$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/373/DXfhHieLvMVzlfyxe9MHa1WIT3w.roa File: DXfhHieLvMVzlfyxe9MHa1WIT3w.roa (raw, json) Hash identifier: YTY4NOFxfqQxbleJcjViM9jMZlhq90Zm/4evuELHzRQ= Subject key identifier: 0D:77:E1:1E:27:8B:BC:C5:73:95:FC:B1:7B:D3:07:6B:55:88:4F:7C Certificate issuer: /CN=89CF5C2AFA5B576577351C4199018D44CDC2D6DA Certificate serial: 18 Authority key identifier: 89:CF:5C:2A:FA:5B:57:65:77:35:1C:41:99:01:8D:44:CD:C2:D6:DA Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ic9cKvpbV2V3NRxBmQGNRM3C1to.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/373/DXfhHieLvMVzlfyxe9MHa1WIT3w.roa Signing time: Fri 11 Aug 2023 07:39:14 +0000 ROA not before: Fri 11 Aug 2023 07:39:14 +0000 ROA not after: Sun 14 Jul 2024 01:30:03 +0000 asID: 9615 IP address blocks: 153.125.0.0/17 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/373/ic9cKvpbV2V3NRxBmQGNRM3C1to.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/373/ic9cKvpbV2V3NRxBmQGNRM3C1to.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ic9cKvpbV2V3NRxBmQGNRM3C1to.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89CF5C2AFA5B576577351C4199018D44CDC2D6DA Validity Not Before: Aug 11 07:39:14 2023 GMT Not After : Jul 14 01:30:03 2024 GMT Subject: CN=0D77E11E278BBCC57395FCB17BD3076B55884F7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c6:9e:88:b8:47:07:fe:8b:4e:df:cb:db:78: 00:49:47:08:48:c5:13:9b:22:49:0a:47:bd:60:04: dd:8f:d1:14:a8:fe:94:35:86:d0:6f:d7:28:17:dc: ce:d3:d4:0f:36:b1:48:8f:52:94:8e:d0:9d:94:d9: d2:39:5d:3a:1f:1c:43:aa:2f:ce:78:9b:b9:2d:63: 12:55:f8:81:5b:95:dd:7d:d1:db:c6:c1:25:a9:63: b8:a2:41:e5:6e:40:6b:1b:82:7d:2b:f5:4b:b7:32: 60:cc:a8:b4:ad:cf:fc:a0:e7:f4:ce:6a:a2:5c:61: a8:f2:ac:7f:49:b4:f9:cb:51:f9:62:14:cf:36:e1: ee:3c:8b:7f:db:4d:d9:b1:39:98:52:5a:d9:4f:cf: 29:05:01:bc:45:89:82:77:21:13:06:95:0d:74:e0: 77:34:7d:a6:0b:42:a4:0b:ee:fa:b3:de:43:19:c9: 77:26:6e:ba:0f:9d:50:66:86:fc:60:72:08:9b:62: 52:56:e9:72:5d:93:21:d3:b6:11:39:76:db:df:14: 3b:4e:53:c4:f9:ef:fc:9b:c2:20:0d:7f:cb:19:06: d7:5d:a4:b8:6d:cd:d0:f6:7b:a3:77:6e:46:1f:28: df:29:bc:85:07:0a:c7:76:88:bf:e8:b7:a3:7d:a8: 23:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:77:E1:1E:27:8B:BC:C5:73:95:FC:B1:7B:D3:07:6B:55:88:4F:7C X509v3 Authority Key Identifier: keyid:89:CF:5C:2A:FA:5B:57:65:77:35:1C:41:99:01:8D:44:CD:C2:D6:DA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/373/ic9cKvpbV2V3NRxBmQGNRM3C1to.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ic9cKvpbV2V3NRxBmQGNRM3C1to.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/373/DXfhHieLvMVzlfyxe9MHa1WIT3w.