$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/3tKKfv6qWut7mOtIG1GrTz222fE.roa File: 3tKKfv6qWut7mOtIG1GrTz222fE.roa (raw, json) Hash identifier: rYueMRdbniRVu0n8WcC2fHDgfXwIMuQaK5xD9nTtGxo= Subject key identifier: DE:D2:8A:7E:FE:AA:5A:EB:7B:98:EB:48:1B:51:AB:4F:3D:B6:D9:F1 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 01D8 Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/3tKKfv6qWut7mOtIG1GrTz222fE.roa Signing time: Sun 01 Oct 2023 01:38:26 +0000 ROA not before: Sun 01 Oct 2023 01:38:26 +0000 ROA not after: Sat 14 Sep 2024 01:30:03 +0000 asID: 9617 IP address blocks: 218.220.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 02:39:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 472 (0x1d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Oct 1 01:38:26 2023 GMT Not After : Sep 14 01:30:03 2024 GMT Subject: CN=DED28A7EFEAA5AEB7B98EB481B51AB4F3DB6D9F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:49:f9:3d:8f:18:5d:c5:55:67:4e:f3:5a:36: 8d:ba:fa:b0:b8:40:0b:c2:b8:74:86:c1:e9:c9:23: 78:22:ce:a1:7b:b3:45:4b:25:e5:e0:3b:cf:cd:c4: 7d:bd:37:81:8d:a3:f5:18:f8:a4:cb:e4:fe:73:d4: 7a:de:f0:44:da:a0:d0:57:e1:50:98:6c:cc:57:be: 9c:ad:81:b3:3e:88:77:06:d5:9f:3b:d4:b9:46:e7: e1:cb:46:9c:e0:0e:b5:f1:7d:c2:95:1a:62:66:39: 18:c4:82:74:a9:3e:02:74:2e:a0:af:27:f0:5b:2a: 4d:3e:f2:80:7f:e6:e4:37:52:c0:e4:44:ef:7e:05: d2:a1:cb:90:3a:19:1c:c1:50:4c:3e:4c:9c:99:e2: a1:a6:c6:8d:2b:3d:50:fe:b2:9c:fe:29:a1:b1:35: b5:d2:89:c2:68:55:82:a3:be:d1:f0:8c:61:ff:a4: 00:11:28:43:f4:de:a7:17:15:ed:67:ed:63:81:72: b7:da:81:5e:db:0b:c1:3c:55:be:80:b6:41:e1:85: 7b:72:7e:31:e2:e0:b8:88:e4:7d:30:8f:80:5f:ca: 0d:a6:68:5e:98:38:42:33:41:ba:ff:20:63:1b:3c: fc:6c:30:17:ca:c3:34:9f:62:55:e0:0e:ff:6d:49: ab:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:D2:8A:7E:FE:AA:5A:EB:7B:98:EB:48:1B:51:AB:4F:3D:B6:D9:F1 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/3tKKfv6qWut7mOtIG1GrTz222fE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.220.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4e:71:5c:58:bd:c7:ca:e2:ca:49:bb:a3:18:32:51:60:3f:4c: 49:9f:17:0a:46:e7:a2:d2:30:21:7a:d9:9d:c3:99:79:2b:a4: c3:d3:f2:c0:e1:31:2a:ef:c8:78:76:ee:a9:2e:0f:35:6d:ad: 3f:5f:d8:14:89:06:9d:fc:2d:13:6a:6c:03:ca:19:7c:23:d4: 85:7f:b0:73:d3:eb:40:58:91:0c:c2:60:af:ec:c9:39:d2:da: 60:95:23:3e:f2:ea:8d:bc:f4:55:ec:42:5f:8c:63:63:a9:3d: b1:7e:48:fc:41:0c:b9:49:c3:db:76:b9:9b:2e:d3:35:c7:0c: 1c:1d:7b:ca:d1:89:5a:86:e0:4b:cf:c4:d1:e6:a0:5b:09:d6: bf:db:16:e0:4c:9e:b5:2d:19:8f:d6:2d:d1:ab:e3:17:57:6c: b8:e3:0e:a1:3b:69:69:70:18:af:67:67:36:4c:fa:73:31:54: c2:c8:23:86:1d:f6:9d:16:98:19:3c:67:4e:33:4f:fd:b7:cf: 62:d0:9e:b8:99:33:8d:6e:13:3b:a0:f9:41:37:c2:f0:f9:8e: 9c:e7:7c:1c:86:84:c6:be:c0:9c:c7:29:f9:12:02:06:ee:e0: 1d:73:4d:88:38:97:30:26:a2:2d:79:f9:1d:de:89:d0:c6:05: 41:82:d9:71 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICAdgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yMzEwMDEw MTM4MjZaFw0yNDA5MTQwMTMwMDNaMDMxMTAvBgNVBAMTKERFRDI4QTdFRkVBQTVB RUI3Qjk4RUI0ODFCNTFBQjRGM0RCNkQ5RjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwSfk9jxhdxVVnTvNaNo26+rC4QAvCuHSGwenJI3gizqF7s0VL JeXgO8/NxH29N4GNo/UY+KTL5P5z1Hre8ETaoNBX4VCYbMxXvpytgbM+iHcG1Z87 1LlG5+HLRpzgDrXxfcKVGmJmORjEgnSpPgJ0LqCvJ/BbKk0+8oB/5uQ3UsDkRO9+ BdKhy5A6GRzBUEw+TJyZ4qGmxo0rPVD+spz+KaGxNbXSicJoVYKjvtHwjGH/pAAR KEP03qcXFe1n7WOBcrfagV7bC8E8Vb6AtkHhhXtyfjHi4LiI5H0wj4Bfyg2maF6Y OEIzQbr/IGMbPPxsMBfKwzSfYlXgDv9tSasRAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQU3tKKfv6qWut7mOtIG1GrTz222fEwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxLzN0S0tmdjZxV3V0N21PdElHMUdyVHoyMjJmRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDa3DANBgkqhkiG9w0BAQsFAAOCAQEATnFcWL3HyuLKSbujGDJRYD9MSZ8X CkbnotIwIXrZncOZeSukw9PywOExKu/IeHbuqS4PNW2tP1/YFIkGnfwtE2psA8oZ fCPUhX+wc9PrQFiRDMJgr+zJOdLaYJUjPvLqjbz0VexCX4xjY6k9sX5I/EEMuUnD 23a5my7TNccMHB17ytGJWobgS8/E0eagWwnWv9sW4EyetS0Zj9Yt0avjF1dsuOMO oTtpaXAYr2dnNkz6czFUwsgjhh32nRaYGTxnTjNP/bfPYtCeuJkzjW4TO6D5QTfC 8PmOnOd8HIaExr7AnMcp+RICBu7gHXNNiDiXMCaiLXn5Hd6J0MYFQYLZcQ== -----END CERTIFICATE-----Generated at Thu May 30 03:38:52 2024 by rpki-client on console-ams.rpki-client.org