$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/6/yTedO7DyymjgaEWXmR0066esCTw.roa File: yTedO7DyymjgaEWXmR0066esCTw.roa (raw, json) Hash identifier: ooArIlqHOvounbQl+u4vQal0mlLZHRID/60Uv/oe8fs= Subject key identifier: C9:37:9D:3B:B0:F2:CA:68:E0:68:45:97:99:1D:34:EB:A7:AC:09:3C Certificate issuer: /CN=296966DD720C30575F62D8FD4149458A90AACAA4 Certificate serial: 57 Authority key identifier: 29:69:66:DD:72:0C:30:57:5F:62:D8:FD:41:49:45:8A:90:AA:CA:A4 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KWlm3XIMMFdfYtj9QUlFipCqyqQ.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/yTedO7DyymjgaEWXmR0066esCTw.roa Signing time: Fri 01 Sep 2023 01:28:48 +0000 ROA not before: Fri 01 Sep 2023 01:28:48 +0000 ROA not after: Wed 14 Aug 2024 01:30:02 +0000 asID: 2497 IP address blocks: 157.65.192.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KWlm3XIMMFdfYtj9QUlFipCqyqQ.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KWlm3XIMMFdfYtj9QUlFipCqyqQ.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KWlm3XIMMFdfYtj9QUlFipCqyqQ.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jul 2024 02:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 87 (0x57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=296966DD720C30575F62D8FD4149458A90AACAA4 Validity Not Before: Sep 1 01:28:48 2023 GMT Not After : Aug 14 01:30:02 2024 GMT Subject: CN=C9379D3BB0F2CA68E0684597991D34EBA7AC093C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:e7:69:13:eb:52:7e:86:7a:33:13:eb:73:0b: 73:3e:0b:5c:3f:85:c5:99:cf:63:24:e6:c5:96:ad: 03:60:67:0d:95:a6:a4:0e:dd:40:15:93:fe:26:c2: 24:96:05:c4:45:3b:56:ed:05:ee:98:6f:f2:50:f0: fb:7b:2f:e4:8f:3e:9e:62:25:5d:60:2a:dc:f7:f5: d2:9c:78:90:4c:e7:1f:91:a5:e4:76:b8:d4:5f:2b: 3f:1f:96:c5:2b:1d:c8:06:54:4a:2c:6b:26:98:7d: e1:9a:26:9f:c2:54:9b:9b:5d:19:c4:ab:c1:ed:19: d0:09:b2:1e:19:59:c4:fd:85:34:bf:29:70:93:28: 0f:6c:2d:48:32:cb:b8:40:11:bd:7b:67:24:ed:79: e5:ff:e4:dd:a5:87:cd:24:1a:12:26:15:bd:b8:61: 53:7a:37:ce:4b:b3:d5:78:97:9a:17:ab:4e:b2:36: b3:4d:c7:e5:a0:34:ff:43:54:b4:d5:58:24:99:e3: 2e:35:ce:bf:3e:d9:c2:be:a0:62:27:a3:76:72:03: 71:be:e2:24:5c:a3:cc:94:2e:68:b9:57:23:28:9c: 60:0c:f6:ea:38:ea:0c:eb:7d:77:54:8c:85:af:ec: 94:64:f8:c9:93:6c:08:96:52:6f:d5:c4:f8:62:6e: 05:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:37:9D:3B:B0:F2:CA:68:E0:68:45:97:99:1D:34:EB:A7:AC:09:3C X509v3 Authority Key Identifier: keyid:29:69:66:DD:72:0C:30:57:5F:62:D8:FD:41:49:45:8A:90:AA:CA:A4 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KWlm3XIMMFdfYtj9QUlFipCqyqQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KWlm3XIMMFdfYtj9QUlFipCqyqQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/yTedO7DyymjgaEWXmR0066esCTw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.65.192.0/21 Signature