$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/6/xcxnGsC5xKNdqdKtYR_H0x7xixI.roa File: xcxnGsC5xKNdqdKtYR_H0x7xixI.roa (raw, json) Hash identifier: GFXbItkET1jam4mzTkarSfDH8MH76V3SGPUL8aVpwsM= Subject key identifier: C5:CC:67:1A:C0:B9:C4:A3:5D:A9:D2:AD:61:1F:C7:D3:1E:F1:8B:12 Certificate issuer: /CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Certificate serial: 0104 Authority key identifier: 29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/xcxnGsC5xKNdqdKtYR_H0x7xixI.roa Signing time: Fri 01 Sep 2023 01:28:59 +0000 ROA not before: Fri 01 Sep 2023 01:28:59 +0000 ROA not after: Wed 14 Aug 2024 01:30:02 +0000 asID: 2497 IP address blocks: 220.100.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jul 2024 06:55:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 260 (0x104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Validity Not Before: Sep 1 01:28:59 2023 GMT Not After : Aug 14 01:30:02 2024 GMT Subject: CN=C5CC671AC0B9C4A35DA9D2AD611FC7D31EF18B12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:cb:e1:26:65:56:04:1b:e2:0b:3f:9e:6a:33: a7:ce:b8:c9:91:ec:6e:69:06:1a:44:11:e2:a2:5a: 6e:a2:72:8f:d7:b4:79:b0:ab:bf:d6:a4:98:a7:21: 31:ee:c3:42:16:41:42:22:73:c1:17:7f:d9:3a:f2: b2:46:93:f8:6d:03:d3:f6:c1:a9:d3:03:11:5b:b5: 3b:21:23:2f:eb:8e:a5:9c:95:65:c1:8b:e9:37:59: 86:7c:0c:3e:7b:fb:32:f8:d9:23:24:3a:8a:25:24: e3:8b:e3:19:91:15:e5:a5:36:8b:b7:a5:5f:c9:4e: 10:bb:c3:22:33:be:43:cc:24:0b:89:1c:6e:2d:3a: 96:dc:da:6f:90:9e:f6:ab:26:e5:78:fc:01:7c:c7: ea:39:ef:52:00:df:7d:e2:5c:5a:97:39:aa:10:d7: 59:c8:98:14:33:93:f9:5a:4c:7e:98:68:0c:17:fc: 48:b3:3d:8a:cd:1e:c7:40:63:a6:e9:1b:50:87:9c: cd:4b:b6:7e:d6:42:12:e7:a3:26:df:9c:d2:97:d9: fb:eb:3b:bd:bd:16:db:4b:ba:6a:32:0b:2a:43:73: 28:1a:84:00:25:85:d5:59:27:4e:d4:6d:c7:54:70: 71:71:16:1a:70:50:16:4d:a3:89:2d:05:6f:ad:ef: 96:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:CC:67:1A:C0:B9:C4:A3:5D:A9:D2:AD:61:1F:C7:D3:1E:F1:8B:12 X509v3 Authority Key Identifier: keyid:29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/xcxnGsC5xKNdqdKtYR_H0x7xixI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.100.0.0/17 Signature Algorithm: sha256WithRSAEncryption a5:ae:ba:65:0f:b9:c4:5e:c6:c6:a4:53:dd:8f:4b:74:43:13: 59:aa:a5:80:94:3a:35:29:cb:f7:81:77:53:4a:1c:d3:4a:6d: f8:7b:86:5e:5d:cd:bd:de:fc:f9:ee:3f:69:d6:86:4b:52:ff: cb:18:b8:c0:a0:ab:e6:dd:03:f0:46:ad:36:3a:96:e5:10:c3: 7d:f6:ac:92:4f:9f:12:50:dd:07:28:80:f8:f4:41:6d:1a:b2: 6c:54:c5:b1:07:37:1f:d9:b9:34:d8:b4:24:e6:ee:cf:63:16: 8e:51:ad:8a:a1:e9:24:1a:ea:d2:a5:5b:7e:cd:fc:91:79:48: d3:be:4e:6f:a1:b7:da:80:e4:a8:f3:1c:5b:43:2d:65:9a:7a: 6d:c7:ca:46:c1:a5:8e:90:1b:03:3e:e0:4c:66:96:09:47:bd: b2:d3:33:e3:d5:ad:b2:d5:60:93:58:4c:e5:ca:03:04:f4:a7: 36:45:56:20:eb:51:b6:f3:ab:ac:fc:c0:cb:a5:11:81:a1:c3: 3b:ea:a9:cc:ae:45:e8:91:56:29:82:7d:d7:72:e6:18:b7:bf: 1f:47:38:82:84:b9:dc:fb:4f:66:4b:9c:a4:fd:47:5f:f8:79: 92:fb:c4:19:a4:71:f0:f2:e3:26:68:7a:39:6d:ef:db:64:96: bc:22:2f:98 -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgICAQQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjk4 M0NGRDVGOENBRkEwMDY4RDJFQkEyNUVEMEY3MDEyNDRCMTJGOTAeFw0yMzA5MDEw MTI4NTlaFw0yNDA4MTQwMTMwMDJaMDMxMTAvBgNVBAMTKEM1Q0M2NzFBQzBCOUM0 QTM1REE5RDJBRDYxMUZDN0QzMUVGMThCMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqy+EmZVYEG+ILP55qM6fOuMmR7G5pBhpEEeKiWm6ico/XtHmw q7/WpJinITHuw0IWQUIic8EXf9k68rJGk/htA9P2wanTAxFbtTshIy/rjqWclWXB i+k3WYZ8DD57+zL42SMkOoolJOOL4xmRFeWlNou3pV/JThC7wyIzvkPMJAuJHG4t Opbc2m+QnvarJuV4/AF8x+o571IA333iXFqXOaoQ11nImBQzk/laTH6YaAwX/Eiz PYrNHsdAY6bpG1CHnM1Ltn7WQhLnoybfnNKX2fvrO729FttLumoyCypDcygahAAl hdVZJ07UbcdUcHFxFhpwUBZNo4ktBW+t75YXAgMBAAGjggIgMIICHDAdBgNVHQ4E FgQUxcxnGsC5xKNdqdKtYR/H0x7xixIwHwYDVR0jBBgwFoAUKYPP1fjK+gBo0uui XtD3ASRLEvkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzYvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JMRXZrLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JM RXZrLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgbkGCCsGAQUFBwELBIGsMIGpMF8GCCsG AQUFBzALhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzYveGN4bkdzQzV4S05kcWRLdFlSX0gweDd4aXhJLnJvYTBGBggr BgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3JyZHAv YXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME B9xkADANBgkqhkiG9w0BAQsFAAOCAQEApa66ZQ+5xF7GxqRT3Y9LdEMTWaqlgJQ6 NSnL94F3U0oc00pt+HuGXl3Nvd78+e4/adaGS1L/yxi4wKCr5t0D8EatNjqW5RDD ffaskk+fElDdByiA+PRBbRqybFTFsQc3H9m5NNi0JObuz2MWjlGtiqHpJBrq0qVb fs38kXlI075Ob6G32oDkqPMcW0MtZZp6bcfKRsGljpAbAz7gTGaWCUe9stMz49Wt stVgk1hM5coDBPSnNkVWIOtRtvOrrPzAy6URgaHDO+qpzK5F6JFWKYJ913LmGLe/ H0c4goS53PtPZkucpP1HX/h5kvvEGaRx8PLjJmh6OW3v22SWvCIvmA== -----END CERTIFICATE-----Generated at Wed Jun 26 08:13:02 2024 by rpki-client on console-ams.rpki-client.org