$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/603/KZAxfE1oNf3j4HeGWvpP37fPLmM.roa File: KZAxfE1oNf3j4HeGWvpP37fPLmM.roa (raw, json) Hash identifier: 2thV+NIkFgRrkv9UmBdyemsjiFSo/rS0cjxSAp/3b4k= Subject key identifier: 29:90:31:7C:4D:68:35:FD:E3:E0:77:86:5A:FA:4F:DF:B7:CF:2E:63 Certificate issuer: /CN=98D124BF56B378D63EC8BD856F283E53E965ECA2 Certificate serial: 24 Authority key identifier: 98:D1:24:BF:56:B3:78:D6:3E:C8:BD:85:6F:28:3E:53:E9:65:EC:A2 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/mNEkv1azeNY-yL2Fbyg-U-ll7KI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/603/KZAxfE1oNf3j4HeGWvpP37fPLmM.roa Signing time: Thu 29 Feb 2024 01:34:16 +0000 ROA not before: Thu 29 Feb 2024 01:34:16 +0000 ROA not after: Fri 14 Feb 2025 01:30:03 +0000 asID: 17530 IP address blocks: 61.193.128.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/603/mNEkv1azeNY-yL2Fbyg-U-ll7KI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/603/mNEkv1azeNY-yL2Fbyg-U-ll7KI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/mNEkv1azeNY-yL2Fbyg-U-ll7KI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 14:03:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=98D124BF56B378D63EC8BD856F283E53E965ECA2 Validity Not Before: Feb 29 01:34:16 2024 GMT Not After : Feb 14 01:30:03 2025 GMT Subject: CN=2990317C4D6835FDE3E077865AFA4FDFB7CF2E63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:5e:af:5e:27:e8:3c:c4:3d:d8:e7:d1:57:a1: eb:78:dc:34:84:f2:11:f0:8c:c4:9e:0e:43:ba:d0: 1c:b2:ca:ff:9e:64:fb:d1:91:3e:ee:0e:a1:e2:49: ab:2e:1e:f5:04:de:06:e6:30:45:b0:a9:f9:71:e1: b9:9d:34:59:13:cb:82:ba:ce:17:55:65:b2:46:5b: ea:a4:de:18:6f:2a:8c:b4:15:bf:d6:ca:4c:11:0a: 17:46:c1:3d:90:9e:ae:03:ac:40:a2:d7:3b:19:b6: 5b:be:75:01:37:86:1f:aa:79:cf:d9:db:4b:49:39: c8:df:7e:38:ee:f2:7a:7b:82:85:be:f0:d6:25:49: c6:97:22:bf:ff:83:b0:78:f6:69:12:95:30:1f:39: 33:b3:a8:2b:4d:5c:d3:fc:bf:35:6e:64:31:70:98: b9:f8:fd:b2:55:2d:71:84:c7:d2:71:93:ae:4d:09: 9a:f7:30:58:e2:d7:11:f5:47:69:90:dd:a8:12:74: 48:53:d4:fb:87:89:ea:a7:c2:2c:dc:a4:f4:a4:07: f4:a7:de:11:81:88:fe:16:e4:fd:3f:77:c7:21:a3: db:08:6a:0e:c2:3b:22:ab:a0:4d:61:35:2e:a7:ce: 53:30:70:6a:50:cb:b7:45:ce:63:7c:51:d9:d5:a7: 65:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:90:31:7C:4D:68:35:FD:E3:E0:77:86:5A:FA:4F:DF:B7:CF:2E:63 X509v3 Authority Key Identifier: keyid:98:D1:24:BF:56:B3:78:D6:3E:C8:BD:85:6F:28:3E:53:E9:65:EC:A2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/603/mNEkv1azeNY-yL2Fbyg-U-ll7KI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/mNEkv1azeNY-yL2Fbyg-U-ll7KI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/603/KZAxfE1oNf3j4HeGWvpP37fPLmM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.193.128.0/20 