Algorithm: sha256WithRSAEncryption b2:9b:ab:f7:1c:3c:cf:45:a1:c8:37:a9:ee:c9:7f:4a:da:86: d0:88:90:5f:3f:f8:5a:93:7e:da:e4:fa:50:5b:fd:96:02:60: 5d:12:f3:82:ae:5f:b7:eb:be:49:f9:a8:6a:10:23:d7:08:b0: e5:ab:54:fc:e3:46:c0:ba:8a:35:ec:46:73:0b:0b:e5:33:af: 32:15:7e:0a:76:ac:65:68:6f:aa:4e:e6:d7:cb:e5:77:c2:64: 14:9a:cb:51:91:08:1d:28:57:ed:ee:95:36:e4:c5:fc:a7:ef: 3f:5b:bc:1b:80:ac:f6:5a:01:b2:ec:dd:0d:61:23:fd:dd:db: 0a:78:ad:37:f7:ca:8d:e6:2a:6e:90:22:66:62:84:05:7f:d6: ee:8a:5e:7f:ba:ea:fb:50:3b:73:c1:d6:0a:2f:b7:85:28:59: 92:a2:0b:b2:9a:3b:04:bd:a1:9a:3f:b6:2d:a7:ad:05:b0:ab: 10:78:cd:f4:1e:f1:ab:c4:56:32:23:23:10:fb:79:aa:9c:6b: 07:cd:12:1e:fd:66:9c:80:2a:6a:a8:af:c4:c5:e1:d1:d6:6a: 95:2f:8b:42:ee:13:0a:ac:6c:e2:d0:b0:dd:ec:8f:d7:50:07: 0e:20:ad:1a:d2:6c:db:b3:61:1b:a8:d8:e3:74:a3:80:39:d7: 3a:ba:d4:d2 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgIBVzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyOTY5 NjZERDcyMEMzMDU3NUY2MkQ4RkQ0MTQ5NDU4QTkwQUFDQUE0MB4XDTIzMDkwMTAx Mjg0OFoXDTI0MDgxNDAxMzAwMlowMzExMC8GA1UEAxMoQzkzNzlEM0JCMEYyQ0E2 OEUwNjg0NTk3OTkxRDM0RUJBN0FDMDkzQzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAN3naRPrUn6GejMT63MLcz4LXD+FxZnPYyTmxZatA2BnDZWmpA7d QBWT/ibCJJYFxEU7Vu0F7phv8lDw+3sv5I8+nmIlXWAq3Pf10px4kEznH5Gl5Ha4 1F8rPx+WxSsdyAZUSixrJph94Zomn8JUm5tdGcSrwe0Z0AmyHhlZxP2FNL8pcJMo D2wtSDLLuEARvXtnJO155f/k3aWHzSQaEiYVvbhhU3o3zkuz1XiXmherTrI2s03H 5aA0/0NUtNVYJJnjLjXOvz7Zwr6gYiejdnIDcb7iJFyjzJQuaLlXIyicYAz26jjq DOt9d1SMha/slGT4yZNsCJZSb9XE+GJuBTsCAwEAAaOCAiAwggIcMB0GA1UdDgQW BBTJN507sPLKaOBoRZeZHTTrp6wJPDAfBgNVHSMEGDAWgBQpaWbdcgwwV19i2P1B SUWKkKrKpDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGQGA1UdHwRdMFswWaBX oFWGU3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNi9LV2xtM1hJTU1GZGZZdGo5UVVsRmlwQ3F5cVEuY3JsMG0GCCsGAQUF BwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmlj LmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9LV2xtM1hJTU1GZGZZdGo5UVVsRmlwQ3F5 cVEuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuQYIKwYBBQUHAQsEgawwgakwXwYIKwYB BQUHMAuGU3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFB NzM4MTAwMDAvNi95VGVkTzdEeXltamdhRVdYbVIwMDY2ZXNDVHcucm9hMEYGCCsG AQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJkcC9h cC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD nUHAMA0GCSqGSIb3DQEBCwUAA4IBAQCym6v3HDzPRaHIN6nuyX9K2obQiJBfP/ha k37a5PpQW/2WAmBdEvOCrl+3675J+ahqECPXCLDlq1T840bAuoo17EZzCwvlM68y FX4KdqxlaG+qTubXy+V3wmQUmstRkQgdKFft7pU25MX8p+8/W7wbgKz2WgGy7N0N YSP93dsKeK0398qN5ipukCJmYoQFf9buil5/uur7UDtzwdYKL7eFKFmSoguymjsE vaGaP7Ytp60FsKsQeM30HvGrxFYyIyMQ+3mqnGsHzRIe/WacgCpqqK/ExeHR1mqV L4tC7hMKrGzi0LDd7I/XUAcOIK0a0mzbs2EbqNjjdKOAOdc6utTS -----END CERTIFICATE-----Generated at Wed Jun 26 08:13:02 2024 by rpki-client on console-ams.rpki-client.org