$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/469/5DA7P_HJCjRim2eUihLHVS6Aw40.roa File: 5DA7P_HJCjRim2eUihLHVS6Aw40.roa (raw, json) Hash identifier: 9tC4wd5QDoUDpjg2t1jTj4MegIrmNc1nWzEZ3XysLUY= Subject key identifier: E4:30:3B:3F:F1:C9:0A:34:62:9B:67:94:8A:12:C7:55:2E:80:C3:8D Certificate issuer: /CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Certificate serial: E2 Authority key identifier: 40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/5DA7P_HJCjRim2eUihLHVS6Aw40.roa Signing time: Sun 01 Oct 2023 01:28:55 +0000 ROA not before: Sun 01 Oct 2023 01:28:55 +0000 ROA not after: Sat 14 Sep 2024 01:30:03 +0000 asID: 10021 IP address blocks: 202.95.220.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 226 (0xe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Validity Not Before: Oct 1 01:28:55 2023 GMT Not After : Sep 14 01:30:03 2024 GMT Subject: CN=E4303B3FF1C90A34629B67948A12C7552E80C38D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:3b:c0:48:3c:8d:13:08:ce:3f:db:eb:20:ff: 46:52:8f:85:4b:71:98:bc:4d:8c:1d:36:d4:9c:b6: d9:bd:d0:98:52:68:ed:77:3d:6b:d5:08:f1:c7:b3: 20:99:18:f2:56:4d:43:9c:28:d5:b6:50:2f:21:aa: 90:dd:1a:5b:58:c5:cd:99:cb:ac:55:f7:a3:b9:eb: d5:9d:01:43:32:26:ef:e5:a2:2c:51:1f:9f:34:b1: fb:16:31:a7:3b:68:33:c5:59:64:dc:bf:6a:99:35: 10:ad:b4:9d:a8:8e:91:49:9a:68:80:ca:f6:f6:dc: 2d:46:8d:01:54:21:7c:db:a1:01:cf:ab:50:27:47: 22:29:71:29:c3:4b:ed:7d:35:94:d0:79:af:dd:88: 25:b2:83:5b:7d:6f:71:c7:27:47:e5:50:23:4a:5d: 94:ab:9b:67:72:01:81:01:a2:fc:5b:16:40:2b:42: c7:21:2b:5d:07:dd:0a:bb:f4:78:52:70:05:1b:43: b9:86:3d:f5:a0:4c:44:09:59:9b:42:1d:97:b1:93: ee:01:20:e0:f3:27:af:e9:79:52:7a:86:3c:95:07: 90:53:73:c6:3d:c9:8b:3c:38:f8:f3:e7:9f:52:0f: 1e:02:0b:f5:f3:97:54:79:35:af:92:9d:b6:e0:97: 85:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:30:3B:3F:F1:C9:0A:34:62:9B:67:94:8A:12:C7:55:2E:80:C3:8D X509v3 Authority Key Identifier: keyid:40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/5DA7P_HJCjRim2eUihLHVS6Aw40.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.95.220.0/22 Signature Algorithm: sha256WithRSAEncryption 04:e9:51:4b:68:c4:cb:86:90:b3:f6:51:c8:cb:4a:18:2b:d2: 95:1e:4e:34:6b:1a:f0:9b:5d:9a:a3:35:3e:55:18:b5:53:b5: 91:a7:32:85:4c:0d:5b:50:73:8b:71:1c:bc:57:b2:12:60:06: 83:40:95:e3:97:ea:dc:59:84:ec:1a:54:4c:9d:d0:75:f6:fd: 90:91:05:b2:c7:c9:23:19:3e:ab:eb:fe:04:63:28:cd:f2:a6: 15:28:6b:0c:7e:56:26:e3:38:89:01:63:8a:39:e1:01:3e:e0: f4:60:e4:e3:55:f7:41:e3:4d:54:f2:42:10:47:b4:28:14:00: 56:1c:f4:9d:5a:58:a1:1b:b8:95:91:83:48:a4:ca:24:11:84: 69:32:26:95:51:cd:8d:3d:81:61:b7:72:6e:a6:43:20:56:79: f2:80:a2:d2:e4:36:7d:ae:8f:2c:3f:33:e4:5d:95:a2:ae:32: 9c:4e:a9:62:53:83:d1:5c:ce:39:55:81:a9:3a:13:57:37:d9: 95:51:bd:bf:12:7b:e3:b7:d1:e2:12:7b:5b:d5:5c:3f:95:79: 63:ec:9e:c7:aa:1b:02:7a:23:84:89:ac:87:88:0a:a6:d4:0f: 43:cb:12:a7:d9:08:21:8f:64:28:b5:3d:cb:5d:d2:04:07:92: 0d:33:62:42 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAOIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDA2 MTBEQTY4RTkzRUQ1MzhBNDhBNDZDNTIxNDAyNEVENTREMDdGNjAeFw0yMzEwMDEw MTI4NTVaFw0yNDA5MTQwMTMwMDNaMDMxMTAvBgNVBAMTKEU0MzAzQjNGRjFDOTBB MzQ2MjlCNjc5NDhBMTJDNzU1MkU4MEMzOEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2O8BIPI0TCM4/2+sg/0ZSj4VLcZi8TYwdNtScttm90JhSaO13 PWvVCPHHsyCZGPJWTUOcKNW2UC8hqpDdGltYxc2Zy6xV96O569WdAUMyJu/loixR H580sfsWMac7aDPFWWTcv2qZNRCttJ2ojpFJmmiAyvb23C1GjQFUIXzboQHPq1An RyIpcSnDS+19NZTQea/diCWyg1t9b3HHJ0flUCNKXZSrm2dyAYEBovxbFkArQsch K10H3Qq79HhScAUbQ7mGPfWgTEQJWZtCHZexk+4BIODzJ6/peVJ6hjyVB5BTc8Y9 yYs8OPjz559SDx4CC/Xzl1R5Na+Snbbgl4WJAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU5DA7P/HJCjRim2eUihLHVS6Aw40wHwYDVR0jBBgwFoAUQGENpo6T7VOKSKRs UhQCTtVNB/YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQ2OS9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0Vk5CX1kuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0 Vk5CX1kuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNDY5LzVEQTdQX0hKQ2pSaW0yZVVpaExIVlM2QXc0MC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALKX9wwDQYJKoZIhvcNAQELBQADggEBAATpUUtoxMuGkLP2UcjLShgr0pUe TjRrGvCbXZqjNT5VGLVTtZGnMoVMDVtQc4txHLxXshJgBoNAleOX6txZhOwaVEyd 0HX2/ZCRBbLHySMZPqvr/gRjKM3yphUoawx+VibjOIkBY4o54QE+4PRg5ONV90Hj TVTyQhBHtCgUAFYc9J1aWKEbuJWRg0ikyiQRhGkyJpVRzY09gWG3cm6mQyBWefKA otLkNn2ujyw/M+RdlaKuMpxOqWJTg9FczjlVgak6E1c32ZVRvb8Se+O30eISe1vV XD+VeWPsnseqGwJ6I4SJrIeICqbUD0PLEqfZCCGPZCi1Pctd0gQHkg0zYkI= -----END CERTIFICATE-----Generated at Fri May 31 02:50:30 2024 by rpki-client on console-fra.rpki-client.org