$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/783/3-rxQnqhGfp5TS6mU4tT-IHHuNM.roa File: 3-rxQnqhGfp5TS6mU4tT-IHHuNM.roa (raw, json) Hash identifier: DSC95obFa5pQEZvaV2NJyc89LM91ohOgYBeNQsqr/pM= Subject key identifier: DF:EA:F1:42:7A:A1:19:FA:79:4D:2E:A6:53:8B:53:F8:81:C7:B8:D3 Certificate issuer: /CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Certificate serial: 2B Authority key identifier: CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/3-rxQnqhGfp5TS6mU4tT-IHHuNM.roa Signing time: Fri 15 Sep 2023 06:36:36 +0000 ROA not before: Fri 15 Sep 2023 06:36:36 +0000 ROA not after: Sat 14 Sep 2024 01:30:03 +0000 asID: 18144 IP address blocks: 36.53.232.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 30 Jun 2024 06:27:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Validity Not Before: Sep 15 06:36:36 2023 GMT Not After : Sep 14 01:30:03 2024 GMT Subject: CN=DFEAF1427AA119FA794D2EA6538B53F881C7B8D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ab:47:3d:61:63:4d:32:a3:3a:b7:11:f8:76: 89:d1:e9:ca:e4:27:08:32:e9:ec:4b:b8:19:68:02: 71:4b:d5:21:dc:22:5a:8b:e7:cd:ef:7f:a7:39:df: c6:76:c5:79:b0:40:38:ec:22:f8:81:4d:fe:c8:11: 49:e9:64:94:4f:94:f6:6d:23:25:05:48:ff:b0:b7: 6c:fc:2a:f0:d5:eb:76:95:54:54:15:74:49:cb:d1: 86:cb:92:ef:4f:a0:f8:d7:b1:6e:ae:9f:25:9a:48: d1:65:97:32:da:08:4f:ff:c4:cc:98:80:86:35:f1: 96:67:a3:8e:30:7c:4c:4f:a8:3f:5b:c4:73:76:20: 27:7b:49:76:37:cc:c6:b8:fb:d0:4a:87:12:07:46: 88:bc:fc:8a:2a:d7:2d:43:ba:aa:93:92:82:a5:d7: 67:f4:1c:56:55:99:92:a5:55:29:8d:1a:b2:44:a6: a6:38:80:f1:e5:a8:6a:c6:28:35:80:4d:a9:bd:7d: 90:60:fe:05:fb:94:13:76:74:b8:f4:ab:94:20:24: 49:3c:57:fd:75:ca:5b:fc:3e:c6:9d:e4:3f:a9:d6: 9e:cc:25:09:2e:f4:2f:c6:37:35:00:e7:68:56:64: b1:3d:da:f4:ea:77:9b:97:68:14:8b:ef:80:57:9e: b7:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:EA:F1:42:7A:A1:19:FA:79:4D:2E:A6:53:8B:53:F8:81:C7:B8:D3 X509v3 Authority Key Identifier: keyid:CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/3-rxQnqhGfp5TS6mU4tT-IHHuNM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.53.232.0/21 Signature Algorithm: sha256WithRSAEncryption b3:36:d1:c4:25:66:fd:57:bf:34:da:03:bc:1c:66:1c:76:6f: f5:2d:c6:75:ab:e8:d6:4f:11:f8:fc:18:65:14:c4:93:ef:f0: 4c:d3:b7:c2:0c:aa:4c:df:d7:f0:c6:f6:78:45:29:31:a5:f6: 35:d7:e5:26:fb:84:eb:a4:7c:4e:53:a7:34:a8:ba:cf:98:4b: 33:b6:3f:67:5d:9d:ea:4d:28:a8:65:36:40:f5:a6:dc:67:d2: 0f:a5:01:3e:13:90:59:0c:3a:1b:84:1c:bc:3b:9d:ac:01:4c: c1:7a:2d:bd:60:60:45:b8:40:99:a5:92:c6:15:c6:0e:21:ae: ad:12:4e:35:cf:ed:53:0c:71:fe:35:d9:9d:5c:c4:bd:8d:36: b9:14:e3:66:11:84:25:84:5f:06:1b:6e:57:39:8e:72:67:f9: 5f:eb:86:b8:db:97:18:99:dd:34:57:79:af:a5:1a:e5:66:da: 10:3c:58:3a:6e:ab:12:ad:4a:5e:02:81:76:19:6b:82:39:12: 89:7d:ff:46:52:08:4d:97:f0:4f:99:e3:ee:12:f4:aa:0e:79: 1d:3b:94:50:12:2c:1e:40:62:a7:4a:26:ba:34:32:3e:f4:c4: 31:9c:d5:da:b3:a4:73:c5:71:56:1c:e6:d8:93:24:0c:c4:7c: 5d:09:bd:2e -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBKzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDQjgz MDBCMjA2NTlCQjk1MTA2MEY2MEIxRjRCQzYwOTFBRjI3NjM5MB4XDTIzMDkxNTA2 MzYzNloXDTI0MDkxNDAxMzAwM1owMzExMC8GA1UEAxMoREZFQUYxNDI3QUExMTlG QTc5NEQyRUE2NTM4QjUzRjg4MUM3QjhEMzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALOrRz1hY00yozq3Efh2idHpyuQnCDLp7Eu4GWgCcUvVIdwiWovn ze9/pznfxnbFebBAOOwi+IFN/sgRSelklE+U9m0jJQVI/7C3bPwq8NXrdpVUVBV0 ScvRhsuS70+g+Nexbq6fJZpI0WWXMtoIT//EzJiAhjXxlmejjjB8TE+oP1vEc3Yg J3tJdjfMxrj70EqHEgdGiLz8iirXLUO6qpOSgqXXZ/QcVlWZkqVVKY0askSmpjiA 8eWoasYoNYBNqb19kGD+BfuUE3Z0uPSrlCAkSTxX/XXKW/w+xp3kP6nWnswlCS70 L8Y3NQDnaFZksT3a9Op3m5doFIvvgFeet+kCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTf6vFCeqEZ+nlNLqZTi1P4gce40zAfBgNVHSMEGDAWgBTLgwCyBlm7lRBg9gsf S8YJGvJ2OTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNzgzL3k0TUFzZ1padTVVUVlQWUxIMHZHQ1JyeWRqay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3k0TUFzZ1padTVVUVlQWUxIMHZHQ1Jy eWRqay5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC83ODMvMy1yeFFucWhHZnA1VFM2bVU0dFQtSUhIdU5NLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAyQ16DANBgkqhkiG9w0BAQsFAAOCAQEAszbRxCVm/Ve/NNoDvBxmHHZv9S3G davo1k8R+PwYZRTEk+/wTNO3wgyqTN/X8Mb2eEUpMaX2NdflJvuE66R8TlOnNKi6 z5hLM7Y/Z12d6k0oqGU2QPWm3GfSD6UBPhOQWQw6G4QcvDudrAFMwXotvWBgRbhA maWSxhXGDiGurRJONc/tUwxx/jXZnVzEvY02uRTjZhGEJYRfBhtuVzmOcmf5X+uG uNuXGJndNFd5r6Ua5WbaEDxYOm6rEq1KXgKBdhlrgjkSiX3/RlIITZfwT5nj7hL0 qg55HTuUUBIsHkBip0omujQyPvTEMZzV2rOkc8VxVhzm2JMkDMR8XQm9Lg== -----END CERTIFICATE-----Generated at Mon Jun 24 23:50:32 2024 by rpki-client on console-fra.rpki-client.org