$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20042/A-h2rFdYEKRtonKAK2iEeWYlK24.roa File: A-h2rFdYEKRtonKAK2iEeWYlK24.roa (raw, json) Hash identifier: K++TgEko6oLpGdBqhMjL0ShLBVnWVhjvRPYBR9hIZPI= Subject key identifier: 03:E8:76:AC:57:58:10:A4:6D:A2:72:80:2B:68:84:79:66:25:2B:6E Certificate issuer: /CN=961BC18512722AAF9A90D898ADEA9AF7793C2543 Certificate serial: 32 Authority key identifier: 96:1B:C1:85:12:72:2A:AF:9A:90:D8:98:AD:EA:9A:F7:79:3C:25:43 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lhvBhRJyKq-akNiYreqa93k8JUM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/A-h2rFdYEKRtonKAK2iEeWYlK24.roa Signing time: Tue 26 Sep 2023 06:57:15 +0000 ROA not before: Tue 26 Sep 2023 06:57:15 +0000 ROA not after: Sat 14 Sep 2024 01:30:03 +0000 asID: 17941 IP address blocks: 202.53.16.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/lhvBhRJyKq-akNiYreqa93k8JUM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/lhvBhRJyKq-akNiYreqa93k8JUM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lhvBhRJyKq-akNiYreqa93k8JUM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50 (0x32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=961BC18512722AAF9A90D898ADEA9AF7793C2543 Validity Not Before: Sep 26 06:57:15 2023 GMT Not After : Sep 14 01:30:03 2024 GMT Subject: CN=03E876AC575810A46DA272802B68847966252B6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:7e:15:46:2d:7c:4b:7d:fb:99:68:0a:cf:ae: 84:25:84:2e:be:65:6b:32:d9:b2:74:18:74:83:60: 9c:a2:7d:7e:ca:ce:45:d4:05:7d:b9:e5:56:8b:4a: 0a:a9:11:77:1e:3c:36:fe:80:59:dd:06:f6:c2:c3: 4c:b8:45:f1:c5:1a:e8:d0:6a:be:18:68:b8:4b:d5: d4:27:12:b9:58:9c:24:f8:1c:81:cf:ba:df:d6:7e: e9:42:a9:2e:ee:0a:d1:17:db:aa:65:57:60:ad:40: b2:91:35:c7:14:8e:90:56:e4:14:7f:fb:e8:03:29: a7:38:f9:af:0d:b5:5e:d8:e0:82:47:ed:b6:98:21: 4d:20:16:b8:80:ca:e4:cd:e2:8b:89:70:96:62:ef: a2:97:0b:f5:38:1d:b2:4a:2a:d9:20:96:08:c4:1d: 29:69:b7:51:9f:6e:14:d5:bf:3a:58:78:16:dd:89: 50:29:8a:7a:50:f8:df:80:a8:44:98:d6:5c:43:d0: ce:aa:e5:36:3a:6f:de:13:f6:f0:fe:a9:69:34:a4: 06:71:ab:67:77:90:1f:a5:0b:11:89:ef:6c:f1:c5: 16:4f:66:f8:1d:c8:ae:15:46:40:95:52:4c:d4:b8: 5d:8d:22:c5:3b:0f:bf:e1:a3:8d:03:69:08:98:64: c1:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:E8:76:AC:57:58:10:A4:6D:A2:72:80:2B:68:84:79:66:25:2B:6E X509v3 Authority Key Identifier: keyid:96:1B:C1:85:12:72:2A:AF:9A:90:D8:98:AD:EA:9A:F7:79:3C:25:43 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/lhvBhRJyKq-akNiYreqa93k8JUM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lhvBhRJyKq-akNiYreqa93k8JUM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/A-h2rFdYEKRtonKAK2iEeWYlK24.