$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/454/bk5lKN9BP5X7KoGVtRtw_Jl0_Co.roa File: bk5lKN9BP5X7KoGVtRtw_Jl0_Co.roa (raw, json) Hash identifier: OIJm7GAhVLGCcPZiHxh/bteJcw3g+KQch0MqOJj6xjM= Subject key identifier: 6E:4E:65:28:DF:41:3F:95:FB:2A:81:95:B5:1B:70:FC:99:74:FC:2A Certificate issuer: /CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0 Certificate serial: 29 Authority key identifier: AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/bk5lKN9BP5X7KoGVtRtw_Jl0_Co.roa Signing time: Fri 29 Sep 2023 06:36:55 +0000 ROA not before: Fri 29 Sep 2023 06:36:55 +0000 ROA not after: Sat 14 Sep 2024 01:30:03 +0000 asID: 10000 IP address blocks: 202.228.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 16 Jun 2024 02:07:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0 Validity Not Before: Sep 29 06:36:55 2023 GMT Not After : Sep 14 01:30:03 2024 GMT Subject: CN=6E4E6528DF413F95FB2A8195B51B70FC9974FC2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:47:86:8d:bf:1a:14:44:98:e0:0c:fb:22:0e: 9c:10:5a:00:ee:dc:cd:12:52:3d:8b:53:de:33:3f: 49:81:89:7f:2b:0b:ad:0e:4a:8f:5d:62:66:83:6d: 68:87:f5:0b:09:65:ae:22:9c:06:98:6e:4c:29:89: 37:af:19:ec:b2:14:bc:21:e3:b5:90:f9:00:f5:ea: 20:b2:2f:44:c2:71:ba:1b:e6:62:1c:38:0d:e0:0a: 60:3b:2f:56:2e:47:eb:25:75:33:93:2a:6a:e0:32: 09:d7:af:cc:47:9e:c3:4d:c7:f4:33:ee:b2:c7:1b: d8:aa:a1:39:41:b6:92:87:6d:5c:d5:e5:34:7b:5f: 41:6d:34:77:09:37:1f:6e:22:43:55:3c:68:2a:8e: aa:1d:06:d4:95:aa:a9:8b:05:80:08:0d:ac:86:33: ca:57:eb:11:24:eb:04:08:da:83:28:d8:ce:95:af: ff:72:9c:56:e1:88:2f:f1:f2:5d:3f:f3:17:2a:0e: bf:58:63:4d:59:d3:15:a5:83:1a:e3:10:82:29:b5: 0b:26:59:25:67:34:04:85:4c:10:62:dc:75:61:22: c2:0f:e7:96:5d:9a:e9:a7:1a:2c:ad:7d:3c:4a:bb: 4a:b1:5e:57:84:43:8c:91:60:4d:37:6e:df:4b:1e: 9c:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:4E:65:28:DF:41:3F:95:FB:2A:81:95:B5:1B:70:FC:99:74:FC:2A X509v3 Authority Key Identifier: keyid:AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/bk5lKN9BP5X7KoGVtRtw_Jl0_Co.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.228.240.0/20 Signature Algorithm: sha256WithRSAEncryption 55:91:cc:49:b8:43:39:25:41:25:a0:ca:a7:cc:c6:5d:d9:44: e5:cb:b6:90:9d:79:21:d7:83:79:9e:a9:5d:91:af:1f:e1:51: e5:01:66:76:af:3c:bf:00:49:a9:c7:f8:7d:a6:d8:50:f0:f0: f3:05:fd:a9:69:99:81:3c:2d:a9:7a:ec:81:69:dc:ad:1c:83: 80:89:ea:d4:ba:54:c3:d8:d1:2d:3b:f1:2f:9c:9e:dc:91:35: 8d:fe:e8:39:60:07:79:09:6e:36:48:ff:ba:8a:37:c4:87:d3: 03:83:55:e8:6c:77:3e:f6:d4:2a:c1:6d:91:39:23:95:8e:eb: 1d:0c:60:8b:85:72:d6:60:d9:a5:3f:cf:22:8d:24:68:5a:ed: 30:05:2f:f1:c6:f4:ad:12:75:bc:5b:b9:99:d0:eb:75:68:1a: f5:bf:a5:23:a1:22:47:42:a8:5f:5f:db:57:b1:ac:8c:b4:6f: 91:b5:2d:26:ca:2a:0d:d4:be:8c:c8:25:c6:10:48:f0:ec:17: b2:a7:09:90:d6:90:8e:6c:87:b1:21:af:28:ba:17:6f:ff:39: dd:78:53:9e:d6:ec:d7:c9:84:69:85:b1:49:6a:14:c5:0a:40: d4:27:4b:0e:15:0f:94:e4:a4:44:f3:67:51:b7:99:2c:83:2c: b9:50:06:b7 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBKTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBRDQ3 NDFGMDM0OUZCQzE1QTcwOEUyOEEyQ0UzMDc5MDZDQUM1REUwMB4XDTIzMDkyOTA2 MzY1NVoXDTI0MDkxNDAxMzAwM1owMzExMC8GA1UEAxMoNkU0RTY1MjhERjQxM0Y5 NUZCMkE4MTk1QjUxQjcwRkM5OTc0RkMyQTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMpHho2/GhREmOAM+yIOnBBaAO7czRJSPYtT3jM/SYGJfysLrQ5K j11iZoNtaIf1CwllriKcBphuTCmJN68Z7LIUvCHjtZD5APXqILIvRMJxuhvmYhw4 DeAKYDsvVi5H6yV1M5MqauAyCdevzEeew03H9DPusscb2KqhOUG2kodtXNXlNHtf QW00dwk3H24iQ1U8aCqOqh0G1JWqqYsFgAgNrIYzylfrESTrBAjagyjYzpWv/3Kc VuGIL/HyXT/zFyoOv1hjTVnTFaWDGuMQgim1CyZZJWc0BIVMEGLcdWEiwg/nll2a 6acaLK19PEq7SrFeV4RDjJFgTTdu30senIECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRuTmUo30E/lfsqgZW1G3D8mXT8KjAfBgNVHSMEGDAWgBStR0HwNJ+8FacI4oos 4weQbKxd4DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDU0L3JVZEI4RFNmdkJXbkNPS0tMT01Ia0d5c1hlQS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3JVZEI4RFNmdkJXbkNPS0tMT01Ia0d5 c1hlQS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80NTQvYms1bEtOOUJQNVg3S29HVnRSdHdfSmwwX0NvLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBMrk8DANBgkqhkiG9w0BAQsFAAOCAQEAVZHMSbhDOSVBJaDKp8zGXdlE5cu2 kJ15IdeDeZ6pXZGvH+FR5QFmdq88vwBJqcf4fabYUPDw8wX9qWmZgTwtqXrsgWnc rRyDgInq1LpUw9jRLTvxL5ye3JE1jf7oOWAHeQluNkj/uoo3xIfTA4NV6Gx3PvbU KsFtkTkjlY7rHQxgi4Vy1mDZpT/PIo0kaFrtMAUv8cb0rRJ1vFu5mdDrdWga9b+l I6EiR0KoX1/bV7GsjLRvkbUtJsoqDdS+jMglxhBI8OwXsqcJkNaQjmyHsSGvKLoX b/853XhTntbs18mEaYWxSWoUxQpA1CdLDhUPlOSkRPNnUbeZLIMsuVAGtw== -----END CERTIFICATE-----Generated at Mon Jun 10 09:56:17 2024 by rpki-client on console-ams.rpki-client.org