$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1937/WEnvdegJNEdBuEbxsoteP4StB8o.roa File: WEnvdegJNEdBuEbxsoteP4StB8o.roa (raw, json) Hash identifier: pH8da7lMArJRdi/MQxBnE5SlFVt1hX6rm3P7+89Re3o= Subject key identifier: 58:49:EF:75:E8:09:34:47:41:B8:46:F1:B2:8B:5E:3F:84:AD:07:CA Certificate issuer: /CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D Certificate serial: 1C Authority key identifier: 71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/WEnvdegJNEdBuEbxsoteP4StB8o.roa Signing time: Tue 02 Apr 2024 00:08:59 +0000 ROA not before: Tue 02 Apr 2024 00:08:59 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 2497 IP address blocks: 157.8.64.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D Validity Not Before: Apr 2 00:08:59 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=5849EF75E809344741B846F1B28B5E3F84AD07CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a6:b2:d6:e8:8c:38:1d:25:6e:79:66:87:74: 03:5e:85:cd:70:8b:05:97:bf:15:22:e1:c7:a3:f8: ef:26:43:6e:49:53:b7:57:18:06:53:d0:59:68:49: f5:64:a1:e5:0b:96:d9:fa:ea:a7:4f:79:99:f9:09: 5c:fe:e1:7d:38:5b:fc:43:dd:fc:c9:32:50:4f:52: c2:20:9c:27:e9:dc:d8:f1:59:0e:bd:05:b7:2b:61: 4a:9f:46:51:f0:31:fd:38:8a:4a:d2:ec:d4:8f:b6: 17:d9:08:0f:07:f7:49:45:e7:92:15:37:e6:4b:b4: 46:c4:a1:50:1e:1f:a8:73:64:c4:73:34:7a:11:3e: 06:62:b7:51:be:b5:2e:bf:fe:56:30:b1:69:4b:bf: 94:1a:f2:74:d7:bc:be:8d:a1:a2:c6:22:28:26:04: 7f:8c:d4:2e:fa:c5:db:23:7f:b9:68:48:98:4f:cb: cf:a5:ef:15:19:38:83:c9:41:f3:65:56:15:38:3b: ea:94:47:43:bc:44:71:48:47:ec:a2:35:3a:07:9a: fa:17:5b:05:63:8a:25:77:66:30:a5:76:a6:59:96: 60:06:e0:36:32:ce:45:77:cb:3a:f3:b5:7e:b4:f8: 1f:80:4e:b8:a4:e9:7e:97:0f:28:29:5d:a0:af:ce: 2b:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:49:EF:75:E8:09:34:47:41:B8:46:F1:B2:8B:5E:3F:84:AD:07:CA X509v3 Authority Key Identifier: keyid:71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/WEnvdegJNEdBuEbxsoteP4StB8o.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.8.64.0/21 Signature Algorithm: sha256WithRSAEncryption 04:4a:0a:03:b7:99:ec:ba:db:d7:f1:76:ce:a7:ae:47:2a:b8: 3b:a3:34:98:0e:dd:9b:d9:ed:68:c6:bd:6d:53:35:6b:4d:bc: 4f:63:6e:a5:4f:56:84:1e:1a:2b:3a:6e:45:c7:5d:b0:c8:f4: 38:20:65:d2:1d:05:f2:e6:61:70:b3:72:70:ff:bc:14:e7:c8: 06:6a:f7:09:53:9f:ad:3e:6e:aa:28:66:6c:f4:1a:d7:b9:64: 1e:67:91:2c:bf:2c:f7:07:bc:13:1b:a3:9a:c3:a2:3f:ba:da: c9:49:fa:80:bf:f8:63:ba:68:7c:07:e9:39:3a:3b:0d:6c:4f: e0:b3:13:ca:90:a3:a7:45:36:19:2b:21:a0:d4:d0:c6:19:88: 95:d5:10:43:98:d2:09:a5:d9:c3:58:26:bc:97:67:ae:a8:d6: a6:e1:f8:ea:c7:6f:35:d1:2f:6c:ae:5e:47:1b:23:9a:a4:d6: 61:aa:b1:bd:16:b1:1e:1b:24:2f:00:ff:4d:b3:5e:45:4d:f0: 6d:ef:f8:41:39:f2:7c:70:c5:f4:7a:19:67:29:05:10:e7:bf: a3:be:c1:0e:04:e7:72:e0:a1:d2:a7:28:67:cf:95:af:94:77: 25:7c:3e:a2:d2:0b:aa:41:57:ca:0d:8b:e8:cb:6a:0c:79:61: e3:44:44:48 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBHDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3MTkx Q0I5RjRDNDIyRDNCM0Q2NzUzNzFCMThBOERBRERBRTg3OThEMB4XDTI0MDQwMjAw MDg1OVoXDTI1MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoNTg0OUVGNzVFODA5MzQ0 NzQxQjg0NkYxQjI4QjVFM0Y4NEFEMDdDQTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALmmstbojDgdJW55Zod0A16FzXCLBZe/FSLhx6P47yZDbklTt1cY BlPQWWhJ9WSh5QuW2frqp095mfkJXP7hfThb/EPd/MkyUE9SwiCcJ+nc2PFZDr0F tythSp9GUfAx/TiKStLs1I+2F9kIDwf3SUXnkhU35ku0RsShUB4fqHNkxHM0ehE+ BmK3Ub61Lr/+VjCxaUu/lBrydNe8vo2hosYiKCYEf4zULvrF2yN/uWhImE/Lz6Xv FRk4g8lB82VWFTg76pRHQ7xEcUhH7KI1Ogea+hdbBWOKJXdmMKV2plmWYAbgNjLO RXfLOvO1frT4H4BOuKTpfpcPKCldoK/OK5kCAwEAAaOCAiYwggIiMB0GA1UdDgQW BBRYSe916Ak0R0G4RvGyi14/hK0HyjAfBgNVHSMEGDAWgBRxkcufTEItOz1nU3Gx io2t2uh5jTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTkzNy9jWkhMbjB4Q0xUczlaMU54c1lxTnJkcm9lWTAuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9jWkhMbjB4Q0xUczlaMU54c1lxTnJk cm9lWTAuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTkzNy9XRW52ZGVnSk5FZEJ1RWJ4c290ZVA0U3RCOG8ucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQDnQhAMA0GCSqGSIb3DQEBCwUAA4IBAQAESgoDt5nsutvX8XbOp65HKrg7 ozSYDt2b2e1oxr1tUzVrTbxPY26lT1aEHhorOm5Fx12wyPQ4IGXSHQXy5mFws3Jw /7wU58gGavcJU5+tPm6qKGZs9BrXuWQeZ5Esvyz3B7wTG6Oaw6I/utrJSfqAv/hj umh8B+k5OjsNbE/gsxPKkKOnRTYZKyGg1NDGGYiV1RBDmNIJpdnDWCa8l2euqNam 4fjqx2810S9srl5HGyOapNZhqrG9FrEeGyQvAP9Ns15FTfBt7/hBOfJ8cMX0ehln KQUQ57+jvsEOBOdy4KHSpyhnz5WvlHclfD6i0guqQVfKDYvoy2oMeWHjRERI -----END CERTIFICATE-----Generated at Sat Jun 1 15:54:17 2024 by rpki-client on console-ams.rpki-client.org