$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/igroKZjZaTXbnuphSbEbx48Oe-E.roa File: igroKZjZaTXbnuphSbEbx48Oe-E.roa (raw, json) Hash identifier: S+nMt8Z+mi/elnKy6+ITSX5S9pQ0Wjrnehy/vV7sI98= Subject key identifier: 8A:0A:E8:29:98:D9:69:35:DB:9E:EA:61:49:B1:1B:C7:8F:0E:7B:E1 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 02CA Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/igroKZjZaTXbnuphSbEbx48Oe-E.roa Signing time: Tue 30 May 2023 17:18:20 +0000 ROA not before: Tue 30 May 2023 17:18:20 +0000 ROA not after: Tue 14 May 2024 01:30:02 +0000 asID: 9605 IP address blocks: 211.14.92.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 13:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 714 (0x2ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: May 30 17:18:20 2023 GMT Not After : May 14 01:30:02 2024 GMT Subject: CN=8A0AE82998D96935DB9EEA6149B11BC78F0E7BE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:c2:50:a5:f8:ba:38:f5:24:a8:92:db:c8:65: 9d:9e:16:52:af:38:76:66:9c:b4:aa:90:a4:26:a5: ba:21:00:33:47:43:79:b4:1a:f5:3e:46:d9:a1:f1: c2:dc:9a:72:67:36:36:1f:3a:98:10:c2:70:29:0e: 5c:01:62:5d:88:79:6d:87:a2:f4:59:bc:f6:6f:4c: f1:87:31:c6:cb:ad:8c:a2:35:18:80:a1:a7:96:71: 22:a5:aa:a3:31:7d:2f:f9:5d:18:ae:d4:45:f8:84: 8b:6d:ec:39:b1:08:e6:08:97:4d:4c:ab:ea:a7:65: da:5f:aa:fc:89:21:ba:5d:9a:ae:95:40:0f:09:cf: e6:c0:70:89:78:8f:ba:8a:c1:cf:0a:32:5f:47:1a: fd:65:28:08:1d:5c:16:f6:f9:31:af:33:be:33:35: 1e:83:5c:ce:c3:3e:f0:3b:e2:79:ae:56:40:8e:3c: ca:dd:77:42:4c:22:44:01:39:82:91:7b:a6:e3:14: 16:63:3f:8e:e2:46:c7:78:4f:60:bf:5c:9a:08:45: 8c:d0:15:1a:da:e8:3a:24:f8:fa:ba:96:4d:cc:77: da:97:8b:ca:88:93:40:2c:52:cd:df:7d:ad:56:de: c4:72:97:b0:19:a6:07:5d:20:29:c8:1b:6c:05:c4: 68:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:0A:E8:29:98:D9:69:35:DB:9E:EA:61:49:B1:1B:C7:8F:0E:7B:E1 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/igroKZjZaTXbnuphSbEbx48Oe-E.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.14.92.0/23 Signature Algorithm: sha256WithRSAEncryption dd:a6:db:6e:3e:62:43:d5:81:69:53:a1:c9:a7:7a:bf:47:04: c7:9c:7c:c3:49:32:23:2a:9c:db:20:8c:79:7e:48:1b:70:8c: c0:71:5b:27:0d:bf:4f:d1:79:24:15:da:48:64:bd:a2:29:a0: 8c:94:a7:b7:3b:80:7c:4e:6c:85:48:a5:ab:cb:9b:cc:18:b6: fa:78:96:d9:08:f6:c6:f3:8d:40:25:64:ab:7a:6a:64:e7:f4: 54:ba:c4:59:22:3f:1e:ef:76:54:eb:25:39:08:c2:e5:26:21: 63:f1:87:6d:9d:55:ba:e5:bd:02:e4:1c:d6:5b:f5:ce:1e:18: f9:de:cc:ce:8f:4e:17:a9:e9:f0:f1:63:cd:86:45:e6:c3:52: 05:93:43:6d:6d:bc:b5:81:8a:02:4f:4f:97:a7:e3:38:12:ec: 31:67:9e:f8:d3:8b:07:77:a2:85:6a:b5:15:bb:53:1c:28:d5: c6:cd:9f:a6:45:dc:c6:cc:55:aa:0a:92:23:4e:e8:87:4f:bd: 69:06:73:e7:89:04:c3:fc:fc:2f:23:2a:43:b3:29:d4:15:b9: e0:5c:48:2b:e8:14:fa:3e:cb:1e:0c:f3:37:4e:b7:2e:4c:8d: 4b:73:e9:1f:09:95:c6:71:3a:e3:74:78:5c:35:52:d9:be:c8: 70:24:d2:17 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAsowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MzAx NzE4MjBaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDhBMEFFODI5OThEOTY5 MzVEQjlFRUE2MTQ5QjExQkM3OEYwRTdCRTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDrwlCl+Lo49SSoktvIZZ2eFlKvOHZmnLSqkKQmpbohADNHQ3m0 GvU+Rtmh8cLcmnJnNjYfOpgQwnApDlwBYl2IeW2HovRZvPZvTPGHMcbLrYyiNRiA oaeWcSKlqqMxfS/5XRiu1EX4hItt7DmxCOYIl01Mq+qnZdpfqvyJIbpdmq6VQA8J z+bAcIl4j7qKwc8KMl9HGv1lKAgdXBb2+TGvM74zNR6DXM7DPvA74nmuVkCOPMrd d0JMIkQBOYKRe6bjFBZjP47iRsd4T2C/XJoIRYzQFRra6Dok+Pq6lk3Md9qXi8qI k0AsUs3ffa1W3sRyl7AZpgddICnIG2wFxGhDAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUigroKZjZaTXbnuphSbEbx48Oe+EwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L2lncm9LWmpaYVRYYm51cGhTYkVieDQ4T2UtRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHTDlwwDQYJKoZIhvcNAQELBQADggEBAN2m224+YkPVgWlTocmner9HBMec fMNJMiMqnNsgjHl+SBtwjMBxWycNv0/ReSQV2khkvaIpoIyUp7c7gHxObIVIpavL m8wYtvp4ltkI9sbzjUAlZKt6amTn9FS6xFkiPx7vdlTrJTkIwuUmIWPxh22dVbrl vQLkHNZb9c4eGPnezM6PThep6fDxY82GRebDUgWTQ21tvLWBigJPT5en4zgS7DFn nvjTiwd3ooVqtRW7Uxwo1cbNn6ZF3MbMVaoKkiNO6IdPvWkGc+eJBMP8/C8jKkOz KdQVueBcSCvoFPo+yx4M8zdOty5MjUtz6R8JlcZxOuN0eFw1Utm+yHAk0hc= -----END CERTIFICATE-----Generated at Sat Apr 27 10:15:57 2024 by rpki-client on console-ams.rpki-client.org