$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/OkBVfjHDwuiw1uj8KHnKbnMD7W0.roa File: OkBVfjHDwuiw1uj8KHnKbnMD7W0.roa (raw, json) Hash identifier: YJvRXO6ifC/CW/e11U+u48c8fUHS00ISq6WOHwjJRso= Subject key identifier: 3A:40:55:7E:31:C3:C2:E8:B0:D6:E8:FC:28:79:CA:6E:73:03:ED:6D Certificate issuer: /CN=06FA662194FCF1EB983AB44CC913004180770D18 Certificate serial: 2F Authority key identifier: 06:FA:66:21:94:FC:F1:EB:98:3A:B4:4C:C9:13:00:41:80:77:0D:18 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BvpmIZT88euYOrRMyRMAQYB3DRg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/OkBVfjHDwuiw1uj8KHnKbnMD7W0.roa Signing time: Thu 25 Jan 2024 01:22:37 +0000 ROA not before: Thu 25 Jan 2024 01:22:37 +0000 ROA not after: Tue 14 Jan 2025 01:30:02 +0000 asID: 2514 IP address blocks: 211.2.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/BvpmIZT88euYOrRMyRMAQYB3DRg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/BvpmIZT88euYOrRMyRMAQYB3DRg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BvpmIZT88euYOrRMyRMAQYB3DRg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 14:03:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06FA662194FCF1EB983AB44CC913004180770D18 Validity Not Before: Jan 25 01:22:37 2024 GMT Not After : Jan 14 01:30:02 2025 GMT Subject: CN=3A40557E31C3C2E8B0D6E8FC2879CA6E7303ED6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:de:19:3c:be:a5:d8:76:2f:ce:b8:8f:ee:e9: 4b:b3:53:fb:c2:d5:7a:c2:b3:8d:d1:31:93:a2:cc: 66:bb:82:6b:80:99:fa:27:62:eb:02:d5:ce:83:7b: 5e:cc:b9:f8:02:07:28:bc:f9:dc:ea:6a:b0:70:e8: 8b:53:ac:fc:f6:ba:9d:01:e5:4e:07:8d:79:8e:b2: d8:9c:3e:0f:5a:0d:0a:6a:3e:d2:af:08:e1:17:6b: aa:01:f5:ee:52:c6:fd:39:b0:32:8c:99:af:9b:1e: 7a:c1:c1:8b:77:47:6f:30:a5:ef:4a:64:14:31:6a: 87:25:cf:c4:58:47:38:be:ba:db:c0:40:89:0a:ab: c7:3e:2e:8f:34:d2:23:b0:bc:c9:f0:3a:93:3a:86: 0f:44:c4:2a:e8:91:95:74:fa:e2:44:1a:c7:7f:68: 04:eb:71:31:4a:92:f1:86:9c:d5:85:93:91:bf:06: e5:b8:db:eb:28:e5:c6:11:ce:fa:b9:2c:41:d1:de: eb:0c:ab:22:27:d8:df:81:7f:31:28:37:4a:64:e1: 6c:0c:e1:72:ba:91:d4:94:c6:1c:1f:b2:5e:9c:05: df:b1:06:44:37:e6:e0:c4:d1:52:a8:53:8e:3f:80: 1c:02:f0:ab:b2:70:d4:ca:3b:97:46:36:f9:21:23: c3:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:40:55:7E:31:C3:C2:E8:B0:D6:E8:FC:28:79:CA:6E:73:03:ED:6D X509v3 Authority Key Identifier: keyid:06:FA:66:21:94:FC:F1:EB:98:3A:B4:4C:C9:13:00:41:80:77:0D:18 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/BvpmIZT88euYOrRMyRMAQYB3DRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BvpmIZT88euYOrRMyRMAQYB3DRg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/OkBVfjHDwuiw1uj8KHnKbnMD7W0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.2.160.0/20 