$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/ms9hKXt41nTXoq80cN51PxqU0to.roa File: ms9hKXt41nTXoq80cN51PxqU0to.roa (raw, json) Hash identifier: /TZU0gxcayEpkRNVITK3OnYzslvy4tN+QTvRstepbAU= Subject key identifier: 9A:CF:61:29:7B:78:D6:74:D7:A2:AF:34:70:DE:75:3F:1A:94:D2:DA Certificate issuer: /CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA Certificate serial: 75 Authority key identifier: 04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/ms9hKXt41nTXoq80cN51PxqU0to.roa Signing time: Fri 01 Dec 2023 01:31:57 +0000 ROA not before: Fri 01 Dec 2023 01:31:57 +0000 ROA not after: Thu 14 Nov 2024 01:30:03 +0000 asID: 2527 IP address blocks: 216.153.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Jul 2024 10:51:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA Validity Not Before: Dec 1 01:31:57 2023 GMT Not After : Nov 14 01:30:03 2024 GMT Subject: CN=9ACF61297B78D674D7A2AF3470DE753F1A94D2DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:6d:0e:9a:c5:d8:bf:1f:82:c0:b0:33:8e:70: ee:ff:a7:8a:1d:c3:66:17:c4:42:54:83:2c:85:c9: 2c:26:97:b6:cc:58:00:9c:7b:9a:3c:e2:b7:9b:11: d7:2b:c5:59:82:75:7b:ff:90:2d:d6:e9:5c:a5:09: b1:f9:b4:41:21:e2:42:85:ab:07:e1:21:1b:10:2b: b1:68:85:fc:7a:b1:56:05:08:45:69:64:95:76:9b: 02:5f:60:75:42:0b:e5:32:60:24:65:3c:e2:84:8f: 1a:47:34:4b:28:ae:d9:e7:56:39:69:f1:d7:ea:4f: db:71:e8:e8:45:90:58:e8:ce:37:82:0e:84:8a:fd: e6:e2:bf:3a:78:0d:c2:a2:dc:85:bb:15:0c:32:85: e8:fb:b9:7b:07:de:b4:76:f3:dd:ec:1c:24:34:1f: 20:1f:a4:4b:25:ee:3c:99:1a:c2:31:af:e2:f5:b5: 5a:a3:51:fc:2b:bc:cb:34:6b:9f:6f:4f:5d:1c:1c: f7:08:b2:1a:62:f9:bc:e3:72:30:fe:08:83:15:1f: 22:50:a0:94:cd:a5:e0:0a:c7:5f:5f:b9:66:41:a6: df:1d:b0:11:4a:ac:ae:d8:c4:d0:ef:7a:87:73:e8: 0b:fa:e7:78:9f:6f:c0:14:56:7d:16:cb:89:59:14: 2f:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:CF:61:29:7B:78:D6:74:D7:A2:AF:34:70:DE:75:3F:1A:94:D2:DA X509v3 Authority Key Identifier: keyid:04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/ms9hKXt41nTXoq80cN51PxqU0to.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 216.153.64.0/18 Signature Algorithm: sha256WithRSAEncryption 97:c4:b4:8f:f6:8c:b7:69:04:08:16:89:40:13:1f:6d:d3:75: dc:02:1f:0e:9d:64:3e:70:4c:27:4d:b6:50:20:79:5f:9d:0d: 05:65:47:48:3a:ab:6b:38:34:3c:6b:23:1b:30:1c:b2:28:a3: 1d:fc:fb:8b:51:e0:db:ed:b2:18:85:27:bb:1f:5b:82:9e:7e: 95:69:de:bb:7b:96:6a:98:2e:d3:bb:c0:d1:87:76:f4:d2:16: 21:0e:48:c9:12:bb:91:39:96:61:f5:27:ab:8e:e3:c9:24:3d: f2:5e:0f:c8:33:c8:f8:eb:26:a3:36:ce:a9:45:96:90:5c:96: 23:53:6c:cb:8f:1e:44:2b:4b:4e:7a:35:4d:65:f1:f6:12:1b: 29:f8:99:2e:ed:ff:8a:ef:41:7d:6d:b5:0c:63:f3:0f:8c:ea: 2f:c8:ca:fc:44:a9:b2:f0:1c:27:d8:5e:2d:4b:ed:97:c9:48: 2d:e1:a8:fd:00:42:81:20:5d:c6:02:4c:48:c7:3e:74:32:9f: 96:1b:16:f6:45:a1:b8:79:62:77:6a:52:aa:58:ae:87:7c:a8: bb:71:38:09:dd:35:76:03:c5:e5:5d:1a:60:f2:53:a8:9b:b4: b1:b3:3e:89:e2:08:1c:13:c8:f7:d2:db:ef:73:4e:bd:7a:96: cd:4c:cd:b0 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBdTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwNENB N0YzNUFGMUE4RjUyNTc1QTlGRUZGRjIxQzRBNDcwODBEREZBMB4XDTIzMTIwMTAx MzE1N1oXDTI0MTExNDAxMzAwM1owMzExMC8GA1UEAxMoOUFDRjYxMjk3Qjc4RDY3 NEQ3QTJBRjM0NzBERTc1M0YxQTk0RDJEQTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMRtDprF2L8fgsCwM45w7v+nih3DZhfEQlSDLIXJLCaXtsxYAJx7 mjzit5sR1yvFWYJ1e/+QLdbpXKUJsfm0QSHiQoWrB+EhGxArsWiF/HqxVgUIRWlk lXabAl9gdUIL5TJgJGU84oSPGkc0Syiu2edWOWnx1+pP23Ho6EWQWOjON4IOhIr9 5uK/OngNwqLchbsVDDKF6Pu5ewfetHbz3ewcJDQfIB+kSyXuPJkawjGv4vW1WqNR /Cu8yzRrn29PXRwc9wiyGmL5vONyMP4IgxUfIlCglM2l4ArHX1+5ZkGm3x2wEUqs rtjE0O96h3PoC/rneJ9vwBRWfRbLiVkULz8CAwEAAaOCAiIwggIeMB0GA1UdDgQW BBSaz2Epe3jWdNeirzRw3nU/GpTS2jAfBgNVHSMEGDAWgBQEyn81rxqPUldan+// IcSkcIDd+jAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDMvQk1wX05hOGFqMUpYV3Bfdl95SEVwSENBM2ZvLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvQk1wX05hOGFqMUpYV3Bfdl95SEVwSENB M2ZvLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzQzL21zOWhLWHQ0MW5UWG9xODBjTjUxUHhxVTB0by5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAbYmUAwDQYJKoZIhvcNAQELBQADggEBAJfEtI/2jLdpBAgWiUATH23TddwCHw6d ZD5wTCdNtlAgeV+dDQVlR0g6q2s4NDxrIxswHLIoox38+4tR4NvtshiFJ7sfW4Ke fpVp3rt7lmqYLtO7wNGHdvTSFiEOSMkSu5E5lmH1J6uO48kkPfJeD8gzyPjrJqM2 zqlFlpBcliNTbMuPHkQrS056NU1l8fYSGyn4mS7t/4rvQX1ttQxj8w+M6i/IyvxE qbLwHCfYXi1L7ZfJSC3hqP0AQoEgXcYCTEjHPnQyn5YbFvZFobh5YndqUqpYrod8 qLtxOAndNXYDxeVdGmDyU6ibtLGzPoniCBwTyPfS2+9zTr16ls1MzbA= -----END CERTIFICATE-----Generated at Fri Jun 28 04:55:52 2024 by rpki-client on console-fra.rpki-client.org