$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1937/hSAgiB8ts9-sIrOJSnNLjyH396c.roa File: hSAgiB8ts9-sIrOJSnNLjyH396c.roa (raw, json) Hash identifier: noEyZecLv2w1M1ChhKPFRT9Vls1V0WGvsNceoA3eLZI= Subject key identifier: 85:20:20:88:1F:2D:B3:DF:AC:22:B3:89:4A:73:4B:8F:21:F7:F7:A7 Certificate issuer: /CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D Certificate serial: 13 Authority key identifier: 71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/hSAgiB8ts9-sIrOJSnNLjyH396c.roa Signing time: Tue 02 Apr 2024 00:01:15 +0000 ROA not before: Tue 02 Apr 2024 00:01:15 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 2497 IP address blocks: 157.8.22.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D Validity Not Before: Apr 2 00:01:15 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=852020881F2DB3DFAC22B3894A734B8F21F7F7A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:09:84:06:e5:d6:f7:c5:3e:2a:64:38:ee:5f: 6b:84:38:d8:77:49:a4:5b:dc:25:d2:85:09:05:40: f2:70:37:97:9d:dd:6a:d5:b1:4f:6b:a5:9a:bc:49: b0:87:43:7b:a2:30:5b:07:9c:7a:71:b7:59:b5:eb: 14:53:51:4b:85:80:37:66:6d:98:e1:b0:68:08:9e: 6b:08:74:1f:c3:0f:f1:90:83:9a:e8:86:37:4d:e6: fb:f5:93:d5:b3:b0:0d:9c:1e:78:14:08:4f:d7:78: 62:7d:df:89:e4:e3:89:07:bc:05:48:36:d3:c5:b4: 09:33:1a:a4:4b:3d:d1:08:a6:25:59:71:2b:7c:9b: 17:7e:2f:da:b0:c3:f7:d9:37:f1:91:e6:ce:ff:f5: 2c:44:e1:dc:53:ea:df:58:99:a7:ca:71:72:05:74: df:d4:3e:e1:d5:f1:45:4d:ad:90:6b:50:2e:29:ad: f4:11:da:1b:0d:a6:37:ee:a8:a6:c5:8c:3f:4f:c8: fd:10:7c:42:f5:a2:57:3c:72:e0:64:34:56:33:44: b8:96:c0:c3:6f:66:ab:0e:a1:11:b4:1c:ad:a6:8e: cb:11:9e:f0:e8:04:2e:94:e5:10:03:38:fd:b8:f5: 05:db:02:b3:3f:57:f8:d7:3c:54:03:30:8c:da:01: a4:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:20:20:88:1F:2D:B3:DF:AC:22:B3:89:4A:73:4B:8F:21:F7:F7:A7 X509v3 Authority Key Identifier: keyid:71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/hSAgiB8ts9-sIrOJSnNLjyH396c.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.8.22.0/23 Signature Algorithm: sha256WithRSAEncryption 51:f4:5e:14:55:7c:a2:01:e7:ab:6b:88:5f:f5:32:16:f9:b7: ae:34:b2:e8:7d:57:7f:22:cf:1b:d4:d7:14:9e:8c:61:ee:cf: 73:2f:14:41:f4:0b:85:42:ea:4b:74:a3:e1:ed:a2:65:83:12: 23:a5:e3:af:e0:a4:bb:90:20:5b:49:a5:f1:37:a6:69:73:9a: e3:b4:f9:6c:c1:db:a5:49:3c:97:35:24:5e:df:93:99:5d:b5: e1:e0:9a:76:9e:9e:76:ed:43:8d:78:f0:71:d0:a8:42:48:df: 95:9b:59:8d:fc:83:61:5f:36:56:b2:71:82:4f:a5:05:08:3f: 74:d2:5d:97:c8:e3:1d:e7:6a:06:bb:b6:e6:27:ee:de:55:0b: cd:a1:33:04:67:a0:6d:93:e1:d5:00:e5:1f:b4:0c:4a:e9:7c: d1:bd:60:e0:15:57:72:a2:7d:62:18:c4:28:0a:cf:6e:c1:50: 6b:1c:b1:ee:4b:b2:61:7f:55:27:a5:f5:11:7b:8e:4e:14:a9: 73:2f:8a:65:17:b4:c2:b1:a9:e5:b4:09:40:73:75:b4:96:ae: 76:67:54:60:c7:15:3a:28:4e:86:8f:dc:a4:10:a8:0d:50:2e: 48:07:7e:ca:20:91:d7:1e:01:eb:c1:d2:f2:82:89:31:e8:c2: 67:fd:8f:58 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBEzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3MTkx Q0I5RjRDNDIyRDNCM0Q2NzUzNzFCMThBOERBRERBRTg3OThEMB4XDTI0MDQwMjAw MDExNVoXDTI1MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoODUyMDIwODgxRjJEQjNE RkFDMjJCMzg5NEE3MzRCOEYyMUY3RjdBNzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMsJhAbl1vfFPipkOO5fa4Q42HdJpFvcJdKFCQVA8nA3l53datWx T2ulmrxJsIdDe6IwWwecenG3WbXrFFNRS4WAN2ZtmOGwaAieawh0H8MP8ZCDmuiG N03m+/WT1bOwDZweeBQIT9d4Yn3fieTjiQe8BUg208W0CTMapEs90QimJVlxK3yb F34v2rDD99k38ZHmzv/1LETh3FPq31iZp8pxcgV039Q+4dXxRU2tkGtQLimt9BHa Gw2mN+6opsWMP0/I/RB8QvWiVzxy4GQ0VjNEuJbAw29mqw6hEbQcraaOyxGe8OgE LpTlEAM4/bj1BdsCsz9X+Nc8VAMwjNoBpK8CAwEAAaOCAiYwggIiMB0GA1UdDgQW BBSFICCIHy2z36wis4lKc0uPIff3pzAfBgNVHSMEGDAWgBRxkcufTEItOz1nU3Gx io2t2uh5jTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTkzNy9jWkhMbjB4Q0xUczlaMU54c1lxTnJkcm9lWTAuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9jWkhMbjB4Q0xUczlaMU54c1lxTnJk cm9lWTAuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTkzNy9oU0FnaUI4dHM5LXNJck9KU25OTGp5SDM5NmMucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBnQgWMA0GCSqGSIb3DQEBCwUAA4IBAQBR9F4UVXyiAeera4hf9TIW+beu NLLofVd/Is8b1NcUnoxh7s9zLxRB9AuFQupLdKPh7aJlgxIjpeOv4KS7kCBbSaXx N6Zpc5rjtPlswdulSTyXNSRe35OZXbXh4Jp2np527UONePBx0KhCSN+Vm1mN/INh XzZWsnGCT6UFCD900l2XyOMd52oGu7bmJ+7eVQvNoTMEZ6Btk+HVAOUftAxK6XzR vWDgFVdyon1iGMQoCs9uwVBrHLHuS7Jhf1UnpfURe45OFKlzL4plF7TCsanltAlA c3W0lq52Z1RgxxU6KE6Gj9ykEKgNUC5IB37KIJHXHgHrwdLygokx6MJn/Y9Y -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:43 2024 by rpki-client on console-fra.rpki-client.org