$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/g3lygMwp375yA-o--45YiUwD6oU.roa File: g3lygMwp375yA-o--45YiUwD6oU.roa (raw, json) Hash identifier: onxYxc/bFrddV2JzcqhirRPANapyfPT7bgRoW4EltgY= Subject key identifier: 83:79:72:80:CC:29:DF:BE:72:03:EA:3E:FB:8E:58:89:4C:03:EA:85 Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 01C2 Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/g3lygMwp375yA-o--45YiUwD6oU.roa Signing time: Fri 31 May 2024 01:30:44 +0000 ROA not before: Fri 31 May 2024 01:30:44 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 4713 IP address blocks: 153.248.0.0/14 maxlen: 14 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jul 2024 07:52:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 450 (0x1c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: May 31 01:30:44 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=83797280CC29DFBE7203EA3EFB8E58894C03EA85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:e5:85:a1:49:cc:ab:53:05:54:d4:bf:83:cf: c1:1a:4f:c7:38:89:eb:db:f6:d1:05:dd:83:78:02: c8:76:54:ce:f4:06:ba:90:df:f5:47:64:94:5d:9d: fb:75:4b:b2:9a:1f:2c:5d:c4:98:b8:1d:8c:0b:1f: 5a:b4:ed:f0:fb:e1:5b:71:2e:ed:8e:cb:17:f8:11: 2a:40:54:9c:16:00:61:e9:2a:1d:90:3d:f6:97:16: c7:00:2b:c4:6c:87:72:69:36:a6:30:f4:70:4a:2d: e6:c2:91:21:39:f3:7e:0b:96:8c:a2:ae:f4:38:29: 45:ad:ac:b6:da:60:2b:fc:a3:c9:60:af:b3:4b:0a: 79:5e:1e:e2:35:54:98:7c:f9:b7:13:8d:31:aa:24: 1a:e8:c5:7b:c5:d2:87:55:98:b9:95:9c:da:ad:be: cb:1e:78:ac:9b:5a:0c:5e:38:c1:e2:17:33:cc:b4: 4b:12:f4:79:15:be:b0:98:5e:8a:56:e4:99:d7:31: 5d:41:bf:1f:de:44:c7:73:07:39:7f:89:b2:26:5b: 77:c3:69:d7:34:a4:33:f0:0d:e7:c0:d2:be:cf:94: f7:43:ee:97:e6:25:91:e8:10:51:1e:12:02:0d:7f: a7:80:58:1d:fb:5d:3c:d0:7a:68:81:71:7d:90:1c: c2:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:79:72:80:CC:29:DF:BE:72:03:EA:3E:FB:8E:58:89:4C:03:EA:85 X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/g3lygMwp375yA-o--45YiUwD6oU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 153.248.0.0/14 Signature Algorithm: sha256WithRSAEncryption 64:2d:14:71:fb:8d:c9:7f:18:aa:33:84:fd:44:bf:99:6b:1b: bb:a7:cc:3a:fc:c4:e9:c7:ce:a9:50:10:91:85:d2:64:14:a8: e5:0b:b9:50:fb:3d:c6:31:00:b7:9e:d9:a7:ef:32:4e:c0:5f: 6f:bb:5c:39:2e:50:36:55:0b:ae:87:c2:c5:d9:bc:5b:56:d8: 5e:a5:15:82:cc:1c:81:3f:a2:2a:2e:88:ec:4a:df:25:02:b4: e1:b2:16:d8:ba:48:99:11:db:b4:a2:64:ce:df:29:5c:42:fb: 48:2c:02:9c:26:54:81:c4:74:85:88:5c:09:41:d4:a5:61:d0: 8f:d0:3e:e3:b3:48:8e:c4:32:69:2d:c5:7d:f6:3c:6b:70:5c: 10:fb:94:97:70:74:91:c6:11:a2:b2:54:45:65:c7:0d:be:d3: 2c:fc:9c:0b:65:44:9c:05:45:a8:70:56:a3:44:43:25:98:75: 7f:54:25:98:8c:18:45:27:f1:39:88:73:94:02:81:9c:af:af: e1:2e:db:5f:d9:7c:11:c6:5e:74:b4:e5:d4:ec:41:e7:ad:60: 21:be:47:bc:e6:82:74:a4:05:08:62:dc:38:90:ef:4e:2f:63: 78:ea:b9:f7:6d:ca:84:98:af:27:94:11:c5:fc:21:4f:5e:91: 08:56:cf:0b -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICAcIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNDA1MzEw MTMwNDRaFw0yNTA1MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDgzNzk3MjgwQ0MyOURG QkU3MjAzRUEzRUZCOEU1ODg5NEMwM0VBODUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCl5YWhScyrUwVU1L+Dz8EaT8c4ievb9tEF3YN4Ash2VM70BrqQ 3/VHZJRdnft1S7KaHyxdxJi4HYwLH1q07fD74VtxLu2Oyxf4ESpAVJwWAGHpKh2Q PfaXFscAK8Rsh3JpNqYw9HBKLebCkSE5834LloyirvQ4KUWtrLbaYCv8o8lgr7NL CnleHuI1VJh8+bcTjTGqJBroxXvF0odVmLmVnNqtvsseeKybWgxeOMHiFzPMtEsS 9HkVvrCYXopW5JnXMV1Bvx/eRMdzBzl/ibImW3fDadc0pDPwDefA0r7PlPdD7pfm JZHoEFEeEgINf6eAWB37XTzQemiBcX2QHMJfAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUg3lygMwp375yA+o++45YiUwD6oUwHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTMxL2czbHlnTXdwMzc1eUEtby0tNDVZaVV3RDZvVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwKZ+DANBgkqhkiG9w0BAQsFAAOCAQEAZC0UcfuNyX8YqjOE/US/mWsbu6fM OvzE6cfOqVAQkYXSZBSo5Qu5UPs9xjEAt57Zp+8yTsBfb7tcOS5QNlULrofCxdm8 W1bYXqUVgswcgT+iKi6I7ErfJQK04bIW2LpImRHbtKJkzt8pXEL7SCwCnCZUgcR0 hYhcCUHUpWHQj9A+47NIjsQyaS3FffY8a3BcEPuUl3B0kcYRorJURWXHDb7TLPyc C2VEnAVFqHBWo0RDJZh1f1QlmIwYRSfxOYhzlAKBnK+v4S7bX9l8EcZedLTl1OxB 561gIb5HvOaCdKQFCGLcOJDvTi9jeOq5923KhJivJ5QRxfwhT16RCFbPCw== -----END CERTIFICATE-----Generated at Wed Jun 26 09:28:33 2024 by rpki-client on console-fra.rpki-client.org