$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/783/ogCJNU-lk1hHgeH7HsFp0z43OaQ.roa File: ogCJNU-lk1hHgeH7HsFp0z43OaQ.roa (raw, json) Hash identifier: mlpRgNE2UI1VVo9QXjHn8U8XoEcuX46xCGWmt6TUc84= Subject key identifier: A2:00:89:35:4F:A5:93:58:47:81:E1:FB:1E:C1:69:D3:3E:37:39:A4 Certificate issuer: /CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Certificate serial: 3C Authority key identifier: CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/ogCJNU-lk1hHgeH7HsFp0z43OaQ.roa Signing time: Fri 15 Sep 2023 06:50:50 +0000 ROA not before: Fri 15 Sep 2023 06:50:50 +0000 ROA not after: Sat 14 Sep 2024 01:30:03 +0000 asID: 18144 IP address blocks: 223.223.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 30 Jun 2024 06:27:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Validity Not Before: Sep 15 06:50:50 2023 GMT Not After : Sep 14 01:30:03 2024 GMT Subject: CN=A20089354FA593584781E1FB1EC169D33E3739A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:81:da:fb:7d:3c:ab:f8:dc:70:31:be:0e:20: 45:94:3c:e6:44:07:07:17:9a:48:1b:54:38:00:b3: 3a:c6:cd:63:36:50:67:94:d2:96:1a:25:61:9c:ec: 53:09:d9:7c:8c:f4:09:b4:65:07:de:f5:32:ae:d7: da:16:00:98:36:3f:ef:9c:6a:70:19:ba:00:1d:c8: 5f:da:d5:c6:a2:78:1d:a4:be:c3:39:38:63:41:10: 7c:19:7f:78:01:96:80:d4:4b:e6:41:39:54:0d:30: 60:23:93:05:74:3c:d2:b6:6f:ff:71:c7:4c:0d:48: 94:74:5f:7c:ea:3e:dd:fb:b8:93:8a:ab:d0:5a:2c: 4e:d9:eb:70:42:b7:c8:d4:eb:37:3b:cd:22:ca:64: 16:09:9c:8c:b2:4f:70:eb:d7:e5:dc:cd:11:1c:84: e5:f2:10:33:69:c9:52:b7:2b:9f:ae:1d:61:5f:d1: d2:ac:45:78:8c:af:cb:4f:b1:5d:6e:bd:84:50:a5: fb:42:b0:71:40:84:8d:1f:2f:64:bd:d4:a3:68:e1: b8:13:26:dc:dc:b8:82:3f:fd:c6:6a:70:26:1d:81: 66:43:2f:30:9a:89:4d:80:d8:52:43:fa:c9:af:5f: 1a:da:46:7c:f1:e9:67:12:17:51:d2:c1:b0:6f:df: f0:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:00:89:35:4F:A5:93:58:47:81:E1:FB:1E:C1:69:D3:3E:37:39:A4 X509v3 Authority Key Identifier: keyid:CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/ogCJNU-lk1hHgeH7HsFp0z43OaQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 223.223.0.0/17 Signature Algorithm: sha256WithRSAEncryption 2b:7c:af:b8:04:21:fe:8e:d9:52:57:db:6e:8b:c6:ff:47:57: 22:2f:ef:27:48:ac:0e:14:84:ee:51:4e:38:6d:64:a3:13:73: 34:53:b3:a9:53:7e:d0:b0:b3:76:95:98:8d:95:d4:11:6e:c4: 16:af:5d:cb:7c:a9:d9:bb:1c:6a:fb:69:90:84:33:7a:d4:27: 1b:e0:63:03:1f:1a:c6:5f:72:40:1e:1e:d1:b4:35:ab:66:4a: 0a:c1:23:9e:c9:77:d1:37:8b:7d:74:7d:9f:04:ac:80:3a:a7: 70:a4:1b:68:f5:16:8b:5f:de:7a:5e:df:28:e0:11:7d:d5:ef: b0:a6:40:c5:48:9a:3a:90:b0:e8:9a:bd:b3:14:90:e6:a1:d5: d2:da:0e:54:86:5a:15:40:0d:8e:16:fe:75:b0:b5:ab:0d:ba: b3:7c:db:ef:50:dc:0f:54:6f:9b:fe:df:d2:bc:b8:92:59:0d: 82:25:19:f9:dc:95:8c:ef:7d:0b:57:66:5b:6c:15:69:f8:fe: ac:60:ac:7c:c7:6e:73:fd:db:e6:56:eb:3c:32:67:a3:23:37: e2:94:e6:ae:47:fe:a2:6b:5c:a5:ca:df:d2:5e:ad:a5:ee:e6: b2:16:a8:24:c4:33:13:ac:05:f8:25:67:45:e4:a4:0c:0b:02: c6:e2:06:da -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBPDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDQjgz MDBCMjA2NTlCQjk1MTA2MEY2MEIxRjRCQzYwOTFBRjI3NjM5MB4XDTIzMDkxNTA2 NTA1MFoXDTI0MDkxNDAxMzAwM1owMzExMC8GA1UEAxMoQTIwMDg5MzU0RkE1OTM1 ODQ3ODFFMUZCMUVDMTY5RDMzRTM3MzlBNDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALqB2vt9PKv43HAxvg4gRZQ85kQHBxeaSBtUOACzOsbNYzZQZ5TS lholYZzsUwnZfIz0CbRlB971Mq7X2hYAmDY/75xqcBm6AB3IX9rVxqJ4HaS+wzk4 Y0EQfBl/eAGWgNRL5kE5VA0wYCOTBXQ80rZv/3HHTA1IlHRffOo+3fu4k4qr0Fos TtnrcEK3yNTrNzvNIspkFgmcjLJPcOvX5dzNERyE5fIQM2nJUrcrn64dYV/R0qxF eIyvy0+xXW69hFCl+0KwcUCEjR8vZL3Uo2jhuBMm3Ny4gj/9xmpwJh2BZkMvMJqJ TYDYUkP6ya9fGtpGfPHpZxIXUdLBsG/f8F8CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSiAIk1T6WTWEeB4fsewWnTPjc5pDAfBgNVHSMEGDAWgBTLgwCyBlm7lRBg9gsf S8YJGvJ2OTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNzgzL3k0TUFzZ1padTVVUVlQWUxIMHZHQ1JyeWRqay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3k0TUFzZ1padTVVUVlQWUxIMHZHQ1Jy eWRqay5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC83ODMvb2dDSk5VLWxrMWhIZ2VIN0hzRnAwejQzT2FRLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEB9/fADANBgkqhkiG9w0BAQsFAAOCAQEAK3yvuAQh/o7ZUlfbbovG/0dXIi/v J0isDhSE7lFOOG1koxNzNFOzqVN+0LCzdpWYjZXUEW7EFq9dy3yp2bscavtpkIQz etQnG+BjAx8axl9yQB4e0bQ1q2ZKCsEjnsl30TeLfXR9nwSsgDqncKQbaPUWi1/e el7fKOARfdXvsKZAxUiaOpCw6Jq9sxSQ5qHV0toOVIZaFUANjhb+dbC1qw26s3zb 71DcD1Rvm/7f0ry4klkNgiUZ+dyVjO99C1dmW2wVafj+rGCsfMduc/3b5lbrPDJn oyM34pTmrkf+omtcpcrf0l6tpe7mshaoJMQzE6wF+CVnReSkDAsCxuIG2g== -----END CERTIFICATE-----Generated at Tue Jun 25 00:53:01 2024 by rpki-client on console-ams.rpki-client.org