$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/469/H0pnuPXiPAB8ZQTIpXKmdvwqxnc.roa File: H0pnuPXiPAB8ZQTIpXKmdvwqxnc.roa (raw, json) Hash identifier: 0gTMAx1YxzyLxJs5jJWMSFle6KCnBT+cJ9FAQ8dqzY8= Subject key identifier: 1F:4A:67:B8:F5:E2:3C:00:7C:65:04:C8:A5:72:A6:76:FC:2A:C6:77 Certificate issuer: /CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Certificate serial: FA Authority key identifier: 40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/H0pnuPXiPAB8ZQTIpXKmdvwqxnc.roa Signing time: Fri 01 Dec 2023 01:29:47 +0000 ROA not before: Fri 01 Dec 2023 01:29:47 +0000 ROA not after: Thu 14 Nov 2024 01:30:03 +0000 asID: 8220 IP address blocks: 202.7.96.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 May 2024 00:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 250 (0xfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Validity Not Before: Dec 1 01:29:47 2023 GMT Not After : Nov 14 01:30:03 2024 GMT Subject: CN=1F4A67B8F5E23C007C6504C8A572A676FC2AC677 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:0b:1b:5d:42:64:69:ec:75:75:d8:ed:7a:0d: 04:98:7e:b8:ac:f8:3d:62:6e:82:77:a3:bf:a2:98: 0e:b4:dd:8d:b1:ae:00:2a:a8:f9:4b:82:d7:7a:5e: 1b:6f:81:44:82:f1:b3:34:c4:95:11:f5:72:58:0e: cc:6b:d6:4e:57:0f:f1:c9:94:65:b7:b8:2c:e6:de: ce:e3:a9:d2:be:92:1c:46:b9:ee:fb:72:65:5e:6f: 2d:e3:04:31:9f:46:50:7e:88:3a:a5:24:94:a1:42: d1:8d:e0:85:1a:e2:1d:93:16:fb:56:9b:fb:0e:b2: 3f:a1:a2:18:29:f1:6f:ed:10:73:72:c2:08:f6:55: ae:f4:5e:03:e7:c5:21:d7:e5:46:f0:30:d6:9c:68: b5:ae:45:9c:bd:05:7c:6e:f6:09:1a:05:f0:06:a8: 18:9d:e8:3e:a4:bc:47:e9:a2:4c:c6:58:32:db:a1: d2:4d:1b:8f:4c:ca:55:a8:89:be:49:ca:65:f5:54: 21:a5:7f:9a:a4:8a:a2:22:d8:b9:bc:34:c7:79:b2: 8e:fe:d8:98:05:40:c7:36:88:ac:e0:6d:06:c5:ea: 3e:66:5a:47:e6:3b:ad:80:8c:70:a1:02:e5:b8:7f: 20:8e:67:56:da:b7:09:c5:ed:65:d5:a9:72:77:d6: 0a:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:4A:67:B8:F5:E2:3C:00:7C:65:04:C8:A5:72:A6:76:FC:2A:C6:77 X509v3 Authority Key Identifier: keyid:40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/H0pnuPXiPAB8ZQTIpXKmdvwqxnc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.7.96.0/20 Signature Algorithm: sha256WithRSAEncryption c5:c0:44:6f:2b:e9:d4:cf:9b:66:bf:bb:0f:ca:8b:71:6f:7a: cf:28:65:f2:f1:05:fa:50:76:28:93:f2:92:19:f0:95:41:89: 33:bb:fe:6f:d2:7f:42:3b:3f:8a:90:aa:6c:05:c8:fc:70:98: 65:f6:fc:d6:cf:f1:ce:f7:d8:5f:14:78:93:7b:f7:8b:c4:a6: 3e:0a:59:a2:d5:98:64:8d:ff:cd:99:b2:fd:ac:64:3f:b6:2b: b8:6b:80:88:23:9d:6a:2c:2f:64:7d:f4:1b:b0:b4:23:51:19: 8e:8f:4b:9a:4e:f5:85:97:ac:f8:c7:3d:2c:10:0a:5b:2f:a6: 70:91:22:4c:fa:88:79:a1:87:38:de:b5:69:ea:f3:14:ee:b2: d1:d7:90:3e:65:80:fe:18:45:b6:56:73:f9:7c:2a:46:42:a0: cc:66:82:18:63:8b:2d:cd:48:40:31:53:d7:9e:76:97:19:ed: 77:4a:43:f6:72:d1:ec:96:f8:b6:23:b2:ba:4d:fd:95:fe:3e: 00:47:7f:1b:f2:d0:37:0d:0c:07:3a:4f:c7:d5:b8:e7:1d:ce: 4d:98:86:76:02:ce:79:4d:f8:0e:80:5b:0e:c0:b0:a6:fd:2b: aa:64:63:d7:57:8e:db:0b:fc:50:af:4e:a6:1b:28:b0:69:be: e4:c9:a0:b2 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAPowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDA2 MTBEQTY4RTkzRUQ1MzhBNDhBNDZDNTIxNDAyNEVENTREMDdGNjAeFw0yMzEyMDEw MTI5NDdaFw0yNDExMTQwMTMwMDNaMDMxMTAvBgNVBAMTKDFGNEE2N0I4RjVFMjND MDA3QzY1MDRDOEE1NzJBNjc2RkMyQUM2NzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDwCxtdQmRp7HV12O16DQSYfris+D1iboJ3o7+imA603Y2xrgAq qPlLgtd6XhtvgUSC8bM0xJUR9XJYDsxr1k5XD/HJlGW3uCzm3s7jqdK+khxGue77 cmVeby3jBDGfRlB+iDqlJJShQtGN4IUa4h2TFvtWm/sOsj+hohgp8W/tEHNywgj2 Va70XgPnxSHX5UbwMNacaLWuRZy9BXxu9gkaBfAGqBid6D6kvEfpokzGWDLbodJN G49MylWoib5JymX1VCGlf5qkiqIi2Lm8NMd5so7+2JgFQMc2iKzgbQbF6j5mWkfm O62AjHChAuW4fyCOZ1batwnF7WXVqXJ31gqDAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUH0pnuPXiPAB8ZQTIpXKmdvwqxncwHwYDVR0jBBgwFoAUQGENpo6T7VOKSKRs UhQCTtVNB/YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQ2OS9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0Vk5CX1kuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0 Vk5CX1kuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNDY5L0gwcG51UFhpUEFCOFpRVElwWEttZHZ3cXhuYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATKB2AwDQYJKoZIhvcNAQELBQADggEBAMXARG8r6dTPm2a/uw/Ki3Fves8o ZfLxBfpQdiiT8pIZ8JVBiTO7/m/Sf0I7P4qQqmwFyPxwmGX2/NbP8c732F8UeJN7 94vEpj4KWaLVmGSN/82Zsv2sZD+2K7hrgIgjnWosL2R99BuwtCNRGY6PS5pO9YWX rPjHPSwQClsvpnCRIkz6iHmhhzjetWnq8xTustHXkD5lgP4YRbZWc/l8KkZCoMxm ghhjiy3NSEAxU9eedpcZ7XdKQ/Zy0eyW+LYjsrpN/ZX+PgBHfxvy0DcNDAc6T8fV uOcdzk2YhnYCznlN+A6AWw7AsKb9K6pkY9dXjtsL/FCvTqYbKLBpvuTJoLI= -----END CERTIFICATE-----Generated at Thu May 23 02:34:23 2024 by rpki-client on console-fra.rpki-client.org