$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/6/Gq2LSnJmfTG2nKQp8MOrBNbnREI.roa File: Gq2LSnJmfTG2nKQp8MOrBNbnREI.roa (raw, json) Hash identifier: fC07vRskNTGIq6v9fZ3bJXtTCXGPD/bXMTDpWSaLgFo= Subject key identifier: 1A:AD:8B:4A:72:66:7D:31:B6:9C:A4:29:F0:C3:AB:04:D6:E7:44:42 Certificate issuer: /CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Certificate serial: 012A Authority key identifier: 29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/Gq2LSnJmfTG2nKQp8MOrBNbnREI.roa Signing time: Sun 01 Oct 2023 01:28:39 +0000 ROA not before: Sun 01 Oct 2023 01:28:39 +0000 ROA not after: Sat 14 Sep 2024 01:30:03 +0000 asID: 2497 IP address blocks: 133.236.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jul 2024 07:52:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Validity Not Before: Oct 1 01:28:39 2023 GMT Not After : Sep 14 01:30:03 2024 GMT Subject: CN=1AAD8B4A72667D31B69CA429F0C3AB04D6E74442 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:46:bf:be:36:95:1a:cd:02:17:b0:3a:17:95: 00:47:c6:a1:1c:b2:a1:b1:8e:8b:c7:5a:6d:42:6d: 13:82:fd:30:55:6a:9d:55:d7:ee:f8:d2:aa:30:54: 0f:c3:17:3d:37:ad:23:73:44:ce:60:6e:0f:75:a5: 29:44:b5:cc:56:5d:86:33:86:11:03:74:40:2a:76: 2d:04:79:56:7e:99:4e:42:63:79:7f:46:10:08:1e: d5:c9:60:1c:a9:b2:10:e4:48:c0:12:af:e2:9a:4d: 18:d5:77:37:23:6f:88:17:00:01:2e:47:e9:90:60: 31:c9:8b:06:53:b2:e8:a6:f8:38:ee:9a:8c:2d:e4: e4:71:a5:47:4c:7b:7e:7d:8a:2b:a3:97:62:bc:25: 03:71:89:c5:e6:17:de:6a:04:e7:41:6a:61:15:9a: 5f:5a:0c:fc:ec:09:70:f4:b0:73:e6:ac:0c:59:ae: 00:be:01:e3:b3:c1:47:b7:10:7e:49:a7:47:a4:a3: 3f:aa:6a:cf:f2:58:90:49:47:ff:f2:c6:87:f7:42: e9:fd:9d:b7:e0:b9:df:aa:27:11:4f:ff:a7:bf:b9: db:9a:4b:d6:b6:82:29:c1:12:7d:5c:ed:f7:6c:8d: 1f:ca:16:0f:11:78:92:13:62:65:ba:1b:02:15:15: b4:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:AD:8B:4A:72:66:7D:31:B6:9C:A4:29:F0:C3:AB:04:D6:E7:44:42 X509v3 Authority Key Identifier: keyid:29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/Gq2LSnJmfTG2nKQp8MOrBNbnREI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 133.236.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2a:1b:32:d6:b8:56:17:3d:9a:8c:77:fa:d7:81:b0:40:37:c6: eb:4c:c1:9f:88:5c:a0:0e:d3:fb:d2:62:4b:84:6b:02:68:ac: ca:09:90:20:5d:a3:66:55:f2:07:bc:3e:7c:46:1b:01:4b:41: 69:19:05:61:84:a4:3e:4b:fc:bc:9d:fe:5d:4c:d0:24:7b:e3: 9e:9f:4d:22:c3:1b:50:18:3d:1a:5e:52:29:90:bb:7a:41:46: 17:96:28:fa:40:fb:fe:f9:ba:48:2f:87:88:55:d1:06:18:59: 37:2b:7d:2e:8a:08:54:b8:cf:53:d7:ae:12:b9:7c:e6:b9:b9: 87:f9:14:93:3e:f6:80:2f:19:7d:c6:49:9d:08:38:dc:01:cf: f5:a0:33:f6:15:6d:7b:69:7f:3f:fa:fd:91:55:bf:71:fc:30: ce:32:aa:34:78:85:b8:04:75:71:3b:7e:f5:07:7c:c8:c2:c0: 4c:40:e8:31:90:56:e1:f7:83:6f:f1:59:dd:7d:75:ac:2c:9c: 0b:37:7b:75:79:08:5d:ac:87:bc:02:70:d3:f1:4a:00:16:bc: f4:0f:c4:48:be:d8:b2:40:1a:a2:bd:27:d2:36:ce:a4:62:1f: b1:75:23:d8:38:f8:5a:80:12:64:5f:53:aa:fa:1d:57:f2:7a: aa:a4:36:b6 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgICASowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjk4 M0NGRDVGOENBRkEwMDY4RDJFQkEyNUVEMEY3MDEyNDRCMTJGOTAeFw0yMzEwMDEw MTI4MzlaFw0yNDA5MTQwMTMwMDNaMDMxMTAvBgNVBAMTKDFBQUQ4QjRBNzI2NjdE MzFCNjlDQTQyOUYwQzNBQjA0RDZFNzQ0NDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTRr++NpUazQIXsDoXlQBHxqEcsqGxjovHWm1CbROC/TBVap1V 1+740qowVA/DFz03rSNzRM5gbg91pSlEtcxWXYYzhhEDdEAqdi0EeVZ+mU5CY3l/ RhAIHtXJYBypshDkSMASr+KaTRjVdzcjb4gXAAEuR+mQYDHJiwZTsuim+Djumowt 5ORxpUdMe359iiujl2K8JQNxicXmF95qBOdBamEVml9aDPzsCXD0sHPmrAxZrgC+ AeOzwUe3EH5Jp0ekoz+qas/yWJBJR//yxof3Qun9nbfgud+qJxFP/6e/uduaS9a2 ginBEn1c7fdsjR/KFg8ReJITYmW6GwIVFbQpAgMBAAGjggIfMIICGzAdBgNVHQ4E FgQUGq2LSnJmfTG2nKQp8MOrBNbnREIwHwYDVR0jBBgwFoAUKYPP1fjK+gBo0uui XtD3ASRLEvkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzYvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JMRXZrLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JM RXZrLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgbkGCCsGAQUFBwELBIGsMIGpMF8GCCsG AQUFBzALhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzYvR3EyTFNuSm1mVEcybktRcDhNT3JCTmJuUkVJLnJvYTBGBggr BgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3JyZHAv YXAvbm90aWZpY2F0aW9uLnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD AIXsMA0GCSqGSIb3DQEBCwUAA4IBAQAqGzLWuFYXPZqMd/rXgbBAN8brTMGfiFyg DtP70mJLhGsCaKzKCZAgXaNmVfIHvD58RhsBS0FpGQVhhKQ+S/y8nf5dTNAke+Oe n00iwxtQGD0aXlIpkLt6QUYXlij6QPv++bpIL4eIVdEGGFk3K30uighUuM9T164S uXzmubmH+RSTPvaALxl9xkmdCDjcAc/1oDP2FW17aX8/+v2RVb9x/DDOMqo0eIW4 BHVxO371B3zIwsBMQOgxkFbh94Nv8VndfXWsLJwLN3t1eQhdrIe8AnDT8UoAFrz0 D8RIvtiyQBqivSfSNs6kYh+xdSPYOPhagBJkX1Oq+h1X8nqqpDa2 -----END CERTIFICATE-----Generated at Wed Jun 26 09:28:46 2024 by rpki-client on console-fra.rpki-client.org