$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/21042/dfKTjqcbIyi1Je1b7RZo5o6c-Kg.roa File: dfKTjqcbIyi1Je1b7RZo5o6c-Kg.roa (raw, json) Hash identifier: IV9ASSH4HkTRsGZlclMG8WXrkVhAHk1IqoXNwwLcdos= Subject key identifier: 75:F2:93:8E:A7:1B:23:28:B5:25:ED:5B:ED:16:68:E6:8E:9C:F8:A8 Certificate issuer: /CN=4F3E6396C9D76CBDF4ED2D5DE7A2A760214C9837 Certificate serial: 24 Authority key identifier: 4F:3E:63:96:C9:D7:6C:BD:F4:ED:2D:5D:E7:A2:A7:60:21:4C:98:37 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tz5jlsnXbL307S1d56KnYCFMmDc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/dfKTjqcbIyi1Je1b7RZo5o6c-Kg.roa Signing time: Tue 26 Sep 2023 06:21:15 +0000 ROA not before: Tue 26 Sep 2023 06:21:15 +0000 ROA not after: Sat 14 Sep 2024 01:30:03 +0000 asID: 23637 IP address blocks: 101.203.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/Tz5jlsnXbL307S1d56KnYCFMmDc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/Tz5jlsnXbL307S1d56KnYCFMmDc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tz5jlsnXbL307S1d56KnYCFMmDc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4F3E6396C9D76CBDF4ED2D5DE7A2A760214C9837 Validity Not Before: Sep 26 06:21:15 2023 GMT Not After : Sep 14 01:30:03 2024 GMT Subject: CN=75F2938EA71B2328B525ED5BED1668E68E9CF8A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:7b:a6:6f:fc:fb:bb:79:f9:56:af:a4:e7:23: c3:41:2a:c0:61:85:93:27:d0:58:c8:4c:20:a8:8b: 35:e2:03:ac:9a:b1:2d:1b:0b:87:fb:80:0c:78:de: 50:0d:70:1c:31:43:f4:05:6c:73:77:a5:51:be:3c: b5:9b:1f:5b:b3:7b:23:3c:d4:c9:83:a3:9f:9f:1c: ea:4b:6a:0f:f6:69:58:c0:8c:34:c7:a7:f6:dc:c0: f7:49:bc:12:0c:71:01:3a:15:7e:41:45:78:8b:35: 94:99:1c:b9:f6:0d:a5:67:6e:7e:57:c2:5e:7a:b7: 42:e0:4c:ac:8b:2f:40:4b:e7:db:07:24:a4:4b:3a: 94:67:04:88:ad:ab:28:3d:9c:eb:1b:19:c3:49:5e: 21:ac:2c:7c:ae:a8:7e:33:e2:8b:08:af:a8:4c:f3: 39:3c:cc:74:39:6f:e1:f9:86:82:2c:2a:d0:88:25: 8c:47:e4:04:59:a0:25:4a:d1:d9:26:16:dc:77:19: 8f:3c:16:55:7b:b3:b8:4e:d6:34:88:ca:ac:e2:bb: 24:70:96:ea:d6:84:42:5f:5c:02:fa:0a:35:18:59: 7b:5a:a1:23:e2:26:5c:55:5c:c8:4f:9d:6b:e5:44: 13:1a:3e:76:d9:27:9c:8b:80:47:a0:e7:a4:5e:10: f7:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:F2:93:8E:A7:1B:23:28:B5:25:ED:5B:ED:16:68:E6:8E:9C:F8:A8 X509v3 Authority Key Identifier: keyid:4F:3E:63:96:C9:D7:6C:BD:F4:ED:2D:5D:E7:A2:A7:60:21:4C:98:37 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/Tz5jlsnXbL307S1d56KnYCFMmDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tz5jlsnXbL307S1d56KnYCFMmDc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/dfKTjqcbIyi1Je1b7RZo5o6c-Kg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.203.192.0/18 