$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1937/4i3MA9lZ0MEWgYRqw5NvxQDqjmw.roa File: 4i3MA9lZ0MEWgYRqw5NvxQDqjmw.roa (raw, json) Hash identifier: sVEtzYdZ/8JbnyU3FbtN+lWupj5DdB3xAgRsUoRIR6A= Subject key identifier: E2:2D:CC:03:D9:59:D0:C1:16:81:84:6A:C3:93:6F:C5:00:EA:8E:6C Certificate issuer: /CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D Certificate serial: 0A Authority key identifier: 71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/4i3MA9lZ0MEWgYRqw5NvxQDqjmw.roa Signing time: Mon 01 Apr 2024 23:57:06 +0000 ROA not before: Mon 01 Apr 2024 23:57:06 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 2497 IP address blocks: 157.8.2.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D Validity Not Before: Apr 1 23:57:06 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=E22DCC03D959D0C11681846AC3936FC500EA8E6C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:70:f1:27:73:84:41:ae:80:27:e5:63:51:09: 0f:57:8d:f0:88:8f:b5:d2:3d:96:04:8a:c2:46:2d: 9e:d6:99:4d:d3:04:76:11:71:25:f4:aa:35:17:6c: d8:7f:9f:c4:fc:a5:a6:77:28:bb:f8:22:12:01:6c: f1:be:15:33:51:8b:e5:c1:81:4d:1d:6b:34:a1:d6: 13:6a:45:48:85:83:11:80:c0:0b:6c:96:dd:b3:43: a2:36:4d:b0:6d:e0:f6:36:8d:35:11:42:b7:b3:d7: 4d:ac:d1:31:e6:c7:68:3a:df:2e:fe:23:a6:67:e6: 2f:66:86:f2:c9:53:a7:44:65:5a:64:c8:13:52:30: 4e:fe:d4:81:02:99:b5:91:0a:12:8e:a5:69:d0:a8: c5:e4:fc:5a:81:bd:85:37:31:28:bd:ae:77:8f:c8: f8:7e:89:91:c0:17:f2:0c:80:b9:d8:fd:fc:f1:79: c1:28:e1:99:fd:e3:a5:bc:2d:8b:a3:3f:ac:5f:9a: 91:69:f8:6e:79:2d:eb:15:ef:05:28:4a:02:01:d4: 86:40:04:62:d7:59:d9:34:02:84:72:cb:77:06:e2: b3:43:3f:8f:0e:14:3f:97:c9:93:34:e1:30:4a:4e: ae:ad:71:d7:e2:24:e2:08:64:f0:5d:5e:e4:0d:c2: 6d:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:2D:CC:03:D9:59:D0:C1:16:81:84:6A:C3:93:6F:C5:00:EA:8E:6C X509v3 Authority Key Identifier: keyid:71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/4i3MA9lZ0MEWgYRqw5NvxQDqjmw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.8.2.0/23 Signature Algorithm: sha256WithRSAEncryption 0c:51:b7:aa:e0:27:f3:64:4b:13:5d:b2:f7:65:5d:6c:bd:de: 9d:3a:f9:2d:a6:98:a9:ed:cd:c3:02:9f:f8:8d:14:8f:1f:04: 7c:a5:b3:80:74:97:50:d8:fb:48:49:b5:dd:22:5a:e4:c7:f3: 70:10:86:65:32:a8:79:b8:1c:0b:c4:1d:8d:ef:23:a0:fb:7d: e1:3e:35:33:bf:a6:8b:aa:46:b4:3c:31:6e:cb:05:97:0b:af: 78:f8:e5:29:75:2f:13:41:63:55:8f:5f:12:ec:6e:d9:ec:4f: ff:a8:ab:ce:5f:c2:02:82:16:59:ac:72:1d:d9:e7:d7:e5:9c: 9d:17:bc:05:72:5d:25:cd:d6:9e:0a:11:d4:78:62:c6:f1:54: a7:22:9a:48:cc:57:84:f1:33:6c:ae:04:a4:37:26:eb:96:21: e8:f6:18:36:55:5e:0a:67:f9:01:81:a1:8c:86:26:12:30:b4: be:9a:c9:5d:32:1f:08:0b:9d:7c:1f:9c:37:1d:e5:b6:73:ba: f0:8f:20:24:79:81:93:a5:80:9b:9b:0c:83:4a:81:5a:24:a4: f0:e9:28:c7:f1:74:7b:bf:36:ec:cd:2a:5d:27:55:f9:6e:82: 3c:b6:f0:cf:1a:bb:fb:21:f9:84:3d:5f:50:e1:92:b7:22:70: 79:34:07:43 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBCjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3MTkx Q0I5RjRDNDIyRDNCM0Q2NzUzNzFCMThBOERBRERBRTg3OThEMB4XDTI0MDQwMTIz NTcwNloXDTI1MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoRTIyRENDMDNEOTU5RDBD MTE2ODE4NDZBQzM5MzZGQzUwMEVBOEU2QzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL9w8SdzhEGugCflY1EJD1eN8IiPtdI9lgSKwkYtntaZTdMEdhFx JfSqNRds2H+fxPylpncou/giEgFs8b4VM1GL5cGBTR1rNKHWE2pFSIWDEYDAC2yW 3bNDojZNsG3g9jaNNRFCt7PXTazRMebHaDrfLv4jpmfmL2aG8slTp0RlWmTIE1Iw Tv7UgQKZtZEKEo6ladCoxeT8WoG9hTcxKL2ud4/I+H6JkcAX8gyAudj9/PF5wSjh mf3jpbwti6M/rF+akWn4bnkt6xXvBShKAgHUhkAEYtdZ2TQChHLLdwbis0M/jw4U P5fJkzThMEpOrq1x1+Ik4ghk8F1e5A3CbbECAwEAAaOCAiYwggIiMB0GA1UdDgQW BBTiLcwD2VnQwRaBhGrDk2/FAOqObDAfBgNVHSMEGDAWgBRxkcufTEItOz1nU3Gx io2t2uh5jTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTkzNy9jWkhMbjB4Q0xUczlaMU54c1lxTnJkcm9lWTAuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9jWkhMbjB4Q0xUczlaMU54c1lxTnJk cm9lWTAuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTkzNy80aTNNQTlsWjBNRVdnWVJxdzVOdnhRRHFqbXcucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBnQgCMA0GCSqGSIb3DQEBCwUAA4IBAQAMUbeq4CfzZEsTXbL3ZV1svd6d Ovktppip7c3DAp/4jRSPHwR8pbOAdJdQ2PtISbXdIlrkx/NwEIZlMqh5uBwLxB2N 7yOg+33hPjUzv6aLqka0PDFuywWXC694+OUpdS8TQWNVj18S7G7Z7E//qKvOX8IC ghZZrHId2efX5ZydF7wFcl0lzdaeChHUeGLG8VSnIppIzFeE8TNsrgSkNybrliHo 9hg2VV4KZ/kBgaGMhiYSMLS+msldMh8IC518H5w3HeW2c7rwjyAkeYGTpYCbmwyD SoFaJKTw6SjH8XR7vzbszSpdJ1X5boI8tvDPGrv7IfmEPV9Q4ZK3InB5NAdD -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:43 2024 by rpki-client on console-fra.rpki-client.org