$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/I0nk0mcsDfn2eZeo-SqHA4H9PWs.roa File: I0nk0mcsDfn2eZeo-SqHA4H9PWs.roa (raw, json) Hash identifier: VfoMUVLIJWX7fG8c6405ina2sjLSeYLlKBdT1vV5Cfo= Subject key identifier: 23:49:E4:D2:67:2C:0D:F9:F6:79:97:A8:F9:2A:87:03:81:FD:3D:6B Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0516 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/I0nk0mcsDfn2eZeo-SqHA4H9PWs.roa Signing time: Thu 27 Jul 2023 16:54:03 +0000 ROA not before: Thu 27 Jul 2023 16:54:03 +0000 ROA not after: Sun 14 Jul 2024 01:30:03 +0000 asID: 9605 IP address blocks: 220.159.64.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1302 (0x516) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jul 27 16:54:03 2023 GMT Not After : Jul 14 01:30:03 2024 GMT Subject: CN=2349E4D2672C0DF9F67997A8F92A870381FD3D6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:a6:e4:d9:bb:5b:4f:5f:8c:2d:2d:50:3b:8b: d4:e0:64:42:42:10:df:a6:b6:13:fb:ad:de:41:b2: d1:44:57:5d:64:a5:e3:95:da:29:1d:6f:25:1d:2c: 59:c4:03:4a:4e:7a:f2:73:d1:6f:79:02:f6:c8:f9: da:28:14:e6:87:3b:3b:2e:97:bd:cd:2a:65:11:c5: 2f:43:3b:3a:98:92:02:f1:4f:07:e1:47:94:72:ab: b5:9d:f6:00:ff:f9:1a:51:41:ab:b8:7b:22:92:0e: 3f:bf:72:04:5e:cb:da:b6:70:5f:f8:05:d3:3e:e3: 79:08:09:de:90:d5:18:69:2f:c0:49:a3:71:77:7f: 2a:e9:32:33:7a:12:2b:a8:70:39:02:23:06:97:e8: 89:1c:b6:e6:25:4e:9a:db:b0:cf:25:a9:46:62:09: 4d:8d:d4:2c:f7:31:57:99:1a:90:d0:21:78:03:97: d0:28:fb:ce:e1:20:f2:0f:8c:6c:4b:d9:3a:90:9e: d3:6d:07:1f:69:fb:7d:dd:63:a8:91:37:0d:52:46: 4c:ce:af:ee:a0:57:9e:a7:1d:be:e0:be:c8:5f:ff: 4d:5d:11:6d:4e:63:14:6d:6b:6e:19:bf:6d:f4:db: 10:a4:72:6c:75:0d:23:3d:a7:ff:14:74:19:0e:54: ac:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:49:E4:D2:67:2C:0D:F9:F6:79:97:A8:F9:2A:87:03:81:FD:3D:6B X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/I0nk0mcsDfn2eZeo-SqHA4H9PWs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.64.0/19 Signature Algorithm: sha256WithRSAEncryption e3:13:f0:e4:e1:af:45:44:d8:f8:a3:38:0c:78:ba:7b:cc:8f: ef:d0:c0:4f:33:1b:07:85:d1:c2:34:ee:16:0c:e2:66:4c:0d: 49:cb:4c:22:d1:45:bd:1a:0f:67:e5:8c:eb:ec:52:91:14:de: 67:6b:10:52:e2:0a:82:4a:05:10:6d:a7:d0:52:7a:97:ac:0c: 5b:d8:cf:fb:e3:fa:9a:4f:eb:84:8b:2a:53:29:d2:11:26:61: 84:17:49:a5:a1:8a:7e:1f:f4:6f:db:66:df:77:5b:c6:53:a7: a4:1e:22:2e:00:00:7e:a1:d7:5f:79:cc:bb:75:a3:e0:86:1a: d0:3a:2d:61:52:7c:73:f7:b3:93:f3:ef:57:88:ce:99:2e:59: 96:8f:55:b6:8d:4e:f2:0a:23:c5:1c:cf:46:0f:e0:da:93:d9: fe:a4:87:66:a1:e7:bf:2d:d1:f8:56:c8:4f:35:84:96:e9:51: 04:af:7b:90:2d:b9:c7:d8:9f:95:d7:e7:3d:06:e0:0b:3f:c8: 25:cb:fa:b8:4d:70:c4:08:60:d6:2d:33:f5:4e:02:b9:b0:2f: 2f:87:bc:37:3f:79:f5:b6:b6:7e:20:0e:7f:f5:3a:2e:91:1b: eb:63:ed:ee:2d:3a:5a:20:31:d9:b1:13:23:35:60:32:a0:82: b8:34:e3:60 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBRYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA3Mjcx NjU0MDNaFw0yNDA3MTQwMTMwMDNaMDMxMTAvBgNVBAMTKDIzNDlFNEQyNjcyQzBE RjlGNjc5OTdBOEY5MkE4NzAzODFGRDNENkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgpuTZu1tPX4wtLVA7i9TgZEJCEN+mthP7rd5BstFEV11kpeOV 2ikdbyUdLFnEA0pOevJz0W95AvbI+dooFOaHOzsul73NKmURxS9DOzqYkgLxTwfh R5Ryq7Wd9gD/+RpRQau4eyKSDj+/cgRey9q2cF/4BdM+43kICd6Q1RhpL8BJo3F3 fyrpMjN6EiuocDkCIwaX6IkctuYlTprbsM8lqUZiCU2N1Cz3MVeZGpDQIXgDl9Ao +87hIPIPjGxL2TqQntNtBx9p+33dY6iRNw1SRkzOr+6gV56nHb7gvshf/01dEW1O YxRta24Zv2302xCkcmx1DSM9p/8UdBkOVKwjAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUI0nk0mcsDfn2eZeo+SqHA4H9PWswHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0kwbmswbWNzRGZuMmVaZW8tU3FIQTRIOVBXcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXcn0AwDQYJKoZIhvcNAQELBQADggEBAOMT8OThr0VE2PijOAx4unvMj+/Q wE8zGweF0cI07hYM4mZMDUnLTCLRRb0aD2fljOvsUpEU3mdrEFLiCoJKBRBtp9BS epesDFvYz/vj+ppP64SLKlMp0hEmYYQXSaWhin4f9G/bZt93W8ZTp6QeIi4AAH6h 1195zLt1o+CGGtA6LWFSfHP3s5Pz71eIzpkuWZaPVbaNTvIKI8Ucz0YP4NqT2f6k h2ah578t0fhWyE81hJbpUQSve5AtucfYn5XX5z0G4As/yCXL+rhNcMQIYNYtM/VO ArmwLy+HvDc/efW2tn4gDn/1Oi6RG+tj7e4tOlogMdmxEyM1YDKggrg042A= -----END CERTIFICATE-----Generated at Sat Jun 1 15:54:30 2024 by rpki-client on console-ams.rpki-client.org