$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/539/kfzCLuj7NZw_kawclEI4TbTdoxw.roa File: kfzCLuj7NZw_kawclEI4TbTdoxw.roa (raw, json) Hash identifier: HFJJ63hbKgMm0BAdM3WaknpXEYPESzbfdd9H2od4pFw= Subject key identifier: 91:FC:C2:2E:E8:FB:35:9C:3F:91:AC:1C:94:42:38:4D:B4:DD:A3:1C Certificate issuer: /CN=5B0D72F9F430B7D4003375F10D5025B9E5C00437 Certificate serial: 5B Authority key identifier: 5B:0D:72:F9:F4:30:B7:D4:00:33:75:F1:0D:50:25:B9:E5:C0:04:37 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/kfzCLuj7NZw_kawclEI4TbTdoxw.roa Signing time: Fri 01 Sep 2023 01:29:11 +0000 ROA not before: Fri 01 Sep 2023 01:29:11 +0000 ROA not after: Wed 14 Aug 2024 01:30:02 +0000 asID: 55900 IP address blocks: 202.171.224.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Ww1y-fQwt9QAM3XxDVAlueXABDc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Ww1y-fQwt9QAM3XxDVAlueXABDc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 14:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5B0D72F9F430B7D4003375F10D5025B9E5C00437 Validity Not Before: Sep 1 01:29:11 2023 GMT Not After : Aug 14 01:30:02 2024 GMT Subject: CN=91FCC22EE8FB359C3F91AC1C9442384DB4DDA31C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:79:24:50:b1:88:3b:06:59:86:ed:57:bf:e6: cb:92:05:bf:96:db:de:7d:5e:f8:5d:d6:30:ad:79: b8:de:b6:aa:f5:21:22:b3:9a:84:60:22:9e:47:f9: f7:cd:0c:c5:2d:76:26:6b:09:b0:8d:6f:a8:4b:ed: 60:25:a5:cf:c9:b9:90:b7:73:8b:3b:54:79:0a:75: 81:8c:97:ae:b6:bf:94:cb:6e:99:44:25:78:68:d4: 06:97:51:ff:88:cd:96:b1:91:e9:6e:4a:41:53:8e: 11:e7:79:61:54:32:06:d3:67:b6:4a:d8:06:0c:2b: 55:ab:0a:f6:b5:d9:b6:03:af:00:ec:47:ce:18:76: 76:6d:a8:5d:ff:87:6a:12:76:ba:4d:13:ee:64:6d: c3:71:da:5b:61:ba:03:5e:55:2b:c6:81:ee:28:05: 67:20:60:69:b4:75:26:0b:45:a5:2f:50:29:68:e8: b2:11:a8:e6:a2:0b:0e:e3:c1:e0:b8:d5:d5:3d:f2: f6:ee:5d:8d:8e:83:8e:c0:63:ab:69:46:93:da:fd: 5a:2a:a6:2f:01:44:ed:fd:7d:9d:80:8d:c0:7c:81: a2:6c:1c:83:b0:23:46:66:ac:07:54:fd:7a:f5:c0: a1:09:b4:79:34:10:56:e5:5f:74:0c:53:2e:78:8c: 2f:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:FC:C2:2E:E8:FB:35:9C:3F:91:AC:1C:94:42:38:4D:B4:DD:A3:1C X509v3 Authority Key Identifier: keyid:5B:0D:72:F9:F4:30:B7:D4:00:33:75:F1:0D:50:25:B9:E5:C0:04:37 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Ww1y-fQwt9QAM3XxDVAlueXABDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/kfzCLuj7NZw_kawclEI4TbTdoxw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.171.224.0/21 Signature