$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/LGgHbopjL32I5KbdVr9PYXw9NXQ.roa File: LGgHbopjL32I5KbdVr9PYXw9NXQ.roa (raw, json) Hash identifier: vFQcpqjmlA5jNxySFdeXRbUXGsvsu3RDv9GNaghZ8h8= Subject key identifier: 2C:68:07:6E:8A:63:2F:7D:88:E4:A6:DD:56:BF:4F:61:7C:3D:35:74 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 055E Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/LGgHbopjL32I5KbdVr9PYXw9NXQ.roa Signing time: Thu 27 Jul 2023 16:56:17 +0000 ROA not before: Thu 27 Jul 2023 16:56:17 +0000 ROA not after: Sun 14 Jul 2024 01:30:03 +0000 asID: 9605 IP address blocks: 220.159.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1374 (0x55e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Jul 27 16:56:17 2023 GMT Not After : Jul 14 01:30:03 2024 GMT Subject: CN=2C68076E8A632F7D88E4A6DD56BF4F617C3D3574 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f1:d1:2e:9c:81:db:3b:2c:7b:ca:c1:d3:48: 0f:5f:b3:84:62:6d:07:a8:b6:a5:92:3f:24:be:9e: a8:85:3c:39:b7:e5:41:34:b2:17:fa:7f:91:57:03: 7d:86:12:cd:1f:58:91:77:4f:cf:47:f9:8b:19:b3: 56:a2:43:90:b9:f5:1b:0e:eb:66:30:af:c3:ff:d4: fb:53:64:bb:16:ed:60:83:9b:59:bf:8a:3c:2f:ed: ba:5e:4b:79:0d:f2:f5:14:38:31:1d:b3:0a:e8:68: c9:52:05:a8:6e:78:d9:c1:5d:c8:0d:d2:72:fa:62: ee:c4:6f:3e:38:6d:78:bd:eb:80:91:23:aa:d5:da: 82:c5:07:f5:d1:6c:17:4d:0f:45:8b:cc:1e:9e:91: af:99:d5:41:e7:a4:6b:73:b2:ee:3e:9d:f3:70:e5: 68:dd:52:63:d4:d3:37:94:3c:3b:81:49:6f:0a:3f: 6f:3b:da:43:20:9a:93:ac:c5:d8:eb:16:1a:96:b9: 8c:c5:f7:ea:26:58:79:75:b8:e4:a5:47:93:4e:51: bf:95:04:2c:c5:85:dd:18:73:6a:0f:b8:70:fa:4d: f0:98:6e:81:20:2c:f3:32:a7:43:40:3f:15:26:e9: bf:a2:a9:50:a6:d9:aa:07:7b:4a:73:0f:1f:8a:ff: 6f:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:68:07:6E:8A:63:2F:7D:88:E4:A6:DD:56:BF:4F:61:7C:3D:35:74 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/LGgHbopjL32I5KbdVr9PYXw9NXQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.159.233.0/24 Signature Algorithm: sha256WithRSAEncryption 43:90:38:b4:6b:b0:c2:1c:87:79:1c:9b:6f:00:d6:95:7b:3f: 5c:8d:53:47:ad:ab:a3:28:88:a0:b3:0c:7e:bb:22:24:f3:ec: e5:ea:83:26:a7:3f:c2:c7:6d:10:e5:71:6b:d3:5d:d0:e7:fe: 3e:26:16:58:45:d8:7f:98:b8:11:34:61:eb:ce:8f:5a:1d:7f: ee:a7:f7:1c:63:8f:74:01:34:9e:c4:0a:d9:00:f5:24:77:aa: 00:b2:db:29:f7:6b:cf:cb:e3:8f:27:52:32:d7:fc:19:b6:87: 3f:a4:7f:b2:3e:e9:79:36:79:44:1a:9c:07:73:ff:53:0c:3b: 9b:57:b2:1b:b6:fb:5f:2e:0a:98:79:b6:cc:55:de:b4:f4:aa: a9:49:4c:9a:16:98:05:a8:78:5f:ef:25:12:b9:91:70:aa:55: 9d:e5:31:82:22:2e:26:39:69:93:0a:e9:67:5a:fb:80:79:85: 8b:87:97:2a:c7:7f:bf:1d:b7:56:a4:f2:2f:e0:be:2e:3a:3f: 01:15:46:ca:54:91:2b:47:90:f3:ae:4a:49:4f:01:14:fb:72: 4d:a0:5f:d2:75:35:72:93:cb:fd:6b:d3:c4:9e:12:40:42:aa: 55:fa:d1:a6:ad:68:71:90:8c:8a:dd:02:19:d0:04:df:bd:eb: 23:57:fd:b4 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBV4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA3Mjcx NjU2MTdaFw0yNDA3MTQwMTMwMDNaMDMxMTAvBgNVBAMTKDJDNjgwNzZFOEE2MzJG N0Q4OEU0QTZERDU2QkY0RjYxN0MzRDM1NzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDC8dEunIHbOyx7ysHTSA9fs4RibQeotqWSPyS+nqiFPDm35UE0 shf6f5FXA32GEs0fWJF3T89H+YsZs1aiQ5C59RsO62Ywr8P/1PtTZLsW7WCDm1m/ ijwv7bpeS3kN8vUUODEdswroaMlSBahueNnBXcgN0nL6Yu7Ebz44bXi964CRI6rV 2oLFB/XRbBdND0WLzB6eka+Z1UHnpGtzsu4+nfNw5WjdUmPU0zeUPDuBSW8KP287 2kMgmpOsxdjrFhqWuYzF9+omWHl1uOSlR5NOUb+VBCzFhd0Yc2oPuHD6TfCYboEg LPMyp0NAPxUm6b+iqVCm2aoHe0pzDx+K/28lAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQULGgHbopjL32I5KbdVr9PYXw9NXQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L0xHZ0hib3BqTDMySTVLYmRWcjlQWVh3OU5YUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADcn+kwDQYJKoZIhvcNAQELBQADggEBAEOQOLRrsMIch3kcm28A1pV7P1yN U0etq6MoiKCzDH67IiTz7OXqgyanP8LHbRDlcWvTXdDn/j4mFlhF2H+YuBE0YevO j1odf+6n9xxjj3QBNJ7ECtkA9SR3qgCy2yn3a8/L448nUjLX/Bm2hz+kf7I+6Xk2 eUQanAdz/1MMO5tXshu2+18uCph5tsxV3rT0qqlJTJoWmAWoeF/vJRK5kXCqVZ3l MYIiLiY5aZMK6Wda+4B5hYuHlyrHf78dt1ak8i/gvi46PwEVRspUkStHkPOuSklP ART7ck2gX9J1NXKTy/1r08SeEkBCqlX60aataHGQjIrdAhnQBN+96yNX/bQ= -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:47 2024 by rpki-client on console-fra.rpki-client.org