$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/Wqe3KUCnAXVnSGCpTInzve5lm5g.roa File: Wqe3KUCnAXVnSGCpTInzve5lm5g.roa (raw, json) Hash identifier: U/ZVbF+w1vFhv9tjNIWMkmaQ+FVG7KmWQXEQHQlNWPg= Subject key identifier: 5A:A7:B7:29:40:A7:01:75:67:48:60:A9:4C:89:F3:BD:EE:65:9B:98 Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 01A6 Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/Wqe3KUCnAXVnSGCpTInzve5lm5g.roa Signing time: Sun 31 Mar 2024 01:29:02 +0000 ROA not before: Sun 31 Mar 2024 01:29:02 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 4713 IP address blocks: 60.32.0.0/12 maxlen: 12 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jul 2024 07:52:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 422 (0x1a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: Mar 31 01:29:02 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=5AA7B72940A70175674860A94C89F3BDEE659B98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:6e:49:70:5c:91:2e:76:56:df:8f:03:35:dd: d3:49:80:72:6e:78:61:fe:f3:8b:86:26:3e:ba:6a: 26:c3:a8:7d:de:36:85:67:36:80:0c:78:39:4b:7a: 23:99:2e:62:3a:4d:9c:82:de:49:35:4c:f8:8c:f2: 71:cf:74:e5:c6:96:58:1a:1d:e7:ba:45:17:fd:89: 95:5d:9d:25:28:e2:e2:21:8a:ab:9a:62:e5:b8:67: cf:38:17:88:02:e3:e3:8a:51:90:22:4d:14:f8:91: 92:79:5f:9d:b2:57:ab:45:d2:e1:5f:01:cb:36:b5: 1a:3c:3d:88:2e:6b:44:ee:12:a6:3a:76:6c:28:7e: b5:43:90:ca:07:03:0b:a8:12:ea:60:ac:5b:86:e7: fb:c9:1f:37:f6:62:fc:ec:c3:90:0c:87:7c:57:bf: 75:82:38:f2:08:2e:79:7d:ad:88:1e:63:fb:ac:4b: 3c:d6:56:64:81:34:ba:65:fd:fa:81:1b:a9:79:eb: 6e:97:69:a4:05:96:3f:a6:2c:e8:f6:8a:c9:bf:fc: f7:5a:8d:d3:2f:8a:69:22:f7:ae:95:48:80:a1:b6: f2:df:e5:a6:8c:31:86:4e:12:3d:a0:61:b2:fc:ef: 3a:b1:b3:76:95:e2:4a:40:a3:22:18:f3:ea:58:03: 49:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:A7:B7:29:40:A7:01:75:67:48:60:A9:4C:89:F3:BD:EE:65:9B:98 X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/Wqe3KUCnAXVnSGCpTInzve5lm5g.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 60.32.0.0/12 Signature Algorithm: sha256WithRSAEncryption 82:4c:70:84:00:73:a5:bb:1c:19:1b:7b:71:08:fd:37:63:72: e2:70:a7:9f:8b:8a:07:68:46:81:ec:5c:38:c3:5d:f8:94:bd: f0:69:f5:4e:36:26:8a:16:eb:f6:ab:75:94:6d:68:96:3d:46: 02:f3:51:62:17:8e:4f:da:b5:34:6f:b2:c9:dc:62:fb:b5:43: 7a:cc:24:49:6f:38:1b:72:cd:82:c3:8b:1b:b7:3a:de:b8:7b: 80:75:b1:f2:6d:41:1f:2a:12:ae:b6:a6:de:03:a5:e7:b5:e3: 4b:a4:62:ea:e4:59:24:61:0a:3d:55:ad:fe:e1:a0:21:13:46: f3:69:0b:02:a8:44:3b:48:25:cf:f1:65:aa:7f:75:54:5b:2c: 6b:b3:2a:64:c6:d3:00:8f:13:2b:aa:57:76:48:cc:14:bb:6d: 0c:5a:80:ab:aa:af:27:51:62:cf:f3:a6:2d:51:b2:df:69:6e: 80:d0:d4:a1:64:d8:e4:70:15:93:fb:93:0c:3d:61:a3:c9:cf: f9:3d:81:c0:e1:63:e4:b3:ef:b8:f6:18:7c:b5:41:80:b7:08: 44:f2:80:d1:f5:34:cd:ad:9e:a2:dd:85:0e:eb:53:e6:22:1e: 78:c4:3d:ec:a7:ed:27:b6:34:18:f6:d2:33:51:d8:16:22:f8: 45:e6:8b:a4 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICAaYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNDAzMzEw MTI5MDJaFw0yNTAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDVBQTdCNzI5NDBBNzAx NzU2NzQ4NjBBOTRDODlGM0JERUU2NTlCOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVbklwXJEudlbfjwM13dNJgHJueGH+84uGJj66aibDqH3eNoVn NoAMeDlLeiOZLmI6TZyC3kk1TPiM8nHPdOXGllgaHee6RRf9iZVdnSUo4uIhiqua YuW4Z884F4gC4+OKUZAiTRT4kZJ5X52yV6tF0uFfAcs2tRo8PYgua0TuEqY6dmwo frVDkMoHAwuoEupgrFuG5/vJHzf2Yvzsw5AMh3xXv3WCOPIILnl9rYgeY/usSzzW VmSBNLpl/fqBG6l5626XaaQFlj+mLOj2ism//PdajdMvimki966VSIChtvLf5aaM MYZOEj2gYbL87zqxs3aV4kpAoyIY8+pYA0ndAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUWqe3KUCnAXVnSGCpTInzve5lm5gwHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTMxL1dxZTNLVUNuQVhWblNHQ3BUSW56dmU1bG01Zy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwQ8IDANBgkqhkiG9w0BAQsFAAOCAQEAgkxwhABzpbscGRt7cQj9N2Ny4nCn n4uKB2hGgexcOMNd+JS98Gn1TjYmihbr9qt1lG1olj1GAvNRYheOT9q1NG+yydxi +7VDeswkSW84G3LNgsOLG7c63rh7gHWx8m1BHyoSrram3gOl57XjS6Ri6uRZJGEK PVWt/uGgIRNG82kLAqhEO0glz/Flqn91VFssa7MqZMbTAI8TK6pXdkjMFLttDFqA q6qvJ1Fiz/OmLVGy32lugNDUoWTY5HAVk/uTDD1ho8nP+T2BwOFj5LPvuPYYfLVB gLcIRPKA0fU0za2eot2FDutT5iIeeMQ97KftJ7Y0GPbSM1HYFiL4ReaLpA== -----END CERTIFICATE-----Generated at Wed Jun 26 09:28:33 2024 by rpki-client on console-fra.rpki-client.org