$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/469/a9o_vbqXfgi0VoXcrpaKAwVeYoc.roa File: a9o_vbqXfgi0VoXcrpaKAwVeYoc.roa (raw, json) Hash identifier: dGtDwGrzy+bGH3xhayFOPi5CqqDD2Gx74z024dB/0to= Subject key identifier: 6B:DA:3F:BD:BA:97:7E:08:B4:56:85:DC:AE:96:8A:03:05:5E:62:87 Certificate issuer: /CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Certificate serial: E4 Authority key identifier: 40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/a9o_vbqXfgi0VoXcrpaKAwVeYoc.roa Signing time: Sun 01 Oct 2023 01:28:56 +0000 ROA not before: Sun 01 Oct 2023 01:28:56 +0000 ROA not after: Sat 14 Sep 2024 01:30:03 +0000 asID: 8220 IP address blocks: 202.95.218.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 228 (0xe4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Validity Not Before: Oct 1 01:28:56 2023 GMT Not After : Sep 14 01:30:03 2024 GMT Subject: CN=6BDA3FBDBA977E08B45685DCAE968A03055E6287 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:aa:57:ba:6a:3c:26:ad:9d:3b:34:20:9d:42: b7:9d:b9:62:6b:76:53:17:ae:e8:50:da:87:46:fc: 35:5b:0b:56:81:66:0f:c9:b1:ce:ff:85:31:e9:d6: 34:60:77:cb:cd:64:d7:f0:7e:17:47:dc:bd:d1:01: b7:e9:fa:c2:ce:69:f6:f2:35:2e:07:50:81:96:ab: 84:33:22:85:eb:e1:4f:a9:66:e5:9b:02:6c:a2:d5: 16:f2:71:38:db:16:95:30:55:a7:d9:54:ae:17:ba: 56:6a:50:64:0d:fb:85:9e:0c:7f:53:96:62:0b:d4: 5c:07:a3:d5:6a:70:24:90:bd:18:70:cc:e3:67:7a: 7f:88:2f:4e:03:ae:57:4a:a8:ad:17:6d:b1:59:56: 2c:22:a7:49:d4:ee:3b:de:16:ca:d9:2c:33:c5:a6: 65:8f:52:0d:52:9a:80:53:40:3a:94:89:71:16:f8: 92:9a:08:c5:81:35:2a:b8:13:eb:53:c2:06:69:d2: 59:87:58:fb:a3:1d:3f:0d:d0:d7:72:b6:21:11:15: 16:89:67:7c:46:8d:94:26:c8:8c:02:10:30:36:1f: 79:ed:2c:12:35:c9:8b:50:97:04:c8:bf:61:a7:03: f5:f9:a4:38:4b:c8:94:4c:fa:cf:52:da:80:9a:fb: 97:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:DA:3F:BD:BA:97:7E:08:B4:56:85:DC:AE:96:8A:03:05:5E:62:87 X509v3 Authority Key Identifier: keyid:40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/a9o_vbqXfgi0VoXcrpaKAwVeYoc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.95.218.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:51:1d:40:12:9b:01:51:52:21:23:2b:2f:0f:8d:29:53:ea: 04:61:1b:fc:f3:90:b7:0b:12:ca:ad:82:5e:b0:19:2a:17:88: 50:05:6a:25:4f:53:0b:27:87:c3:69:17:2c:3f:c9:a1:c5:10: 7b:81:ac:fd:76:eb:6a:2e:0a:60:aa:63:b5:9e:84:74:c1:c3: f1:4c:3c:58:5f:83:fa:a3:2c:25:04:c7:a5:ca:c5:90:fd:df: 88:94:48:46:2d:c4:c0:74:52:63:e9:b3:9d:5f:e1:d2:55:8d: 27:29:30:69:9e:fa:0b:b1:60:90:1a:b2:f3:2a:b7:42:31:bb: 9e:07:90:52:e5:67:88:50:a1:e4:10:64:43:e2:f1:51:c3:06: b9:08:13:fc:0b:0c:e3:17:2f:03:6b:53:f3:46:6e:97:70:fb: 5f:c0:b5:ab:3d:25:f8:d9:bd:65:16:fe:02:72:e7:c3:83:27: af:b3:56:e9:4f:6c:19:ba:4c:5a:9e:3f:fb:78:3f:3f:1c:0a: 35:a2:3a:5a:d0:cd:0e:f4:c9:81:da:7a:c6:a5:a7:fa:93:29: 54:f2:32:c7:58:78:15:03:14:bb:93:c0:c8:df:85:24:05:85: 5f:35:1f:a5:48:30:39:d8:1e:83:de:4e:bb:a9:87:08:ee:bf: 74:a7:52:a1 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAOQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDA2 MTBEQTY4RTkzRUQ1MzhBNDhBNDZDNTIxNDAyNEVENTREMDdGNjAeFw0yMzEwMDEw MTI4NTZaFw0yNDA5MTQwMTMwMDNaMDMxMTAvBgNVBAMTKDZCREEzRkJEQkE5NzdF MDhCNDU2ODVEQ0FFOTY4QTAzMDU1RTYyODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFqle6ajwmrZ07NCCdQreduWJrdlMXruhQ2odG/DVbC1aBZg/J sc7/hTHp1jRgd8vNZNfwfhdH3L3RAbfp+sLOafbyNS4HUIGWq4QzIoXr4U+pZuWb Amyi1RbycTjbFpUwVafZVK4XulZqUGQN+4WeDH9TlmIL1FwHo9VqcCSQvRhwzONn en+IL04DrldKqK0XbbFZViwip0nU7jveFsrZLDPFpmWPUg1SmoBTQDqUiXEW+JKa CMWBNSq4E+tTwgZp0lmHWPujHT8N0NdytiERFRaJZ3xGjZQmyIwCEDA2H3ntLBI1 yYtQlwTIv2GnA/X5pDhLyJRM+s9S2oCa+5eJAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUa9o/vbqXfgi0VoXcrpaKAwVeYocwHwYDVR0jBBgwFoAUQGENpo6T7VOKSKRs UhQCTtVNB/YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQ2OS9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0Vk5CX1kuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0 Vk5CX1kuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNDY5L2E5b192YnFYZmdpMFZvWGNycGFLQXdWZVlvYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHKX9owDQYJKoZIhvcNAQELBQADggEBAE9RHUASmwFRUiEjKy8PjSlT6gRh G/zzkLcLEsqtgl6wGSoXiFAFaiVPUwsnh8NpFyw/yaHFEHuBrP1262ouCmCqY7We hHTBw/FMPFhfg/qjLCUEx6XKxZD934iUSEYtxMB0UmPps51f4dJVjScpMGme+gux YJAasvMqt0Ixu54HkFLlZ4hQoeQQZEPi8VHDBrkIE/wLDOMXLwNrU/NGbpdw+1/A tas9JfjZvWUW/gJy58ODJ6+zVulPbBm6TFqeP/t4Pz8cCjWiOlrQzQ70yYHaesal p/qTKVTyMsdYeBUDFLuTwMjfhSQFhV81H6VIMDnYHoPeTruphwjuv3SnUqE= -----END CERTIFICATE-----Generated at Tue Jun 4 01:48:24 2024 by rpki-client on console-ams.rpki-client.org