$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/530/u3OYpOL3Hz0qzKYN5TCo-M2cl2Y.roa File: u3OYpOL3Hz0qzKYN5TCo-M2cl2Y.roa (raw, json) Hash identifier: EkZ5PzO3E8e9NmG8SQ3IQy/E7VkTJz+6Q2F+hi3vIBE= Subject key identifier: BB:73:98:A4:E2:F7:1F:3D:2A:CC:A6:0D:E5:30:A8:F8:CD:9C:97:66 Certificate issuer: /CN=1B20A06A21205820B28FD06CE0A84F03FCDAEBC5 Certificate serial: 46 Authority key identifier: 1B:20:A0:6A:21:20:58:20:B2:8F:D0:6C:E0:A8:4F:03:FC:DA:EB:C5 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GyCgaiEgWCCyj9Bs4KhPA_za68U.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/u3OYpOL3Hz0qzKYN5TCo-M2cl2Y.roa Signing time: Mon 18 Dec 2023 01:54:56 +0000 ROA not before: Mon 18 Dec 2023 01:54:56 +0000 ROA not after: Sat 14 Dec 2024 01:30:03 +0000 asID: 59125 IP address blocks: 218.223.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/GyCgaiEgWCCyj9Bs4KhPA_za68U.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/GyCgaiEgWCCyj9Bs4KhPA_za68U.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GyCgaiEgWCCyj9Bs4KhPA_za68U.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 30 Jun 2024 06:27:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1B20A06A21205820B28FD06CE0A84F03FCDAEBC5 Validity Not Before: Dec 18 01:54:56 2023 GMT Not After : Dec 14 01:30:03 2024 GMT Subject: CN=BB7398A4E2F71F3D2ACCA60DE530A8F8CD9C9766 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f2:64:57:b9:10:39:a1:de:48:d8:a8:26:ab: 5e:fc:d4:78:12:be:ee:7a:f9:a9:cf:5e:e7:48:00: dd:b5:64:fd:b0:b1:34:51:b1:b5:2b:fd:a4:e7:5d: 9d:de:5f:40:1e:73:fd:fe:49:eb:3d:a9:97:ad:30: 19:f4:bb:1a:22:bb:cf:e1:e7:e4:8f:7e:48:14:59: 1a:08:3c:c3:f7:13:3f:af:d1:aa:ac:94:be:45:c6: 5c:a0:c6:20:bb:fa:cd:36:22:b5:7f:54:39:ee:b3: 17:0f:12:b6:61:64:d1:ef:7e:6a:95:e3:23:1b:00: b1:b8:ae:2f:c2:43:e1:af:d9:da:d0:1b:54:67:45: 64:cf:81:38:37:c0:31:7d:95:83:4f:e4:4f:0c:26: ae:51:7b:2b:20:59:ef:d5:fb:2a:65:22:bd:90:a4: 0f:ca:62:de:77:fa:b9:87:18:76:e1:1d:27:d7:f0: 38:3a:92:82:04:9c:30:d8:c6:0b:87:d0:d1:a3:d7: 41:3f:7d:4a:0d:a1:f8:26:07:62:fb:64:1e:8b:ba: dc:51:da:f8:41:7f:59:c4:f7:e7:1f:8a:ac:01:99: ee:14:7e:aa:65:f0:d6:fb:19:57:fc:6d:bd:10:a8: 79:f6:57:82:49:32:4d:21:07:f7:0f:97:00:32:12: 1d:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:73:98:A4:E2:F7:1F:3D:2A:CC:A6:0D:E5:30:A8:F8:CD:9C:97:66 X509v3 Authority Key Identifier: keyid:1B:20:A0:6A:21:20:58:20:B2:8F:D0:6C:E0:A8:4F:03:FC:DA:EB:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/GyCgaiEgWCCyj9Bs4KhPA_za68U.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GyCgaiEgWCCyj9Bs4KhPA_za68U.