$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/orSq0i7LwDMLcPG6mGNwK4XIoVg.roa File: orSq0i7LwDMLcPG6mGNwK4XIoVg.roa (raw, json) Hash identifier: O2ACqMDdD1O+yvaJ88LDJwhfAKmT5Khc7qYXzHu6XGg= Subject key identifier: A2:B4:AA:D2:2E:CB:C0:33:0B:70:F1:BA:98:63:70:2B:85:C8:A1:58 Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Certificate serial: 04AB Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/orSq0i7LwDMLcPG6mGNwK4XIoVg.roa Signing time: Thu 29 Feb 2024 01:29:04 +0000 ROA not before: Thu 29 Feb 2024 01:29:04 +0000 ROA not after: Fri 14 Feb 2025 01:30:03 +0000 asID: 10010 IP address blocks: 59.86.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 14:03:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1195 (0x4ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Validity Not Before: Feb 29 01:29:04 2024 GMT Not After : Feb 14 01:30:03 2025 GMT Subject: CN=A2B4AAD22ECBC0330B70F1BA9863702B85C8A158 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:40:d5:cf:27:6e:cb:13:c0:99:65:c2:53:3c: 6f:8f:12:54:d5:7e:8f:79:90:72:5c:d0:65:2f:41: 64:d5:b0:2c:01:28:05:e1:e3:6b:32:80:b8:17:03: 40:c9:3e:56:83:2f:41:79:9d:4e:6c:5e:01:94:97: 9e:3b:ba:e0:fe:d8:73:56:b1:dc:d5:2f:b5:eb:5a: be:bd:cf:2c:a3:ca:34:db:4d:88:5b:cc:00:3e:b3: d0:01:6f:31:b3:48:7e:5a:5b:04:96:97:47:88:9a: 38:e9:28:41:10:ed:f1:02:d3:22:fe:36:e8:ab:cb: fd:e1:b8:c4:e8:d8:bd:d3:94:60:86:fa:e8:16:d7: 76:0f:f6:40:51:e1:63:66:d2:39:8d:c6:fa:86:27: c7:64:d9:e2:8c:29:7e:a8:d3:78:9b:ad:a5:46:5d: b7:a1:f2:be:c4:1a:b7:71:6d:79:8e:fd:9a:3b:32: 6c:22:a4:86:50:65:06:15:de:09:77:53:e7:71:38: c3:1f:d0:4a:8a:7a:45:21:db:09:52:d1:b7:ed:57: 7d:2d:2e:b5:1d:ea:0a:36:1f:95:17:7a:b1:ad:25: cd:91:8e:c0:72:a1:01:f5:4f:4f:d6:54:c3:7c:14: 60:b8:d4:70:6f:0f:be:38:d9:f5:73:67:df:e3:29: 1a:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:B4:AA:D2:2E:CB:C0:33:0B:70:F1:BA:98:63:70:2B:85:C8:A1:58 X509v3 Authority Key Identifier: keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/orSq0i7LwDMLcPG6mGNwK4XIoVg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.86.64.0/18 Signature Algorithm: sha256WithRSAEncryption c1:59:e0:f3:d8:84:00:1b:1a:ec:24:c5:58:33:a8:04:e1:76: 88:bd:66:ba:1c:40:02:d2:e9:a3:06:69:d9:e4:61:30:93:b7: 99:06:79:e9:49:5d:4d:63:d1:bc:b8:65:ea:87:ed:f6:55:94: cc:83:d3:aa:72:84:fd:50:51:99:83:da:7a:6b:4b:28:c4:d4: 43:1a:ce:63:01:d6:77:9f:98:e0:7c:cb:e7:0b:9d:39:0b:c6: 66:d2:f4:00:b4:5b:40:c8:70:d9:b1:39:f5:cc:43:ea:b0:6b: bf:bd:67:26:55:cf:34:d0:7e:55:74:f1:15:56:e2:d8:03:1d: 69:73:df:61:61:6c:b0:da:72:bf:f2:40:82:90:c0:43:c5:e1: 4d:60:e8:52:45:0e:af:e7:bf:c4:fc:82:a8:22:17:81:0c:d4: da:30:47:ab:e3:53:f8:91:96:b6:04:a6:d6:32:be:19:19:5f: 52:e7:89:2e:97:b5:1d:ed:84:60:89:d8:2a:42:aa:8e:aa:bd: 13:0d:14:7d:9c:1e:d0:dc:de:c8:cb:06:af:56:aa:2d:12:3b: cb:c2:d3:28:bb:99:6e:c9:9a:12:bc:ca:41:25:93:83:2e:ce: f1:85:81:99:ca:36:1f:34:91:90:e7:1e:3c:af:1c:9c:49:d2: 96:ab:62:6c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBKswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkJE Q0Q1MjZCMDlFNzg5N0Y3MUZFMDQ4NThCRTc1QzA2RUM0RjEzQTAeFw0yNDAyMjkw MTI5MDRaFw0yNTAyMTQwMTMwMDNaMDMxMTAvBgNVBAMTKEEyQjRBQUQyMkVDQkMw MzMwQjcwRjFCQTk4NjM3MDJCODVDOEExNTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSQNXPJ27LE8CZZcJTPG+PElTVfo95kHJc0GUvQWTVsCwBKAXh 42sygLgXA0DJPlaDL0F5nU5sXgGUl547uuD+2HNWsdzVL7XrWr69zyyjyjTbTYhb zAA+s9ABbzGzSH5aWwSWl0eImjjpKEEQ7fEC0yL+Nuiry/3huMTo2L3TlGCG+ugW 13YP9kBR4WNm0jmNxvqGJ8dk2eKMKX6o03ibraVGXbeh8r7EGrdxbXmO/Zo7Mmwi pIZQZQYV3gl3U+dxOMMf0EqKekUh2wlS0bftV30tLrUd6go2H5UXerGtJc2RjsBy oQH1T0/WVMN8FGC41HBvD7442fVzZ9/jKRqfAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUorSq0i7LwDMLcPG6mGNwK4XIoVgwHwYDVR0jBBgwFoAUu9zVJrCeeJf3H+BI WL51wG7E8TowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzU0NS91OXpWSnJDZWVKZjNILUJJV0w1MXdHN0U4VG8uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC91OXpWSnJDZWVKZjNILUJJV0w1MXdH N0U4VG8uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNTQ1L29yU3EwaTdMd0RNTGNQRzZtR053SzRYSW9WZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY7VkAwDQYJKoZIhvcNAQELBQADggEBAMFZ4PPYhAAbGuwkxVgzqAThdoi9 ZrocQALS6aMGadnkYTCTt5kGeelJXU1j0by4ZeqH7fZVlMyD06pyhP1QUZmD2npr SyjE1EMazmMB1nefmOB8y+cLnTkLxmbS9AC0W0DIcNmxOfXMQ+qwa7+9ZyZVzzTQ flV08RVW4tgDHWlz32FhbLDacr/yQIKQwEPF4U1g6FJFDq/nv8T8gqgiF4EM1Now R6vjU/iRlrYEptYyvhkZX1LniS6XtR3thGCJ2CpCqo6qvRMNFH2cHtDc3sjLBq9W qi0SO8vC0yi7mW7JmhK8ykElk4MuzvGFgZnKNh80kZDnHjyvHJxJ0parYmw= -----END CERTIFICATE-----Generated at Thu Jun 6 14:56:22 2024 by rpki-client on console-fra.rpki-client.org