$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/GcLKYsSxRuq-KX-dZ0VAqhepMY0.roa File: GcLKYsSxRuq-KX-dZ0VAqhepMY0.roa (raw, json) Hash identifier: Pt+bfILvcO5nI+pQ7rTUtg2G483UMzBk+sLTGZctRE4= Subject key identifier: 19:C2:CA:62:C4:B1:46:EA:BE:29:7F:9D:67:45:40:AA:17:A9:31:8D Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0241 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/GcLKYsSxRuq-KX-dZ0VAqhepMY0.roa Signing time: Fri 31 May 2024 01:35:29 +0000 ROA not before: Fri 31 May 2024 01:35:29 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 10013 IP address blocks: 61.211.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Oct 2024 13:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 577 (0x241) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 31 01:35:29 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=19C2CA62C4B146EABE297F9D674540AA17A9318D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:42:2b:8d:0c:a2:77:d3:07:94:91:25:5e:14: 86:00:00:e6:f2:b6:3a:f0:75:9b:62:da:96:17:ee: 14:6f:42:77:a1:45:18:d9:f8:39:7f:2a:12:e5:15: b4:3e:22:10:54:61:49:cc:5d:45:35:31:c4:d8:0a: 23:2d:87:ef:99:21:30:06:cd:d1:e4:db:db:34:18: 76:f9:e2:c4:1d:e8:6f:50:90:ee:15:90:cc:d4:52: d3:50:a3:78:eb:ff:78:b1:e5:81:eb:0e:b4:55:fe: 9e:78:dd:93:3d:60:b3:7f:76:47:06:dd:b0:1c:d9: 8d:65:71:5c:09:e9:19:30:a3:19:21:6d:88:b3:ce: 68:bb:d7:0f:11:bd:e2:ea:54:f8:36:ac:8b:97:a2: 61:1b:7d:2b:f3:da:81:12:7e:20:41:fa:c1:f2:00: 1a:01:3c:8e:26:1c:cf:3a:52:33:02:bc:af:08:e6: 79:26:a3:0b:73:b6:9e:53:7f:0d:d2:25:90:37:23: 3c:fb:32:f7:b3:f1:69:5b:03:2b:ba:bc:40:49:ce: 2a:30:58:f1:6a:37:44:f8:38:ef:8c:88:85:81:52: 01:bc:3a:1f:a4:54:97:83:9b:38:2f:88:8d:fe:fc: 44:c5:56:86:44:8d:8b:da:1a:75:63:1e:c8:ba:52: 41:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:C2:CA:62:C4:B1:46:EA:BE:29:7F:9D:67:45:40:AA:17:A9:31:8D X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/GcLKYsSxRuq-KX-dZ0VAqhepMY0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.211.240.0/20 Signature Algorithm: sha256WithRSAEncryption 3c:2b:cb:86:0d:04:58:68:8e:8f:2d:83:21:95:78:3b:33:2d: 2a:58:85:ff:e9:7b:59:69:58:fe:b2:2d:2f:01:1a:59:d8:30: 50:21:f8:6b:19:55:06:75:c6:1c:35:78:da:fd:b1:ad:40:5f: f5:c6:47:56:c5:11:e4:8e:9f:22:3a:66:0c:0d:a9:48:b8:bc: c0:02:3d:bd:05:c3:ff:a0:47:a5:d0:53:3d:52:e6:04:64:8e: 2f:43:95:79:34:c0:89:50:29:c4:a9:50:9f:46:e1:ba:51:42: e0:5d:73:0a:1d:a0:d6:c9:5e:74:30:31:7c:f7:ae:e4:50:cd: 2d:2e:e9:31:27:e6:c3:a6:f8:5b:20:98:cd:17:d4:87:97:4f: 34:c9:61:ab:35:0f:cb:2a:45:f8:e2:ff:41:5a:18:42:7e:74: 94:0b:23:00:42:7b:f4:f7:f1:7f:a1:cf:78:76:b2:fb:00:c9: e3:29:64:60:44:ce:cb:1f:85:a7:54:f8:bd:5a:18:20:2f:6a: fc:fd:ac:d6:09:5c:d5:01:25:51:f9:3b:53:89:02:3a:1e:2f: d5:13:a9:39:de:59:99:95:ed:18:64:f7:9c:d4:80:0f:ca:78: 8e:dc:f6:78:3d:76:8d:de:94:1c:56:a5:03:7c:58:85:64:55: 4a:8e:f8:02 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAkEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNDA1MzEw MTM1MjlaFw0yNTA1MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDE5QzJDQTYyQzRCMTQ2 RUFCRTI5N0Y5RDY3NDU0MEFBMTdBOTMxOEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/QiuNDKJ30weUkSVeFIYAAObytjrwdZti2pYX7hRvQnehRRjZ +Dl/KhLlFbQ+IhBUYUnMXUU1McTYCiMth++ZITAGzdHk29s0GHb54sQd6G9QkO4V kMzUUtNQo3jr/3ix5YHrDrRV/p543ZM9YLN/dkcG3bAc2Y1lcVwJ6RkwoxkhbYiz zmi71w8RveLqVPg2rIuXomEbfSvz2oESfiBB+sHyABoBPI4mHM86UjMCvK8I5nkm owtztp5Tfw3SJZA3Izz7Mvez8WlbAyu6vEBJziowWPFqN0T4OO+MiIWBUgG8Oh+k VJeDmzgviI3+/ETFVoZEjYvaGnVjHsi6UkFhAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUGcLKYsSxRuq+KX+dZ0VAqhepMY0wHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L0djTEtZc1N4UnVxLUtYLWRaMFZBcWhlcE1ZMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQ90/AwDQYJKoZIhvcNAQELBQADggEBADwry4YNBFhojo8tgyGVeDszLSpY hf/pe1lpWP6yLS8BGlnYMFAh+GsZVQZ1xhw1eNr9sa1AX/XGR1bFEeSOnyI6ZgwN qUi4vMACPb0Fw/+gR6XQUz1S5gRkji9DlXk0wIlQKcSpUJ9G4bpRQuBdcwodoNbJ XnQwMXz3ruRQzS0u6TEn5sOm+FsgmM0X1IeXTzTJYas1D8sqRfji/0FaGEJ+dJQL IwBCe/T38X+hz3h2svsAyeMpZGBEzssfhadU+L1aGCAvavz9rNYJXNUBJVH5O1OJ AjoeL9UTqTneWZmV7Rhk95zUgA/KeI7c9ng9do3elBxWpQN8WIVkVUqO+AI= -----END CERTIFICATE-----Generated at Fri Sep 27 05:00:22 2024 by rpki-client on console-fra.rpki-client.org