$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20061/ia0WH2bVREmUsiIvZp-iqIc0W7U.roa File: ia0WH2bVREmUsiIvZp-iqIc0W7U.roa (raw, json) Hash identifier: 1hqwdcBIePGqfvsKvCNrBVO02EqBxlTSRFhbi9k0FO0= Subject key identifier: 89:AD:16:1F:66:D5:44:49:94:B2:22:2F:66:9F:A2:A8:87:34:5B:B5 Certificate issuer: /CN=72811A6F4B1F7935818F8C8794F150A772BDD7CB Certificate serial: 24 Authority key identifier: 72:81:1A:6F:4B:1F:79:35:81:8F:8C:87:94:F1:50:A7:72:BD:D7:CB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/coEab0sfeTWBj4yHlPFQp3K918s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20061/ia0WH2bVREmUsiIvZp-iqIc0W7U.roa Signing time: Fri 01 Sep 2023 01:30:06 +0000 ROA not before: Fri 01 Sep 2023 01:30:06 +0000 ROA not after: Wed 14 Aug 2024 01:30:02 +0000 asID: 131161 IP address blocks: 43.222.0.0/16 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20061/coEab0sfeTWBj4yHlPFQp3K918s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20061/coEab0sfeTWBj4yHlPFQp3K918s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/coEab0sfeTWBj4yHlPFQp3K918s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Jun 2024 01:32:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72811A6F4B1F7935818F8C8794F150A772BDD7CB Validity Not Before: Sep 1 01:30:06 2023 GMT Not After : Aug 14 01:30:02 2024 GMT Subject: CN=89AD161F66D5444994B2222F669FA2A887345BB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:3b:ea:5d:d1:58:bf:2f:67:2a:f8:20:32:2e: 40:8b:36:ba:da:e6:29:b0:59:56:b0:79:00:af:bd: 1a:ae:92:2f:d9:8e:ca:1d:bd:3e:62:4b:42:8c:0a: d2:c4:81:4d:77:6e:00:da:c2:f3:42:d9:1d:b4:02: 95:be:6c:e4:00:e6:d3:c3:ea:b4:60:86:48:12:22: f2:41:15:92:db:fc:71:63:e9:d3:5a:ca:83:47:96: 16:c9:e5:fd:c0:8c:78:a8:34:93:a4:87:11:cc:c2: 93:9e:1b:bc:77:a2:6c:75:a6:6f:05:11:40:81:62: a7:b4:0b:2f:8d:e0:ed:37:2f:88:1b:36:09:85:6d: 5b:58:4d:bc:e1:0b:54:cc:f1:d8:3e:a9:ad:37:c8: 63:72:05:09:22:7c:87:40:9c:11:2d:49:be:6b:c6: ef:bc:ab:d9:56:77:90:98:46:bc:e1:f0:50:22:be: 53:43:72:22:44:21:2b:e7:45:cc:7a:80:a4:f3:c9: 47:bb:7e:e5:15:76:cd:8f:e7:d3:f7:92:19:f0:b1: 6c:41:6b:9b:e8:bc:50:67:8f:4b:be:88:7b:c7:e6: 2b:5b:28:46:5a:49:86:b6:0f:dd:27:ef:e7:f7:84: 7a:9e:f8:3b:98:06:7c:12:fc:28:36:11:4b:57:c1: 16:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:AD:16:1F:66:D5:44:49:94:B2:22:2F:66:9F:A2:A8:87:34:5B:B5 X509v3 Authority Key Identifier: keyid:72:81:1A:6F:4B:1F:79:35:81:8F:8C:87:94:F1:50:A7:72:BD:D7:CB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20061/coEab0sfeTWBj4yHlPFQp3K918s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/coEab0sfeTWBj4yHlPFQp3K918s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20061/ia0WH2bVREmUsiIvZp-iqIc0W7U.