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.53.16.0/20 Signature Algorithm: sha256WithRSAEncryption 7b:98:3f:39:2f:18:0b:8c:04:16:86:84:d5:22:48:bb:51:e9: c4:78:fc:60:35:33:65:ff:b3:6f:6a:8a:c2:64:3c:07:91:ca: 5b:35:c4:89:8e:aa:0c:58:79:64:31:f4:41:bb:39:cb:69:b7: 0e:a7:10:d9:d2:29:2e:dc:34:34:32:34:43:81:6d:1a:1c:d0: 8b:34:79:04:a8:9e:5d:3c:5c:10:70:55:78:35:b1:18:05:3d: 88:d6:5d:9b:c4:6e:93:34:53:33:69:a8:5f:51:ed:5a:55:1c: 9d:27:8b:84:03:ad:8e:28:d3:98:df:6b:6e:86:a6:7e:25:8d: 0c:0f:04:e3:b1:31:7e:d6:65:83:60:6f:c2:ac:bc:fc:fb:a0: 31:41:cb:e0:85:cf:bc:2e:db:f0:76:a8:25:b4:18:78:36:81: bb:13:47:89:bc:84:2b:f4:1d:7d:f6:82:ad:fd:7f:26:4d:70: f4:2e:2e:63:93:ad:fe:a1:e7:ec:b0:9a:ce:08:36:1d:fe:23: b7:64:b9:5c:09:eb:50:ea:59:5e:93:34:66:62:8f:05:d4:af: 7f:d2:c5:41:de:41:ad:3c:0d:5c:f4:e3:4c:61:6a:71:a4:e8: 72:b8:f1:63:72:4d:60:63:27:0d:ef:7e:bf:2e:04:61:66:54: 94:83:42:21 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBMjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5NjFC QzE4NTEyNzIyQUFGOUE5MEQ4OThBREVBOUFGNzc5M0MyNTQzMB4XDTIzMDkyNjA2 NTcxNVoXDTI0MDkxNDAxMzAwM1owMzExMC8GA1UEAxMoMDNFODc2QUM1NzU4MTBB NDZEQTI3MjgwMkI2ODg0Nzk2NjI1MkI2RTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKJ+FUYtfEt9+5loCs+uhCWELr5lazLZsnQYdINgnKJ9fsrORdQF fbnlVotKCqkRdx48Nv6AWd0G9sLDTLhF8cUa6NBqvhhouEvV1CcSuVicJPgcgc+6 39Z+6UKpLu4K0RfbqmVXYK1AspE1xxSOkFbkFH/76AMppzj5rw21Xtjggkfttpgh TSAWuIDK5M3ii4lwlmLvopcL9Tgdskoq2SCWCMQdKWm3UZ9uFNW/Olh4Ft2JUCmK elD434CoRJjWXEPQzqrlNjpv3hP28P6paTSkBnGrZ3eQH6ULEYnvbPHFFk9m+B3I rhVGQJVSTNS4XY0ixTsPv+GjjQNpCJhkwbcCAwEAAaOCAigwggIkMB0GA1UdDgQW BBQD6HasV1gQpG2icoAraIR5ZiUrbjAfBgNVHSMEGDAWgBSWG8GFEnIqr5qQ2Jit 6pr3eTwlQzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwNDIvbGh2QmhSSnlLcS1ha05pWXJlcWE5M2s4SlVNLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvbGh2QmhSSnlLcS1ha05pWXJlcWE5 M2s4SlVNLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMDQyL0EtaDJyRmRZRUtSdG9uS0FLMmlFZVdZbEsyNC5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBATKNRAwDQYJKoZIhvcNAQELBQADggEBAHuYPzkvGAuMBBaGhNUiSLtR 6cR4/GA1M2X/s29qisJkPAeRyls1xImOqgxYeWQx9EG7Octptw6nENnSKS7cNDQy NEOBbRoc0Is0eQSonl08XBBwVXg1sRgFPYjWXZvEbpM0UzNpqF9R7VpVHJ0ni4QD rY4o05jfa26Gpn4ljQwPBOOxMX7WZYNgb8KsvPz7oDFBy+CFz7wu2/B2qCW0GHg2 gbsTR4m8hCv0HX32gq39fyZNcPQuLmOTrf6h5+ywms4INh3+I7dkuVwJ61DqWV6T NGZijwXUr3/SxUHeQa08DVz040xhanGk6HK48WNyTWBjJw3vfr8uBGFmVJSDQiE= -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:43 2024 by rpki-client on console-fra.rpki-client.org