$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/783/VSytklYEOX2IpfYhB7YRnIkDvok.roa File: VSytklYEOX2IpfYhB7YRnIkDvok.roa (raw, json) Hash identifier: r1Fn8agO/w6UsBbo/YKZaLxw7GT4/RNVzVUW+bcSZCA= Subject key identifier: 55:2C:AD:92:56:04:39:7D:88:A5:F6:21:07:B6:11:9C:89:03:BE:89 Certificate issuer: /CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Certificate serial: 2E Authority key identifier: CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/VSytklYEOX2IpfYhB7YRnIkDvok.roa Signing time: Fri 15 Sep 2023 06:44:34 +0000 ROA not before: Fri 15 Sep 2023 06:44:34 +0000 ROA not after: Sat 14 Sep 2024 01:30:03 +0000 asID: 18144 IP address blocks: 61.205.32.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 30 Jun 2024 06:27:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Validity Not Before: Sep 15 06:44:34 2023 GMT Not After : Sep 14 01:30:03 2024 GMT Subject: CN=552CAD925604397D88A5F62107B6119C8903BE89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:92:c8:32:8e:fb:36:ab:57:6b:de:06:31:d0: 7c:16:0a:1a:4f:4c:af:e1:43:a6:57:73:1c:2e:0c: 3e:49:af:08:95:05:0d:60:ee:10:96:2e:cc:51:9c: 80:ea:dc:81:29:8c:aa:3a:14:48:79:02:56:fd:78: a6:d8:82:71:a8:88:a1:55:6d:68:ff:3b:6f:fa:9d: 0f:5f:aa:2d:82:ae:f8:29:ab:c1:9a:67:97:30:4d: 98:d7:34:c4:62:b1:7a:8e:25:a1:53:fd:ee:2b:24: 92:a0:08:7d:b1:6b:90:7f:91:7d:22:53:19:9b:76: bb:d8:82:b1:67:0c:32:97:76:7d:fb:87:cc:c2:83: ab:5f:c1:50:a3:10:4f:5b:44:79:c9:22:1c:55:73: e9:1f:1e:87:c1:3f:ce:cb:8e:2f:54:7a:55:2a:42: 04:1e:2e:e5:ee:44:7c:08:1a:c9:d2:3a:99:d5:e2: c1:72:e9:08:48:de:4a:b1:ee:bb:00:96:3b:78:de: fc:a2:ba:85:da:74:74:4f:33:63:c7:fa:97:c3:ef: 39:7d:b9:a5:a2:bb:be:3e:0c:3d:f7:c6:8e:40:b8: a8:56:e1:9c:01:92:f4:f3:48:83:7d:bd:ea:6f:81: aa:b6:12:23:38:92:40:f3:35:b0:f7:29:f2:8c:b4: 38:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:2C:AD:92:56:04:39:7D:88:A5:F6:21:07:B6:11:9C:89:03:BE:89 X509v3 Authority Key Identifier: keyid:CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/VSytklYEOX2IpfYhB7YRnIkDvok.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.205.32.0/21 Signature Algorithm: sha256WithRSAEncryption 04:9f:77:1b:06:5b:25:96:48:15:1b:47:3b:79:9a:e9:2b:b7: ac:91:a7:42:d7:fd:80:f9:90:66:7c:22:9c:20:33:a2:35:93: 19:d0:e1:67:5c:4c:06:0d:f7:0b:0c:80:c5:ac:bc:38:3a:ca: ec:a8:f4:38:70:c7:3a:30:aa:06:9e:7f:85:5e:1a:6e:4a:68: 4b:d5:73:d0:a1:e0:c7:3d:8c:76:84:d2:da:99:70:aa:c6:cc: 5a:81:04:b8:5f:0e:4b:fe:f1:3a:9e:a4:5f:e9:6f:2a:1d:d7: 8a:85:a8:d6:59:b8:08:0e:62:68:3d:40:f2:e8:e1:2f:49:bd: 5a:9f:62:63:d1:1f:94:50:07:d2:b7:44:49:c7:e1:f1:82:16: 51:0a:7f:5e:c6:b7:04:af:84:bc:49:6d:02:4c:48:ac:b8:19: 4e:5d:ab:72:33:27:bb:44:8d:73:24:8d:2c:5e:11:4a:4b:bb: fc:93:48:13:dd:f5:69:21:3f:3b:44:f0:64:0d:40:2d:cf:b5: e7:37:e7:5d:35:3b:7d:28:4e:11:a5:a3:26:45:00:49:3a:64: 7e:b6:7b:11:1a:fd:ff:8b:c0:81:1c:58:72:1b:0c:d8:8d:35: 93:ac:d4:5f:c6:4a:e3:e1:a0:de:09:62:c9:f2:dc:8d:18:70: 75:4e:26:6c -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBLjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDQjgz MDBCMjA2NTlCQjk1MTA2MEY2MEIxRjRCQzYwOTFBRjI3NjM5MB4XDTIzMDkxNTA2 NDQzNFoXDTI0MDkxNDAxMzAwM1owMzExMC8GA1UEAxMoNTUyQ0FEOTI1NjA0Mzk3 RDg4QTVGNjIxMDdCNjExOUM4OTAzQkU4OTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAM+SyDKO+zarV2veBjHQfBYKGk9Mr+FDpldzHC4MPkmvCJUFDWDu EJYuzFGcgOrcgSmMqjoUSHkCVv14ptiCcaiIoVVtaP87b/qdD1+qLYKu+CmrwZpn lzBNmNc0xGKxeo4loVP97iskkqAIfbFrkH+RfSJTGZt2u9iCsWcMMpd2ffuHzMKD q1/BUKMQT1tEeckiHFVz6R8eh8E/zsuOL1R6VSpCBB4u5e5EfAgaydI6mdXiwXLp CEjeSrHuuwCWO3je/KK6hdp0dE8zY8f6l8PvOX25paK7vj4MPffGjkC4qFbhnAGS 9PNIg3296m+BqrYSIziSQPM1sPcp8oy0OP8CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRVLK2SVgQ5fYil9iEHthGciQO+iTAfBgNVHSMEGDAWgBTLgwCyBlm7lRBg9gsf S8YJGvJ2OTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNzgzL3k0TUFzZ1padTVVUVlQWUxIMHZHQ1JyeWRqay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3k0TUFzZ1padTVVUVlQWUxIMHZHQ1Jy eWRqay5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC83ODMvVlN5dGtsWUVPWDJJcGZZaEI3WVJuSWtEdm9rLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAz3NIDANBgkqhkiG9w0BAQsFAAOCAQEABJ93GwZbJZZIFRtHO3ma6Su3rJGn Qtf9gPmQZnwinCAzojWTGdDhZ1xMBg33CwyAxay8ODrK7Kj0OHDHOjCqBp5/hV4a bkpoS9Vz0KHgxz2MdoTS2plwqsbMWoEEuF8OS/7xOp6kX+lvKh3XioWo1lm4CA5i aD1A8ujhL0m9Wp9iY9EflFAH0rdEScfh8YIWUQp/Xsa3BK+EvEltAkxIrLgZTl2r cjMnu0SNcySNLF4RSku7/JNIE931aSE/O0TwZA1ALc+15zfnXTU7fShOEaWjJkUA STpkfrZ7ERr9/4vAgRxYchsM2I01k6zUX8ZK4+Gg3gliyfLcjRhwdU4mbA== -----END CERTIFICATE-----Generated at Mon Jun 24 23:50:32 2024 by rpki-client on console-fra.rpki-client.org