$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/530/Cg8Db0wEzJHhlMGlLIz0Av1hDE4.roa File: Cg8Db0wEzJHhlMGlLIz0Av1hDE4.roa (raw, json) Hash identifier: Rrqc+HjZmYiINkDOmkKW+6utn3ZxXrGeIB37tAi4cgE= Subject key identifier: 0A:0F:03:6F:4C:04:CC:91:E1:94:C1:A5:2C:8C:F4:02:FD:61:0C:4E Certificate issuer: /CN=40D220B9E4A6358E03CD47864517D9D300B06FF0 Certificate serial: 3B Authority key identifier: 40:D2:20:B9:E4:A6:35:8E:03:CD:47:86:45:17:D9:D3:00:B0:6F:F0 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QNIgueSmNY4DzUeGRRfZ0wCwb_A.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/Cg8Db0wEzJHhlMGlLIz0Av1hDE4.roa Signing time: Fri 01 Dec 2023 08:51:40 +0000 ROA not before: Fri 01 Dec 2023 08:51:40 +0000 ROA not after: Thu 14 Nov 2024 01:30:03 +0000 asID: 131964 IP address blocks: 160.237.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/QNIgueSmNY4DzUeGRRfZ0wCwb_A.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/QNIgueSmNY4DzUeGRRfZ0wCwb_A.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QNIgueSmNY4DzUeGRRfZ0wCwb_A.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jul 2024 02:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40D220B9E4A6358E03CD47864517D9D300B06FF0 Validity Not Before: Dec 1 08:51:40 2023 GMT Not After : Nov 14 01:30:03 2024 GMT Subject: CN=0A0F036F4C04CC91E194C1A52C8CF402FD610C4E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:cc:bb:2c:12:a0:13:87:9a:b8:bb:67:02:91: 7e:17:a0:0d:4e:25:68:f6:58:1f:b4:86:c5:1b:2f: 11:f8:24:08:f8:6b:6b:d8:8d:76:43:39:cf:1d:af: e3:fc:4d:65:ac:45:f0:3d:d1:b6:0e:96:4a:24:4f: f7:45:18:b1:f2:54:5b:26:36:e6:26:cc:72:e8:6f: d0:c7:d4:d0:d1:af:10:68:13:fe:e2:43:bd:bc:3d: 46:96:41:76:90:fc:79:ce:e9:91:7d:79:a0:7d:3c: e6:19:e2:67:ca:94:e6:1a:5e:73:77:57:e0:21:d1: cf:b2:53:62:1c:d1:69:d6:e9:9d:68:f4:f6:58:e7: 4e:2a:90:5e:f3:88:19:ae:d4:e5:e5:c8:71:73:83: e3:95:7e:2c:5e:1c:5e:bb:d8:45:a0:59:e5:95:a9: 0a:13:6c:d6:ef:c0:34:a1:7c:15:d8:d6:05:f4:e3: f7:f3:00:fe:7a:e1:55:0b:0f:79:c0:4d:9f:38:c9: 37:4c:ac:27:7a:f9:13:ad:d2:08:ed:dc:48:ee:8e: 00:28:8b:da:d2:21:fd:92:31:e9:de:ef:7a:f6:e2: c5:b4:3a:bd:bb:ea:7f:07:74:3d:d0:9b:a5:3d:61: fa:c2:6a:4a:5a:05:91:54:bf:12:c9:68:1c:cb:29: d7:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:0F:03:6F:4C:04:CC:91:E1:94:C1:A5:2C:8C:F4:02:FD:61:0C:4E X509v3 Authority Key Identifier: keyid:40:D2:20:B9:E4:A6:35:8E:03:CD:47:86:45:17:D9:D3:00:B0:6F:F0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/QNIgueSmNY4DzUeGRRfZ0wCwb_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QNIgueSmNY4DzUeGRRfZ0wCwb_A.