Algorithm: sha256WithRSAEncryption 4b:27:0d:59:57:c3:8b:e8:d0:8d:56:24:12:9f:77:ee:17:cb: 83:f7:e7:c2:8d:ff:21:2c:cb:95:8c:81:88:29:62:dc:c0:16: d4:d8:8c:db:1c:8b:99:05:59:c6:39:6f:2f:e7:b3:6a:ee:b2: fc:93:a4:03:96:f7:aa:d4:1b:6d:14:bf:8e:82:84:49:be:8c: 2a:8d:87:b6:b8:c5:1a:7f:ff:ff:e6:74:40:51:bd:4f:6b:ce: 5f:5f:f8:2f:b6:8e:59:28:3d:12:c8:04:97:98:08:6c:7a:fc: db:16:b9:92:86:3d:b3:2c:7f:c0:ca:2e:4f:44:26:bd:4f:f4: 85:cc:2b:43:90:6c:c3:2c:10:38:c3:eb:14:fa:1d:ca:4e:e0: a6:0a:79:37:45:cf:f5:fa:1e:0d:5e:e2:ed:77:3c:a2:08:51: 08:0e:b0:a6:7c:ff:68:48:f9:ce:77:5c:03:02:f0:a0:da:64: 37:44:6c:b7:62:04:d3:99:ee:dc:6b:4f:21:8a:da:f7:74:79: 1e:dd:e0:45:59:04:89:c8:8c:ee:46:b4:b7:74:ef:a0:64:ba: 3b:3b:63:f3:b2:c7:1b:01:8e:68:5d:62:ae:e7:ce:67:9e:b0: cd:c0:a2:52:b4:a0:f1:fd:9a:94:5f:73:1c:04:93:0d:09:31: 3d:0f:12:7f -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBWzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1QjBE NzJGOUY0MzBCN0Q0MDAzMzc1RjEwRDUwMjVCOUU1QzAwNDM3MB4XDTIzMDkwMTAx MjkxMVoXDTI0MDgxNDAxMzAwMlowMzExMC8GA1UEAxMoOTFGQ0MyMkVFOEZCMzU5 QzNGOTFBQzFDOTQ0MjM4NERCNEREQTMxQzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMJ5JFCxiDsGWYbtV7/my5IFv5bb3n1e+F3WMK15uN62qvUhIrOa hGAinkf5980MxS12JmsJsI1vqEvtYCWlz8m5kLdziztUeQp1gYyXrra/lMtumUQl eGjUBpdR/4jNlrGR6W5KQVOOEed5YVQyBtNntkrYBgwrVasK9rXZtgOvAOxHzhh2 dm2oXf+HahJ2uk0T7mRtw3HaW2G6A15VK8aB7igFZyBgabR1JgtFpS9QKWjoshGo 5qILDuPB4LjV1T3y9u5djY6DjsBjq2lGk9r9WiqmLwFE7f19nYCNwHyBomwcg7Aj RmasB1T9evXAoQm0eTQQVuVfdAxTLniMLysCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSR/MIu6Ps1nD+RrByUQjhNtN2jHDAfBgNVHSMEGDAWgBRbDXL59DC31AAzdfEN UCW55cAENzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTM5L1d3MXktZlF3dDlRQU0zWHhEVkFsdWVYQUJEYy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1d3MXktZlF3dDlRQU0zWHhEVkFsdWVY QUJEYy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81Mzkva2Z6Q0x1ajdOWndfa2F3Y2xFSTRUYlRkb3h3LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA8qr4DANBgkqhkiG9w0BAQsFAAOCAQEASycNWVfDi+jQjVYkEp937hfLg/fn wo3/ISzLlYyBiCli3MAW1NiM2xyLmQVZxjlvL+ezau6y/JOkA5b3qtQbbRS/joKE Sb6MKo2HtrjFGn///+Z0QFG9T2vOX1/4L7aOWSg9EsgEl5gIbHr82xa5koY9syx/ wMouT0QmvU/0hcwrQ5BswywQOMPrFPodyk7gpgp5N0XP9foeDV7i7Xc8oghRCA6w pnz/aEj5zndcAwLwoNpkN0Rst2IE05nu3GtPIYra93R5Ht3gRVkEiciM7ka0t3Tv oGS6Oztj87LHGwGOaF1irufOZ56wzcCiUrSg8f2alF9zHASTDQkxPQ8Sfw== -----END CERTIFICATE-----Generated at Fri Jun 7 15:50:38 2024 by rpki-client on console-ams.rpki-client.org