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 153.125.0.0/17 Signature Algorithm: sha256WithRSAEncryption 16:55:70:d5:da:c6:78:5b:b3:ec:e5:2a:40:06:14:31:54:90: 5d:a8:1c:11:26:60:c4:f6:d1:3f:66:0c:7b:ac:47:b7:99:86: a4:20:c9:f2:52:9a:89:a7:47:90:f7:9e:f3:86:a3:84:ab:24: a1:6e:3f:12:17:b6:a6:c6:20:0d:ab:96:f9:cc:6c:e6:ab:a1: 8b:e2:eb:7c:7e:31:0b:dc:7a:78:6c:df:54:ce:20:b1:b6:fe: e0:de:fa:6d:77:d2:df:6e:50:76:f4:5a:a9:b0:b4:cd:f4:00: a1:67:8e:18:4f:01:75:70:43:56:e0:cc:8e:23:eb:16:c4:f0: c2:00:1f:12:90:40:7c:3c:d1:af:fe:05:fe:5e:71:56:68:78: d9:64:83:7b:6a:36:06:f3:89:8c:be:9e:c1:97:c6:a0:bb:0f: 03:91:e2:42:fd:31:fa:c3:a5:68:3b:93:7c:96:45:3d:21:52: 70:4f:3c:0e:55:62:e0:d1:48:5a:a9:c2:6f:7b:e3:c4:6d:81: 70:32:77:e3:f9:89:6e:b6:25:c8:56:10:f5:12:7e:60:d3:85: bb:74:fe:5e:28:4e:07:ff:41:90:b6:10:1c:4d:93:29:51:01: 19:b5:28:3a:97:bc:46:83:80:5c:15:54:53:88:1d:48:e3:73: 21:87:7e:f6 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBGDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4OUNG NUMyQUZBNUI1NzY1NzczNTFDNDE5OTAxOEQ0NENEQzJENkRBMB4XDTIzMDgxMTA3 MzkxNFoXDTI0MDcxNDAxMzAwM1owMzExMC8GA1UEAxMoMEQ3N0UxMUUyNzhCQkND NTczOTVGQ0IxN0JEMzA3NkI1NTg4NEY3QzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKvGnoi4Rwf+i07fy9t4AElHCEjFE5siSQpHvWAE3Y/RFKj+lDWG 0G/XKBfcztPUDzaxSI9SlI7QnZTZ0jldOh8cQ6ovznibuS1jElX4gVuV3X3R28bB JaljuKJB5W5AaxuCfSv1S7cyYMyotK3P/KDn9M5qolxhqPKsf0m0+ctR+WIUzzbh 7jyLf9tN2bE5mFJa2U/PKQUBvEWJgnchEwaVDXTgdzR9pgtCpAvu+rPeQxnJdyZu ug+dUGaG/GByCJtiUlbpcl2TIdO2ETl2298UO05TxPnv/JvCIA1/yxkG112kuG3N 0PZ7o3duRh8o3ym8hQcKx3aIv+i3o32oI10CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQNd+EeJ4u8xXOV/LF70wdrVYhPfDAfBgNVHSMEGDAWgBSJz1wq+ltXZXc1HEGZ AY1EzcLW2jAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzczL2ljOWNLdnBiVjJWM05SeEJtUUdOUk0zQzF0by5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2ljOWNLdnBiVjJWM05SeEJtUUdOUk0z QzF0by5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8zNzMvRFhmaEhpZUx2TVZ6bGZ5eGU5TUhhMVdJVDN3LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEB5l9ADANBgkqhkiG9w0BAQsFAAOCAQEAFlVw1drGeFuz7OUqQAYUMVSQXagc ESZgxPbRP2YMe6xHt5mGpCDJ8lKaiadHkPee84ajhKskoW4/Ehe2psYgDauW+cxs 5quhi+LrfH4xC9x6eGzfVM4gsbb+4N76bXfS325QdvRaqbC0zfQAoWeOGE8BdXBD VuDMjiPrFsTwwgAfEpBAfDzRr/4F/l5xVmh42WSDe2o2BvOJjL6ewZfGoLsPA5Hi Qv0x+sOlaDuTfJZFPSFScE88DlVi4NFIWqnCb3vjxG2BcDJ34/mJbrYlyFYQ9RJ+ YNOFu3T+XihOB/9BkLYQHE2TKVEBGbUoOpe8RoOAXBVUU4gdSONzIYd+9g== -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:49 2024 by rpki-client on console-fra.rpki-client.org