$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/hoxbuxAXOO5KB8tyKTxxSuBD6R0.roa File: hoxbuxAXOO5KB8tyKTxxSuBD6R0.roa (raw, json) Hash identifier: DSudJVBaZCsAUOdR3HOVl48KQTEFxrx/ANjgzqvcOEA= Subject key identifier: 86:8C:5B:BB:10:17:38:EE:4A:07:CB:72:29:3C:71:4A:E0:43:E9:1D Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 021F Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/hoxbuxAXOO5KB8tyKTxxSuBD6R0.roa Signing time: Fri 31 May 2024 01:29:21 +0000 ROA not before: Fri 31 May 2024 01:29:21 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 10013 IP address blocks: 36.52.192.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Oct 2024 13:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 543 (0x21f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 31 01:29:21 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=868C5BBB101738EE4A07CB72293C714AE043E91D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:b4:4e:4d:3f:e3:c9:0f:7e:c9:31:90:b1:22: 0d:94:8f:1a:06:ae:77:c2:a7:30:53:0d:d0:89:14: a4:c2:a7:51:1d:f1:54:c4:53:36:3f:13:9f:b4:d0: e8:6f:ec:7d:c0:31:51:19:38:9d:1c:e2:b9:f1:08: 5b:e5:b9:76:4f:b6:8f:57:78:60:7d:83:c6:b1:c3: 46:64:5b:bc:b6:50:36:0c:b1:53:be:7f:b3:6b:0e: 16:b1:4a:fe:aa:10:f5:91:29:4c:5f:f5:78:c0:c5: 7f:61:98:d4:05:e3:fc:96:e4:86:4a:ab:23:6a:05: ec:5c:e0:d0:71:6c:7a:39:e7:d2:5b:39:71:dc:d9: be:23:3f:f8:bd:ee:63:4b:71:e6:db:88:8d:76:ac: 66:1f:86:a9:ec:da:12:a1:5e:57:a9:18:47:ab:d9: d8:5d:1c:90:ce:93:6a:e5:e6:a1:2e:b9:3a:0a:56: 47:1d:4b:97:f6:13:09:7a:e3:e6:6c:c1:9a:7e:03: 10:71:98:81:20:93:75:ea:1b:cb:19:25:24:81:3c: 26:7e:9d:f8:22:18:9e:31:92:88:74:55:7c:13:ab: ca:bc:65:65:94:8f:d4:64:bd:9e:5e:4a:9e:2d:ca: bc:fa:92:71:9a:8e:a5:41:92:be:b5:86:96:10:e2: f8:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:8C:5B:BB:10:17:38:EE:4A:07:CB:72:29:3C:71:4A:E0:43:E9:1D X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/hoxbuxAXOO5KB8tyKTxxSuBD6R0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.52.192.0/20 Signature Algorithm: sha256WithRSAEncryption 40:29:4d:9f:d2:4f:f6:6d:e1:10:f5:c7:b7:af:af:32:8c:84: f6:e5:ec:e0:cc:99:37:2c:40:05:f5:48:b3:89:6f:6d:b8:93: ed:cb:14:66:da:6d:8e:36:16:48:0e:5b:fd:a9:6f:3e:7e:90: fd:2b:6a:f4:d0:84:43:b9:8d:da:4c:74:3a:3a:76:50:9f:b9: 71:c1:c6:9e:84:6d:0b:bc:02:21:b7:5a:ae:24:00:c2:f0:e9: 73:6a:c1:2a:36:49:4e:f3:d3:11:51:af:8f:89:fa:95:65:18: d1:99:31:cc:19:fd:1f:10:00:d6:6a:e9:2b:d1:7e:d6:d1:51: a7:2a:86:f6:76:a3:d3:7c:62:d6:3f:e6:e0:fd:93:0e:d3:aa: 76:92:bf:51:85:b0:98:7c:80:03:6b:33:2e:8c:6f:84:96:91: ac:2a:7d:9c:eb:7e:70:22:01:4b:ef:84:6c:95:27:13:78:bc: 2d:1e:1b:ad:ad:22:fa:d6:0d:a0:41:59:29:c3:42:54:9c:23: fa:e1:d4:a7:68:a2:47:d1:02:a4:73:03:cf:05:68:16:44:d3: 03:74:7d:b4:22:00:5f:c3:7b:bf:66:d5:f6:fb:1b:d2:0a:04: d3:17:73:7c:49:fa:b7:43:b5:ef:25:c2:3e:03:33:ee:61:77: a5:48:7f:70 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAh8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNDA1MzEw MTI5MjFaFw0yNTA1MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDg2OEM1QkJCMTAxNzM4 RUU0QTA3Q0I3MjI5M0M3MTRBRTA0M0U5MUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD2tE5NP+PJD37JMZCxIg2UjxoGrnfCpzBTDdCJFKTCp1Ed8VTE UzY/E5+00Ohv7H3AMVEZOJ0c4rnxCFvluXZPto9XeGB9g8axw0ZkW7y2UDYMsVO+ f7NrDhaxSv6qEPWRKUxf9XjAxX9hmNQF4/yW5IZKqyNqBexc4NBxbHo559JbOXHc 2b4jP/i97mNLcebbiI12rGYfhqns2hKhXlepGEer2dhdHJDOk2rl5qEuuToKVkcd S5f2Ewl64+ZswZp+AxBxmIEgk3XqG8sZJSSBPCZ+nfgiGJ4xkoh0VXwTq8q8ZWWU j9RkvZ5eSp4tyrz6knGajqVBkr61hpYQ4vjZAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUhoxbuxAXOO5KB8tyKTxxSuBD6R0wHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L2hveGJ1eEFYT081S0I4dHlLVHh4U3VCRDZSMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQkNMAwDQYJKoZIhvcNAQELBQADggEBAEApTZ/ST/Zt4RD1x7evrzKMhPbl 7ODMmTcsQAX1SLOJb224k+3LFGbabY42FkgOW/2pbz5+kP0ravTQhEO5jdpMdDo6 dlCfuXHBxp6EbQu8AiG3Wq4kAMLw6XNqwSo2SU7z0xFRr4+J+pVlGNGZMcwZ/R8Q ANZq6SvRftbRUacqhvZ2o9N8YtY/5uD9kw7TqnaSv1GFsJh8gANrMy6Mb4SWkawq fZzrfnAiAUvvhGyVJxN4vC0eG62tIvrWDaBBWSnDQlScI/rh1KdookfRAqRzA88F aBZE0wN0fbQiAF/De79m1fb7G9IKBNMXc3xJ+rdDte8lwj4DM+5hd6VIf3A= -----END CERTIFICATE-----Generated at Fri Sep 27 05:00:23 2024 by rpki-client on console-fra.rpki-client.org