$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/783/HuLZKTpDqVgAnMIqwiCCQ1IAl8c.roa File: HuLZKTpDqVgAnMIqwiCCQ1IAl8c.roa (raw, json) Hash identifier: bAnUNqnuArWda1mh4AplUqAZTiQ1awVa7eBLru44DlQ= Subject key identifier: 1E:E2:D9:29:3A:43:A9:58:00:9C:C2:2A:C2:20:82:43:52:00:97:C7 Certificate issuer: /CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Certificate serial: 34 Authority key identifier: CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/HuLZKTpDqVgAnMIqwiCCQ1IAl8c.roa Signing time: Fri 15 Sep 2023 06:48:44 +0000 ROA not before: Fri 15 Sep 2023 06:48:44 +0000 ROA not after: Sat 14 Sep 2024 01:30:03 +0000 asID: 18144 IP address blocks: 202.236.14.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 30 Jun 2024 06:27:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Validity Not Before: Sep 15 06:48:44 2023 GMT Not After : Sep 14 01:30:03 2024 GMT Subject: CN=1EE2D9293A43A958009CC22AC2208243520097C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:8f:cf:ab:0f:51:f8:6b:ae:a5:0d:b4:72:a8: ef:09:25:c3:65:81:83:e7:e3:45:97:8a:15:8c:8e: 8f:00:18:69:58:bd:43:c9:a1:97:81:c8:e0:04:f8: 8e:3b:01:d4:df:bb:74:30:2d:1d:f0:5e:6b:8e:08: 24:09:6e:f4:9e:a6:a9:7f:4e:53:d8:0b:c8:0e:a0: 61:f9:ab:7b:75:1f:14:9e:6f:ef:32:53:76:d0:bc: d9:d9:6b:e8:dc:62:ce:d4:86:b9:5d:49:0e:05:81: d0:b0:7f:76:2a:28:d4:bb:4a:58:e0:fd:97:a7:b2: 93:9c:71:65:d0:d3:c0:2d:e2:ef:83:0f:97:65:ba: 19:6e:74:44:a7:51:15:6f:be:2f:3a:79:dd:45:bd: a2:39:0b:42:a5:42:c3:56:24:61:03:3d:bb:eb:23: fb:b3:a1:ee:74:85:a9:23:1b:78:b0:28:e1:c1:a1: 41:13:0c:d2:d8:a9:45:14:8b:dc:a1:ca:b9:6b:33: b4:34:99:3e:a8:5e:48:dc:90:f8:63:06:f0:56:8e: 2b:36:1e:75:76:7d:81:ba:0d:83:4a:cb:3d:25:7a: d8:67:f6:4f:52:a0:63:ee:df:51:fe:03:d3:38:2f: 7b:05:ec:58:d3:d9:53:9a:03:e0:97:3a:20:9e:0e: 66:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:E2:D9:29:3A:43:A9:58:00:9C:C2:2A:C2:20:82:43:52:00:97:C7 X509v3 Authority Key Identifier: keyid:CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/HuLZKTpDqVgAnMIqwiCCQ1IAl8c.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.236.14.0/23 Signature Algorithm: sha256WithRSAEncryption a6:80:24:73:26:17:b8:76:e8:9e:10:d7:25:9d:de:cd:61:d6: 10:28:96:90:18:61:78:31:82:c4:ac:5a:74:6c:7e:9b:77:eb: 04:86:6a:e3:be:bd:dc:dc:8f:20:78:cb:95:fb:74:5c:75:78: a2:5f:03:27:9a:e4:45:eb:b1:69:49:0f:5f:d5:f4:52:c3:2f: 46:b2:3d:71:81:41:2d:d8:ee:39:e0:85:d3:de:a1:f8:65:e7: fe:ed:c5:f6:c5:6d:05:d7:e4:5a:91:1f:75:5d:fc:76:b5:c2: 72:fe:ae:31:ae:27:2c:19:be:4e:b2:6e:c8:69:75:7d:7a:96: 33:96:d9:5b:4e:37:b1:6b:da:d8:94:8f:f7:5f:71:06:2b:3b: 21:dc:40:1c:0e:9e:d8:41:68:82:b2:87:b5:70:22:c4:fc:a8: b7:94:5b:95:83:77:bc:d0:77:14:f7:63:83:d1:5c:7e:22:16: 82:de:c3:19:36:2c:55:6d:8b:f1:7a:38:23:eb:a2:bf:ad:52: 8b:79:03:ae:e7:44:73:0b:11:4c:34:8c:06:4a:09:f7:27:ee: a6:11:99:a8:ed:25:6c:42:34:fa:7c:56:58:08:12:8d:6c:c7: 49:c6:b2:5f:24:a8:3b:1b:f5:b9:26:b7:31:01:e5:b1:d5:bc: f1:9f:81:54 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBNDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDQjgz MDBCMjA2NTlCQjk1MTA2MEY2MEIxRjRCQzYwOTFBRjI3NjM5MB4XDTIzMDkxNTA2 NDg0NFoXDTI0MDkxNDAxMzAwM1owMzExMC8GA1UEAxMoMUVFMkQ5MjkzQTQzQTk1 ODAwOUNDMjJBQzIyMDgyNDM1MjAwOTdDNzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMiPz6sPUfhrrqUNtHKo7wklw2WBg+fjRZeKFYyOjwAYaVi9Q8mh l4HI4AT4jjsB1N+7dDAtHfBea44IJAlu9J6mqX9OU9gLyA6gYfmre3UfFJ5v7zJT dtC82dlr6NxiztSGuV1JDgWB0LB/dioo1LtKWOD9l6eyk5xxZdDTwC3i74MPl2W6 GW50RKdRFW++Lzp53UW9ojkLQqVCw1YkYQM9u+sj+7Oh7nSFqSMbeLAo4cGhQRMM 0tipRRSL3KHKuWsztDSZPqheSNyQ+GMG8FaOKzYedXZ9gboNg0rLPSV62Gf2T1Kg Y+7fUf4D0zgvewXsWNPZU5oD4Jc6IJ4OZp8CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQe4tkpOkOpWACcwirCIIJDUgCXxzAfBgNVHSMEGDAWgBTLgwCyBlm7lRBg9gsf S8YJGvJ2OTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNzgzL3k0TUFzZ1padTVVUVlQWUxIMHZHQ1JyeWRqay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3k0TUFzZ1padTVVUVlQWUxIMHZHQ1Jy eWRqay5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC83ODMvSHVMWktUcERxVmdBbk1JcXdpQ0NRMUlBbDhjLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAcrsDjANBgkqhkiG9w0BAQsFAAOCAQEApoAkcyYXuHbonhDXJZ3ezWHWECiW kBhheDGCxKxadGx+m3frBIZq47693NyPIHjLlft0XHV4ol8DJ5rkReuxaUkPX9X0 UsMvRrI9cYFBLdjuOeCF096h+GXn/u3F9sVtBdfkWpEfdV38drXCcv6uMa4nLBm+ TrJuyGl1fXqWM5bZW043sWva2JSP919xBis7IdxAHA6e2EFogrKHtXAixPyot5Rb lYN3vNB3FPdjg9FcfiIWgt7DGTYsVW2L8Xo4I+uiv61Si3kDrudEcwsRTDSMBkoJ 9yfuphGZqO0lbEI0+nxWWAgSjWzHScayXySoOxv1uSa3MQHlsdW88Z+BVA== -----END CERTIFICATE-----Generated at Tue Jun 25 00:53:01 2024 by rpki-client on console-ams.rpki-client.org