$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/sm3M5C2neGHcpO7JVx6H1Jb7QdQ.roa File: sm3M5C2neGHcpO7JVx6H1Jb7QdQ.roa (raw, json) Hash identifier: ePK8Fb+hGWWPFtBtfq4WVTZUA9mwptgxvpoZT28MeOw= Subject key identifier: B2:6D:CC:E4:2D:A7:78:61:DC:A4:EE:C9:57:1E:87:D4:96:FB:41:D4 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 0172 Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/sm3M5C2neGHcpO7JVx6H1Jb7QdQ.roa Signing time: Wed 24 May 2023 16:33:19 +0000 ROA not before: Wed 24 May 2023 16:33:19 +0000 ROA not after: Tue 14 May 2024 01:30:02 +0000 asID: 9605 IP address blocks: 1.75.212.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 13:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 370 (0x172) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: May 24 16:33:19 2023 GMT Not After : May 14 01:30:02 2024 GMT Subject: CN=B26DCCE42DA77861DCA4EEC9571E87D496FB41D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a0:12:29:17:9c:bd:36:2c:63:eb:55:76:00: 54:46:35:ef:94:4f:88:a0:e8:0f:c5:5a:f6:c8:73: 3a:d4:fa:90:32:7e:2f:58:54:d2:fa:fd:ab:0f:86: 9d:79:f7:a9:80:22:d9:66:ab:7b:10:8b:83:b7:4b: 7b:c2:88:74:30:3f:12:7d:b3:ff:15:f6:0f:eb:0d: 17:58:45:24:59:77:ed:ff:ab:70:cc:6f:fc:7a:a9: b8:ee:30:d8:8a:40:4e:bc:ed:df:02:3d:14:2d:ef: 2a:e1:34:11:80:60:8b:9f:19:2b:9e:3d:5f:ef:8a: 40:30:4c:8e:9e:f8:10:ba:33:a7:ee:0c:48:40:37: 2d:c8:ca:9e:5e:22:c1:a0:bf:51:d5:e0:10:dc:3b: 57:90:23:12:90:56:1b:bc:83:0b:19:f4:d7:f7:78: 0f:d6:4e:83:81:ad:5d:d9:a8:26:32:78:ec:33:ae: 7b:cb:69:fa:82:62:d2:37:40:1a:b8:d0:03:50:c0: ca:d7:a8:a2:05:50:91:47:8a:20:34:cc:df:51:43: 0a:4b:c3:90:bc:19:c0:f9:db:7b:bd:d7:73:07:fa: 07:5e:4a:ef:cf:cd:3c:e4:af:b3:aa:61:bb:10:94: eb:25:39:45:b2:6b:af:4d:95:ad:71:24:d1:31:61: 02:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:6D:CC:E4:2D:A7:78:61:DC:A4:EE:C9:57:1E:87:D4:96:FB:41:D4 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/sm3M5C2neGHcpO7JVx6H1Jb7QdQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.75.212.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:aa:aa:75:e2:22:e3:12:41:70:8f:7c:51:3c:62:ed:94:dd: 2d:b1:da:db:ed:20:16:aa:e9:93:fd:53:36:3b:ad:e7:22:8d: 4d:02:4e:ee:b2:cd:da:c9:86:62:63:c6:95:88:68:17:27:ba: 32:8b:09:ae:a7:87:cb:89:68:92:98:a3:f6:fe:03:e7:41:84: 26:55:e5:11:67:52:b0:19:83:f3:d2:de:4c:d4:27:d8:dc:98: a4:fc:ac:29:4d:05:ed:e1:27:2d:9e:89:a3:0d:14:45:13:bc: 1a:65:d6:3b:5f:34:f7:31:bc:ac:15:50:79:84:77:c2:5d:62: 04:5a:d6:ea:99:89:36:6b:7d:e9:5c:00:e7:4a:76:6f:63:dd: 57:28:a5:ad:26:bc:34:17:33:65:b1:1a:86:1e:a1:9f:fb:77: fd:b5:cd:d0:dd:39:a5:11:fd:e0:00:23:1f:07:66:10:a1:a6: a7:4e:8d:50:5a:eb:67:f7:d6:cd:81:be:a4:ad:0c:aa:b0:eb: 7c:14:0b:d0:48:16:47:04:5c:0d:d1:cc:04:ff:3d:6a:92:db: 2b:39:96:1b:a7:d5:6e:5b:c4:6e:0d:32:d6:e5:21:a7:d4:80: 4b:e7:67:49:69:f8:6e:4a:32:3b:5d:4f:87:e4:7c:64:5a:1b: 62:97:26:11 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAXIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MjQx NjMzMTlaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKEIyNkRDQ0U0MkRBNzc4 NjFEQ0E0RUVDOTU3MUU4N0Q0OTZGQjQxRDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAoBIpF5y9Nixj61V2AFRGNe+UT4ig6A/FWvbIczrU+pAyfi9Y VNL6/asPhp1596mAItlmq3sQi4O3S3vCiHQwPxJ9s/8V9g/rDRdYRSRZd+3/q3DM b/x6qbjuMNiKQE687d8CPRQt7yrhNBGAYIufGSuePV/vikAwTI6e+BC6M6fuDEhA Ny3Iyp5eIsGgv1HV4BDcO1eQIxKQVhu8gwsZ9Nf3eA/WToOBrV3ZqCYyeOwzrnvL afqCYtI3QBq40ANQwMrXqKIFUJFHiiA0zN9RQwpLw5C8GcD523u913MH+gdeSu/P zTzkr7OqYbsQlOslOUWya69Nla1xJNExYQIxAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUsm3M5C2neGHcpO7JVx6H1Jb7QdQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L3NtM001QzJuZUdIY3BPN0pWeDZIMUpiN1FkUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEBS9QwDQYJKoZIhvcNAQELBQADggEBACuqqnXiIuMSQXCPfFE8Yu2U3S2x 2tvtIBaq6ZP9UzY7recijU0CTu6yzdrJhmJjxpWIaBcnujKLCa6nh8uJaJKYo/b+ A+dBhCZV5RFnUrAZg/PS3kzUJ9jcmKT8rClNBe3hJy2eiaMNFEUTvBpl1jtfNPcx vKwVUHmEd8JdYgRa1uqZiTZrfelcAOdKdm9j3Vcopa0mvDQXM2WxGoYeoZ/7d/21 zdDdOaUR/eAAIx8HZhChpqdOjVBa62f31s2BvqStDKqw63wUC9BIFkcEXA3RzAT/ PWqS2ys5lhun1W5bxG4NMtblIafUgEvnZ0lp+G5KMjtdT4fkfGRaG2KXJhE= -----END CERTIFICATE-----Generated at Sat Apr 27 10:15:58 2024 by rpki-client on console-ams.rpki-client.org