$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/783/pW-pr3wwdmudkSI_zrLWfhVqTKc.roa File: pW-pr3wwdmudkSI_zrLWfhVqTKc.roa (raw, json) Hash identifier: 051K1Bk1pur6eiRg+tF2AAxbcXWkL+kgsnV9C6mV+jo= Subject key identifier: A5:6F:A9:AF:7C:30:76:6B:9D:91:22:3F:CE:B2:D6:7E:15:6A:4C:A7 Certificate issuer: /CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Certificate serial: 29 Authority key identifier: CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/pW-pr3wwdmudkSI_zrLWfhVqTKc.roa Signing time: Fri 15 Sep 2023 06:36:35 +0000 ROA not before: Fri 15 Sep 2023 06:36:35 +0000 ROA not after: Sat 14 Sep 2024 01:30:03 +0000 asID: 18144 IP address blocks: 36.52.152.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 30 Jun 2024 06:27:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Validity Not Before: Sep 15 06:36:35 2023 GMT Not After : Sep 14 01:30:03 2024 GMT Subject: CN=A56FA9AF7C30766B9D91223FCEB2D67E156A4CA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:5f:12:1e:09:c9:c2:44:04:04:cc:97:39:ae: 53:14:c7:a2:b8:79:06:95:3f:ec:60:8c:15:e4:fd: c6:b1:b9:b5:36:1a:bb:14:1b:dd:0d:25:60:5a:39: 08:9c:59:88:03:41:ea:13:eb:ee:4b:d8:87:82:43: 97:36:56:44:33:c2:17:ff:e7:44:5e:a3:17:ce:51: 2d:6d:90:d0:0e:6c:7c:83:bd:b0:61:05:82:42:8c: f9:65:9f:0d:cc:8a:df:93:8f:6f:3c:04:45:97:25: e9:e6:3c:2e:b2:a2:ce:3c:a9:61:29:e1:ab:bb:43: 46:50:02:b9:6e:85:0d:28:e1:6d:d7:97:c6:94:dc: b7:c6:88:81:02:f3:05:74:b9:83:6f:3b:30:84:68: 74:c2:77:ea:f1:85:4c:45:59:17:d7:ee:1e:38:47: 65:18:60:1c:30:6f:c3:12:db:64:80:95:57:8f:af: 68:93:81:a8:68:ea:e0:61:c2:f8:65:29:c9:95:d7: de:7f:db:6a:6d:c7:7d:5a:a7:b5:b8:b8:ce:2a:81: 80:79:8e:87:4f:4a:20:8b:7c:86:98:90:80:25:94: 39:ac:33:3e:86:ab:ef:b3:8a:53:2c:a5:9f:6e:8d: 7a:00:5d:af:2e:af:78:fd:22:f5:df:00:33:93:ab: 52:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:6F:A9:AF:7C:30:76:6B:9D:91:22:3F:CE:B2:D6:7E:15:6A:4C:A7 X509v3 Authority Key Identifier: keyid:CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/pW-pr3wwdmudkSI_zrLWfhVqTKc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.52.152.0/21 Signature Algorithm: sha256WithRSAEncryption 54:29:bf:ca:35:73:f5:f2:2a:c2:2d:b4:68:0a:2e:54:32:66: 54:9b:04:5c:15:e3:a1:d5:c7:37:a8:3a:ee:e7:b6:47:af:7e: 7c:73:33:4d:7d:2e:3b:12:b9:f2:83:13:18:bc:45:15:06:b6: 68:08:14:90:3e:70:dd:94:86:ae:2c:3b:1f:a2:a3:60:cf:af: 24:6e:10:f2:a4:2d:e5:2d:51:6a:2e:d6:9d:ee:7e:3d:27:c5: 0f:b9:52:5b:8d:35:21:4a:21:d8:ce:9b:cc:a6:8a:6e:aa:ad: 60:fb:94:85:c4:b2:66:b7:9f:46:ff:9a:4f:4e:f3:02:af:65: bb:28:89:b0:c6:3d:60:e7:8e:f0:0c:0f:88:a2:a5:96:49:73: db:a2:9e:cd:0a:7c:93:1c:a1:de:93:cb:ed:8e:16:e1:65:3c: 37:51:d0:62:64:2c:41:f3:24:e2:c8:33:b2:e2:86:0e:03:e6: 82:ff:d6:bb:86:6d:e0:a5:0a:c0:32:9f:e7:dd:3e:7a:67:f6: 5b:d3:88:ff:19:da:9a:0d:39:a4:1a:69:2c:cd:ac:bd:6d:cc: 5b:1a:2f:27:b3:fe:e0:12:3e:8e:86:cc:b6:b2:51:f7:9c:14: 67:99:77:44:47:06:ef:d1:3e:15:b5:97:13:78:f7:d8:48:be: 9c:6f:84:53 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBKTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDQjgz MDBCMjA2NTlCQjk1MTA2MEY2MEIxRjRCQzYwOTFBRjI3NjM5MB4XDTIzMDkxNTA2 MzYzNVoXDTI0MDkxNDAxMzAwM1owMzExMC8GA1UEAxMoQTU2RkE5QUY3QzMwNzY2 QjlEOTEyMjNGQ0VCMkQ2N0UxNTZBNENBNzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJZfEh4JycJEBATMlzmuUxTHorh5BpU/7GCMFeT9xrG5tTYauxQb 3Q0lYFo5CJxZiANB6hPr7kvYh4JDlzZWRDPCF//nRF6jF85RLW2Q0A5sfIO9sGEF gkKM+WWfDcyK35OPbzwERZcl6eY8LrKizjypYSnhq7tDRlACuW6FDSjhbdeXxpTc t8aIgQLzBXS5g287MIRodMJ36vGFTEVZF9fuHjhHZRhgHDBvwxLbZICVV4+vaJOB qGjq4GHC+GUpyZXX3n/bam3HfVqntbi4ziqBgHmOh09KIIt8hpiQgCWUOawzPoar 77OKUyyln26NegBdry6veP0i9d8AM5OrUjECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSlb6mvfDB2a52RIj/OstZ+FWpMpzAfBgNVHSMEGDAWgBTLgwCyBlm7lRBg9gsf S8YJGvJ2OTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNzgzL3k0TUFzZ1padTVVUVlQWUxIMHZHQ1JyeWRqay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3k0TUFzZ1padTVVUVlQWUxIMHZHQ1Jy eWRqay5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC83ODMvcFctcHIzd3dkbXVka1NJX3pyTFdmaFZxVEtjLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAyQ0mDANBgkqhkiG9w0BAQsFAAOCAQEAVCm/yjVz9fIqwi20aAouVDJmVJsE XBXjodXHN6g67ue2R69+fHMzTX0uOxK58oMTGLxFFQa2aAgUkD5w3ZSGriw7H6Kj YM+vJG4Q8qQt5S1Rai7Wne5+PSfFD7lSW401IUoh2M6bzKaKbqqtYPuUhcSyZref Rv+aT07zAq9luyiJsMY9YOeO8AwPiKKllklz26KezQp8kxyh3pPL7Y4W4WU8N1HQ YmQsQfMk4sgzsuKGDgPmgv/Wu4Zt4KUKwDKf590+emf2W9OI/xnamg05pBppLM2s vW3MWxovJ7P+4BI+jobMtrJR95wUZ5l3REcG79E+FbWXE3j32Ei+nG+EUw== -----END CERTIFICATE-----Generated at Mon Jun 24 23:50:32 2024 by rpki-client on console-fra.rpki-client.org