$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/50/KXqnktYnl8nniRJlsTAiNEEMF64.roa File: KXqnktYnl8nniRJlsTAiNEEMF64.roa (raw, json) Hash identifier: gwmkdv9znFJ4JTpF4TI78wKjqUKu0OnpzddKbfNVsrU= Subject key identifier: 29:7A:A7:92:D6:27:97:C9:E7:89:12:65:B1:30:22:34:41:0C:17:AE Certificate issuer: /CN=1BE3AB0F8DB265ABB2287E75151E7F5A93B2C736 Certificate serial: 20 Authority key identifier: 1B:E3:AB:0F:8D:B2:65:AB:B2:28:7E:75:15:1E:7F:5A:93:B2:C7:36 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G-OrD42yZauyKH51FR5_WpOyxzY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/50/KXqnktYnl8nniRJlsTAiNEEMF64.roa Signing time: Thu 05 Oct 2023 03:21:24 +0000 ROA not before: Thu 05 Oct 2023 03:21:24 +0000 ROA not after: Sat 14 Sep 2024 01:30:03 +0000 asID: 4685 IP address blocks: 61.87.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/50/G-OrD42yZauyKH51FR5_WpOyxzY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/50/G-OrD42yZauyKH51FR5_WpOyxzY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G-OrD42yZauyKH51FR5_WpOyxzY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 14:03:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BE3AB0F8DB265ABB2287E75151E7F5A93B2C736 Validity Not Before: Oct 5 03:21:24 2023 GMT Not After : Sep 14 01:30:03 2024 GMT Subject: CN=297AA792D62797C9E7891265B1302234410C17AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:d1:1d:a5:91:b6:de:68:af:fa:39:7c:1f:8b: 8d:c1:cb:cc:9a:df:0f:8f:fa:bb:6c:ff:fb:3c:c4: d9:1a:36:c2:73:64:62:44:a3:4c:93:45:84:ea:da: 0c:88:29:99:4c:aa:37:5c:a6:50:61:2a:0e:b8:80: 26:54:c2:15:19:b3:84:82:fe:9c:77:b0:09:1c:f8: 7a:71:9d:6b:fb:f2:48:45:a5:98:12:ea:ac:36:fe: 03:10:75:c2:b7:ea:0f:59:63:8e:4e:12:43:22:da: a4:c1:bd:8a:ed:88:5f:e5:91:f9:3d:34:76:2e:0d: ef:d1:99:98:3b:b8:60:cc:5a:5f:9d:90:c9:69:ba: 5a:f8:b7:22:cc:9b:af:6b:8b:f4:74:71:43:bb:2e: 0d:47:d9:16:53:de:de:d1:d5:6c:5b:fe:1b:aa:4a: a9:c6:27:49:11:90:16:65:fe:3a:6f:db:ab:17:ec: ac:67:9f:81:02:b2:0c:f8:e7:76:63:90:e1:bc:7c: c9:26:76:e9:8e:68:6a:0e:fa:ec:dc:e7:3f:ee:44: 77:ca:d9:87:21:48:b7:81:d5:06:d0:c7:ba:ac:1b: a1:47:4e:11:6f:f2:81:70:9d:c0:d6:2a:7b:59:c4: 15:b9:d8:a3:b7:8c:a9:27:d8:73:f9:65:42:d3:f4: f5:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:7A:A7:92:D6:27:97:C9:E7:89:12:65:B1:30:22:34:41:0C:17:AE X509v3 Authority Key Identifier: keyid:1B:E3:AB:0F:8D:B2:65:AB:B2:28:7E:75:15:1E:7F:5A:93:B2:C7:36 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/50/G-OrD42yZauyKH51FR5_WpOyxzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G-OrD42yZauyKH51FR5_WpOyxzY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/50/KXqnktYnl8nniRJlsTAiNEEMF64.