$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1937/F1ahglejCO1RL7K5eTu5ka1JtiM.roa File: F1ahglejCO1RL7K5eTu5ka1JtiM.roa (raw, json) Hash identifier: H3WwlWqfcuwkKeCLfLMKM3+O7e3/fZ5pe8hOnRb2hvg= Subject key identifier: 17:56:A1:82:57:A3:08:ED:51:2F:B2:B9:79:3B:B9:91:AD:49:B6:23 Certificate issuer: /CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D Certificate serial: 15 Authority key identifier: 71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/F1ahglejCO1RL7K5eTu5ka1JtiM.roa Signing time: Tue 02 Apr 2024 00:05:08 +0000 ROA not before: Tue 02 Apr 2024 00:05:08 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 2497 IP address blocks: 157.8.50.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D Validity Not Before: Apr 2 00:05:08 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=1756A18257A308ED512FB2B9793BB991AD49B623 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:2c:f8:79:e8:4b:dc:56:5b:89:52:ff:2b:65: be:2c:66:6a:77:59:5e:82:d6:1a:93:5f:f9:7d:c6: a3:10:12:f8:57:80:a2:6a:f6:85:b0:6a:97:4c:a3: 36:16:23:cd:a8:04:66:2c:5c:1c:b8:40:c9:d1:7b: 66:95:c3:7b:80:47:4a:70:3e:6a:a5:fb:7e:3d:da: ed:89:a6:b4:11:8f:3f:47:36:fd:a0:48:fb:d9:ad: ff:fc:34:88:e0:1c:f3:89:66:39:d9:06:2c:5d:d9: 6f:7a:dd:a7:1c:bd:97:d6:a0:a0:25:d5:b5:dc:75: 93:3c:ad:96:54:52:14:f5:c2:9d:d2:4d:25:d1:65: c7:96:72:3f:42:90:6a:43:69:e3:2d:31:47:0c:c6: 0e:a6:0c:a2:e1:82:2d:ed:2a:bf:82:77:0f:48:83: 65:76:7e:46:5b:a6:39:35:03:d8:08:58:5b:ba:d2: 88:29:bf:e6:03:ef:bb:9e:29:45:f7:aa:d4:58:9b: e6:cd:28:70:4c:65:3f:0e:b0:b0:59:5d:c3:9f:22: bd:55:dd:0b:77:d1:97:75:5b:d1:f8:d9:b5:bb:ec: a7:1a:b6:10:c9:cc:0a:9a:1f:25:9e:e6:ac:eb:46: 21:e9:27:a6:58:d2:e4:77:2c:f1:c5:98:27:3d:00: 6a:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:56:A1:82:57:A3:08:ED:51:2F:B2:B9:79:3B:B9:91:AD:49:B6:23 X509v3 Authority Key Identifier: keyid:71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/F1ahglejCO1RL7K5eTu5ka1JtiM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.8.50.0/23 Signature Algorithm: sha256WithRSAEncryption 39:a3:57:ae:d5:e1:fc:5b:22:7c:ef:51:e8:e0:dc:c6:83:64: e7:1e:0a:77:4a:1c:4f:6f:bd:9d:08:cb:30:3c:62:78:2a:6e: 89:23:06:88:73:56:7a:7d:3d:c2:3b:83:31:fc:5a:17:ce:78: 1a:51:9d:f2:63:e9:b6:a9:5f:9d:4e:96:bc:0d:78:fe:e2:66: be:2a:7c:5a:e9:bf:a7:9b:1b:0f:8a:61:f7:d9:89:68:3a:32: 1a:90:eb:77:72:db:02:68:9a:92:9d:fe:ef:5a:10:b1:7b:03: 52:14:a9:3f:b1:c4:14:c1:6d:ec:a8:fb:b9:e8:06:84:a2:9a: 86:d4:26:6c:2b:dd:6e:c8:ca:7d:66:c5:a0:25:ae:a5:6d:aa: 28:42:8c:3c:f3:7b:4c:8d:64:12:1d:63:25:2d:6a:9a:79:d7: 92:c1:b1:8b:8f:28:b3:1c:71:f8:3a:bb:a8:30:65:0e:b3:90: f5:db:3e:2d:5d:a6:bb:a9:ab:f4:bd:6b:74:d9:c2:7d:af:87: ef:d7:ac:1c:80:88:e3:0e:61:2c:b5:2a:c9:5a:4c:2d:b3:30: a3:4b:b3:b0:5a:46:ad:02:f2:1e:ad:67:25:38:bf:33:e8:8d: 1a:67:e3:19:84:d2:36:04:5e:91:3c:cf:41:0f:18:8f:33:0e: e3:bb:3b:6e -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBFTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3MTkx Q0I5RjRDNDIyRDNCM0Q2NzUzNzFCMThBOERBRERBRTg3OThEMB4XDTI0MDQwMjAw MDUwOFoXDTI1MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoMTc1NkExODI1N0EzMDhF RDUxMkZCMkI5NzkzQkI5OTFBRDQ5QjYyMzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKks+HnoS9xWW4lS/ytlvixmandZXoLWGpNf+X3GoxAS+FeAomr2 hbBql0yjNhYjzagEZixcHLhAydF7ZpXDe4BHSnA+aqX7fj3a7YmmtBGPP0c2/aBI +9mt//w0iOAc84lmOdkGLF3Zb3rdpxy9l9agoCXVtdx1kzytllRSFPXCndJNJdFl x5ZyP0KQakNp4y0xRwzGDqYMouGCLe0qv4J3D0iDZXZ+RlumOTUD2AhYW7rSiCm/ 5gPvu54pRfeq1Fib5s0ocExlPw6wsFldw58ivVXdC3fRl3Vb0fjZtbvspxq2EMnM CpofJZ7mrOtGIeknpljS5Hcs8cWYJz0AalMCAwEAAaOCAiYwggIiMB0GA1UdDgQW BBQXVqGCV6MI7VEvsrl5O7mRrUm2IzAfBgNVHSMEGDAWgBRxkcufTEItOz1nU3Gx io2t2uh5jTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTkzNy9jWkhMbjB4Q0xUczlaMU54c1lxTnJkcm9lWTAuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9jWkhMbjB4Q0xUczlaMU54c1lxTnJk cm9lWTAuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTkzNy9GMWFoZ2xlakNPMVJMN0s1ZVR1NWthMUp0aU0ucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBnQgyMA0GCSqGSIb3DQEBCwUAA4IBAQA5o1eu1eH8WyJ871Ho4NzGg2Tn Hgp3ShxPb72dCMswPGJ4Km6JIwaIc1Z6fT3CO4Mx/FoXzngaUZ3yY+m2qV+dTpa8 DXj+4ma+Knxa6b+nmxsPimH32YloOjIakOt3ctsCaJqSnf7vWhCxewNSFKk/scQU wW3sqPu56AaEopqG1CZsK91uyMp9ZsWgJa6lbaooQow883tMjWQSHWMlLWqaedeS wbGLjyizHHH4OruoMGUOs5D12z4tXaa7qav0vWt02cJ9r4fv16wcgIjjDmEstSrJ WkwtszCjS7OwWkatAvIerWclOL8z6I0aZ+MZhNI2BF6RPM9BDxiPMw7juztu -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:43 2024 by rpki-client on console-fra.rpki-client.org