$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/21042/UYb9jV7PJCTb4MR0izi8om8Wa6k.roa File: UYb9jV7PJCTb4MR0izi8om8Wa6k.roa (raw, json) Hash identifier: +Ozg/xdJEbue+JwlLORgEge1nj1ZQzRd7thGg+iLnNY= Subject key identifier: 51:86:FD:8D:5E:CF:24:24:DB:E0:C4:74:8B:38:BC:A2:6F:16:6B:A9 Certificate issuer: /CN=4F3E6396C9D76CBDF4ED2D5DE7A2A760214C9837 Certificate serial: 2B Authority key identifier: 4F:3E:63:96:C9:D7:6C:BD:F4:ED:2D:5D:E7:A2:A7:60:21:4C:98:37 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tz5jlsnXbL307S1d56KnYCFMmDc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/UYb9jV7PJCTb4MR0izi8om8Wa6k.roa Signing time: Tue 26 Sep 2023 06:27:19 +0000 ROA not before: Tue 26 Sep 2023 06:27:19 +0000 ROA not after: Sat 14 Sep 2024 01:30:03 +0000 asID: 23637 IP address blocks: 203.140.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/Tz5jlsnXbL307S1d56KnYCFMmDc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/Tz5jlsnXbL307S1d56KnYCFMmDc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tz5jlsnXbL307S1d56KnYCFMmDc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4F3E6396C9D76CBDF4ED2D5DE7A2A760214C9837 Validity Not Before: Sep 26 06:27:19 2023 GMT Not After : Sep 14 01:30:03 2024 GMT Subject: CN=5186FD8D5ECF2424DBE0C4748B38BCA26F166BA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:1a:62:71:8a:21:6f:4b:87:69:b1:8e:91:ae: 3e:97:6f:79:e5:86:b8:bd:ad:8f:7f:9c:10:5b:19: 7e:ff:61:7e:74:4c:4e:07:da:b0:a9:a0:6e:b0:18: d3:1f:d4:7c:7d:6c:ad:bb:20:9e:34:f8:2b:3a:76: 11:79:78:89:c9:fe:52:e3:f3:54:4b:52:f9:52:7a: c1:29:5c:84:d7:0a:c7:06:be:ad:e9:2f:ec:3d:fa: 63:b7:0f:5f:e1:ad:39:60:a6:ec:ba:9a:32:19:70: 88:a8:bb:3c:e5:93:4b:07:a1:2f:e5:b8:7f:e9:bd: ce:1c:60:a2:1a:66:29:73:87:af:07:3d:54:70:ed: a9:8e:32:1f:67:b6:24:2b:81:ed:4c:a3:de:81:da: a7:5c:07:76:41:89:c5:68:2b:07:f2:7f:30:91:2d: d6:0b:e2:15:97:ef:27:35:ec:5e:35:b1:4e:23:07: fd:7e:d9:4b:b5:df:32:a2:8f:e5:58:5e:00:d9:14: fc:19:f0:c6:79:91:f7:10:31:1d:3c:16:6a:37:03: 6e:68:f7:77:bd:e8:18:38:cd:8a:08:f0:b8:73:7f: 25:b9:80:cd:cc:92:85:e1:a2:d8:d2:2b:25:cf:72: db:49:d9:ce:25:5c:79:e5:1f:6d:f3:5d:57:45:b3: ef:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:86:FD:8D:5E:CF:24:24:DB:E0:C4:74:8B:38:BC:A2:6F:16:6B:A9 X509v3 Authority Key Identifier: keyid:4F:3E:63:96:C9:D7:6C:BD:F4:ED:2D:5D:E7:A2:A7:60:21:4C:98:37 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/Tz5jlsnXbL307S1d56KnYCFMmDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tz5jlsnXbL307S1d56KnYCFMmDc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/UYb9jV7PJCTb4MR0izi8om8Wa6k.