$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/307/hrzZcvEVhv01Y_MBBsOpHrm6CU0.roa File: hrzZcvEVhv01Y_MBBsOpHrm6CU0.roa (raw, json) Hash identifier: fcmVZl1esxXfBxu+fZnEErr40LdUHCfiIv5SUhe+AEQ= Subject key identifier: 86:BC:D9:72:F1:15:86:FD:35:63:F3:01:06:C3:A9:1E:B9:BA:09:4D Certificate issuer: /CN=6D1ED16D8C6D3BA40BF42CB3A29652ADAB76D061 Certificate serial: 10 Authority key identifier: 6D:1E:D1:6D:8C:6D:3B:A4:0B:F4:2C:B3:A2:96:52:AD:AB:76:D0:61 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/bR7RbYxtO6QL9CyzopZSrat20GE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/hrzZcvEVhv01Y_MBBsOpHrm6CU0.roa Signing time: Thu 16 Nov 2023 02:52:49 +0000 ROA not before: Thu 16 Nov 2023 02:52:49 +0000 ROA not after: Thu 14 Nov 2024 01:30:03 +0000 asID: 23783 IP address blocks: 219.124.98.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/bR7RbYxtO6QL9CyzopZSrat20GE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/bR7RbYxtO6QL9CyzopZSrat20GE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/bR7RbYxtO6QL9CyzopZSrat20GE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 14:03:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D1ED16D8C6D3BA40BF42CB3A29652ADAB76D061 Validity Not Before: Nov 16 02:52:49 2023 GMT Not After : Nov 14 01:30:03 2024 GMT Subject: CN=86BCD972F11586FD3563F30106C3A91EB9BA094D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ac:5a:61:7b:3d:cc:34:7c:a8:c6:09:8a:72: ef:30:6b:8c:92:c7:83:33:4c:a3:73:6f:eb:34:ee: dd:ce:f5:98:0b:26:e1:7a:64:9a:1d:91:6f:58:bf: 65:76:6f:78:ae:c5:da:86:b2:ee:4a:d5:6c:29:f6: 27:fa:c1:94:fb:05:0d:54:1d:91:46:5e:5d:b8:b6: e0:9f:36:c9:80:37:27:cb:ad:49:4d:ab:1e:ee:91: 28:99:22:82:b6:bc:c5:ab:75:ce:31:19:2f:9f:4f: fb:09:60:d4:84:49:a0:54:9a:e5:de:46:66:63:3b: 75:bd:d5:6a:bc:83:c9:dd:8a:85:9a:22:ab:e7:a7: 25:d9:63:3b:35:9e:81:27:e2:d1:78:ef:eb:b8:e7: ea:20:ce:c8:5f:d4:32:b2:10:8d:c5:77:ac:de:4a: 2d:07:32:b9:7e:e6:0e:7f:5e:43:b5:e7:81:63:9f: 35:14:5c:3c:69:00:47:90:33:c5:25:a9:50:a3:b5: 3c:e9:a9:e5:5f:19:88:60:f3:aa:b8:f6:01:f0:03: d1:9f:fa:23:d2:d3:94:08:2a:31:54:30:e1:62:33: c7:d5:7a:a3:32:b5:3e:3d:ba:a1:ac:5a:2a:60:e0: bb:7c:39:58:d9:cd:eb:1c:f9:ef:35:e2:aa:b9:40: 5a:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:BC:D9:72:F1:15:86:FD:35:63:F3:01:06:C3:A9:1E:B9:BA:09:4D X509v3 Authority Key Identifier: keyid:6D:1E:D1:6D:8C:6D:3B:A4:0B:F4:2C:B3:A2:96:52:AD:AB:76:D0:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/bR7RbYxtO6QL9CyzopZSrat20GE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/bR7RbYxtO6QL9CyzopZSrat20GE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/hrzZcvEVhv01Y_MBBsOpHrm6CU0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.124.98.0/23 