$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/A86lAmav37JHmFY5yW7LSROsVW8.roa File: A86lAmav37JHmFY5yW7LSROsVW8.roa (raw, json) Hash identifier: QaRrqXs9tReJPk3xUlrbByXIfnWCvPKp+uJ0nGVCL8w= Subject key identifier: 03:CE:A5:02:66:AF:DF:B2:47:98:56:39:C9:6E:CB:49:13:AC:55:6F Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 48 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/A86lAmav37JHmFY5yW7LSROsVW8.roa Signing time: Thu 25 Jan 2024 01:14:27 +0000 ROA not before: Thu 25 Jan 2024 01:14:27 +0000 ROA not after: Tue 14 Jan 2025 01:30:02 +0000 asID: 2514 IP address blocks: 192.244.96.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72 (0x48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Jan 25 01:14:27 2024 GMT Not After : Jan 14 01:30:02 2025 GMT Subject: CN=03CEA50266AFDFB247985639C96ECB4913AC556F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:de:7b:68:f7:12:68:c0:59:6d:2a:0e:ac:16: dc:08:fa:09:4d:f9:3f:d6:bc:38:bd:e7:6e:a5:c8: 3e:c8:77:53:a1:04:20:32:70:fd:54:f9:7f:34:72: f7:c9:94:4c:4f:cb:b0:06:d8:d8:7c:f8:37:15:74: e3:69:93:0e:ae:82:e5:86:0a:a6:86:96:e7:f8:30: d0:fc:a3:7f:27:3b:12:95:b0:06:9a:7f:6f:d1:5a: aa:04:bf:b3:92:d0:71:de:e4:8e:a4:54:64:63:7f: ca:b0:c6:c1:f2:4a:ff:7a:64:38:a9:a8:76:9a:cb: b1:c8:f0:6b:77:19:be:22:3b:0b:76:d9:ea:e7:ce: 8e:8a:c5:90:fb:dc:5e:6c:2c:44:52:84:7b:85:4c: 00:1f:82:09:4f:51:82:dd:e2:79:75:6a:ec:d4:a2: 55:eb:e5:0f:30:c1:59:80:69:15:5d:95:f5:e4:95: 5b:f7:af:69:a8:4e:d5:20:e4:11:bc:6d:5a:b4:9e: a6:7e:89:6e:c4:1f:05:26:ce:6e:68:b1:0e:9b:39: 94:e3:0b:39:94:ab:e3:e9:03:31:61:20:57:74:81: 86:0e:05:75:d8:ee:d7:93:cd:f9:2d:a4:27:04:24: 1c:5b:59:b3:52:ad:92:1f:55:f7:d8:25:6f:1b:b3: 00:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:CE:A5:02:66:AF:DF:B2:47:98:56:39:C9:6E:CB:49:13:AC:55:6F X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/A86lAmav37JHmFY5yW7LSROsVW8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.244.96.0/20 Signature Algorithm: sha256WithRSAEncryption 4e:c3:85:9a:14:bb:81:bb:88:aa:0d:2a:23:26:90:61:37:f5: 3c:fe:ba:66:b9:f1:f6:f8:15:95:d9:db:c3:b2:8b:13:21:81: 01:89:9c:8b:af:73:ba:e1:5f:5b:ff:d1:ed:69:56:8b:e8:fc: 56:29:61:93:e2:1d:f9:24:b9:65:ad:8e:f2:28:68:0a:f6:43: 16:cb:89:c1:81:fe:9a:75:e2:ff:26:a1:61:61:ca:64:55:00: a6:71:ba:95:bc:25:0d:c6:86:10:05:eb:3a:56:bb:81:21:47: a1:65:d0:65:5a:99:98:d3:22:06:90:7f:1b:5e:5a:1c:5d:18: 22:d2:6e:6d:9f:2e:0e:02:50:f6:42:ed:14:a4:e5:66:dd:13: a7:70:b8:d1:09:e6:46:aa:5e:9a:60:5e:b0:d6:fc:ad:9e:67: 37:65:88:77:c7:8e:92:8f:fe:82:bd:43:67:7e:e4:a1:51:cf: 46:4f:59:a1:53:91:f0:05:9f:ca:7a:90:b4:fd:77:52:99:8d: 66:be:07:af:7b:52:82:11:fb:87:48:a8:9a:dd:dc:23:f2:7a: af:57:44:0e:9e:46:d6:f2:2f:cd:dd:42:3e:5e:9d:93:1b:9f: cc:4b:01:81:73:9f:ce:82:14:16:47:59:74:6f:24:fa:44:e7: cc:f7:4b:e8 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBSDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMTQw MEFCODlCNkQ3MkY3REI0MjRGNEFBQThDQ0ZGNjQzOEQzRDRBMB4XDTI0MDEyNTAx MTQyN1oXDTI1MDExNDAxMzAwMlowMzExMC8GA1UEAxMoMDNDRUE1MDI2NkFGREZC MjQ3OTg1NjM5Qzk2RUNCNDkxM0FDNTU2RjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMzee2j3EmjAWW0qDqwW3Aj6CU35P9a8OL3nbqXIPsh3U6EEIDJw /VT5fzRy98mUTE/LsAbY2Hz4NxV042mTDq6C5YYKpoaW5/gw0Pyjfyc7EpWwBpp/ b9FaqgS/s5LQcd7kjqRUZGN/yrDGwfJK/3pkOKmodprLscjwa3cZviI7C3bZ6ufO jorFkPvcXmwsRFKEe4VMAB+CCU9Rgt3ieXVq7NSiVevlDzDBWYBpFV2V9eSVW/ev aahO1SDkEbxtWrSepn6JbsQfBSbObmixDps5lOMLOZSr4+kDMWEgV3SBhg4Fddju 15PN+S2kJwQkHFtZs1Ktkh9V99glbxuzAJ8CAwEAAaOCAiIwggIeMB0GA1UdDgQW BBQDzqUCZq/fskeYVjnJbstJE6xVbzAfBgNVHSMEGDAWgBTRQAq4m21y99tCT0qq jM/2Q409SjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjkvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09OUFVvLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09O UFVvLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzI5L0E4NmxBbWF2MzdKSG1GWTV5VzdMU1JPc1ZXOC5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BATA9GAwDQYJKoZIhvcNAQELBQADggEBAE7DhZoUu4G7iKoNKiMmkGE39Tz+uma5 8fb4FZXZ28OyixMhgQGJnIuvc7rhX1v/0e1pVovo/FYpYZPiHfkkuWWtjvIoaAr2 QxbLicGB/pp14v8moWFhymRVAKZxupW8JQ3GhhAF6zpWu4EhR6Fl0GVamZjTIgaQ fxteWhxdGCLSbm2fLg4CUPZC7RSk5WbdE6dwuNEJ5kaqXppgXrDW/K2eZzdliHfH jpKP/oK9Q2d+5KFRz0ZPWaFTkfAFn8p6kLT9d1KZjWa+B697UoIR+4dIqJrd3CPy eq9XRA6eRtbyL83dQj5enZMbn8xLAYFzn86CFBZHWXRvJPpE58z3S+g= -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:44 2024 by rpki-client on console-fra.rpki-client.org