$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/4LHZsWbhHaH2ZM_H2-Y--L9u1ds.roa File: 4LHZsWbhHaH2ZM_H2-Y--L9u1ds.roa (raw, json) Hash identifier: X2ww7Msg55mLZTMeFGju1TClMFt8Yuf5bC3LTsrG+Io= Subject key identifier: E0:B1:D9:B1:66:E1:1D:A1:F6:64:CF:C7:DB:E6:3E:F8:BF:6E:D5:DB Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 018F Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/4LHZsWbhHaH2ZM_H2-Y--L9u1ds.roa Signing time: Sun 01 Oct 2023 01:34:35 +0000 ROA not before: Sun 01 Oct 2023 01:34:35 +0000 ROA not after: Sat 14 Sep 2024 01:30:03 +0000 asID: 9824 IP address blocks: 123.98.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 02:39:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 399 (0x18f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Oct 1 01:34:35 2023 GMT Not After : Sep 14 01:30:03 2024 GMT Subject: CN=E0B1D9B166E11DA1F664CFC7DBE63EF8BF6ED5DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:cf:ee:30:a0:59:e7:66:ea:3a:98:36:1d:8f: f7:4a:41:df:a3:ef:1f:58:6a:69:92:29:32:3c:ac: 12:4d:ad:66:03:ce:f8:0b:bc:33:d3:20:af:87:d8: e6:81:95:cb:2f:63:3f:f0:aa:fb:f3:a0:17:24:1a: 87:0a:76:a7:8b:72:9a:91:45:9c:c4:ef:f2:d0:03: df:63:44:00:19:f5:09:be:4d:66:e5:85:2b:8f:12: c2:79:59:9b:97:24:d0:5d:45:43:c9:74:1a:27:a0: 9e:b6:ca:b9:44:77:5e:38:14:8b:7c:2f:6b:0d:74: fc:f1:e5:e2:5e:c2:3c:13:dc:8e:a1:0d:a2:3d:1f: 53:cc:2b:50:02:0c:33:f8:f0:bd:cf:a1:28:bb:d1: 2d:8e:06:b9:76:a6:ef:86:93:b9:04:a5:47:1e:0f: 39:30:ef:c7:d5:28:8b:90:cd:09:67:99:18:9f:6e: d2:a4:53:05:0e:f6:e6:77:00:b3:bb:69:69:c4:f5: b3:07:2c:94:1f:cc:f3:82:7c:f0:90:9c:4f:cc:d6: bf:5e:79:4c:6b:5f:26:a4:05:cc:92:32:49:54:6a: fb:14:72:6c:50:69:4f:74:fb:c0:f9:f1:47:9c:e4: 7d:3f:83:0c:74:6d:80:36:e8:a4:b3:32:47:95:6f: 71:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:B1:D9:B1:66:E1:1D:A1:F6:64:CF:C7:DB:E6:3E:F8:BF:6E:D5:DB X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/4LHZsWbhHaH2ZM_H2-Y--L9u1ds.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.98.224.0/19 Signature Algorithm: sha256WithRSAEncryption 83:10:2d:98:58:e2:aa:f7:11:25:c1:21:56:1d:37:60:3d:2e: 6e:f0:ea:b1:05:bf:90:12:2e:14:6f:63:f5:4d:f9:4b:69:57: 80:02:8b:e3:e4:41:3d:c3:b8:9d:ba:78:30:7b:30:28:38:c1: 24:4e:ec:12:c0:c5:e7:2c:3c:39:20:82:d4:79:b8:57:05:48: 53:64:88:81:b8:8f:b8:24:0c:ec:15:85:bc:dd:e4:74:df:ea: 05:1d:46:4c:83:67:a6:eb:e1:cd:70:e0:70:a8:5f:19:8c:41: 49:ff:7a:13:eb:e8:72:34:c1:98:a6:a9:e2:9e:75:68:1d:48: 4e:3d:1b:17:e1:26:3a:ad:e0:c3:be:c0:e9:33:08:bb:bc:4b: 99:7e:30:e0:78:4f:22:e8:c1:6b:c1:8f:a4:23:63:04:c9:f2: 03:32:c2:c9:c6:46:ea:2a:bb:13:35:19:1c:f9:3e:25:12:b6: 1d:5c:5b:6c:ac:4b:b3:e4:95:e9:db:63:0d:09:ec:c1:99:78: fd:1f:5c:8f:f0:31:dc:f7:02:e0:6e:d6:22:8d:b0:c3:bb:16: ce:17:eb:e2:d3:e1:c2:b6:c7:c2:93:42:09:5a:cc:3f:40:5a: f1:d3:31:b3:f2:60:04:2b:83:36:cc:c6:69:b0:06:6b:c9:e1: dc:36:9c:49 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAY8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yMzEwMDEw MTM0MzVaFw0yNDA5MTQwMTMwMDNaMDMxMTAvBgNVBAMTKEUwQjFEOUIxNjZFMTFE QTFGNjY0Q0ZDN0RCRTYzRUY4QkY2RUQ1REIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFz+4woFnnZuo6mDYdj/dKQd+j7x9YammSKTI8rBJNrWYDzvgL vDPTIK+H2OaBlcsvYz/wqvvzoBckGocKdqeLcpqRRZzE7/LQA99jRAAZ9Qm+TWbl hSuPEsJ5WZuXJNBdRUPJdBonoJ62yrlEd144FIt8L2sNdPzx5eJewjwT3I6hDaI9 H1PMK1ACDDP48L3PoSi70S2OBrl2pu+Gk7kEpUceDzkw78fVKIuQzQlnmRifbtKk UwUO9uZ3ALO7aWnE9bMHLJQfzPOCfPCQnE/M1r9eeUxrXyakBcySMklUavsUcmxQ aU90+8D58Uec5H0/gwx0bYA26KSzMkeVb3HxAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU4LHZsWbhHaH2ZM/H2+Y++L9u1dswHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxLzRMSFpzV2JoSGFIMlpNX0gyLVktLUw5dTFkcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAV7YuAwDQYJKoZIhvcNAQELBQADggEBAIMQLZhY4qr3ESXBIVYdN2A9Lm7w 6rEFv5ASLhRvY/VN+UtpV4ACi+PkQT3DuJ26eDB7MCg4wSRO7BLAxecsPDkggtR5 uFcFSFNkiIG4j7gkDOwVhbzd5HTf6gUdRkyDZ6br4c1w4HCoXxmMQUn/ehPr6HI0 wZimqeKedWgdSE49GxfhJjqt4MO+wOkzCLu8S5l+MOB4TyLowWvBj6QjYwTJ8gMy wsnGRuoquxM1GRz5PiUSth1cW2ysS7PklenbYw0J7MGZeP0fXI/wMdz3AuBu1iKN sMO7Fs4X6+LT4cK2x8KTQglazD9AWvHTMbPyYAQrgzbMxmmwBmvJ4dw2nEk= -----END CERTIFICATE-----Generated at Thu May 30 03:08:55 2024 by rpki-client on console-fra.rpki-client.org