Signature Algorithm: sha256WithRSAEncryption 5f:9b:ce:9d:67:ef:cc:34:1d:9b:50:37:ce:ea:d7:ac:6b:74: 67:0e:f4:46:a3:e5:6f:e1:2e:7b:8c:b5:30:68:7c:9e:6d:25: ff:8e:98:f3:9c:21:16:b2:9b:a4:a7:81:dd:e0:99:fa:77:77: fd:a8:3b:e8:d5:65:02:c7:5f:d2:7e:69:96:2e:84:97:42:70: c1:32:7a:15:3c:b9:1a:fb:25:83:c9:da:b3:5d:43:4a:00:ee: 2a:0c:93:28:f9:ac:ed:61:90:08:db:f0:d1:9e:f6:4b:5a:f4: 36:53:35:c8:ab:79:d8:f3:ee:50:92:c7:63:78:43:d4:a6:7a: c5:5b:ba:91:93:44:25:e1:34:ca:d9:80:38:d7:b1:e5:78:23: 7e:ca:58:5d:0f:d0:4e:52:d5:e7:d7:df:34:a0:bc:0e:16:8a: 6c:ee:45:93:e1:76:e7:2d:a4:2b:1d:92:13:9e:90:6a:68:7a: 94:fd:c5:8c:82:0c:94:07:d5:a8:fb:3e:35:91:c1:e1:83:f0: d7:de:0f:a3:d7:27:f8:b4:51:bd:b1:ed:14:57:72:35:cb:bd: bd:e8:19:0d:7d:73:75:96:e3:21:c1:10:cf:84:08:89:8d:7f: 80:5b:68:8b:dd:2c:21:1b:35:93:c4:f9:ee:94:de:3d:b6:a6: dc:78:ea:14 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBJDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5OEQx MjRCRjU2QjM3OEQ2M0VDOEJEODU2RjI4M0U1M0U5NjVFQ0EyMB4XDTI0MDIyOTAx MzQxNloXDTI1MDIxNDAxMzAwM1owMzExMC8GA1UEAxMoMjk5MDMxN0M0RDY4MzVG REUzRTA3Nzg2NUFGQTRGREZCN0NGMkU2MzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOter14n6DzEPdjn0Veh63jcNITyEfCMxJ4OQ7rQHLLK/55k+9GR Pu4OoeJJqy4e9QTeBuYwRbCp+XHhuZ00WRPLgrrOF1VlskZb6qTeGG8qjLQVv9bK TBEKF0bBPZCergOsQKLXOxm2W751ATeGH6p5z9nbS0k5yN9+OO7yenuChb7w1iVJ xpciv/+DsHj2aRKVMB85M7OoK01c0/y/NW5kMXCYufj9slUtcYTH0nGTrk0Jmvcw WOLXEfVHaZDdqBJ0SFPU+4eJ6qfCLNyk9KQH9KfeEYGI/hbk/T93xyGj2whqDsI7 IqugTWE1LqfOUzBwalDLt0XOY3xR2dWnZY8CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQpkDF8TWg1/ePgd4Za+k/ft88uYzAfBgNVHSMEGDAWgBSY0SS/VrN41j7IvYVv KD5T6WXsojAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjAzL21ORWt2MWF6ZU5ZLXlMMkZieWctVS1sbDdLSS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL21ORWt2MWF6ZU5ZLXlMMkZieWctVS1s bDdLSS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC82MDMvS1pBeGZFMW9OZjNqNEhlR1d2cFAzN2ZQTG1NLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBD3BgDANBgkqhkiG9w0BAQsFAAOCAQEAX5vOnWfvzDQdm1A3zurXrGt0Zw70 RqPlb+Eue4y1MGh8nm0l/46Y85whFrKbpKeB3eCZ+nd3/ag76NVlAsdf0n5pli6E l0JwwTJ6FTy5Gvslg8nas11DSgDuKgyTKPms7WGQCNvw0Z72S1r0NlM1yKt52PPu UJLHY3hD1KZ6xVu6kZNEJeE0ytmAONex5XgjfspYXQ/QTlLV59ffNKC8DhaKbO5F k+F25y2kKx2SE56Qamh6lP3FjIIMlAfVqPs+NZHB4YPw194Po9cn+LRRvbHtFFdy Ncu9vegZDX1zdZbjIcEQz4QIiY1/gFtoi90sIRs1k8T57pTePbam3HjqFA== -----END CERTIFICATE-----Generated at Thu Jun 6 15:06:48 2024 by rpki-client on console-ams.rpki-client.org