$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/Gz9jCNvA4G5mDebWDV3b4_nkq-Y.roa File: Gz9jCNvA4G5mDebWDV3b4_nkq-Y.roa (raw, json) Hash identifier: 49P2LHxvqSEsyjMtL5kPHExXMsYFosSv393ZkUd0cDo= Subject key identifier: 1B:3F:63:08:DB:C0:E0:6E:66:0D:E6:D6:0D:5D:DB:E3:F9:E4:AB:E6 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 2D Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/Gz9jCNvA4G5mDebWDV3b4_nkq-Y.roa Signing time: Wed 10 Jan 2024 01:15:01 +0000 ROA not before: Wed 10 Jan 2024 01:15:01 +0000 ROA not after: Sat 14 Dec 2024 01:30:03 +0000 asID: 2514 IP address blocks: 160.248.80.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 05:56:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Jan 10 01:15:01 2024 GMT Not After : Dec 14 01:30:03 2024 GMT Subject: CN=1B3F6308DBC0E06E660DE6D60D5DDBE3F9E4ABE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:0d:96:2f:43:7e:d3:03:59:7a:17:2c:69:2e: 02:7d:3e:de:0d:f4:57:79:45:ce:fe:17:14:61:da: 81:6b:6a:70:d9:56:0e:d4:5e:cc:6a:8e:5a:09:94: 8a:61:b3:6f:fc:8f:51:b2:bb:2e:90:b0:6c:05:cf: d3:6d:1d:43:7f:18:cb:69:fa:a0:62:69:d1:74:e2: 3b:47:b1:ab:9f:83:8e:16:c6:04:9f:39:a8:e7:11: d4:98:3c:2f:4f:b9:52:82:b4:eb:90:bb:79:a8:71: a0:f6:e7:e1:d9:15:34:a4:12:1f:02:ce:22:de:14: b6:0b:62:81:3f:e5:ff:f5:61:ce:58:d0:d3:f9:48: 96:be:19:26:04:9b:7b:76:5b:2c:13:ce:ec:8e:30: a2:c2:b8:14:87:e6:c2:fe:43:a9:64:75:78:c8:0a: ee:4a:e8:64:5d:2c:46:27:be:3d:a2:32:16:ea:14: 10:25:49:ac:fc:6b:e8:ca:66:f2:a4:43:34:e0:7b: 13:cf:e4:7d:40:1a:63:43:a2:b4:89:ad:dd:a1:ed: 97:71:95:f6:a2:08:14:51:98:b3:85:65:18:45:2c: 61:c9:63:47:81:35:dc:1f:22:c1:b3:04:6e:5d:a5: cb:f7:51:a5:66:bb:7c:66:77:c1:20:29:3a:60:7e: 47:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:3F:63:08:DB:C0:E0:6E:66:0D:E6:D6:0D:5D:DB:E3:F9:E4:AB:E6 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/Gz9jCNvA4G5mDebWDV3b4_nkq-Y.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.248.80.0/23 Signature Algorithm: sha256WithRSAEncryption 75:d5:d3:fc:af:04:1c:95:3a:11:43:dd:d1:6b:53:08:16:01: f2:a0:39:0a:1f:2c:f7:14:aa:4d:1f:c7:de:3e:8e:0c:21:ae: 2c:98:ce:d6:a9:f2:33:ee:34:10:a3:16:b4:6b:de:1e:95:f4: 5b:7e:1a:f3:cf:98:af:c8:b9:4c:ff:cf:4a:4d:17:a2:90:b7: 70:17:67:57:44:c9:b7:6f:55:ac:8e:6d:e5:5d:59:e2:65:e1: a3:40:74:72:a1:a3:49:4f:40:9e:7e:ba:cf:db:d9:33:e5:b3: 44:fe:05:04:cf:e6:0d:47:d5:63:eb:fe:a3:11:00:4c:59:73: e3:bf:89:fe:d1:cc:c4:05:9a:4e:06:2d:6e:d3:26:c7:dd:3e: a5:c8:9c:e0:d1:f8:94:ee:cd:cc:42:2c:d6:d2:e0:57:26:6f: d6:8c:3e:b5:2b:e6:98:be:8d:56:33:f8:3a:3a:d2:b1:67:7c: ad:00:e4:34:c8:59:3d:be:ec:16:76:cb:8d:6e:4c:51:51:5a: ef:8e:3c:fb:2d:9b:52:40:57:c4:f8:18:f6:3c:40:47:d5:e4: bb:e0:5b:f0:e8:d3:f0:84:60:f3:f9:da:63:69:5c:63:56:86: a6:8c:6a:f5:ea:e3:11:84:bd:99:db:0f:81:5a:97:38:ae:30: d5:11:19:7f -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBLTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMTQw MEFCODlCNkQ3MkY3REI0MjRGNEFBQThDQ0ZGNjQzOEQzRDRBMB4XDTI0MDExMDAx MTUwMVoXDTI0MTIxNDAxMzAwM1owMzExMC8GA1UEAxMoMUIzRjYzMDhEQkMwRTA2 RTY2MERFNkQ2MEQ1RERCRTNGOUU0QUJFNjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANgNli9DftMDWXoXLGkuAn0+3g30V3lFzv4XFGHagWtqcNlWDtRe zGqOWgmUimGzb/yPUbK7LpCwbAXP020dQ38Yy2n6oGJp0XTiO0exq5+DjhbGBJ85 qOcR1Jg8L0+5UoK065C7eahxoPbn4dkVNKQSHwLOIt4UtgtigT/l//VhzljQ0/lI lr4ZJgSbe3ZbLBPO7I4wosK4FIfmwv5DqWR1eMgK7kroZF0sRie+PaIyFuoUECVJ rPxr6Mpm8qRDNOB7E8/kfUAaY0OitImt3aHtl3GV9qIIFFGYs4VlGEUsYcljR4E1 3B8iwbMEbl2ly/dRpWa7fGZ3wSApOmB+R7MCAwEAAaOCAiIwggIeMB0GA1UdDgQW BBQbP2MI28DgbmYN5tYNXdvj+eSr5jAfBgNVHSMEGDAWgBTRQAq4m21y99tCT0qq jM/2Q409SjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjkvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09OUFVvLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09O UFVvLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzI5L0d6OWpDTnZBNEc1bURlYldEVjNiNF9ua3EtWS5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGg+FAwDQYJKoZIhvcNAQELBQADggEBAHXV0/yvBByVOhFD3dFrUwgWAfKgOQof LPcUqk0fx94+jgwhriyYztap8jPuNBCjFrRr3h6V9Ft+GvPPmK/IuUz/z0pNF6KQ t3AXZ1dEybdvVayObeVdWeJl4aNAdHKho0lPQJ5+us/b2TPls0T+BQTP5g1H1WPr /qMRAExZc+O/if7RzMQFmk4GLW7TJsfdPqXInODR+JTuzcxCLNbS4Fcmb9aMPrUr 5pi+jVYz+Do60rFnfK0A5DTIWT2+7BZ2y41uTFFRWu+OPPstm1JAV8T4GPY8QEfV 5LvgW/Do0/CEYPP52mNpXGNWhqaMavXq4xGEvZnbD4FalziuMNURGX8= -----END CERTIFICATE-----Generated at Thu Jun 6 15:06:33 2024 by rpki-client on console-ams.rpki-client.org