$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1937/tnL-Z5ow6EqeMrcIz2FCpvj0qzs.roa File: tnL-Z5ow6EqeMrcIz2FCpvj0qzs.roa (raw, json) Hash identifier: 84h1Cu+aRsxVJrgqLoCPBSxkvXRHhzHEix1Q7VnL6JY= Subject key identifier: B6:72:FE:67:9A:30:E8:4A:9E:32:B7:08:CF:61:42:A6:F8:F4:AB:3B Certificate issuer: /CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D Certificate serial: 12 Authority key identifier: 71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/tnL-Z5ow6EqeMrcIz2FCpvj0qzs.roa Signing time: Tue 02 Apr 2024 00:01:14 +0000 ROA not before: Tue 02 Apr 2024 00:01:14 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 2497 IP address blocks: 157.8.20.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jul 2024 02:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D Validity Not Before: Apr 2 00:01:14 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=B672FE679A30E84A9E32B708CF6142A6F8F4AB3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:de:7a:b2:5e:56:c7:01:2f:03:57:81:c1:9c: 20:25:80:2d:ed:5e:30:c9:be:d9:00:36:19:62:8c: e2:07:e3:fd:ed:25:10:21:f3:61:fb:d2:ed:21:6f: 1a:29:95:02:dd:ac:5e:64:14:aa:8f:d3:56:1e:dc: 37:d9:c5:4d:be:b6:96:dc:23:86:a3:8b:3f:b3:c7: 15:5d:01:b1:a1:14:2b:a8:e1:03:05:ea:7d:98:01: c2:4a:9b:82:62:f8:87:fe:a6:ea:92:ab:ff:73:dc: e5:2f:f5:cb:33:b5:45:24:10:af:ad:ef:52:17:f2: 83:a7:34:c0:7b:97:56:79:f1:be:15:4d:7b:83:a8: f6:0e:24:13:ca:a9:a9:71:63:0b:91:90:41:ef:8b: dd:db:a5:a4:fa:51:88:e6:4c:1d:f1:c9:0d:f5:1e: 16:f0:92:d5:11:6b:af:1b:29:83:ed:a0:fb:5b:6f: b2:ed:5c:f4:47:8b:a4:61:43:82:0c:56:6f:ba:cc: 3c:2b:af:ed:bd:ef:40:53:15:41:a4:4d:9f:d0:35: 12:20:60:7a:da:5b:75:a7:55:c7:22:9c:81:95:ce: 2c:9a:bd:55:2b:8e:58:20:36:bd:ab:19:3b:f4:45: aa:da:06:4a:06:1e:a8:7d:83:90:86:6c:8b:72:b7: 64:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:72:FE:67:9A:30:E8:4A:9E:32:B7:08:CF:61:42:A6:F8:F4:AB:3B X509v3 Authority Key Identifier: keyid:71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/tnL-Z5ow6EqeMrcIz2FCpvj0qzs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.8.20.0/23 Signature Algorithm: sha256WithRSAEncryption 88:e1:21:36:7b:d2:ef:3b:4d:6c:e0:c5:b5:95:fa:b6:3a:ec: 41:c1:eb:d2:06:f9:a0:49:cb:72:58:d5:3a:3c:42:f1:d4:47: f2:d0:1d:cb:11:5e:c4:78:f3:b1:4d:af:52:38:e7:ec:b2:81: 0e:4a:e7:a4:fa:25:d5:8f:c4:4d:d2:cd:f4:87:ec:44:3d:cd: 0b:aa:32:da:31:7f:3d:a6:b9:b0:ad:2f:25:14:74:88:16:47: e6:ae:29:51:51:dc:7d:43:49:a9:99:50:62:a8:d0:90:51:2c: 81:8d:91:26:76:69:49:b1:80:49:a4:1d:bf:11:70:70:e4:cb: b8:54:49:38:a8:65:0a:04:55:c7:52:89:e5:b1:6d:9e:25:1c: 50:dd:63:ba:06:30:d3:26:06:96:4d:5d:d9:56:e2:b2:c1:9f: 65:77:73:8e:04:f7:1b:6e:cf:89:89:d6:76:dc:18:be:94:4b: 28:6d:13:89:a0:f4:d4:cc:ab:f1:59:aa:86:3a:6b:0a:d9:05: b2:fd:ad:51:11:59:62:49:d0:bc:8e:21:68:b7:7d:6b:5f:4b: 72:ee:af:96:d1:6f:3d:bf:14:c4:47:ba:7e:d9:67:45:8f:21: 45:7d:ea:c9:b0:5f:1a:8c:02:9e:52:5b:69:46:9a:a7:14:45: fe:63:fd:e3 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBEjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3MTkx Q0I5RjRDNDIyRDNCM0Q2NzUzNzFCMThBOERBRERBRTg3OThEMB4XDTI0MDQwMjAw MDExNFoXDTI1MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoQjY3MkZFNjc5QTMwRTg0 QTlFMzJCNzA4Q0Y2MTQyQTZGOEY0QUIzQjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMfeerJeVscBLwNXgcGcICWALe1eMMm+2QA2GWKM4gfj/e0lECHz YfvS7SFvGimVAt2sXmQUqo/TVh7cN9nFTb62ltwjhqOLP7PHFV0BsaEUK6jhAwXq fZgBwkqbgmL4h/6m6pKr/3Pc5S/1yzO1RSQQr63vUhfyg6c0wHuXVnnxvhVNe4Oo 9g4kE8qpqXFjC5GQQe+L3dulpPpRiOZMHfHJDfUeFvCS1RFrrxspg+2g+1tvsu1c 9EeLpGFDggxWb7rMPCuv7b3vQFMVQaRNn9A1EiBgetpbdadVxyKcgZXOLJq9VSuO WCA2vasZO/RFqtoGSgYeqH2DkIZsi3K3ZC0CAwEAAaOCAiYwggIiMB0GA1UdDgQW BBS2cv5nmjDoSp4ytwjPYUKm+PSrOzAfBgNVHSMEGDAWgBRxkcufTEItOz1nU3Gx io2t2uh5jTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTkzNy9jWkhMbjB4Q0xUczlaMU54c1lxTnJkcm9lWTAuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9jWkhMbjB4Q0xUczlaMU54c1lxTnJk cm9lWTAuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTkzNy90bkwtWjVvdzZFcWVNcmNJejJGQ3B2ajBxenMucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBnQgUMA0GCSqGSIb3DQEBCwUAA4IBAQCI4SE2e9LvO01s4MW1lfq2OuxB wevSBvmgSctyWNU6PELx1Efy0B3LEV7EePOxTa9SOOfssoEOSuek+iXVj8RN0s30 h+xEPc0LqjLaMX89prmwrS8lFHSIFkfmrilRUdx9Q0mpmVBiqNCQUSyBjZEmdmlJ sYBJpB2/EXBw5Mu4VEk4qGUKBFXHUonlsW2eJRxQ3WO6BjDTJgaWTV3ZVuKywZ9l d3OOBPcbbs+JidZ23Bi+lEsobROJoPTUzKvxWaqGOmsK2QWy/a1REVliSdC8jiFo t31rX0ty7q+W0W89vxTER7p+2WdFjyFFferJsF8ajAKeUltpRpqnFEX+Y/3j -----END CERTIFICATE-----Generated at Wed Jun 26 09:28:35 2024 by rpki-client on console-fra.rpki-client.org