Signature Algorithm: sha256WithRSAEncryption 7e:4e:af:71:37:0c:a6:34:a8:a5:e3:b3:82:0d:cc:e7:fa:57: bc:d6:57:e0:68:41:9f:3f:11:35:b5:cf:c0:9e:75:3e:31:f7: 5c:c0:1c:bd:81:dd:24:76:10:32:76:73:b6:f5:a8:fd:46:43: 55:9d:b6:22:7a:5a:50:a5:77:65:67:88:46:b2:c8:87:e9:d6: a8:cd:7d:9d:2f:4a:ce:47:12:08:92:7b:6a:f3:1f:1b:65:c6: 18:ac:cb:ce:da:9b:a9:d8:40:90:28:90:27:94:4e:8e:14:ec: 74:03:fe:69:5e:46:3d:9f:35:d5:a7:1f:cc:a5:a3:73:a5:0e: 2e:d4:30:89:e5:08:d5:10:2a:c8:8e:fa:b3:d1:16:48:3c:41: 4c:0a:e8:f7:71:b8:80:3e:d4:39:eb:5c:04:e1:bc:f4:9d:d4: 29:b2:f3:28:6a:54:76:31:fb:75:d3:f6:94:89:6e:de:bb:9e: e6:9f:06:45:2c:25:78:63:fc:ab:82:6f:76:c9:14:c1:d3:e0: b2:2b:09:d2:c9:62:a8:91:40:40:3f:c1:58:74:08:e4:8d:83: 8e:a2:a6:c2:81:f7:6f:58:e6:ae:62:80:fd:87:d1:ca:f5:7a: 86:43:8e:a6:81:c6:40:3c:8c:51:4f:ae:a6:b0:48:eb:7b:c4: b3:34:09:27 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBLzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwNkZB NjYyMTk0RkNGMUVCOTgzQUI0NENDOTEzMDA0MTgwNzcwRDE4MB4XDTI0MDEyNTAx MjIzN1oXDTI1MDExNDAxMzAwMlowMzExMC8GA1UEAxMoM0E0MDU1N0UzMUMzQzJF OEIwRDZFOEZDMjg3OUNBNkU3MzAzRUQ2RDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMHeGTy+pdh2L864j+7pS7NT+8LVesKzjdExk6LMZruCa4CZ+idi 6wLVzoN7Xsy5+AIHKLz53OpqsHDoi1Os/Pa6nQHlTgeNeY6y2Jw+D1oNCmo+0q8I 4RdrqgH17lLG/TmwMoyZr5seesHBi3dHbzCl70pkFDFqhyXPxFhHOL6628BAiQqr xz4ujzTSI7C8yfA6kzqGD0TEKuiRlXT64kQax39oBOtxMUqS8Yac1YWTkb8G5bjb 6yjlxhHO+rksQdHe6wyrIifY34F/MSg3SmThbAzhcrqR1JTGHB+yXpwF37EGRDfm 4MTRUqhTjj+AHALwq7Jw1Mo7l0Y2+SEjwxECAwEAAaOCAiIwggIeMB0GA1UdDgQW BBQ6QFV+McPC6LDW6PwoecpucwPtbTAfBgNVHSMEGDAWgBQG+mYhlPzx65g6tEzJ EwBBgHcNGDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjkvQnZwbUlaVDg4ZXVZT3JSTXlSTUFRWUIzRFJnLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvQnZwbUlaVDg4ZXVZT3JSTXlSTUFRWUIz RFJnLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzI5L09rQlZmakhEd3VpdzF1ajhLSG5LYm5NRDdXMC5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BATTAqAwDQYJKoZIhvcNAQELBQADggEBAH5Or3E3DKY0qKXjs4INzOf6V7zWV+Bo QZ8/ETW1z8CedT4x91zAHL2B3SR2EDJ2c7b1qP1GQ1WdtiJ6WlCld2VniEayyIfp 1qjNfZ0vSs5HEgiSe2rzHxtlxhisy87am6nYQJAokCeUTo4U7HQD/mleRj2fNdWn H8ylo3OlDi7UMInlCNUQKsiO+rPRFkg8QUwK6PdxuIA+1DnrXAThvPSd1Cmy8yhq VHYx+3XT9pSJbt67nuafBkUsJXhj/KuCb3bJFMHT4LIrCdLJYqiRQEA/wVh0COSN g46ipsKB929Y5q5igP2H0cr1eoZDjqaBxkA8jFFPrqawSOt7xLM0CSc= -----END CERTIFICATE-----Generated at Thu Jun 6 15:06:33 2024 by rpki-client on console-ams.rpki-client.org