$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1937/-xXmtYApqV8m8hsC5gl6d1KitQc.roa File: -xXmtYApqV8m8hsC5gl6d1KitQc.roa (raw, json) Hash identifier: 5mOvnm8JqLDagbUQch8sRRn3wdw7IQYyfV1EhwD/GYA= Subject key identifier: FB:15:E6:B5:80:29:A9:5F:26:F2:1B:02:E6:09:7A:77:52:A2:B5:07 Certificate issuer: /CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D Certificate serial: 16 Authority key identifier: 71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/-xXmtYApqV8m8hsC5gl6d1KitQc.roa Signing time: Tue 02 Apr 2024 00:05:09 +0000 ROA not before: Tue 02 Apr 2024 00:05:09 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 2497 IP address blocks: 157.8.52.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D Validity Not Before: Apr 2 00:05:09 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=FB15E6B58029A95F26F21B02E6097A7752A2B507 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c4:a3:7c:b3:22:4a:d2:d5:9a:01:bb:c5:92: 2f:45:ce:82:7f:63:98:4a:5d:bf:9a:02:72:f6:66: 6f:09:74:31:c1:03:62:f7:3f:b5:5b:38:fc:c9:53: b8:5d:10:6b:68:bb:30:a3:7f:cc:18:98:fb:4b:7a: 4b:62:84:f7:a7:b4:a5:05:03:07:ac:05:8d:56:3c: 7f:84:c9:36:38:8b:77:23:95:3a:8a:fe:12:19:83: 40:fb:86:a3:c5:f7:84:70:c8:e9:a4:b6:1b:9b:da: fa:17:57:0a:96:f1:4f:bf:35:98:9e:44:9e:bf:f9: d3:9a:21:c0:5f:b7:f1:da:e4:27:bc:66:b2:81:59: 58:3e:64:7b:fe:52:fe:9f:44:87:6a:da:d3:e0:61: 2b:4d:81:89:af:24:24:80:4c:ff:15:8e:14:5c:09: 7d:a5:58:80:25:39:3a:ff:c7:51:35:89:0e:f0:d1: 02:91:db:a1:ef:95:82:ab:e5:92:db:6e:bc:b4:6f: ca:1e:68:b2:f1:d0:3b:35:8b:74:67:56:c7:71:6a: a9:64:a1:21:15:72:5c:79:c2:07:a8:b0:a1:d8:f3: 1c:e1:21:d3:a5:13:ed:90:91:f6:1d:73:92:dc:42: d0:39:8b:aa:0c:2e:2e:62:02:9a:a2:61:18:9a:81: e7:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:15:E6:B5:80:29:A9:5F:26:F2:1B:02:E6:09:7A:77:52:A2:B5:07 X509v3 Authority Key Identifier: keyid:71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/-xXmtYApqV8m8hsC5gl6d1KitQc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.8.52.0/23 Signature Algorithm: sha256WithRSAEncryption 66:48:0b:56:91:60:bd:03:f0:92:e3:54:da:35:8e:22:83:5e: 36:7e:0d:ce:8d:b5:16:cd:1a:d1:b8:4e:3b:11:cc:31:9e:ec: 39:1d:b7:61:5a:8d:26:15:37:db:c5:26:6d:89:5a:e8:0e:74: f8:e2:df:1b:fe:b1:c2:04:a3:52:b2:5f:b8:08:b8:1e:d7:7a: bc:3a:81:1e:56:85:33:93:40:e9:e4:06:d9:b1:ac:53:83:ce: 35:49:f3:fb:b0:ea:37:08:f1:8d:f8:bc:31:d3:d4:10:d5:61: 56:cc:47:08:1b:c9:67:3f:bf:9e:c9:6a:cd:91:f2:84:87:15: c5:6f:95:19:c9:b9:a8:08:3b:ee:71:2e:cf:31:25:88:ad:03: e7:e2:00:4e:53:9b:2a:69:4d:50:00:7f:ab:02:14:d0:50:3f: 63:f5:fe:88:00:b2:54:07:be:02:3d:f0:fe:ff:03:22:0e:34: 22:bc:94:dc:8a:1b:0d:e5:5c:f2:ce:6f:b5:b7:5b:28:a0:de: 35:ca:78:ab:e9:0a:b3:bc:31:35:45:38:a0:56:b4:b6:cd:d2: 43:32:30:9b:21:09:b3:32:79:1e:ac:bb:b3:a5:51:e1:c3:c4: 9e:0f:3f:12:5d:0c:aa:e8:d5:14:4f:74:95:fa:60:6b:48:3c: 8c:a0:04:e8 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBFjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3MTkx Q0I5RjRDNDIyRDNCM0Q2NzUzNzFCMThBOERBRERBRTg3OThEMB4XDTI0MDQwMjAw MDUwOVoXDTI1MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoRkIxNUU2QjU4MDI5QTk1 RjI2RjIxQjAyRTYwOTdBNzc1MkEyQjUwNzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANjEo3yzIkrS1ZoBu8WSL0XOgn9jmEpdv5oCcvZmbwl0McEDYvc/ tVs4/MlTuF0Qa2i7MKN/zBiY+0t6S2KE96e0pQUDB6wFjVY8f4TJNjiLdyOVOor+ EhmDQPuGo8X3hHDI6aS2G5va+hdXCpbxT781mJ5Enr/505ohwF+38drkJ7xmsoFZ WD5ke/5S/p9Eh2ra0+BhK02Bia8kJIBM/xWOFFwJfaVYgCU5Ov/HUTWJDvDRApHb oe+VgqvlkttuvLRvyh5osvHQOzWLdGdWx3FqqWShIRVyXHnCB6iwodjzHOEh06UT 7ZCR9h1zktxC0DmLqgwuLmICmqJhGJqB57kCAwEAAaOCAiYwggIiMB0GA1UdDgQW BBT7Fea1gCmpXybyGwLmCXp3UqK1BzAfBgNVHSMEGDAWgBRxkcufTEItOz1nU3Gx io2t2uh5jTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTkzNy9jWkhMbjB4Q0xUczlaMU54c1lxTnJkcm9lWTAuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9jWkhMbjB4Q0xUczlaMU54c1lxTnJk cm9lWTAuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTkzNy8teFhtdFlBcHFWOG04aHNDNWdsNmQxS2l0UWMucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBnQg0MA0GCSqGSIb3DQEBCwUAA4IBAQBmSAtWkWC9A/CS41TaNY4ig142 fg3OjbUWzRrRuE47Ecwxnuw5HbdhWo0mFTfbxSZtiVroDnT44t8b/rHCBKNSsl+4 CLge13q8OoEeVoUzk0Dp5AbZsaxTg841SfP7sOo3CPGN+Lwx09QQ1WFWzEcIG8ln P7+eyWrNkfKEhxXFb5UZybmoCDvucS7PMSWIrQPn4gBOU5sqaU1QAH+rAhTQUD9j 9f6IALJUB74CPfD+/wMiDjQivJTcihsN5Vzyzm+1t1sooN41ynir6QqzvDE1RTig VrS2zdJDMjCbIQmzMnkerLuzpVHhw8SeDz8SXQyq6NUUT3SV+mBrSDyMoATo -----END CERTIFICATE-----Generated at Sat Jun 1 15:54:17 2024 by rpki-client on console-ams.rpki-client.org