Signature Algorithm: sha256WithRSAEncryption 8c:ed:a7:1f:de:ae:21:55:59:ab:61:36:0c:9a:78:e5:3c:6f: d4:0c:a0:b3:47:14:26:cc:38:94:46:9e:a4:ec:b7:e3:bd:1e: 76:8f:07:6c:5c:31:21:ee:4a:6f:66:24:e3:60:74:db:48:6b: 72:43:e4:d4:fa:81:42:e2:f3:10:a3:20:25:b3:43:0e:a3:8d: 91:74:17:8e:73:0e:38:75:78:ba:8e:2a:e3:ae:21:61:1f:64: e1:d1:9a:50:a7:1c:03:b3:f8:b6:15:0d:63:01:7d:e4:33:d3: d2:5e:40:6e:ec:ca:79:db:98:4a:b8:7b:31:ab:0b:de:6d:0f: 58:71:18:a9:ad:51:e7:97:43:9a:b1:51:56:b0:4d:64:cd:c6: 9a:c5:14:83:b6:65:e0:b7:68:e1:21:89:41:fb:02:44:0d:8f: 2e:20:c4:34:00:23:23:75:73:37:8b:ac:9a:ae:74:21:2e:d1: 74:7b:2a:dc:84:d5:09:8f:39:f0:9b:f2:5e:88:2d:11:21:c4: 38:8f:c4:f0:af:6f:f4:b3:93:57:60:86:4d:04:8b:5d:34:e4: b8:32:4b:4a:95:4c:c6:37:57:eb:2d:63:12:43:89:5c:c1:9a: 61:98:80:d1:04:ba:81:75:81:03:8d:5e:32:2d:18:4c:d7:41: e0:df:55:12 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBEDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2RDFF RDE2RDhDNkQzQkE0MEJGNDJDQjNBMjk2NTJBREFCNzZEMDYxMB4XDTIzMTExNjAy NTI0OVoXDTI0MTExNDAxMzAwM1owMzExMC8GA1UEAxMoODZCQ0Q5NzJGMTE1ODZG RDM1NjNGMzAxMDZDM0E5MUVCOUJBMDk0RDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMesWmF7Pcw0fKjGCYpy7zBrjJLHgzNMo3Nv6zTu3c71mAsm4Xpk mh2Rb1i/ZXZveK7F2oay7krVbCn2J/rBlPsFDVQdkUZeXbi24J82yYA3J8utSU2r Hu6RKJkigra8xat1zjEZL59P+wlg1IRJoFSa5d5GZmM7db3VaryDyd2KhZoiq+en JdljOzWegSfi0Xjv67jn6iDOyF/UMrIQjcV3rN5KLQcyuX7mDn9eQ7XngWOfNRRc PGkAR5AzxSWpUKO1POmp5V8ZiGDzqrj2AfAD0Z/6I9LTlAgqMVQw4WIzx9V6ozK1 Pj26oaxaKmDgu3w5WNnN6xz57zXiqrlAWg8CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSGvNly8RWG/TVj8wEGw6keuboJTTAfBgNVHSMEGDAWgBRtHtFtjG07pAv0LLOi llKtq3bQYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA3L2JSN1JiWXh0TzZRTDlDeXpvcFpTcmF0MjBHRS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2JSN1JiWXh0TzZRTDlDeXpvcFpTcmF0 MjBHRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8zMDcvaHJ6WmN2RVZodjAxWV9NQkJzT3BIcm02Q1UwLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAdt8YjANBgkqhkiG9w0BAQsFAAOCAQEAjO2nH96uIVVZq2E2DJp45Txv1Ayg s0cUJsw4lEaepOy3470edo8HbFwxIe5Kb2Yk42B020hrckPk1PqBQuLzEKMgJbND DqONkXQXjnMOOHV4uo4q464hYR9k4dGaUKccA7P4thUNYwF95DPT0l5AbuzKeduY Srh7MasL3m0PWHEYqa1R55dDmrFRVrBNZM3GmsUUg7Zl4Ldo4SGJQfsCRA2PLiDE NAAjI3VzN4usmq50IS7RdHsq3ITVCY858JvyXogtESHEOI/E8K9v9LOTV2CGTQSL XTTkuDJLSpVMxjdX6y1jEkOJXMGaYZiA0QS6gXWBA41eMi0YTNdB4N9VEg== -----END CERTIFICATE-----Generated at Thu Jun 6 14:56:16 2024 by rpki-client on console-fra.rpki-client.org