$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/530/qwGz0iUrjPsZ1uWw3H3x5uHVgng.roa File: qwGz0iUrjPsZ1uWw3H3x5uHVgng.roa (raw, json) Hash identifier: garT/7N4RYTLWC/AmKnS3P4BT6f2k2X9HUPlgriGskY= Subject key identifier: AB:01:B3:D2:25:2B:8C:FB:19:D6:E5:B0:DC:7D:F1:E6:E1:D5:82:78 Certificate issuer: /CN=1B20A06A21205820B28FD06CE0A84F03FCDAEBC5 Certificate serial: 42 Authority key identifier: 1B:20:A0:6A:21:20:58:20:B2:8F:D0:6C:E0:A8:4F:03:FC:DA:EB:C5 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GyCgaiEgWCCyj9Bs4KhPA_za68U.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/qwGz0iUrjPsZ1uWw3H3x5uHVgng.roa Signing time: Fri 01 Dec 2023 08:01:42 +0000 ROA not before: Fri 01 Dec 2023 08:01:42 +0000 ROA not after: Thu 14 Nov 2024 01:30:03 +0000 asID: 131925 IP address blocks: 150.91.192.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/GyCgaiEgWCCyj9Bs4KhPA_za68U.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/GyCgaiEgWCCyj9Bs4KhPA_za68U.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GyCgaiEgWCCyj9Bs4KhPA_za68U.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 16 Jun 2024 02:07:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1B20A06A21205820B28FD06CE0A84F03FCDAEBC5 Validity Not Before: Dec 1 08:01:42 2023 GMT Not After : Nov 14 01:30:03 2024 GMT Subject: CN=AB01B3D2252B8CFB19D6E5B0DC7DF1E6E1D58278 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:3d:8b:41:cc:3e:71:00:de:a6:40:85:b2:91: 1b:7c:73:13:74:04:b3:05:11:7a:d7:09:dd:76:12: 44:03:6e:bf:93:8f:98:db:19:db:7f:a7:55:c2:3c: 99:aa:db:70:1d:57:37:1f:38:ba:10:af:96:34:8a: a5:16:1c:02:39:4a:03:7a:79:a8:a3:0a:76:04:b4: 69:ee:be:4a:61:2d:26:d5:1d:20:46:a5:f2:97:35: 5c:2d:11:8c:39:fa:25:73:10:b0:0f:9a:f7:c5:68: 5d:60:42:35:b8:87:7c:61:da:6d:a8:55:f1:17:2c: 1c:db:bf:f1:b9:e8:fd:2c:ff:c8:18:af:7f:bf:b9: d5:51:a7:a8:11:49:d2:c4:17:c9:dc:a5:e8:1c:6f: ec:e7:a4:49:53:1b:bf:38:6b:31:c6:ba:87:ee:18: 8e:c0:22:9a:5b:43:d9:a2:e4:12:53:77:83:c8:ed: d9:c2:f4:f4:f3:e0:38:c3:19:7d:04:d9:28:42:80: b4:b5:d1:a3:0f:6c:3d:ce:15:2c:a3:f4:d8:6d:95: 7b:2b:d6:fc:dd:40:1d:38:aa:81:1b:4a:22:30:c7: 54:ed:94:87:62:d6:d1:3a:97:fa:b6:f0:3f:74:2a: 79:dd:8a:9d:9a:2b:84:b6:d8:a6:2f:20:c8:55:ec: 8e:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:01:B3:D2:25:2B:8C:FB:19:D6:E5:B0:DC:7D:F1:E6:E1:D5:82:78 X509v3 Authority Key Identifier: keyid:1B:20:A0:6A:21:20:58:20:B2:8F:D0:6C:E0:A8:4F:03:FC:DA:EB:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/GyCgaiEgWCCyj9Bs4KhPA_za68U.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GyCgaiEgWCCyj9Bs4KhPA_za68U.