$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1937/qAv9-QM9WGeEynch7EVOxZ2X3Vo.roa File: qAv9-QM9WGeEynch7EVOxZ2X3Vo.roa (raw, json) Hash identifier: Oa3wEaSonWwZHKyYOqLFg33tGK63/ynDSpgy7B00wcs= Subject key identifier: A8:0B:FD:F9:03:3D:58:67:84:CA:77:21:EC:45:4E:C5:9D:97:DD:5A Certificate issuer: /CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D Certificate serial: 17 Authority key identifier: 71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/qAv9-QM9WGeEynch7EVOxZ2X3Vo.roa Signing time: Tue 02 Apr 2024 00:05:10 +0000 ROA not before: Tue 02 Apr 2024 00:05:10 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 2497 IP address blocks: 157.8.54.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D Validity Not Before: Apr 2 00:05:10 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=A80BFDF9033D586784CA7721EC454EC59D97DD5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d1:2a:2f:a4:38:fe:7a:d7:a2:15:a5:9e:82: e1:08:87:30:a0:68:3f:01:6d:6d:f4:c2:d9:99:c5: cf:e5:7b:06:ec:72:15:5c:51:d6:c5:62:56:66:3f: ea:d7:e7:98:21:8c:3a:8e:60:45:2a:c5:4c:58:7b: 5f:b6:ab:31:14:8a:d8:00:5d:20:78:39:30:7d:87: d9:1f:e8:57:6c:a4:dd:2f:b9:2b:85:7e:a5:8e:7f: 17:10:1c:a7:45:0a:42:1d:7f:65:80:0e:a6:a2:3b: 09:e2:fd:5b:49:87:5a:24:92:1b:df:7e:2b:55:f5: 52:3c:b7:d4:b7:8d:2e:b0:ea:16:08:85:81:6f:a2: c7:a0:45:c4:f6:7e:61:25:e1:d6:bd:5d:57:1a:18: 4f:53:e8:7c:c4:20:fc:74:31:8a:43:36:d1:be:92: 65:ec:1f:2f:75:83:5c:a2:12:cb:cc:5f:98:c5:02: 40:48:c7:47:7c:1f:ce:9f:de:35:fa:97:e2:46:7b: 83:5c:56:05:cf:c2:6a:95:76:8c:dd:2c:1f:72:5f: 6b:92:d9:4c:f7:48:4b:4d:59:65:6d:3c:ba:14:a8: 66:5c:aa:5a:1d:8c:08:e4:1f:09:5b:1a:cb:af:41: 24:38:ff:56:bc:1a:ce:e7:fd:d0:36:c5:4f:15:68: d6:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:0B:FD:F9:03:3D:58:67:84:CA:77:21:EC:45:4E:C5:9D:97:DD:5A X509v3 Authority Key Identifier: keyid:71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/qAv9-QM9WGeEynch7EVOxZ2X3Vo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.8.54.0/23 Signature Algorithm: sha256WithRSAEncryption 68:51:7b:ac:a9:ce:42:ff:f6:df:5f:08:81:8b:7b:44:60:10: cc:f2:7d:99:bd:01:6e:98:b8:52:51:3f:6b:3e:08:c5:91:08: bc:57:43:ba:3e:36:c6:3e:26:a0:84:da:85:65:08:b4:2f:c3: 80:7f:34:a0:1a:2f:51:de:7c:81:44:0d:f2:ad:1b:a7:d4:14: 71:3a:8d:e5:93:e3:c9:e7:0f:7e:b1:84:62:bb:a2:32:df:cc: ad:61:58:a0:89:7b:9e:d4:52:88:f6:20:fb:e1:31:5c:8d:de: c0:ce:e3:ed:63:ff:b2:19:d5:35:88:c8:15:ec:25:0e:40:39: e2:7b:e2:a3:00:09:6c:9e:c0:4b:49:ff:f9:b5:44:60:ee:4b: 52:61:fa:1c:7b:55:9e:86:e8:d8:93:89:0f:96:ee:1a:bd:38: b8:2c:48:05:b5:df:2d:d7:d3:82:ad:53:c0:3b:55:b9:5a:f8: 9a:d9:f1:c4:30:be:93:9c:36:c6:b0:bc:c3:6b:3e:5c:cd:a3: d1:01:ab:e0:87:35:86:b1:ce:a9:7d:61:63:79:f4:40:de:7d: 4e:2a:ed:d6:83:8c:6e:68:d3:6f:db:d3:b6:2d:7d:0f:bf:30: 29:69:42:43:33:ca:c8:88:ed:07:f9:33:3e:f7:d1:56:06:f8: 38:c0:5d:32 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBFzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3MTkx Q0I5RjRDNDIyRDNCM0Q2NzUzNzFCMThBOERBRERBRTg3OThEMB4XDTI0MDQwMjAw MDUxMFoXDTI1MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoQTgwQkZERjkwMzNENTg2 Nzg0Q0E3NzIxRUM0NTRFQzU5RDk3REQ1QTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALvRKi+kOP5616IVpZ6C4QiHMKBoPwFtbfTC2ZnFz+V7BuxyFVxR 1sViVmY/6tfnmCGMOo5gRSrFTFh7X7arMRSK2ABdIHg5MH2H2R/oV2yk3S+5K4V+ pY5/FxAcp0UKQh1/ZYAOpqI7CeL9W0mHWiSSG99+K1X1Ujy31LeNLrDqFgiFgW+i x6BFxPZ+YSXh1r1dVxoYT1PofMQg/HQxikM20b6SZewfL3WDXKISy8xfmMUCQEjH R3wfzp/eNfqX4kZ7g1xWBc/CapV2jN0sH3Jfa5LZTPdIS01ZZW08uhSoZlyqWh2M COQfCVsay69BJDj/Vrwazuf90DbFTxVo1mcCAwEAAaOCAiYwggIiMB0GA1UdDgQW BBSoC/35Az1YZ4TKdyHsRU7FnZfdWjAfBgNVHSMEGDAWgBRxkcufTEItOz1nU3Gx io2t2uh5jTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTkzNy9jWkhMbjB4Q0xUczlaMU54c1lxTnJkcm9lWTAuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9jWkhMbjB4Q0xUczlaMU54c1lxTnJk cm9lWTAuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTkzNy9xQXY5LVFNOVdHZUV5bmNoN0VWT3haMlgzVm8ucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBnQg2MA0GCSqGSIb3DQEBCwUAA4IBAQBoUXusqc5C//bfXwiBi3tEYBDM 8n2ZvQFumLhSUT9rPgjFkQi8V0O6PjbGPiaghNqFZQi0L8OAfzSgGi9R3nyBRA3y rRun1BRxOo3lk+PJ5w9+sYRiu6Iy38ytYVigiXue1FKI9iD74TFcjd7AzuPtY/+y GdU1iMgV7CUOQDnie+KjAAlsnsBLSf/5tURg7ktSYfoce1WehujYk4kPlu4avTi4 LEgFtd8t19OCrVPAO1W5Wvia2fHEML6TnDbGsLzDaz5czaPRAavghzWGsc6pfWFj efRA3n1OKu3Wg4xuaNNv29O2LX0PvzApaUJDM8rIiO0H+TM+99FWBvg4wF0y -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:43 2024 by rpki-client on console-fra.rpki-client.org