$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Ioqb-68axzngLqfyd1ZjhxiFqCw.roa File: Ioqb-68axzngLqfyd1ZjhxiFqCw.roa (raw, json) Hash identifier: RVp8urDcjf7o7MHpDU0TFH3mgBOhsReklycASKOkQzU= Subject key identifier: 22:8A:9B:FB:AF:1A:C7:39:E0:2E:A7:F2:77:56:63:87:18:85:A8:2C Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 027D Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Ioqb-68axzngLqfyd1ZjhxiFqCw.roa Signing time: Tue 30 May 2023 16:34:24 +0000 ROA not before: Tue 30 May 2023 16:34:24 +0000 ROA not after: Tue 14 May 2024 01:30:02 +0000 asID: 9605 IP address blocks: 211.14.94.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 13:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 637 (0x27d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: May 30 16:34:24 2023 GMT Not After : May 14 01:30:02 2024 GMT Subject: CN=228A9BFBAF1AC739E02EA7F2775663871885A82C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:0f:08:5d:1d:64:88:f0:7c:39:27:67:19:5f: de:9e:1f:1d:98:73:53:e2:56:d8:47:5c:40:18:34: 8d:79:de:b5:a3:18:59:78:55:57:30:4f:99:73:8e: 53:a7:ef:f5:00:31:98:76:0e:3b:64:dc:12:36:85: 27:74:30:db:93:e8:db:d9:4a:2d:5e:38:c0:ff:60: 11:d3:98:cc:77:44:c8:b7:9a:b4:ed:6e:53:61:f3: a5:99:00:44:9c:4e:27:9d:64:08:6d:25:8a:72:9b: 61:df:6e:f4:41:e6:e0:c8:70:d2:ae:1a:af:f5:98: 22:4d:aa:e5:10:ad:25:dc:7f:71:3c:2d:d1:ee:36: f0:b0:0f:7e:a4:19:77:21:50:a3:80:71:14:2e:4e: ce:0b:ad:6c:1b:80:16:69:84:13:3a:94:e1:a9:22: 15:59:78:bc:4b:cc:70:97:30:54:5c:b7:6c:1e:d0: f3:42:b2:fd:70:a2:ad:c0:75:f3:90:b4:f0:56:2c: cd:2a:0f:0f:4c:a0:32:5d:6d:57:23:e2:27:9f:67: 73:7b:26:32:3a:56:2a:ac:bb:f0:9a:23:58:b6:c9: 1f:b4:42:66:88:b3:a0:2b:61:7b:04:66:63:57:38: b0:48:74:52:ee:6c:7b:d4:24:06:ad:60:29:9d:43: d3:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:8A:9B:FB:AF:1A:C7:39:E0:2E:A7:F2:77:56:63:87:18:85:A8:2C X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Ioqb-68axzngLqfyd1ZjhxiFqCw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.14.94.0/23 Signature Algorithm: sha256WithRSAEncryption b7:da:95:38:ec:76:90:a2:74:e1:d1:19:6a:1c:4e:86:69:76: 46:b2:3f:8b:45:58:67:55:4f:64:a8:cd:b4:20:15:9d:a1:70: d5:9a:d5:ec:03:72:7f:f6:11:b3:1e:be:6d:e4:e8:b1:30:25: 90:7c:44:bc:65:d1:1e:d8:26:62:f2:d1:2b:1a:37:bf:f6:59: a9:9e:5e:96:ba:0a:73:e0:59:c8:fb:10:e2:ef:fa:ab:1c:88: bd:d9:3b:47:ee:7f:c6:56:79:43:92:88:91:5f:04:da:4d:90: e3:53:a9:4a:e0:a7:34:0f:0e:43:67:c3:04:a4:e0:6a:9f:ca: 3f:4a:72:9e:c9:80:18:db:77:da:bd:b6:8f:7a:3d:13:84:e5: ee:14:62:a2:7f:b4:29:25:57:0a:18:f4:21:e3:6a:e2:f9:de: 3e:66:d6:fc:2d:ba:b0:14:89:53:89:0e:c6:0b:48:ae:7a:a4: 8d:d9:22:81:ab:67:24:3e:6b:ea:37:03:4c:7c:3b:ae:5d:54: 99:78:4e:94:f3:cb:bf:50:d9:0b:43:fd:d5:56:20:11:7e:f9: 93:39:c5:11:d5:53:6d:3d:28:ea:0f:0c:2b:75:67:9a:40:9f: 48:9d:40:9f:af:82:37:b6:38:bc:5c:d3:19:07:b4:d7:1a:24: 26:e9:5d:f7 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAn0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MzAx NjM0MjRaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDIyOEE5QkZCQUYxQUM3 MzlFMDJFQTdGMjc3NTY2Mzg3MTg4NUE4MkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDjDwhdHWSI8Hw5J2cZX96eHx2Yc1PiVthHXEAYNI153rWjGFl4 VVcwT5lzjlOn7/UAMZh2Djtk3BI2hSd0MNuT6NvZSi1eOMD/YBHTmMx3RMi3mrTt blNh86WZAEScTiedZAhtJYpym2HfbvRB5uDIcNKuGq/1mCJNquUQrSXcf3E8LdHu NvCwD36kGXchUKOAcRQuTs4LrWwbgBZphBM6lOGpIhVZeLxLzHCXMFRct2we0PNC sv1woq3AdfOQtPBWLM0qDw9MoDJdbVcj4iefZ3N7JjI6Viqsu/CaI1i2yR+0QmaI s6ArYXsEZmNXOLBIdFLubHvUJAatYCmdQ9MlAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUIoqb+68axzngLqfyd1ZjhxiFqCwwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0lvcWItNjhheHpuZ0xxZnlkMVpqaHhpRnFDdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHTDl4wDQYJKoZIhvcNAQELBQADggEBALfalTjsdpCidOHRGWocToZpdkay P4tFWGdVT2SozbQgFZ2hcNWa1ewDcn/2EbMevm3k6LEwJZB8RLxl0R7YJmLy0Ssa N7/2WameXpa6CnPgWcj7EOLv+qsciL3ZO0fuf8ZWeUOSiJFfBNpNkONTqUrgpzQP DkNnwwSk4Gqfyj9Kcp7JgBjbd9q9to96PROE5e4UYqJ/tCklVwoY9CHjauL53j5m 1vwturAUiVOJDsYLSK56pI3ZIoGrZyQ+a+o3A0x8O65dVJl4TpTzy79Q2QtD/dVW IBF++ZM5xRHVU209KOoPDCt1Z5pAn0idQJ+vgje2OLxc0xkHtNcaJCbpXfc= -----END CERTIFICATE-----Generated at Sat Apr 27 10:15:56 2024 by rpki-client on console-ams.rpki-client.org