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/qwGz0iUrjPsZ1uWw3H3x5uHVgng.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 150.91.192.0/20 Signature Algorithm: sha256WithRSAEncryption 1b:06:cb:e5:33:e3:61:4b:02:f4:63:59:88:3b:e2:28:92:10: ee:75:47:fe:aa:99:52:28:56:6d:4d:5e:2e:47:6b:27:5a:92: d2:f1:85:82:b0:17:6a:31:73:e9:ec:30:b0:27:5a:ad:46:35: 00:b1:e2:ea:b8:60:af:86:96:ca:93:26:2a:fd:ef:56:81:2a: d3:6d:b9:ea:b9:5b:5d:50:3f:67:60:7c:49:ad:22:66:fc:e0: 68:ed:56:43:b8:2f:22:da:a5:3c:bf:9b:15:a8:4c:1c:40:9f: 88:b3:f1:58:87:65:14:1e:57:f2:4c:1d:f1:aa:d0:49:87:a1: ef:59:58:b7:9b:8b:33:1a:96:38:3c:c1:a6:99:9f:5e:bd:fd: 5b:14:e9:7d:53:b5:c0:b0:39:df:3b:e6:50:08:d9:be:31:77: 33:8d:d2:84:4e:27:3a:fe:7e:83:02:57:a5:c0:2b:67:27:10: 91:55:19:6b:60:67:6f:f8:b1:89:ab:bb:e9:bf:c9:42:b2:47: e2:21:69:ee:49:ec:07:ca:55:d0:24:a9:cf:31:13:21:85:45: f5:fe:67:a3:a0:ad:4e:c5:7a:ce:7f:f9:af:6c:e6:af:af:00: ab:02:62:9e:6e:91:72:a4:f2:f9:ea:4a:e9:5f:02:0b:bb:99: 35:4e:7b:8c -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBQjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxQjIw QTA2QTIxMjA1ODIwQjI4RkQwNkNFMEE4NEYwM0ZDREFFQkM1MB4XDTIzMTIwMTA4 MDE0MloXDTI0MTExNDAxMzAwM1owMzExMC8GA1UEAxMoQUIwMUIzRDIyNTJCOENG QjE5RDZFNUIwREM3REYxRTZFMUQ1ODI3ODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALY9i0HMPnEA3qZAhbKRG3xzE3QEswURetcJ3XYSRANuv5OPmNsZ 23+nVcI8marbcB1XNx84uhCvljSKpRYcAjlKA3p5qKMKdgS0ae6+SmEtJtUdIEal 8pc1XC0RjDn6JXMQsA+a98VoXWBCNbiHfGHabahV8RcsHNu/8bno/Sz/yBivf7+5 1VGnqBFJ0sQXydyl6Bxv7OekSVMbvzhrMca6h+4YjsAimltD2aLkElN3g8jt2cL0 9PPgOMMZfQTZKEKAtLXRow9sPc4VLKP02G2VeyvW/N1AHTiqgRtKIjDHVO2Uh2LW 0TqX+rbwP3Qqed2KnZorhLbYpi8gyFXsjpcCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSrAbPSJSuM+xnW5bDcffHm4dWCeDAfBgNVHSMEGDAWgBQbIKBqISBYILKP0Gzg qE8D/NrrxTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTMwL0d5Q2dhaUVnV0NDeWo5QnM0S2hQQV96YTY4VS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0d5Q2dhaUVnV0NDeWo5QnM0S2hQQV96 YTY4VS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81MzAvcXdHejBpVXJqUHNaMXVXdzNIM3g1dUhWZ25nLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBJZbwDANBgkqhkiG9w0BAQsFAAOCAQEAGwbL5TPjYUsC9GNZiDviKJIQ7nVH /qqZUihWbU1eLkdrJ1qS0vGFgrAXajFz6ewwsCdarUY1ALHi6rhgr4aWypMmKv3v VoEq02256rlbXVA/Z2B8Sa0iZvzgaO1WQ7gvItqlPL+bFahMHECfiLPxWIdlFB5X 8kwd8arQSYeh71lYt5uLMxqWODzBppmfXr39WxTpfVO1wLA53zvmUAjZvjF3M43S hE4nOv5+gwJXpcArZycQkVUZa2Bnb/ixiau76b/JQrJH4iFp7knsB8pV0CSpzzET IYVF9f5no6CtTsV6zn/5r2zmr68AqwJinm6RcqTy+epK6V8CC7uZNU57jA== -----END CERTIFICATE-----Generated at Mon Jun 10 10:26:15 2024 by rpki-client on console-fra.rpki-client.org