$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/454/OKiR1oOt6GnzcD-vDE25pLnKXC0.roa File: OKiR1oOt6GnzcD-vDE25pLnKXC0.roa (raw, json) Hash identifier: RMgzY24bB2DtKhKLkJPOjgV9eA9sO9xqo1spuM7TDXs= Subject key identifier: 38:A8:91:D6:83:AD:E8:69:F3:70:3F:AF:0C:4D:B9:A4:B9:CA:5C:2D Certificate issuer: /CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0 Certificate serial: 2D Authority key identifier: AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/OKiR1oOt6GnzcD-vDE25pLnKXC0.roa Signing time: Fri 29 Sep 2023 06:36:56 +0000 ROA not before: Fri 29 Sep 2023 06:36:56 +0000 ROA not after: Sat 14 Sep 2024 01:30:03 +0000 asID: 10000 IP address blocks: 203.217.156.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 16 Jun 2024 02:07:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0 Validity Not Before: Sep 29 06:36:56 2023 GMT Not After : Sep 14 01:30:03 2024 GMT Subject: CN=38A891D683ADE869F3703FAF0C4DB9A4B9CA5C2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:5b:55:36:89:fb:76:c5:da:44:ef:1a:da:98: bd:4c:a4:f9:57:7e:5f:b5:76:18:99:35:83:f5:fc: ae:b5:97:28:5d:fa:b4:09:97:34:5a:fb:61:e3:4b: e1:aa:69:a8:9e:e3:99:fd:a8:87:eb:69:bd:6a:b0: 8a:13:f7:db:1f:82:c8:90:f5:5a:1f:21:5f:bd:5f: 5a:37:07:44:80:ce:54:39:f5:b4:1a:07:ff:d0:18: 12:39:ab:9d:cb:e8:cd:e9:6c:9a:f0:78:da:03:3f: 15:2a:ac:f1:42:bb:14:eb:58:4f:50:ea:f9:b8:68: 26:a0:6c:d2:70:50:04:6b:1a:17:24:4e:35:5b:85: 0d:27:1a:ec:7e:33:b0:a8:fd:9d:ee:df:c9:22:a9: 46:bf:dc:2e:f1:27:cc:c7:b6:5b:ca:5e:a6:8d:b4: ef:8b:38:b8:a5:49:f7:ce:d8:2d:d5:ab:6f:83:e7: d7:aa:98:f8:dd:33:d3:e8:a8:e0:c5:d0:fe:b1:be: b2:ec:f1:fd:d4:74:32:b8:5e:da:c1:fd:52:08:fe: 5f:bc:0f:bd:09:ae:e5:ec:34:fd:05:5e:08:88:ae: 1b:8b:5a:d0:03:f0:2b:16:c4:4e:64:79:a8:81:f2: 70:c6:ec:16:60:9e:43:71:91:d0:92:b6:66:e9:e5: 38:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:A8:91:D6:83:AD:E8:69:F3:70:3F:AF:0C:4D:B9:A4:B9:CA:5C:2D X509v3 Authority Key Identifier: keyid:AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/OKiR1oOt6GnzcD-vDE25pLnKXC0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.217.156.0/22 Signature Algorithm: sha256WithRSAEncryption ad:44:13:33:c2:af:b3:2e:66:50:ab:9a:5d:cf:f8:6e:b8:2a: eb:9c:a9:e8:66:82:dc:15:f2:4f:5b:f0:88:28:99:01:42:8b: 74:19:62:c9:0f:7c:2d:11:ca:15:6d:2e:fc:91:82:a3:60:20: 77:e6:b3:7f:ed:91:df:ef:6f:a0:cf:00:08:38:4c:cf:3e:ac: c7:60:56:f2:41:e4:dc:95:0b:42:5e:47:d0:72:92:9a:79:f2: a0:17:ed:9d:ab:8c:66:3f:59:33:b1:6d:e9:65:d7:d8:ff:d2: c7:b1:43:f6:0c:9d:8e:13:9e:c4:96:c3:55:d8:39:77:53:ab: 4d:53:e7:16:c1:0c:40:57:a1:e5:77:be:f5:3c:40:f5:62:77: 8f:ca:97:ff:54:77:c8:4e:13:7e:41:6e:b7:3f:45:be:f0:56: fc:ce:e3:c7:3d:a3:21:3a:80:b5:34:44:5c:8f:44:7d:4f:2e: a9:e7:eb:3a:e5:5e:81:23:72:a4:12:90:dc:96:0e:ba:87:f0: 8a:4c:79:44:3d:9f:57:38:4a:d3:0f:7e:b8:fd:ab:b3:57:84: 51:c2:f4:65:5c:fa:69:83:5b:94:b0:f8:48:23:c1:07:ca:bb: 69:e5:c8:b1:7b:da:85:3c:ed:2c:fd:ef:ba:e4:08:c8:89:a2: e2:33:2a:65 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBLTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBRDQ3 NDFGMDM0OUZCQzE1QTcwOEUyOEEyQ0UzMDc5MDZDQUM1REUwMB4XDTIzMDkyOTA2 MzY1NloXDTI0MDkxNDAxMzAwM1owMzExMC8GA1UEAxMoMzhBODkxRDY4M0FERTg2 OUYzNzAzRkFGMEM0REI5QTRCOUNBNUMyRDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANNbVTaJ+3bF2kTvGtqYvUyk+Vd+X7V2GJk1g/X8rrWXKF36tAmX NFr7YeNL4appqJ7jmf2oh+tpvWqwihP32x+CyJD1Wh8hX71fWjcHRIDOVDn1tBoH /9AYEjmrncvozelsmvB42gM/FSqs8UK7FOtYT1Dq+bhoJqBs0nBQBGsaFyRONVuF DSca7H4zsKj9ne7fySKpRr/cLvEnzMe2W8pepo2074s4uKVJ987YLdWrb4Pn16qY +N0z0+io4MXQ/rG+suzx/dR0Mrhe2sH9Ugj+X7wPvQmu5ew0/QVeCIiuG4ta0APw KxbETmR5qIHycMbsFmCeQ3GR0JK2ZunlOGsCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQ4qJHWg63oafNwP68MTbmkucpcLTAfBgNVHSMEGDAWgBStR0HwNJ+8FacI4oos 4weQbKxd4DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDU0L3JVZEI4RFNmdkJXbkNPS0tMT01Ia0d5c1hlQS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3JVZEI4RFNmdkJXbkNPS0tMT01Ia0d5 c1hlQS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80NTQvT0tpUjFvT3Q2R256Y0QtdkRFMjVwTG5LWEMwLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAsvZnDANBgkqhkiG9w0BAQsFAAOCAQEArUQTM8Kvsy5mUKuaXc/4brgq65yp 6GaC3BXyT1vwiCiZAUKLdBliyQ98LRHKFW0u/JGCo2Agd+azf+2R3+9voM8ACDhM zz6sx2BW8kHk3JULQl5H0HKSmnnyoBftnauMZj9ZM7Ft6WXX2P/Sx7FD9gydjhOe xJbDVdg5d1OrTVPnFsEMQFeh5Xe+9TxA9WJ3j8qX/1R3yE4TfkFutz9FvvBW/M7j xz2jITqAtTREXI9EfU8uqefrOuVegSNypBKQ3JYOuofwikx5RD2fVzhK0w9+uP2r s1eEUcL0ZVz6aYNblLD4SCPBB8q7aeXIsXvahTztLP3vuuQIyImi4jMqZQ== -----END CERTIFICATE-----Generated at Mon Jun 10 09:56:17 2024 by rpki-client on console-ams.rpki-client.org