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/Cg8Db0wEzJHhlMGlLIz0Av1hDE4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.237.191.0/24 Signature Algorithm: sha256WithRSAEncryption 46:a6:5d:15:49:cb:cc:cd:e1:6a:04:d1:13:9f:61:99:99:aa: 5d:38:c7:02:74:8a:c7:6d:27:fe:e9:5b:8e:d4:bf:ef:86:35: 34:0f:72:6b:b0:3e:76:c4:29:b1:c7:33:f4:19:37:58:ec:37: bc:5a:51:f1:33:31:ca:99:c5:29:02:f5:c3:bb:a0:ea:12:fb: 2a:ae:8b:bc:39:e8:7e:e9:a1:1a:6c:59:1c:94:a2:60:cb:c0: 40:53:de:e9:fd:c7:14:b2:03:35:fb:6d:2c:a5:7e:af:88:8e: f1:21:ef:67:82:d3:c3:4d:65:b0:20:60:7b:df:38:86:ba:bc: 8e:b4:25:4f:97:2a:07:90:7f:13:4d:a5:61:67:71:ec:f9:0d: 56:ae:67:d8:ba:cc:25:73:6c:83:66:3f:fc:5c:7e:87:7c:4c: e6:18:b0:fd:a8:a4:c4:c6:10:c5:e0:f9:40:b3:c3:ad:55:4b: 3c:fa:05:38:f0:6f:1c:c5:64:be:6e:18:f7:aa:c5:9e:f3:64: 59:d2:db:f0:3c:4b:fc:0a:cf:1d:70:d2:2a:11:4d:cc:9f:3c: 87:23:4c:5b:b1:97:6e:95:67:7f:38:61:93:fe:51:18:c0:71: 4a:c3:f2:82:4a:0d:4c:a6:55:d3:98:12:6d:0a:a4:c9:b5:a8: e2:59:0f:61 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBOzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0MEQy MjBCOUU0QTYzNThFMDNDRDQ3ODY0NTE3RDlEMzAwQjA2RkYwMB4XDTIzMTIwMTA4 NTE0MFoXDTI0MTExNDAxMzAwM1owMzExMC8GA1UEAxMoMEEwRjAzNkY0QzA0Q0M5 MUUxOTRDMUE1MkM4Q0Y0MDJGRDYxMEM0RTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALvMuywSoBOHmri7ZwKRfhegDU4laPZYH7SGxRsvEfgkCPhra9iN dkM5zx2v4/xNZaxF8D3Rtg6WSiRP90UYsfJUWyY25ibMcuhv0MfU0NGvEGgT/uJD vbw9RpZBdpD8ec7pkX15oH085hniZ8qU5hpec3dX4CHRz7JTYhzRadbpnWj09ljn TiqQXvOIGa7U5eXIcXOD45V+LF4cXrvYRaBZ5ZWpChNs1u/ANKF8FdjWBfTj9/MA /nrhVQsPecBNnzjJN0ysJ3r5E63SCO3cSO6OACiL2tIh/ZIx6d7vevbixbQ6vbvq fwd0PdCbpT1h+sJqSloFkVS/EsloHMsp1zcCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQKDwNvTATMkeGUwaUsjPQC/WEMTjAfBgNVHSMEGDAWgBRA0iC55KY1jgPNR4ZF F9nTALBv8DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTMwL1FOSWd1ZVNtTlk0RHpVZUdSUmZaMHdDd2JfQS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1FOSWd1ZVNtTlk0RHpVZUdSUmZaMHdD d2JfQS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81MzAvQ2c4RGIwd0V6SkhobE1HbExJejBBdjFoREU0LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAKDtvzANBgkqhkiG9w0BAQsFAAOCAQEARqZdFUnLzM3hagTRE59hmZmqXTjH AnSKx20n/ulbjtS/74Y1NA9ya7A+dsQpsccz9Bk3WOw3vFpR8TMxypnFKQL1w7ug 6hL7Kq6LvDnofumhGmxZHJSiYMvAQFPe6f3HFLIDNfttLKV+r4iO8SHvZ4LTw01l sCBge984hrq8jrQlT5cqB5B/E02lYWdx7PkNVq5n2LrMJXNsg2Y//Fx+h3xM5hiw /aikxMYQxeD5QLPDrVVLPPoFOPBvHMVkvm4Y96rFnvNkWdLb8DxL/ArPHXDSKhFN zJ88hyNMW7GXbpVnfzhhk/5RGMBxSsPygkoNTKZV05gSbQqkybWo4lkPYQ== -----END CERTIFICATE-----Generated at Wed Jun 26 09:28:46 2024 by rpki-client on console-fra.rpki-client.org