$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/1EES2vyjjANmsulPLKeI85do6uk.roa File: 1EES2vyjjANmsulPLKeI85do6uk.roa (raw, json) Hash identifier: u8Xkj7Jy8JG59VE4/vAEAQTwVtb5rTK7svNt8ee2TTA= Subject key identifier: D4:41:12:DA:FC:A3:8C:03:66:B2:E9:4F:2C:A7:88:F3:97:68:EA:E9 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 0117 Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/1EES2vyjjANmsulPLKeI85do6uk.roa Signing time: Fri 01 Sep 2023 01:30:23 +0000 ROA not before: Fri 01 Sep 2023 01:30:23 +0000 ROA not after: Wed 14 Aug 2024 01:30:02 +0000 asID: 4721 IP address blocks: 203.114.248.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 01:34:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 279 (0x117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Sep 1 01:30:23 2023 GMT Not After : Aug 14 01:30:02 2024 GMT Subject: CN=D44112DAFCA38C0366B2E94F2CA788F39768EAE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:0a:f6:3d:8a:dc:cb:10:fc:de:f9:19:b7:d4: ac:78:b8:97:89:46:b2:a5:58:77:97:14:92:79:42: 4a:02:5b:60:a1:36:8b:09:a2:a7:ae:9e:d9:44:80: 30:87:4a:1f:81:f2:2b:96:3d:a5:97:5e:54:3d:72: 4a:e3:70:f4:a0:17:21:1f:66:a1:04:ba:50:c1:ca: c4:21:ab:84:71:e7:b5:b3:c9:63:cd:88:a4:54:dd: 6f:26:d9:cf:96:b3:23:8c:31:11:88:5d:2a:4b:8f: 35:2d:3b:ce:79:99:0b:78:bc:af:de:1f:36:d0:b4: b6:f8:85:58:b4:69:d1:bb:16:bf:3e:14:bd:7a:d5: 43:e6:a4:e9:ce:ab:08:bf:1a:49:1c:ac:56:68:38: c2:d2:94:ce:ed:95:fd:49:31:b1:d9:e0:35:1d:f2: 3c:7b:62:ad:ed:b3:d4:92:ad:2f:a8:b6:10:cc:df: 0d:52:a5:df:1e:9e:b1:65:b1:37:1d:26:72:6b:f0: 50:a7:0f:7a:be:0d:a2:94:eb:9e:c4:d8:62:f9:53: eb:2f:55:ab:99:39:12:a8:ac:d7:67:81:81:b9:df: d9:2e:dc:eb:42:4c:78:2c:cb:12:d4:9c:01:6b:fe: 6d:cc:81:cc:84:be:77:19:b2:f8:2b:e9:59:a5:f4: 57:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:41:12:DA:FC:A3:8C:03:66:B2:E9:4F:2C:A7:88:F3:97:68:EA:E9 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/1EES2vyjjANmsulPLKeI85do6uk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.114.248.0/22 Signature Algorithm: sha256WithRSAEncryption d8:0f:ee:e6:42:ed:c3:7c:63:16:74:bb:0a:dc:69:23:94:0b: 48:b8:7d:71:33:59:c0:67:6e:83:63:ab:e1:e8:22:98:e1:47: de:52:3c:30:a7:f2:13:fe:8c:f2:74:32:f7:dc:f2:b5:66:c7: 2a:1e:a8:7c:ad:b5:ae:a3:a7:74:38:8e:2f:41:c7:db:34:55: 4c:d1:5b:8f:ac:73:5a:99:c0:ac:b1:fa:5a:a5:2a:31:32:94: 0b:51:ed:b9:ad:23:29:b3:c5:0b:d0:77:30:e0:3b:5c:68:98: 4d:56:08:17:61:55:5f:4b:23:e1:f4:6f:41:c2:16:46:c1:8a: 7d:79:ba:6a:c1:e5:cf:2f:e5:4d:39:d9:d9:4e:16:94:e2:79: c8:6a:e8:01:2a:22:29:42:b0:47:59:1d:2e:3c:d3:0d:ef:ae: 1c:a2:e2:bd:b0:a5:b3:e4:af:f9:d3:b0:20:28:59:17:96:87: 5f:69:89:ea:76:7c:9e:5d:42:3e:a1:f3:20:56:b7:3e:94:dd: ff:1f:a9:41:94:e8:dc:7f:cf:a9:7e:47:13:76:95:65:d0:72: 28:85:d4:0d:57:ea:a9:21:80:b7:09:8d:36:1a:05:dd:6d:20: d5:0f:d7:a6:9c:e6:8e:9d:b3:61:93:d2:7e:fe:c0:48:c9:2e: bd:69:a5:c5 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICARcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yMzA5MDEw MTMwMjNaFw0yNDA4MTQwMTMwMDJaMDMxMTAvBgNVBAMTKEQ0NDExMkRBRkNBMzhD MDM2NkIyRTk0RjJDQTc4OEYzOTc2OEVBRTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDICvY9itzLEPze+Rm31Kx4uJeJRrKlWHeXFJJ5QkoCW2ChNosJ oqeuntlEgDCHSh+B8iuWPaWXXlQ9ckrjcPSgFyEfZqEEulDBysQhq4Rx57WzyWPN iKRU3W8m2c+WsyOMMRGIXSpLjzUtO855mQt4vK/eHzbQtLb4hVi0adG7Fr8+FL16 1UPmpOnOqwi/GkkcrFZoOMLSlM7tlf1JMbHZ4DUd8jx7Yq3ts9SSrS+othDM3w1S pd8enrFlsTcdJnJr8FCnD3q+DaKU657E2GL5U+svVauZORKorNdngYG539ku3OtC THgsyxLUnAFr/m3MgcyEvncZsvgr6Vml9FebAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU1EES2vyjjANmsulPLKeI85do6ukwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxLzFFRVMydnlqakFObXN1bFBMS2VJODVkbzZ1ay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALLcvgwDQYJKoZIhvcNAQELBQADggEBANgP7uZC7cN8YxZ0uwrcaSOUC0i4 fXEzWcBnboNjq+HoIpjhR95SPDCn8hP+jPJ0Mvfc8rVmxyoeqHytta6jp3Q4ji9B x9s0VUzRW4+sc1qZwKyx+lqlKjEylAtR7bmtIymzxQvQdzDgO1xomE1WCBdhVV9L I+H0b0HCFkbBin15umrB5c8v5U052dlOFpTiechq6AEqIilCsEdZHS480w3vrhyi 4r2wpbPkr/nTsCAoWReWh19piep2fJ5dQj6h8yBWtz6U3f8fqUGU6Nx/z6l+RxN2 lWXQciiF1A1X6qkhgLcJjTYaBd1tINUP16ac5o6ds2GT0n7+wEjJLr1ppcU= -----END CERTIFICATE-----Generated at Sat May 18 12:40:38 2024 by rpki-client on console-ams.rpki-client.org