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/u3OYpOL3Hz0qzKYN5TCo-M2cl2Y.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.223.128.0/18 Signature Algorithm: sha256WithRSAEncryption 0d:b6:1d:87:b3:78:15:88:04:23:21:22:1a:1b:47:f0:15:40: 03:10:d0:18:84:39:ee:92:11:5e:13:83:6b:ac:d6:ef:40:f2: fb:fb:72:e6:dc:9d:e4:e0:5b:25:2d:79:d5:9a:50:d5:d1:aa: 93:30:33:07:9e:f5:1a:37:1f:99:58:53:7c:c7:1e:a6:25:4c: 44:72:16:e0:b5:c3:5b:c6:e4:34:53:cb:bb:cf:50:74:1a:4d: ff:f6:e5:3a:1e:f6:b4:89:90:54:ae:e9:07:b6:c2:b5:fe:25: ef:de:4c:d3:3f:cc:ea:74:58:b0:68:c6:58:72:00:85:73:aa: b0:5d:90:9d:a2:d4:ec:cc:24:11:71:be:2c:b1:5d:ed:6d:61: db:fe:02:d3:a0:53:14:3b:c9:6a:4c:c3:f4:ea:a9:f8:ce:51: 26:72:5d:c2:4e:cb:60:d8:14:27:a2:99:4d:91:c7:c6:af:b1: c9:78:2a:97:65:24:54:d1:4c:4c:00:36:72:ef:1f:dd:e8:3f: 29:d0:7a:0e:9a:f6:9d:24:a9:c3:06:92:ba:cd:d2:f1:2a:cc: 3e:09:9b:31:5e:a7:eb:08:58:cc:4b:71:7a:63:7d:96:cd:53: b5:d6:45:c3:c7:d5:26:9c:fc:dc:b6:3d:19:69:03:fc:c0:dd: 0c:ec:a7:8d -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBRjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxQjIw QTA2QTIxMjA1ODIwQjI4RkQwNkNFMEE4NEYwM0ZDREFFQkM1MB4XDTIzMTIxODAx NTQ1NloXDTI0MTIxNDAxMzAwM1owMzExMC8GA1UEAxMoQkI3Mzk4QTRFMkY3MUYz RDJBQ0NBNjBERTUzMEE4RjhDRDlDOTc2NjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMPyZFe5EDmh3kjYqCarXvzUeBK+7nr5qc9e50gA3bVk/bCxNFGx tSv9pOddnd5fQB5z/f5J6z2pl60wGfS7GiK7z+Hn5I9+SBRZGgg8w/cTP6/RqqyU vkXGXKDGILv6zTYitX9UOe6zFw8StmFk0e9+apXjIxsAsbiuL8JD4a/Z2tAbVGdF ZM+BODfAMX2Vg0/kTwwmrlF7KyBZ79X7KmUivZCkD8pi3nf6uYcYduEdJ9fwODqS ggScMNjGC4fQ0aPXQT99Sg2h+CYHYvtkHou63FHa+EF/WcT35x+KrAGZ7hR+qmXw 1vsZV/xtvRCoefZXgkkyTSEH9w+XADISHb8CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBS7c5ik4vcfPSrMpg3lMKj4zZyXZjAfBgNVHSMEGDAWgBQbIKBqISBYILKP0Gzg qE8D/NrrxTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTMwL0d5Q2dhaUVnV0NDeWo5QnM0S2hQQV96YTY4VS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0d5Q2dhaUVnV0NDeWo5QnM0S2hQQV96 YTY4VS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81MzAvdTNPWXBPTDNIejBxektZTjVUQ28tTTJjbDJZLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBtrfgDANBgkqhkiG9w0BAQsFAAOCAQEADbYdh7N4FYgEIyEiGhtH8BVAAxDQ GIQ57pIRXhODa6zW70Dy+/ty5tyd5OBbJS151ZpQ1dGqkzAzB571GjcfmVhTfMce piVMRHIW4LXDW8bkNFPLu89QdBpN//blOh72tImQVK7pB7bCtf4l795M0z/M6nRY sGjGWHIAhXOqsF2QnaLU7MwkEXG+LLFd7W1h2/4C06BTFDvJakzD9Oqp+M5RJnJd wk7LYNgUJ6KZTZHHxq+xyXgql2UkVNFMTAA2cu8f3eg/KdB6Dpr2nSSpwwaSus3S 8SrMPgmbMV6n6whYzEtxemN9ls1TtdZFw8fVJpz83LY9GWkD/MDdDOynjQ== -----END CERTIFICATE-----Generated at Mon Jun 24 23:50:30 2024 by rpki-client on console-fra.rpki-client.org