$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/3-Bftm-DwkIfiYFG0afkgSf6K80.roa File: 3-Bftm-DwkIfiYFG0afkgSf6K80.roa (raw, json) Hash identifier: nzOiL5RmfO+jD1IZhaeqMMpg2MEj3O7QJ2QRwwwB9EA= Subject key identifier: DF:E0:5F:B6:6F:83:C2:42:1F:89:81:46:D1:A7:E4:81:27:FA:2B:CD Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 01ED Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/3-Bftm-DwkIfiYFG0afkgSf6K80.roa Signing time: Sun 01 Oct 2023 01:40:10 +0000 ROA not before: Sun 01 Oct 2023 01:40:10 +0000 ROA not after: Sat 14 Sep 2024 01:30:03 +0000 asID: 9824 IP address blocks: 221.132.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 01:34:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 493 (0x1ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Oct 1 01:40:10 2023 GMT Not After : Sep 14 01:30:03 2024 GMT Subject: CN=DFE05FB66F83C2421F898146D1A7E48127FA2BCD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c7:74:84:ae:71:bd:69:e2:9c:93:7e:f5:e9: 3d:ba:f4:d3:6d:b9:11:84:1d:f8:ca:e4:d8:a0:c4: 7e:7e:71:a1:84:fe:ed:77:99:20:e0:14:bd:dc:26: a4:40:ca:c4:bc:a8:71:6d:d5:4e:24:3d:92:4c:92: 5f:80:11:d4:5e:d1:c7:8b:ca:76:6c:20:c5:fa:e0: 28:ae:8a:b9:dd:05:76:5a:2c:67:10:bd:ec:21:3c: d0:0b:81:7d:5d:32:58:87:ef:2b:11:66:ca:8a:a1: 61:11:99:dd:a0:61:f3:c4:ca:f3:66:ce:08:62:b1: de:b9:fc:56:79:28:8a:4c:a3:5e:a3:82:dc:66:c8: 5c:e8:a7:3e:a8:aa:62:76:fd:91:0a:98:e1:cb:9e: 89:d6:61:5b:07:60:21:fb:6c:1f:0a:cd:38:aa:68: 64:7f:13:c2:2f:18:c9:28:47:40:b3:96:be:03:25: 47:e8:c1:a7:ba:71:25:74:3f:1b:16:52:49:64:76: f6:8d:79:e4:05:23:0e:d0:1b:c4:e8:39:d0:0f:31: 67:9f:59:20:2e:94:7c:bd:bd:04:b3:7f:04:a6:c9: 4f:7e:6c:45:6c:c0:4a:5a:6b:b2:a3:a8:65:05:4f: 88:d5:0a:85:e0:3f:97:cb:81:7a:07:47:1e:27:ea: 55:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:E0:5F:B6:6F:83:C2:42:1F:89:81:46:D1:A7:E4:81:27:FA:2B:CD X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/3-Bftm-DwkIfiYFG0afkgSf6K80.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 221.132.128.0/18 Signature Algorithm: sha256WithRSAEncryption dd:4d:97:b4:04:7f:af:7f:11:bf:aa:e0:a9:39:c9:19:42:77: fd:e4:f1:81:47:fc:28:c1:8f:75:c0:b6:1e:39:29:10:24:9d: 55:c7:47:5a:46:ec:90:7b:b2:0b:67:59:23:e1:9d:1f:dd:ce: 57:54:5a:4d:02:e7:af:3a:80:83:71:56:66:e1:90:8c:4f:a5: 47:65:0d:d3:68:83:b5:75:49:65:43:ef:e1:42:82:de:5b:d1: a3:3d:5d:19:ed:32:0f:56:39:88:22:f6:63:09:34:77:2b:35: e2:88:97:f7:94:58:73:dd:44:fb:5e:83:c7:d7:c2:5e:d0:64: 81:b2:b4:97:89:7e:63:31:89:86:46:01:81:89:b4:51:f2:23: 78:c9:d7:39:01:9a:2d:fc:1f:e2:5e:6d:94:97:6d:dc:53:54: 78:1e:7e:a2:0d:1b:e9:21:99:e5:a7:eb:22:b0:57:9f:fb:06: 4f:4a:2e:00:4b:71:3d:09:e5:ef:ee:d5:0e:8f:78:6e:97:1d: 4f:07:51:89:f5:c1:b2:9c:f8:81:73:13:88:d2:4c:61:e2:b4: eb:83:0b:77:73:60:cc:0b:dc:0c:a9:3c:9c:04:cc:3b:bf:22: 03:86:1e:2b:25:72:48:2a:3d:76:d9:57:b7:68:b4:45:d7:00: d0:d7:f2:78 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAe0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yMzEwMDEw MTQwMTBaFw0yNDA5MTQwMTMwMDNaMDMxMTAvBgNVBAMTKERGRTA1RkI2NkY4M0My NDIxRjg5ODE0NkQxQTdFNDgxMjdGQTJCQ0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCx3SErnG9aeKck3716T269NNtuRGEHfjK5NigxH5+caGE/u13 mSDgFL3cJqRAysS8qHFt1U4kPZJMkl+AEdRe0ceLynZsIMX64CiuirndBXZaLGcQ vewhPNALgX1dMliH7ysRZsqKoWERmd2gYfPEyvNmzghisd65/FZ5KIpMo16jgtxm yFzopz6oqmJ2/ZEKmOHLnonWYVsHYCH7bB8KzTiqaGR/E8IvGMkoR0Czlr4DJUfo wae6cSV0PxsWUklkdvaNeeQFIw7QG8ToOdAPMWefWSAulHy9vQSzfwSmyU9+bEVs wEpaa7KjqGUFT4jVCoXgP5fLgXoHRx4n6lWTAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU3+Bftm+DwkIfiYFG0afkgSf6K80wHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxLzMtQmZ0bS1Ed2tJZmlZRkcwYWZrZ1NmNks4MC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAbdhIAwDQYJKoZIhvcNAQELBQADggEBAN1Nl7QEf69/Eb+q4Kk5yRlCd/3k 8YFH/CjBj3XAth45KRAknVXHR1pG7JB7sgtnWSPhnR/dzldUWk0C5686gINxVmbh kIxPpUdlDdNog7V1SWVD7+FCgt5b0aM9XRntMg9WOYgi9mMJNHcrNeKIl/eUWHPd RPteg8fXwl7QZIGytJeJfmMxiYZGAYGJtFHyI3jJ1zkBmi38H+JebZSXbdxTVHge fqING+khmeWn6yKwV5/7Bk9KLgBLcT0J5e/u1Q6PeG6XHU8HUYn1wbKc+IFzE4jS TGHitOuDC3dzYMwL3AypPJwEzDu/IgOGHislckgqPXbZV7dotEXXANDX8ng= -----END CERTIFICATE-----Generated at Sat May 18 12:40:38 2024 by rpki-client on console-ams.rpki-client.org