$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/hka5o5V-5nxyBi7hYtCLq0H3rZE.roa File: hka5o5V-5nxyBi7hYtCLq0H3rZE.roa (raw, json) Hash identifier: dUZmD5kRKUJUTCe3+G97WhlOj7EkA55oxaxXSOadNak= Subject key identifier: 86:46:B9:A3:95:7E:E6:7C:72:06:2E:E1:62:D0:8B:AB:41:F7:AD:91 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 060D Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hka5o5V-5nxyBi7hYtCLq0H3rZE.roa Signing time: Thu 29 Feb 2024 01:38:27 +0000 ROA not before: Thu 29 Feb 2024 01:38:27 +0000 ROA not after: Fri 14 Feb 2025 01:30:03 +0000 asID: 9605 IP address blocks: 1.72.8.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1549 (0x60d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Feb 29 01:38:27 2024 GMT Not After : Feb 14 01:30:03 2025 GMT Subject: CN=8646B9A3957EE67C72062EE162D08BAB41F7AD91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:63:ee:f2:b3:67:ef:9b:6c:2f:4b:5c:f4:6b: 95:7d:ed:c9:5e:dd:fc:a6:97:dd:86:54:b3:06:65: a6:80:f8:04:46:46:f1:59:7d:c8:31:01:e7:81:48: 18:76:91:c1:9a:1f:84:30:f2:16:52:ce:69:d2:e0: 0a:87:ca:b0:7f:53:48:c5:68:42:62:f3:0b:12:93: 27:45:89:f6:84:7f:88:9b:21:9f:a4:5c:e4:1b:e9: 9a:5f:34:55:57:2f:39:49:99:d6:6c:f3:48:a0:83: e0:08:53:66:c7:1b:28:de:8b:53:25:d2:2b:33:e2: 21:2f:87:53:57:3e:f2:f5:87:ff:6e:78:5c:a8:1d: 90:41:ee:b0:a5:cd:fd:ba:b9:07:9f:1e:52:8f:2b: 65:98:81:c6:6a:aa:ee:5a:01:eb:a0:94:25:53:db: f4:43:c7:94:4e:63:eb:9d:77:2b:a3:a8:9b:9d:5d: 7d:bc:32:3d:40:b6:76:fd:62:47:b1:00:b3:b5:45: d8:85:60:29:0d:93:99:a2:d1:2e:be:6a:8a:25:99: e1:2f:e7:7a:ef:66:2f:4a:10:2b:34:3d:eb:91:e6: ad:ba:9b:22:ec:d8:4e:cf:3a:94:82:96:4d:cf:ac: d9:4a:c9:74:93:5e:a8:f5:92:da:cc:da:f3:e0:21: 8b:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:46:B9:A3:95:7E:E6:7C:72:06:2E:E1:62:D0:8B:AB:41:F7:AD:91 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hka5o5V-5nxyBi7hYtCLq0H3rZE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.72.8.0/23 Signature Algorithm: sha256WithRSAEncryption b6:44:03:df:e8:ea:55:21:7b:5c:f5:30:d9:50:54:2c:51:3b: 58:12:42:73:90:f4:17:1c:d5:4a:36:b3:57:c1:a3:c9:61:7d: 47:7a:6f:1a:8e:d6:fd:bf:dc:37:25:4a:19:5e:ef:99:2b:7b: b3:6b:a3:bd:88:70:39:a5:1e:24:a3:65:e7:ed:4a:88:57:b1: 7f:5c:60:1a:46:8e:06:46:29:f4:8c:88:81:5e:9f:ba:59:de: 83:ce:56:8b:ed:a6:de:4a:ba:44:b2:b6:bf:69:10:cd:16:cf: 5a:1c:55:85:20:ab:88:02:36:16:0c:3e:6d:c3:e7:19:6b:52: 80:a2:3c:0e:44:d1:86:79:46:89:90:1e:e5:14:2a:f5:73:22: 50:94:a9:8e:ec:6c:30:f3:8b:38:4a:b6:09:c4:2d:73:c1:32: 30:8a:9a:39:93:2f:14:4c:16:6b:dd:41:c5:24:61:20:e6:e5: 7a:df:0a:4f:b3:1b:60:c1:14:01:9e:33:72:2c:a7:ac:1c:c0: 77:bb:b6:24:90:92:0a:35:53:20:41:f5:f8:1c:b5:3b:5b:59: 1c:0e:7c:bc:8e:96:c0:ef:bd:0f:34:c1:67:d1:42:34:f8:a0: 74:4e:f6:d4:86:fa:4b:bc:31:f1:b6:56:b5:f0:d1:0a:bc:0e: ef:0f:cb:e6 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBg0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDAyMjkw MTM4MjdaFw0yNTAyMTQwMTMwMDNaMDMxMTAvBgNVBAMTKDg2NDZCOUEzOTU3RUU2 N0M3MjA2MkVFMTYyRDA4QkFCNDFGN0FEOTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKY+7ys2fvm2wvS1z0a5V97cle3fyml92GVLMGZaaA+ARGRvFZ fcgxAeeBSBh2kcGaH4Qw8hZSzmnS4AqHyrB/U0jFaEJi8wsSkydFifaEf4ibIZ+k XOQb6ZpfNFVXLzlJmdZs80igg+AIU2bHGyjei1Ml0isz4iEvh1NXPvL1h/9ueFyo HZBB7rClzf26uQefHlKPK2WYgcZqqu5aAeuglCVT2/RDx5ROY+uddyujqJudXX28 Mj1Atnb9YkexALO1RdiFYCkNk5mi0S6+aoolmeEv53rvZi9KECs0PeuR5q26myLs 2E7POpSClk3PrNlKyXSTXqj1ktrM2vPgIYtXAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUhka5o5V+5nxyBi7hYtCLq0H3rZEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2hrYTVvNVYtNW54eUJpN2hZdENMcTBIM3JaRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBSAgwDQYJKoZIhvcNAQELBQADggEBALZEA9/o6lUhe1z1MNlQVCxRO1gS QnOQ9Bcc1Uo2s1fBo8lhfUd6bxqO1v2/3DclShle75kre7Nro72IcDmlHiSjZeft SohXsX9cYBpGjgZGKfSMiIFen7pZ3oPOVovtpt5KukSytr9pEM0Wz1ocVYUgq4gC NhYMPm3D5xlrUoCiPA5E0YZ5RomQHuUUKvVzIlCUqY7sbDDzizhKtgnELXPBMjCK mjmTLxRMFmvdQcUkYSDm5XrfCk+zG2DBFAGeM3Isp6wcwHe7tiSQkgo1UyBB9fgc tTtbWRwOfLyOlsDvvQ80wWfRQjT4oHRO9tSG+ku8MfG2VrXw0Qq8Du8Py+Y= -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:48 2024 by rpki-client on console-fra.rpki-client.org