$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/-pNLwbIuH4r1bqWhq8V0-y-VPjY.roa File: -pNLwbIuH4r1bqWhq8V0-y-VPjY.roa (raw, json) Hash identifier: 9QoGPgVWMd4Szt72PBcsVinSiBquTFmvUf49NpYNNT8= Subject key identifier: FA:93:4B:C1:B2:2E:1F:8A:F5:6E:A5:A1:AB:C5:74:FB:2F:95:3E:36 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 0129 Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-pNLwbIuH4r1bqWhq8V0-y-VPjY.roa Signing time: Fri 01 Sep 2023 01:30:32 +0000 ROA not before: Fri 01 Sep 2023 01:30:32 +0000 ROA not after: Wed 14 Aug 2024 01:30:02 +0000 asID: 23788 IP address blocks: 219.100.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 01:34:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Sep 1 01:30:32 2023 GMT Not After : Aug 14 01:30:02 2024 GMT Subject: CN=FA934BC1B22E1F8AF56EA5A1ABC574FB2F953E36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a7:bb:98:36:9f:dd:5e:54:e9:90:45:67:cc: 90:64:60:b3:9e:69:39:42:84:73:ce:b4:15:89:48: 31:60:a0:48:a7:ee:53:0e:8d:a6:16:d2:89:6b:cb: 01:1f:01:69:2d:11:26:9f:b9:16:c8:de:e2:07:e1: fb:4b:ac:90:4e:8f:fe:b1:e6:51:78:61:e0:94:f7: 91:09:5d:6b:04:2e:11:99:04:72:35:51:bf:93:da: c2:9e:bc:cb:0f:ae:fa:d4:ae:bf:11:c9:7d:1e:ee: 6c:b6:19:38:85:27:24:70:16:39:a0:7f:67:ee:47: 74:ff:83:63:9f:09:4f:67:8d:b2:7b:05:ff:83:ec: f1:07:a7:94:54:16:56:d7:37:45:0a:a5:36:80:a6: f8:bc:75:6b:f3:10:18:7d:a8:26:09:9f:02:ac:25: 89:70:a6:d7:22:56:17:15:b8:cf:dc:75:5e:8c:17: fc:b0:59:ae:51:8b:f1:ac:39:f0:0a:98:37:fc:45: 82:3d:8c:ca:87:51:dd:49:c6:e1:7e:43:c1:40:95: a1:b3:54:82:a9:54:f7:ca:0a:fb:ba:0e:0d:a0:47: 0d:03:25:6a:8c:f6:98:25:6b:ee:f1:6f:de:3c:ad: 1c:88:07:06:f1:5c:65:68:32:06:70:19:fa:4b:99: a5:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:93:4B:C1:B2:2E:1F:8A:F5:6E:A5:A1:AB:C5:74:FB:2F:95:3E:36 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-pNLwbIuH4r1bqWhq8V0-y-VPjY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.100.152.0/22 Signature Algorithm: sha256WithRSAEncryption a4:d1:a5:80:d3:c1:78:aa:bc:b1:87:b4:be:3f:ff:ae:15:e5: c0:75:79:22:18:0f:c6:f2:f1:fd:84:04:74:af:2d:17:c3:f8: d1:5f:a5:71:ff:2f:d8:ad:9a:06:92:be:0a:d5:f0:2d:5a:fc: 00:18:86:00:47:76:dd:7a:a6:64:e5:d8:87:0a:cb:5e:ca:cb: e2:f5:ec:a4:da:43:47:2e:97:bb:00:df:ad:33:00:d6:b9:33: c7:a1:8a:5b:47:56:5b:30:59:f6:dd:b1:d1:28:6a:16:9f:2e: 0d:96:85:45:da:f7:3d:40:4b:f0:92:21:b2:b5:90:13:23:67: 99:6f:3c:dc:de:25:12:56:8c:8c:9e:2f:1a:2b:b8:e5:e4:a8: 02:46:cf:ea:26:8c:0c:68:e2:54:b6:dd:d3:94:18:91:39:ea: 86:3f:25:5e:c4:87:f8:0e:e7:a8:e6:60:5a:c0:b6:be:8e:e5: 44:5e:66:11:87:f5:2c:52:7d:30:b5:bd:21:8a:90:02:39:8c: fa:47:57:94:9f:12:31:50:c0:40:9b:60:47:26:71:9a:08:24: 7f:5b:c3:5b:00:e8:a7:e0:70:27:6a:69:c4:8d:31:76:0f:6d: 87:80:2d:9a:e9:3d:ad:85:e7:5a:23:3d:f2:d3:15:7f:da:af: af:75:ff:29 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICASkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yMzA5MDEw MTMwMzJaFw0yNDA4MTQwMTMwMDJaMDMxMTAvBgNVBAMTKEZBOTM0QkMxQjIyRTFG OEFGNTZFQTVBMUFCQzU3NEZCMkY5NTNFMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGp7uYNp/dXlTpkEVnzJBkYLOeaTlChHPOtBWJSDFgoEin7lMO jaYW0olrywEfAWktESafuRbI3uIH4ftLrJBOj/6x5lF4YeCU95EJXWsELhGZBHI1 Ub+T2sKevMsPrvrUrr8RyX0e7my2GTiFJyRwFjmgf2fuR3T/g2OfCU9njbJ7Bf+D 7PEHp5RUFlbXN0UKpTaApvi8dWvzEBh9qCYJnwKsJYlwptciVhcVuM/cdV6MF/yw Wa5Ri/GsOfAKmDf8RYI9jMqHUd1JxuF+Q8FAlaGzVIKpVPfKCvu6Dg2gRw0DJWqM 9pgla+7xb948rRyIBwbxXGVoMgZwGfpLmaWdAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU+pNLwbIuH4r1bqWhq8V0+y+VPjYwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxLy1wTkx3Ykl1SDRyMWJxV2hxOFYwLXktVlBqWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALbZJgwDQYJKoZIhvcNAQELBQADggEBAKTRpYDTwXiqvLGHtL4//64V5cB1 eSIYD8by8f2EBHSvLRfD+NFfpXH/L9itmgaSvgrV8C1a/AAYhgBHdt16pmTl2IcK y17Ky+L17KTaQ0cul7sA360zANa5M8ehiltHVlswWfbdsdEoahafLg2WhUXa9z1A S/CSIbK1kBMjZ5lvPNzeJRJWjIyeLxoruOXkqAJGz+omjAxo4lS23dOUGJE56oY/ JV7Eh/gO56jmYFrAtr6O5UReZhGH9SxSfTC1vSGKkAI5jPpHV5SfEjFQwECbYEcm cZoIJH9bw1sA6KfgcCdqacSNMXYPbYeALZrpPa2F51ojPfLTFX/ar691/yk= -----END CERTIFICATE-----Generated at Sat May 18 12:40:38 2024 by rpki-client on console-ams.rpki-client.org