$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/hE4MSVFv0PQMpeuVh9Gre3-LbnQ.roa File: hE4MSVFv0PQMpeuVh9Gre3-LbnQ.roa (raw, json) Hash identifier: NU8IDQ3hTcdrTY5ylbWI1AtTnmUN138LQUJNuyL96IY= Subject key identifier: 84:4E:0C:49:51:6F:D0:F4:0C:A5:EB:95:87:D1:AB:7B:7F:8B:6E:74 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 02A5 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hE4MSVFv0PQMpeuVh9Gre3-LbnQ.roa Signing time: Tue 30 May 2023 17:17:25 +0000 ROA not before: Tue 30 May 2023 17:17:25 +0000 ROA not after: Tue 14 May 2024 01:30:02 +0000 asID: 9605 IP address blocks: 219.122.72.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 13:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 677 (0x2a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: May 30 17:17:25 2023 GMT Not After : May 14 01:30:02 2024 GMT Subject: CN=844E0C49516FD0F40CA5EB9587D1AB7B7F8B6E74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:78:6c:58:bb:a2:ae:69:35:e7:be:30:d0:c0: 0a:2b:f2:12:c3:92:5c:63:df:e8:75:d1:fe:b4:db: 8f:36:02:4e:8c:54:aa:a5:89:45:b3:fc:09:fe:4e: a0:6c:82:01:f2:ec:c1:e1:99:8f:83:82:ff:d5:5d: ee:0e:7d:d2:78:e7:c0:fd:41:79:11:a5:59:45:6a: 25:ad:46:c2:13:25:03:61:4a:ec:62:ca:b4:4f:a7: e2:4e:01:b0:f2:1b:b0:a7:19:2c:4f:63:12:1f:64: 38:d6:43:3c:75:b4:a2:d3:63:5e:60:08:09:e4:78: 41:c5:1c:a6:1e:47:5c:cd:60:ec:77:fe:fa:20:7b: 9c:fd:eb:77:87:60:d4:39:2e:84:b4:97:1e:ca:a2: 06:45:31:2a:e2:70:a0:b8:86:66:7d:b3:b6:12:89: 74:5c:dc:7b:b5:ae:3f:d3:06:57:88:97:d1:57:25: 1d:f8:15:2e:6d:03:b6:e3:32:a1:32:87:0c:84:3a: 74:4f:21:28:d9:22:0f:1d:b0:1d:bd:60:a6:17:8f: c2:77:fb:fb:6a:f4:90:94:cf:a0:88:cb:2b:31:b7: 4f:58:3a:95:cf:6d:3d:2d:68:7b:2c:56:2c:38:e4: 44:74:f0:45:31:83:c5:d0:f2:3a:1d:ad:1b:bc:ea: b2:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:4E:0C:49:51:6F:D0:F4:0C:A5:EB:95:87:D1:AB:7B:7F:8B:6E:74 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hE4MSVFv0PQMpeuVh9Gre3-LbnQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.122.72.0/21 Signature Algorithm: sha256WithRSAEncryption 9d:9f:b6:0a:fb:b9:5e:7a:71:94:82:e1:ef:a6:02:af:c3:e0: ee:75:38:01:72:4a:86:c3:a2:fc:70:8e:cd:5a:25:2f:ac:4a: 75:fb:19:ae:98:cb:03:85:e1:09:21:ae:a8:ef:46:57:b3:b0: dd:d7:56:cb:33:b3:b1:83:40:5f:fa:71:ec:1a:19:5c:fe:c9: 71:53:97:2f:36:cc:da:ca:20:d0:36:21:a9:0c:b0:85:3d:f9: 54:39:ef:07:d8:86:04:14:67:ac:71:d2:99:df:fd:4b:5c:8c: 49:c0:e2:3b:06:a8:af:15:06:86:cf:31:45:1f:7b:51:66:07: 3c:8c:30:14:46:7a:51:5a:8a:31:ab:00:ca:b1:1c:07:4d:2b: 15:79:54:a2:13:76:2e:00:ef:58:95:b7:fe:18:23:e5:c5:b6: f7:db:a6:72:2f:d3:5a:ef:d0:5c:81:a1:da:2b:75:da:cf:c8: 6d:89:0c:94:fc:8a:f5:bf:0a:3d:be:30:9b:26:03:e5:d2:76: ea:4b:d7:3e:7e:9a:74:fc:3e:0f:07:20:b0:8f:5a:de:90:c3: 31:28:2e:93:85:50:35:d2:da:f8:c9:c2:f2:ae:12:db:20:11: a5:91:f3:90:df:0f:0c:28:3b:45:17:c9:75:58:22:ab:d4:c2: 87:37:33:bc -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAqUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MzAx NzE3MjVaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDg0NEUwQzQ5NTE2RkQw RjQwQ0E1RUI5NTg3RDFBQjdCN0Y4QjZFNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5eGxYu6KuaTXnvjDQwAor8hLDklxj3+h10f602482Ak6MVKql iUWz/An+TqBsggHy7MHhmY+Dgv/VXe4OfdJ458D9QXkRpVlFaiWtRsITJQNhSuxi yrRPp+JOAbDyG7CnGSxPYxIfZDjWQzx1tKLTY15gCAnkeEHFHKYeR1zNYOx3/vog e5z963eHYNQ5LoS0lx7KogZFMSricKC4hmZ9s7YSiXRc3Hu1rj/TBleIl9FXJR34 FS5tA7bjMqEyhwyEOnRPISjZIg8dsB29YKYXj8J3+/tq9JCUz6CIyysxt09YOpXP bT0taHssViw45ER08EUxg8XQ8jodrRu86rLtAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUhE4MSVFv0PQMpeuVh9Gre3+LbnQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2hFNE1TVkZ2MFBRTXBldVZoOUdyZTMtTGJuUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPbekgwDQYJKoZIhvcNAQELBQADggEBAJ2ftgr7uV56cZSC4e+mAq/D4O51 OAFySobDovxwjs1aJS+sSnX7Ga6YywOF4QkhrqjvRlezsN3XVsszs7GDQF/6cewa GVz+yXFTly82zNrKINA2IakMsIU9+VQ57wfYhgQUZ6xx0pnf/UtcjEnA4jsGqK8V BobPMUUfe1FmBzyMMBRGelFaijGrAMqxHAdNKxV5VKITdi4A71iVt/4YI+XFtvfb pnIv01rv0FyBodorddrPyG2JDJT8ivW/Cj2+MJsmA+XSdupL1z5+mnT8Pg8HILCP Wt6QwzEoLpOFUDXS2vjJwvKuEtsgEaWR85DfDwwoO0UXyXVYIqvUwoc3M7w= -----END CERTIFICATE-----Generated at Sat Apr 27 10:15:57 2024 by rpki-client on console-ams.rpki-client.org