$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/JP3CZknwWlWr8HcNnQi8Gc_MquA.roa File: JP3CZknwWlWr8HcNnQi8Gc_MquA.roa (raw, json) Hash identifier: VD4HJcCnHtP4eZ3YLdE4sqqHkdh7Mgovkq1FC+gw1oM= Subject key identifier: 24:FD:C2:66:49:F0:5A:55:AB:F0:77:0D:9D:08:BC:19:CF:CC:AA:E0 Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 01DB Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/JP3CZknwWlWr8HcNnQi8Gc_MquA.roa Signing time: Fri 31 May 2024 01:30:56 +0000 ROA not before: Fri 31 May 2024 01:30:56 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 4713 IP address blocks: 218.224.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jul 2024 07:52:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 475 (0x1db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: May 31 01:30:56 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=24FDC26649F05A55ABF0770D9D08BC19CFCCAAE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:0c:3e:df:93:b6:65:a7:87:af:67:bb:70:6f: f4:34:78:ee:92:d4:8b:ef:0c:05:5d:d1:7c:b2:e3: 1b:69:91:b3:e9:0a:6a:64:5d:5a:9f:1a:fe:87:00: d5:db:1d:19:c7:68:4f:b9:6f:a1:e9:38:6a:d4:e3: bd:f4:b6:7f:06:41:c8:76:ba:4a:34:e1:a4:3d:5a: 87:e1:a7:b1:84:72:e7:9e:fb:13:24:6d:32:78:2f: 02:4f:44:b7:e9:eb:cd:b4:9d:59:b1:6f:08:cf:60: a6:7a:0c:de:26:a5:da:55:41:f9:eb:15:cf:cf:2f: fc:51:a5:d3:1e:27:e1:19:a3:0c:e0:40:cf:f2:77: ea:ce:f8:61:fc:fa:a8:fb:e7:9e:13:4c:cf:a5:21: 98:0b:8d:38:89:05:59:b2:a2:e5:e4:90:48:4e:db: c5:cd:93:3d:e7:c7:f0:0c:8a:e0:60:0b:a9:01:cd: e4:8f:8c:8d:a2:2c:7f:7a:06:84:db:fc:41:39:17: fe:62:8f:27:25:a7:fa:27:43:39:78:d3:4d:a5:13: e8:2b:2a:d0:2a:3a:ad:58:60:bf:ad:a8:ad:81:1b: f7:e0:c3:24:8d:76:71:e6:22:24:e6:bd:5e:02:90: c2:0a:72:dd:9d:bc:16:dc:fe:96:2d:d2:ef:c9:db: 4b:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:FD:C2:66:49:F0:5A:55:AB:F0:77:0D:9D:08:BC:19:CF:CC:AA:E0 X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/JP3CZknwWlWr8HcNnQi8Gc_MquA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.224.0.0/16 Signature Algorithm: sha256WithRSAEncryption 92:c7:fe:d3:b1:9d:91:25:a4:02:ac:de:c9:59:6f:5f:ec:88: 0a:d1:95:68:ed:a0:70:9c:e2:bb:f3:9c:35:26:5b:67:b0:67: 3c:d7:38:8a:60:59:be:3b:16:2e:0d:2f:a8:f4:8c:ab:0b:90: ea:d6:78:e0:e8:86:1d:dd:da:8a:db:d7:61:2e:a8:75:8d:52: 27:b6:33:96:31:7f:7e:ff:42:2d:e2:05:02:a9:50:e0:1a:81: 76:85:b6:39:89:b3:a1:6e:9d:3c:f5:63:4d:84:d2:50:b4:63: 15:01:31:96:55:a8:b6:cc:ff:cf:7a:ee:6f:85:2c:d4:24:d8: 56:50:c9:ff:d9:f0:7a:24:ae:46:c0:2e:28:ca:13:2a:34:53: ba:3a:be:c7:b4:7f:02:4b:e9:66:3c:a3:16:1c:fc:67:fd:91: 26:cb:d7:b8:60:40:1b:b0:8c:6a:d3:82:70:11:fa:f8:6e:80: bb:86:47:e8:30:24:e4:dc:0c:7a:24:36:bf:66:5f:00:da:de: 9d:2f:8c:0b:5b:29:31:13:a8:ec:a0:03:dd:b5:1e:f5:d7:32: 39:f6:c4:99:dd:f5:6a:83:31:72:c2:92:f8:b8:fc:30:1f:9e: 00:3c:13:27:50:0f:91:30:78:11:33:8d:b5:ef:21:d4:74:b3: 90:05:31:eb -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICAdswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNDA1MzEw MTMwNTZaFw0yNTA1MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDI0RkRDMjY2NDlGMDVB NTVBQkYwNzcwRDlEMDhCQzE5Q0ZDQ0FBRTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCZDD7fk7Zlp4evZ7twb/Q0eO6S1IvvDAVd0Xyy4xtpkbPpCmpk XVqfGv6HANXbHRnHaE+5b6HpOGrU4730tn8GQch2uko04aQ9Wofhp7GEcuee+xMk bTJ4LwJPRLfp6820nVmxbwjPYKZ6DN4mpdpVQfnrFc/PL/xRpdMeJ+EZowzgQM/y d+rO+GH8+qj7554TTM+lIZgLjTiJBVmyouXkkEhO28XNkz3nx/AMiuBgC6kBzeSP jI2iLH96BoTb/EE5F/5ijyclp/onQzl4002lE+grKtAqOq1YYL+tqK2BG/fgwySN dnHmIiTmvV4CkMIKct2dvBbc/pYt0u/J20vxAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUJP3CZknwWlWr8HcNnQi8Gc/MquAwHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTMxL0pQM0Naa253V2xXcjhIY05uUWk4R2NfTXF1QS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDa4DANBgkqhkiG9w0BAQsFAAOCAQEAksf+07GdkSWkAqzeyVlvX+yICtGV aO2gcJziu/OcNSZbZ7BnPNc4imBZvjsWLg0vqPSMqwuQ6tZ44OiGHd3aitvXYS6o dY1SJ7YzljF/fv9CLeIFAqlQ4BqBdoW2OYmzoW6dPPVjTYTSULRjFQExllWotsz/ z3rub4Us1CTYVlDJ/9nweiSuRsAuKMoTKjRTujq+x7R/AkvpZjyjFhz8Z/2RJsvX uGBAG7CMatOCcBH6+G6Au4ZH6DAk5NwMeiQ2v2ZfANrenS+MC1spMROo7KAD3bUe 9dcyOfbEmd31aoMxcsKS+Lj8MB+eADwTJ1APkTB4ETONte8h1HSzkAUx6w== -----END CERTIFICATE-----Generated at Wed Jun 26 09:28:33 2024 by rpki-client on console-fra.rpki-client.org