Signature Algorithm: sha256WithRSAEncryption 85:92:e4:e7:b3:fe:c5:3a:79:c1:44:65:b2:47:8b:7c:3a:38: 9e:8f:ad:77:8c:99:a0:97:cf:92:58:c7:46:0b:4f:9c:f9:57: f4:ce:6d:b4:c1:1b:e6:d2:2b:50:08:3b:c6:32:32:61:d8:ce: 11:aa:d2:69:66:5f:21:72:88:42:9f:4f:e1:fe:49:87:ec:a8: 3b:d7:48:78:4d:fd:35:2c:5e:ca:17:e6:ce:cf:a5:5e:53:3b: f5:4e:22:1c:46:18:59:bd:c9:a1:49:bc:32:e3:ac:1f:fc:30: da:3e:5c:c3:6d:77:02:c6:c3:80:7d:46:5d:a5:5a:92:67:f1: 2a:a3:6b:03:bc:9f:aa:3e:1b:4a:4e:48:65:54:97:5a:52:93: 50:e5:7a:8f:21:b0:99:5e:03:ba:fc:c1:dd:c5:53:58:a8:34: df:79:47:7b:bb:4a:38:66:8a:8f:95:55:83:32:bb:36:a9:ea: 26:f9:d5:a0:c7:30:f1:c9:a4:07:f5:38:81:fd:b1:01:58:99: aa:b7:7e:53:8f:e3:ea:ab:00:5a:e4:fe:95:6d:6f:17:69:01: 0f:0c:a2:d2:c0:dd:68:ce:ad:08:23:6a:f7:1c:6a:20:f0:7c: 77:b9:5e:da:34:ec:32:b6:ba:90:dd:40:4d:be:f5:aa:6c:3c: 7a:dc:78:59 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBJDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0RjNF NjM5NkM5RDc2Q0JERjRFRDJENURFN0EyQTc2MDIxNEM5ODM3MB4XDTIzMDkyNjA2 MjExNVoXDTI0MDkxNDAxMzAwM1owMzExMC8GA1UEAxMoNzVGMjkzOEVBNzFCMjMy OEI1MjVFRDVCRUQxNjY4RTY4RTlDRjhBODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAO97pm/8+7t5+VavpOcjw0EqwGGFkyfQWMhMIKiLNeIDrJqxLRsL h/uADHjeUA1wHDFD9AVsc3elUb48tZsfW7N7IzzUyYOjn58c6ktqD/ZpWMCMNMen 9tzA90m8EgxxAToVfkFFeIs1lJkcufYNpWduflfCXnq3QuBMrIsvQEvn2wckpEs6 lGcEiK2rKD2c6xsZw0leIawsfK6ofjPiiwivqEzzOTzMdDlv4fmGgiwq0IgljEfk BFmgJUrR2SYW3HcZjzwWVXuzuE7WNIjKrOK7JHCW6taEQl9cAvoKNRhZe1qhI+Im XFVcyE+da+VEExo+dtknnIuAR6DnpF4Q948CAwEAAaOCAigwggIkMB0GA1UdDgQW BBR18pOOpxsjKLUl7VvtFmjmjpz4qDAfBgNVHSMEGDAWgBRPPmOWyddsvfTtLV3n oqdgIUyYNzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjEwNDIvVHo1amxzblhiTDMwN1MxZDU2S25ZQ0ZNbURjLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvVHo1amxzblhiTDMwN1MxZDU2S25Z Q0ZNbURjLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIxMDQyL2RmS1RqcWNiSXlpMUplMWI3UlpvNW82Yy1LZy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAZly8AwDQYJKoZIhvcNAQELBQADggEBAIWS5Oez/sU6ecFEZbJHi3w6 OJ6PrXeMmaCXz5JYx0YLT5z5V/TObbTBG+bSK1AIO8YyMmHYzhGq0mlmXyFyiEKf T+H+SYfsqDvXSHhN/TUsXsoX5s7PpV5TO/VOIhxGGFm9yaFJvDLjrB/8MNo+XMNt dwLGw4B9Rl2lWpJn8SqjawO8n6o+G0pOSGVUl1pSk1Dleo8hsJleA7r8wd3FU1io NN95R3u7Sjhmio+VVYMyuzap6ib51aDHMPHJpAf1OIH9sQFYmaq3flOP4+qrAFrk /pVtbxdpAQ8MotLA3WjOrQgjavccaiDwfHe5Xto07DK2upDdQE2+9apsPHrceFk= -----END CERTIFICATE-----Generated at Sun Jun 2 11:54:23 2024 by rpki-client on console-fra.rpki-client.org