17:3c:7f:86:9b:13:00:a2: e8:57:35:bd:d9:0b:98:93:4f:e3:5a:9a:90:6d:c0: 13:d6:3e:fa:8e:eb:40:46:f3:1f:23:de:9b:9c:8d: 20:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:73:96:0A:C3:42:A7:27:0F:A3:5B:06:71:F9:54:BF:ED:40:56:CA X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/yXOWCsNCpycPo1sGcflUv-1AVso.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.14.112.0/22 Signature Algorithm: sha256WithRSAEncryption e1:81:64:6c:c0:0c:88:b0:9c:d4:ff:76:38:8b:be:c9:ca:ba: 90:ff:e5:b6:04:7b:15:cd:1b:fa:1f:a3:5e:1d:17:70:44:01: 76:92:ef:91:cf:79:7c:82:87:f4:60:74:bc:45:5f:94:89:8c: b1:d2:df:96:97:40:68:e8:8e:50:9e:03:26:e0:3b:bd:66:e4: c9:ab:39:7a:80:04:e1:ae:4f:a2:a2:d1:d2:ed:df:68:bf:d8: 2c:0a:17:10:d8:3d:c5:1f:70:f9:c3:a2:28:1a:84:36:b8:c7: 9e:09:57:15:f0:4e:5a:f5:91:b5:85:ab:59:12:d1:b3:8b:82: 9e:ac:68:55:cd:6d:87:f6:f9:07:69:81:cd:63:7c:2f:6c:70: 17:68:da:a8:0a:20:52:e6:93:15:4c:6b:6c:99:77:8e:5f:e6: 6a:98:44:61:4d:3a:9f:9d:23:0a:5f:89:b6:07:1e:ad:61:ae: d4:df:7d:bc:3e:f0:a5:42:76:e6:19:52:54:28:c6:37:60:5b: d8:1b:9b:51:f2:a2:13:6f:a2:d1:da:80:2c:67:85:a4:e5:5b: 3b:72:c9:16:eb:37:4c:b7:74:1a:6b:45:10:51:a6:73:7d:94: 3c:5d:ba:a4:78:df:74:69:f2:8f:e0:b3:f2:c2:7c:ef:5a:6f: f3:ef:4f:e0 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAnIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MzAx NjM0MTlaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKEM5NzM5NjBBQzM0MkE3 MjcwRkEzNUIwNjcxRjk1NEJGRUQ0MDU2Q0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCr0zYWlmz2rUZRPOzCdUjfSDMlVWQcprR3yW3Vnfs+Gh0AOc/M 9+ezKMQNA0kHUSfnLZXiWytAoQ+41eFEUB1HSpDV3OmzxjsgSych+uvHxR9/Kgku tRKuwrCf1Rruq0Jj17T3rP4tFfO9vVU6/4AiwNQG+A6th+pJPAG5uH+phzDpEJpn 86x9oImUzwwam2sUjEpgFt01mLcO7r6cj2BXIhyRIRswOsEpY3naWovUj2aV61qp 4GFxv4/TXAlhkrYIpSLoLZ6858tBBO/ooAKkN0IvSDzrYC4XPH+GmxMAouhXNb3Z C5iTT+NampBtwBPWPvqO60BG8x8j3pucjSBdAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUyXOWCsNCpycPo1sGcflUv+1AVsowHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3lYT1dDc05DcHljUG8xc0djZmxVdi0xQVZzby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALTDnAwDQYJKoZIhvcNAQELBQADggEBAOGBZGzADIiwnNT/djiLvsnKupD/ 5bYEexXNG/ofo14dF3BEAXaS75HPeXyCh/RgdLxFX5SJjLHS35aXQGjojlCeAybg O71m5MmrOXqABOGuT6Ki0dLt32i/2CwKFxDYPcUfcPnDoigahDa4x54JVxXwTlr1 kbWFq1kS0bOLgp6saFXNbYf2+Qdpgc1jfC9scBdo2qgKIFLmkxVMa2yZd45f5mqY RGFNOp+dIwpfibYHHq1hrtTffbw+8KVCduYZUlQoxjdgW9gbm1HyohNvotHagCxn haTlWztyyRbrN0y3dBprRRBRpnN9lDxduqR433Rp8o/gs/LCfO9ab/PvT+A= -----END CERTIFICATE-----Generated at Sat Apr 27 10:15:58 2024 by rpki-client on console-ams.rpki-client.org