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.140.224.0/20 Signature Algorithm: sha256WithRSAEncryption a6:a7:0f:fe:ce:bc:93:a3:8c:0e:ca:93:d8:e2:51:2d:fc:e4: da:ee:aa:c1:20:2d:99:08:9d:7f:ea:a7:36:cd:22:2c:a9:94: 22:f4:be:24:7e:45:cf:29:74:c4:72:83:fc:ee:1d:2c:a2:e2: 10:2c:98:55:e1:35:2e:a6:3d:5c:83:d9:0e:18:64:e3:62:46: 78:2a:c4:bf:52:ff:79:e1:38:73:67:fa:2b:3e:61:8e:07:76: e6:5e:69:52:8f:ce:65:0d:06:b9:84:cd:3b:02:d7:92:63:66: e5:90:52:44:ce:60:df:49:5b:83:b7:17:63:7c:3c:d0:f1:b3: 50:34:2d:eb:ea:65:9a:3d:6f:72:b2:14:82:9a:5d:ae:c9:e4: 73:74:bd:31:b5:2b:72:c1:1f:81:6f:e5:bf:31:ec:65:e8:61: 78:5c:ec:f4:6d:1b:88:4d:a2:e5:81:19:8d:52:f9:5c:74:62: 78:c9:cb:06:f6:cc:3c:88:f5:22:81:31:43:0f:23:81:89:52: cf:7d:16:aa:45:36:29:60:ac:58:82:56:87:cf:81:a7:6f:5f: 9b:b5:6d:1a:60:eb:d7:76:70:3f:6c:05:10:a8:56:a4:b1:ee: ae:ff:cd:43:87:75:19:c2:04:be:2f:9c:48:82:5d:c1:e0:cd: 03:46:62:f9 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBKzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0RjNF NjM5NkM5RDc2Q0JERjRFRDJENURFN0EyQTc2MDIxNEM5ODM3MB4XDTIzMDkyNjA2 MjcxOVoXDTI0MDkxNDAxMzAwM1owMzExMC8GA1UEAxMoNTE4NkZEOEQ1RUNGMjQy NERCRTBDNDc0OEIzOEJDQTI2RjE2NkJBOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOsaYnGKIW9Lh2mxjpGuPpdveeWGuL2tj3+cEFsZfv9hfnRMTgfa sKmgbrAY0x/UfH1srbsgnjT4Kzp2EXl4icn+UuPzVEtS+VJ6wSlchNcKxwa+rekv 7D36Y7cPX+GtOWCm7LqaMhlwiKi7POWTSwehL+W4f+m9zhxgohpmKXOHrwc9VHDt qY4yH2e2JCuB7Uyj3oHap1wHdkGJxWgrB/J/MJEt1gviFZfvJzXsXjWxTiMH/X7Z S7XfMqKP5VheANkU/BnwxnmR9xAxHTwWajcDbmj3d73oGDjNigjwuHN/JbmAzcyS heGi2NIrJc9y20nZziVceeUfbfNdV0Wz7+8CAwEAAaOCAigwggIkMB0GA1UdDgQW BBRRhv2NXs8kJNvgxHSLOLyibxZrqTAfBgNVHSMEGDAWgBRPPmOWyddsvfTtLV3n oqdgIUyYNzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjEwNDIvVHo1amxzblhiTDMwN1MxZDU2S25ZQ0ZNbURjLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvVHo1amxzblhiTDMwN1MxZDU2S25Z Q0ZNbURjLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIxMDQyL1VZYjlqVjdQSkNUYjRNUjBpemk4b204V2E2ay5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBATLjOAwDQYJKoZIhvcNAQELBQADggEBAKanD/7OvJOjjA7Kk9jiUS38 5NruqsEgLZkInX/qpzbNIiyplCL0viR+Rc8pdMRyg/zuHSyi4hAsmFXhNS6mPVyD 2Q4YZONiRngqxL9S/3nhOHNn+is+YY4HduZeaVKPzmUNBrmEzTsC15JjZuWQUkTO YN9JW4O3F2N8PNDxs1A0LevqZZo9b3KyFIKaXa7J5HN0vTG1K3LBH4Fv5b8x7GXo YXhc7PRtG4hNouWBGY1S+Vx0YnjJywb2zDyI9SKBMUMPI4GJUs99FqpFNilgrFiC VofPgadvX5u1bRpg69d2cD9sBRCoVqSx7q7/zUOHdRnCBL4vnEiCXcHgzQNGYvk= -----END CERTIFICATE-----Generated at Sat Jun 1 15:54:18 2024 by rpki-client on console-ams.rpki-client.org