$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ykP0NPPrPQhX7KOSIrP-DLVEio0.roa File: ykP0NPPrPQhX7KOSIrP-DLVEio0.roa (raw, json) Hash identifier: ImHaDYT+LjtitKkHJO3h2pk3odgyCRGJ9orL83kyuck= Subject key identifier: CA:43:F4:34:F3:EB:3D:08:57:EC:A3:92:22:B3:FE:0C:B5:44:8A:8D Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 05D8 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ykP0NPPrPQhX7KOSIrP-DLVEio0.roa Signing time: Thu 29 Feb 2024 01:32:17 +0000 ROA not before: Thu 29 Feb 2024 01:32:17 +0000 ROA not after: Fri 14 Feb 2025 01:30:03 +0000 asID: 9605 IP address blocks: 1.75.0.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1496 (0x5d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Feb 29 01:32:17 2024 GMT Not After : Feb 14 01:30:03 2025 GMT Subject: CN=CA43F434F3EB3D0857ECA39222B3FE0CB5448A8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:48:d8:76:d5:86:b4:6d:4b:ee:e3:6f:20:a6: 0e:46:24:08:ab:48:0d:08:d3:00:39:67:86:c4:c4: c9:86:48:e0:9b:f1:f5:85:fd:9b:e8:84:fa:29:61: ea:8d:7c:7d:73:32:ec:67:b1:89:f2:c6:47:61:bd: 43:86:95:ab:3e:d6:87:5d:94:20:a8:0d:f9:ee:38: 50:1c:e2:37:1c:7f:2c:2f:3f:78:bb:99:19:0c:6e: 92:29:ab:a1:3f:45:03:6e:f1:2e:0a:d8:7a:64:05: 05:ff:d2:aa:dd:83:77:61:d6:99:59:f3:ac:d9:a9: ff:9a:b6:e3:19:a1:79:11:58:48:aa:f2:12:cc:de: 33:29:1b:bb:cd:a8:74:c3:3d:30:b3:69:fd:29:c9: 6d:2c:57:fe:e0:2e:89:1e:37:77:bf:75:a8:d6:6a: a8:6d:9d:24:15:da:9e:51:0b:9d:6e:c9:8d:d8:88: 65:8f:35:98:e7:10:67:ba:be:7e:fe:cf:a5:43:a6: 23:5c:5f:0c:70:cd:79:2f:9c:af:ee:e0:a4:3e:96: 44:ba:f4:66:8f:c5:43:92:01:eb:b9:b0:58:1c:61: 9a:c6:39:10:bd:5b:b0:c6:60:e2:39:04:34:7a:0d: be:8d:2f:e4:7d:c1:34:59:75:bc:4b:ad:99:14:d1: 77:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:43:F4:34:F3:EB:3D:08:57:EC:A3:92:22:B3:FE:0C:B5:44:8A:8D X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ykP0NPPrPQhX7KOSIrP-DLVEio0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.0.0/23 Signature Algorithm: sha256WithRSAEncryption 05:3d:17:e3:43:a1:53:86:85:05:60:2f:80:e1:7f:30:b0:7c: 61:3e:56:7e:8d:94:e6:c9:12:fe:e0:a7:75:45:9c:cc:53:a2: 63:4d:c1:04:72:d7:d2:38:12:30:fb:94:76:39:2f:33:97:bb: 67:88:48:9e:3d:44:12:e0:b1:b0:c4:97:5b:30:ed:4c:32:20: 75:aa:e7:cb:e1:ae:5e:e9:88:ca:00:72:00:8d:36:b4:1d:8a: 2c:55:3c:ec:b1:5b:50:4c:97:8f:93:d4:ac:4a:0d:6b:2c:51: c2:35:f9:16:06:c8:40:a2:d0:f0:8d:b7:c5:35:9d:a4:6f:29: c7:0e:ff:b4:b2:66:1b:6a:96:1d:b7:16:a7:d7:e6:70:b0:54: c7:76:dd:32:02:81:95:a4:ab:65:2c:5d:d7:55:6c:59:a1:e7: 01:46:d5:47:eb:98:8c:54:9c:b0:c2:08:2d:01:02:23:b2:69: ec:47:6a:fc:35:24:82:cf:d0:6b:c7:b0:63:63:3e:17:3f:cc: 1d:c3:2e:ad:40:69:b4:56:37:7f:60:f9:4b:61:b9:53:62:9a: 2d:7d:63:e9:f8:19:26:e8:75:cc:17:e1:37:82:7c:ba:e7:3b: 93:93:59:13:d7:2d:67:40:1a:97:80:d8:50:aa:be:e1:34:ef: a0:ad:a3:0a -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBdgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDAyMjkw MTMyMTdaFw0yNTAyMTQwMTMwMDNaMDMxMTAvBgNVBAMTKENBNDNGNDM0RjNFQjNE MDg1N0VDQTM5MjIyQjNGRTBDQjU0NDhBOEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDESNh21Ya0bUvu428gpg5GJAirSA0I0wA5Z4bExMmGSOCb8fWF /ZvohPopYeqNfH1zMuxnsYnyxkdhvUOGlas+1oddlCCoDfnuOFAc4jccfywvP3i7 mRkMbpIpq6E/RQNu8S4K2HpkBQX/0qrdg3dh1plZ86zZqf+atuMZoXkRWEiq8hLM 3jMpG7vNqHTDPTCzaf0pyW0sV/7gLokeN3e/dajWaqhtnSQV2p5RC51uyY3YiGWP NZjnEGe6vn7+z6VDpiNcXwxwzXkvnK/u4KQ+lkS69GaPxUOSAeu5sFgcYZrGORC9 W7DGYOI5BDR6Db6NL+R9wTRZdbxLrZkU0XefAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUykP0NPPrPQhX7KOSIrP+DLVEio0wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3lrUDBOUFByUFFoWDdLT1NJclAtRExWRWlvMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBSwAwDQYJKoZIhvcNAQELBQADggEBAAU9F+NDoVOGhQVgL4DhfzCwfGE+ Vn6NlObJEv7gp3VFnMxTomNNwQRy19I4EjD7lHY5LzOXu2eISJ49RBLgsbDEl1sw 7UwyIHWq58vhrl7piMoAcgCNNrQdiixVPOyxW1BMl4+T1KxKDWssUcI1+RYGyECi 0PCNt8U1naRvKccO/7SyZhtqlh23FqfX5nCwVMd23TICgZWkq2UsXddVbFmh5wFG 1UfrmIxUnLDCCC0BAiOyaexHavw1JILP0GvHsGNjPhc/zB3DLq1AabRWN39g+Uth uVNimi19Y+n4GSbodcwX4TeCfLrnO5OTWRPXLWdAGpeA2FCqvuE076Ctowo= -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:49 2024 by rpki-client on console-fra.rpki-client.org