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.87.32.0/19 Signature Algorithm: sha256WithRSAEncryption 4a:9e:de:5c:11:74:c0:74:7b:3c:54:a3:35:9b:08:98:01:55: a7:79:d3:87:7f:89:15:bc:fd:08:43:55:bd:19:86:65:aa:33: f0:b4:79:d9:32:19:83:d2:4a:7c:3f:9e:c9:e9:ff:d5:a1:c3: 22:c9:99:77:8a:9e:16:bd:a4:5d:1a:b7:32:9b:70:cf:c4:b1: dd:4e:da:4b:f0:76:ba:36:e7:1d:01:69:a2:7f:97:da:d6:67: 7d:70:05:cf:c6:e2:0b:56:79:f9:22:85:71:a4:95:53:35:6f: 87:07:c7:cc:ee:08:bc:f2:eb:24:ac:a7:ee:f4:84:09:3c:5a: 05:3b:30:4e:7a:41:58:fb:61:a2:d9:53:e7:51:63:b2:a1:b5: a1:88:69:93:b0:c9:93:88:67:af:6f:0c:c7:f8:98:96:31:d7: 37:5e:c9:4d:c1:c1:1f:dd:41:70:51:bd:79:fc:68:8f:55:27: 76:31:1f:ec:15:a2:9c:a8:c0:83:5c:5b:28:e7:35:bf:95:89: 62:53:ab:d0:e4:c6:32:88:58:53:68:6e:8f:3b:fc:49:20:e6: 23:cd:00:cf:52:b6:38:3c:92:72:d3:13:ab:98:37:e9:2d:de: bd:1a:99:cd:6c:56:58:46:69:ec:73:a6:a0:17:79:a8:90:ea: 5a:b3:94:e3 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBIDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxQkUz QUIwRjhEQjI2NUFCQjIyODdFNzUxNTFFN0Y1QTkzQjJDNzM2MB4XDTIzMTAwNTAz MjEyNFoXDTI0MDkxNDAxMzAwM1owMzExMC8GA1UEAxMoMjk3QUE3OTJENjI3OTdD OUU3ODkxMjY1QjEzMDIyMzQ0MTBDMTdBRTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANfRHaWRtt5or/o5fB+LjcHLzJrfD4/6u2z/+zzE2Ro2wnNkYkSj TJNFhOraDIgpmUyqN1ymUGEqDriAJlTCFRmzhIL+nHewCRz4enGda/vySEWlmBLq rDb+AxB1wrfqD1ljjk4SQyLapMG9iu2IX+WR+T00di4N79GZmDu4YMxaX52QyWm6 Wvi3Isybr2uL9HRxQ7suDUfZFlPe3tHVbFv+G6pKqcYnSRGQFmX+Om/bqxfsrGef gQKyDPjndmOQ4bx8ySZ26Y5oag767NznP+5Ed8rZhyFIt4HVBtDHuqwboUdOEW/y gXCdwNYqe1nEFbnYo7eMqSfYc/llQtP09ZsCAwEAAaOCAiIwggIeMB0GA1UdDgQW BBQpeqeS1ieXyeeJEmWxMCI0QQwXrjAfBgNVHSMEGDAWgBQb46sPjbJlq7IofnUV Hn9ak7LHNjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTAvRy1PckQ0MnlaYXV5S0g1MUZSNV9XcE95eHpZLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvRy1PckQ0MnlaYXV5S0g1MUZSNV9XcE95 eHpZLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzUwL0tYcW5rdFlubDhubmlSSmxzVEFpTkVFTUY2NC5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAU9VyAwDQYJKoZIhvcNAQELBQADggEBAEqe3lwRdMB0ezxUozWbCJgBVad504d/ iRW8/QhDVb0ZhmWqM/C0edkyGYPSSnw/nsnp/9WhwyLJmXeKnha9pF0atzKbcM/E sd1O2kvwdro25x0BaaJ/l9rWZ31wBc/G4gtWefkihXGklVM1b4cHx8zuCLzy6ySs p+70hAk8WgU7ME56QVj7YaLZU+dRY7KhtaGIaZOwyZOIZ69vDMf4mJYx1zdeyU3B wR/dQXBRvXn8aI9VJ3YxH+wVopyowINcWyjnNb+ViWJTq9DkxjKIWFNobo87/Ekg 5iPNAM9Stjg8knLTE6uYN+kt3r0amc1sVlhGaexzpqAXeaiQ6lqzlOM= -----END CERTIFICATE-----Generated at Thu Jun 6 15:06:47 2024 by rpki-client on console-ams.rpki-client.org