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.222.0.0/16 Signature Algorithm: sha256WithRSAEncryption 29:3b:38:e8:34:50:10:e9:a0:a5:03:8d:c0:6c:32:ba:f8:ef: 52:bc:01:65:ab:a0:f8:68:29:2f:6d:6c:e1:8f:b0:e8:af:fd: dc:8a:13:32:b4:63:9d:e6:79:69:6b:88:71:14:d4:2f:34:4d: 2e:f4:28:e9:b6:5c:6d:23:1d:d6:ac:82:63:32:0b:d8:d0:af: 6a:2b:26:d5:fd:e1:13:8a:1d:85:87:87:0d:fc:2f:2b:c2:9a: 1c:ae:c5:3c:44:48:ef:89:4d:ec:82:65:0d:e9:db:ae:df:db: 3e:39:97:7d:5e:ff:68:7e:94:78:bf:70:d8:a6:07:f7:f1:86: 52:a0:74:1a:bf:36:44:8d:d3:8b:c5:04:53:eb:3c:b8:e7:d0: 89:8f:ed:7a:45:73:ba:2a:09:96:3f:b5:a8:09:5e:7d:e3:b9: 44:5f:31:ed:87:2b:23:97:54:07:fb:99:80:35:aa:83:1c:61: 5b:96:16:ea:36:df:ee:86:63:96:20:e4:7d:04:ab:b3:82:c9: c8:e5:d2:1c:6b:f5:f6:f6:17:af:22:6a:03:51:b1:f7:6b:ef: 46:ff:53:3c:aa:39:2d:62:89:66:54:17:d7:b3:35:50:d3:9f: 3e:ed:7f:27:5b:07:1f:75:34:3e:cf:07:a6:a8:bd:4a:7e:3a: 4a:8e:9d:df -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIBJDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3Mjgx MUE2RjRCMUY3OTM1ODE4RjhDODc5NEYxNTBBNzcyQkREN0NCMB4XDTIzMDkwMTAx MzAwNloXDTI0MDgxNDAxMzAwMlowMzExMC8GA1UEAxMoODlBRDE2MUY2NkQ1NDQ0 OTk0QjIyMjJGNjY5RkEyQTg4NzM0NUJCNTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALI76l3RWL8vZyr4IDIuQIs2utrmKbBZVrB5AK+9Gq6SL9mOyh29 PmJLQowK0sSBTXduANrC80LZHbQClb5s5ADm08PqtGCGSBIi8kEVktv8cWPp01rK g0eWFsnl/cCMeKg0k6SHEczCk54bvHeibHWmbwURQIFip7QLL43g7TcviBs2CYVt W1hNvOELVMzx2D6prTfIY3IFCSJ8h0CcES1JvmvG77yr2VZ3kJhGvOHwUCK+U0Ny IkQhK+dFzHqApPPJR7t+5RV2zY/n0/eSGfCxbEFrm+i8UGePS76Ie8fmK1soRlpJ hrYP3Sfv5/eEep74O5gGfBL8KDYRS1fBFicCAwEAAaOCAicwggIjMB0GA1UdDgQW BBSJrRYfZtVESZSyIi9mn6KohzRbtTAfBgNVHSMEGDAWgBRygRpvSx95NYGPjIeU 8VCncr3XyzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwNjEvY29FYWIwc2ZlVFdCajR5SGxQRlFwM0s5MThzLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvY29FYWIwc2ZlVFdCajR5SGxQRlFw M0s5MThzLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMDYxL2lhMFdIMmJWUkVtVXNpSXZacC1pcUljMFc3VS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsE AgABMAUDAwAr3jANBgkqhkiG9w0BAQsFAAOCAQEAKTs46DRQEOmgpQONwGwyuvjv UrwBZaug+GgpL21s4Y+w6K/93IoTMrRjneZ5aWuIcRTULzRNLvQo6bZcbSMd1qyC YzIL2NCvaism1f3hE4odhYeHDfwvK8KaHK7FPERI74lN7IJlDenbrt/bPjmXfV7/ aH6UeL9w2KYH9/GGUqB0Gr82RI3Ti8UEU+s8uOfQiY/tekVzuioJlj+1qAlefeO5 RF8x7YcrI5dUB/uZgDWqgxxhW5YW6jbf7oZjliDkfQSrs4LJyOXSHGv19vYXryJq A1Gx92vvRv9TPKo5LWKJZlQX17M1UNOfPu1/J1sHH3U0Ps8Hpqi9Sn46So6d3w== -----END CERTIFICATE-----Generated at Sat Jun 15 02:41:48 2024 by rpki-client on console-ams.rpki-client.org