$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1937/fk4deyeHEqDE9jGiiJ8gu7hIjTA.roa File: fk4deyeHEqDE9jGiiJ8gu7hIjTA.roa (raw, json) Hash identifier: qIUDiHE9IXbbdVnokIkg2JKazFbwq7IJawHoHRq8MTA= Subject key identifier: 7E:4E:1D:7B:27:87:12:A0:C4:F6:31:A2:88:9F:20:BB:B8:48:8D:30 Certificate issuer: /CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D Certificate serial: 18 Authority key identifier: 71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/fk4deyeHEqDE9jGiiJ8gu7hIjTA.roa Signing time: Tue 02 Apr 2024 00:05:11 +0000 ROA not before: Tue 02 Apr 2024 00:05:11 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 2497 IP address blocks: 157.8.56.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D Validity Not Before: Apr 2 00:05:11 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=7E4E1D7B278712A0C4F631A2889F20BBB8488D30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:27:3c:af:61:dc:c4:d8:71:8f:81:13:64:1e: 01:75:a6:b5:98:29:e1:ef:f8:fa:c9:ac:26:78:23: 6c:e2:75:c8:0e:f3:01:4b:fa:26:f4:c2:62:ed:ba: ee:59:cb:e0:3a:82:16:c4:31:ea:85:0c:1c:a5:3c: f9:a9:15:d5:15:29:c3:8f:d0:9d:5c:07:18:c7:e1: 82:c2:9c:4b:ef:7d:34:39:81:fa:dc:4b:64:b0:45: 49:93:cb:4f:f8:26:50:cb:e1:58:dc:f0:a1:4b:a2: 42:c2:ee:05:2b:38:fa:57:05:41:4a:bd:d7:26:fa: 32:48:34:de:be:12:f3:99:f6:59:ce:80:5a:2c:5a: 90:6f:7e:a9:78:4e:42:8a:f3:35:9e:31:9a:08:cf: 2b:a7:48:1b:2c:52:6b:b2:c5:a4:09:9e:e7:25:77: 90:4d:24:2d:37:fb:5a:53:25:56:b0:ae:48:8c:f3: fa:26:d7:10:e3:a6:96:26:d8:14:94:aa:8d:e3:80: c5:95:47:86:c5:b2:26:7e:1a:74:b1:1b:24:a8:12: dd:f7:33:4c:ce:56:3d:3e:d9:cf:9f:81:a7:23:9c: a9:b5:97:23:7c:5c:eb:44:67:d4:2f:b7:d5:80:05: dd:5b:ef:bf:26:e0:5a:9e:ac:ae:40:4e:c1:88:5f: 0c:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:4E:1D:7B:27:87:12:A0:C4:F6:31:A2:88:9F:20:BB:B8:48:8D:30 X509v3 Authority Key Identifier: keyid:71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/fk4deyeHEqDE9jGiiJ8gu7hIjTA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.8.56.0/23 Signature Algorithm: sha256WithRSAEncryption 32:67:e9:49:d9:f9:52:22:5f:a0:d3:64:8f:a7:b3:ec:c7:f3: fb:9f:0b:37:cd:02:4a:6a:62:cb:f5:5c:be:af:4d:03:b1:9b: 94:d3:28:d2:ac:52:4a:50:a7:f3:39:2c:a6:66:0a:62:7e:af: dd:5c:09:2d:38:61:fb:b3:05:d8:c5:7e:28:e4:c1:b8:fa:99: d1:e4:07:2c:09:3e:0f:9e:fd:82:67:52:ba:fb:ad:f7:11:2a: da:b1:07:08:79:ac:a5:9e:50:3b:c6:d9:ad:6f:c7:d6:ac:52: 3d:c0:6a:d2:3d:b3:3f:14:d6:82:a5:87:92:6b:43:55:23:b9: d9:2e:e5:3f:37:5f:44:47:d7:84:f5:40:cc:1d:1d:66:da:69: 8a:32:bf:00:bc:0e:75:95:cd:8b:ee:58:f5:4c:dc:17:49:5c: 3a:59:dd:74:2b:ed:c5:3e:f8:cd:53:3b:bb:cd:d0:67:d4:83: 45:76:a0:5c:98:7e:13:88:f2:80:d9:b9:7a:8f:04:ea:7a:37: 49:4f:8b:10:5d:c6:97:3e:46:87:f8:b6:be:da:b6:33:72:f2: d8:60:a8:a6:de:ad:12:27:87:d2:a1:0f:98:1a:41:c3:11:b8: c9:0d:0a:08:b4:d7:06:28:16:91:16:89:ef:c7:a3:f2:7f:ed: 2c:c0:75:14 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBGDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3MTkx Q0I5RjRDNDIyRDNCM0Q2NzUzNzFCMThBOERBRERBRTg3OThEMB4XDTI0MDQwMjAw MDUxMVoXDTI1MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoN0U0RTFEN0IyNzg3MTJB MEM0RjYzMUEyODg5RjIwQkJCODQ4OEQzMDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPQnPK9h3MTYcY+BE2QeAXWmtZgp4e/4+smsJngjbOJ1yA7zAUv6 JvTCYu267lnL4DqCFsQx6oUMHKU8+akV1RUpw4/QnVwHGMfhgsKcS+99NDmB+txL ZLBFSZPLT/gmUMvhWNzwoUuiQsLuBSs4+lcFQUq91yb6Mkg03r4S85n2Wc6AWixa kG9+qXhOQorzNZ4xmgjPK6dIGyxSa7LFpAme5yV3kE0kLTf7WlMlVrCuSIzz+ibX EOOmlibYFJSqjeOAxZVHhsWyJn4adLEbJKgS3fczTM5WPT7Zz5+BpyOcqbWXI3xc 60Rn1C+31YAF3VvvvybgWp6srkBOwYhfDPECAwEAAaOCAiYwggIiMB0GA1UdDgQW BBR+Th17J4cSoMT2MaKInyC7uEiNMDAfBgNVHSMEGDAWgBRxkcufTEItOz1nU3Gx io2t2uh5jTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTkzNy9jWkhMbjB4Q0xUczlaMU54c1lxTnJkcm9lWTAuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9jWkhMbjB4Q0xUczlaMU54c1lxTnJk cm9lWTAuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTkzNy9mazRkZXllSEVxREU5akdpaUo4Z3U3aElqVEEucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBnQg4MA0GCSqGSIb3DQEBCwUAA4IBAQAyZ+lJ2flSIl+g02SPp7Psx/P7 nws3zQJKamLL9Vy+r00DsZuU0yjSrFJKUKfzOSymZgpifq/dXAktOGH7swXYxX4o 5MG4+pnR5AcsCT4Pnv2CZ1K6+633ESrasQcIeaylnlA7xtmtb8fWrFI9wGrSPbM/ FNaCpYeSa0NVI7nZLuU/N19ER9eE9UDMHR1m2mmKMr8AvA51lc2L7lj1TNwXSVw6 Wd10K+3FPvjNUzu7zdBn1INFdqBcmH4TiPKA2bl6jwTqejdJT4sQXcaXPkaH+La+ 2rYzcvLYYKim3q0SJ4fSoQ+YGkHDEbjJDQoItNcGKBaRFonvx6Pyf+0swHUU -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:43 2024 by rpki-client on console-fra.rpki-client.org