$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1937/kw2Q3wiolY2OzL9VNAit0pILbVc.roa File: kw2Q3wiolY2OzL9VNAit0pILbVc.roa (raw, json) Hash identifier: o8ezU2mFyQvgYrn6bFqTankCpvdtLW8GsbWSMVjV3mU= Subject key identifier: 93:0D:90:DF:08:A8:95:8D:8E:CC:BF:55:34:08:AD:D2:92:0B:6D:57 Certificate issuer: /CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D Certificate serial: 0D Authority key identifier: 71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/kw2Q3wiolY2OzL9VNAit0pILbVc.roa Signing time: Mon 01 Apr 2024 23:57:06 +0000 ROA not before: Mon 01 Apr 2024 23:57:06 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 2497 IP address blocks: 157.8.16.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jul 2024 02:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D Validity Not Before: Apr 1 23:57:06 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=930D90DF08A8958D8ECCBF553408ADD2920B6D57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:7d:92:ab:0c:e6:3f:b9:df:8c:3f:68:69:6a: 26:d9:6e:42:43:d1:29:67:1b:dc:64:cb:0c:5c:18: 77:5c:83:e5:31:21:4a:64:d1:8b:27:6d:16:fe:22: 33:b4:53:0b:0f:4e:87:25:50:1b:d9:e4:92:bd:46: 27:6f:56:80:ac:ed:a8:e0:f6:ff:5b:f4:2a:16:dd: 59:6a:5b:90:d6:89:b4:b4:b0:ff:fc:5c:0e:3e:69: 6c:df:d4:9e:c8:bc:ca:d8:be:c9:a8:56:fe:1c:12: 1e:3f:86:7d:bb:73:99:57:b4:f6:90:ad:5a:3a:e3: 04:bf:14:63:17:2f:be:89:5e:12:11:13:0c:9b:f6: af:bf:c7:51:16:8e:40:6c:84:89:28:96:53:3f:f4: 7f:b2:23:46:61:8a:c1:f7:8f:aa:6e:fd:6a:b0:6d: fa:92:0d:d1:34:34:55:85:21:8f:41:a6:ec:b6:ec: a4:90:b6:39:c6:cf:62:b8:08:8f:3c:8f:8e:66:e4: 4b:a3:83:20:5c:8d:3f:c1:11:08:a4:24:f6:46:d6: e7:32:b7:73:19:c1:67:c2:be:e9:70:60:dc:60:67: 99:cb:bc:cb:ec:29:bc:b7:a1:f5:91:90:d7:ac:6b: cc:c6:ba:11:d1:87:ad:6d:be:f3:7c:f0:3c:75:4b: b7:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:0D:90:DF:08:A8:95:8D:8E:CC:BF:55:34:08:AD:D2:92:0B:6D:57 X509v3 Authority Key Identifier: keyid:71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/kw2Q3wiolY2OzL9VNAit0pILbVc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.8.16.0/23 Signature Algorithm: sha256WithRSAEncryption 48:fa:d3:23:f7:95:d1:1d:01:84:ee:eb:31:13:4c:ed:fe:b7: 91:33:81:c9:36:87:07:8f:fa:ca:64:52:e8:8c:4b:4a:67:d8: bd:24:93:a6:8c:18:43:68:30:1b:fd:7e:17:ad:9e:46:c3:ba: 81:43:cc:40:29:15:14:44:98:c2:c2:ef:4d:f9:63:72:3d:25: 3c:d6:1b:05:f9:17:46:02:ef:06:3d:a8:80:59:51:aa:7c:37: 95:ea:07:c2:73:d0:39:c7:c5:b6:9e:81:01:81:65:2e:b8:32: 69:9d:9c:d1:04:a7:1e:4d:35:94:f8:92:c3:ae:ea:c3:a6:4a: a7:25:a6:ff:b5:ef:1f:4b:a9:72:42:4e:95:5e:4a:78:03:a3: ac:d0:58:40:03:fc:4b:4e:7f:66:97:78:1e:dc:da:3c:02:8b: eb:83:c0:cd:87:eb:5f:26:df:f5:a6:30:cf:99:17:b1:8c:d0: 3a:45:c6:b7:a0:b2:d6:50:dd:47:aa:47:e6:09:be:88:bb:9d: 72:a7:0f:15:c2:d6:72:54:a8:e0:86:95:c8:e0:e4:b1:5a:11: 33:33:4b:84:8b:12:3d:c6:43:0d:34:37:21:1e:cc:a8:4d:dd: 36:90:52:29:47:3b:f4:32:06:e9:f2:d5:1b:d9:6c:e0:6e:ed: b6:d4:ab:7d -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBDTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3MTkx Q0I5RjRDNDIyRDNCM0Q2NzUzNzFCMThBOERBRERBRTg3OThEMB4XDTI0MDQwMTIz NTcwNloXDTI1MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoOTMwRDkwREYwOEE4OTU4 RDhFQ0NCRjU1MzQwOEFERDI5MjBCNkQ1NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAM99kqsM5j+534w/aGlqJtluQkPRKWcb3GTLDFwYd1yD5TEhSmTR iydtFv4iM7RTCw9OhyVQG9nkkr1GJ29WgKztqOD2/1v0KhbdWWpbkNaJtLSw//xc Dj5pbN/Unsi8yti+yahW/hwSHj+GfbtzmVe09pCtWjrjBL8UYxcvvoleEhETDJv2 r7/HURaOQGyEiSiWUz/0f7IjRmGKwfePqm79arBt+pIN0TQ0VYUhj0Gm7LbspJC2 OcbPYrgIjzyPjmbkS6ODIFyNP8ERCKQk9kbW5zK3cxnBZ8K+6XBg3GBnmcu8y+wp vLeh9ZGQ16xrzMa6EdGHrW2+83zwPHVLt6MCAwEAAaOCAiYwggIiMB0GA1UdDgQW BBSTDZDfCKiVjY7Mv1U0CK3SkgttVzAfBgNVHSMEGDAWgBRxkcufTEItOz1nU3Gx io2t2uh5jTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTkzNy9jWkhMbjB4Q0xUczlaMU54c1lxTnJkcm9lWTAuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9jWkhMbjB4Q0xUczlaMU54c1lxTnJk cm9lWTAuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTkzNy9rdzJRM3dpb2xZMk96TDlWTkFpdDBwSUxiVmMucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBnQgQMA0GCSqGSIb3DQEBCwUAA4IBAQBI+tMj95XRHQGE7usxE0zt/reR M4HJNocHj/rKZFLojEtKZ9i9JJOmjBhDaDAb/X4XrZ5Gw7qBQ8xAKRUURJjCwu9N +WNyPSU81hsF+RdGAu8GPaiAWVGqfDeV6gfCc9A5x8W2noEBgWUuuDJpnZzRBKce TTWU+JLDrurDpkqnJab/te8fS6lyQk6VXkp4A6Os0FhAA/xLTn9ml3ge3No8Aovr g8DNh+tfJt/1pjDPmRexjNA6Rca3oLLWUN1HqkfmCb6Iu51ypw8VwtZyVKjghpXI 4OSxWhEzM0uEixI9xkMNNDchHsyoTd02kFIpRzv0Mgbp8tUb2Wzgbu221Kt9 -----END CERTIFICATE-----Generated at Wed Jun 26 09:28:35 2024 by rpki-client on console-fra.rpki-client.org