$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/HTkhdgSjSbb0eq7EEJ6-Hs1u3TQ.roa File: HTkhdgSjSbb0eq7EEJ6-Hs1u3TQ.roa (raw, json) Hash identifier: c7ecDFSaw1t1ydjBLK70y0RT5PBrhswxHqtBfAukQ70= Subject key identifier: 1D:39:21:76:04:A3:49:B6:F4:7A:AE:C4:10:9E:BE:1E:CD:6E:DD:34 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 01E4 Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/HTkhdgSjSbb0eq7EEJ6-Hs1u3TQ.roa Signing time: Sun 01 Oct 2023 01:40:04 +0000 ROA not before: Sun 01 Oct 2023 01:40:04 +0000 ROA not after: Sat 14 Sep 2024 01:30:03 +0000 asID: 4721 IP address blocks: 116.70.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 01:34:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 484 (0x1e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Oct 1 01:40:04 2023 GMT Not After : Sep 14 01:30:03 2024 GMT Subject: CN=1D39217604A349B6F47AAEC4109EBE1ECD6EDD34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:5c:61:32:0f:9a:6a:a4:61:65:09:2c:7e:8b: 96:2e:bf:00:c3:eb:9e:7b:57:90:17:9b:39:40:36: 72:af:8e:cf:5f:24:56:58:78:1d:81:d4:18:1c:52: dc:83:d6:5f:59:ed:40:55:0d:07:ce:e8:54:15:dd: c5:ae:cf:20:e0:be:90:8c:c4:8e:88:7c:9a:08:9e: d7:a9:21:a7:9e:68:50:4f:12:0b:01:4b:cc:37:03: b2:87:cb:44:ce:33:cc:49:84:46:b0:2f:f2:69:d4: 2f:ce:fc:48:f8:9c:16:a1:c0:05:35:d1:5c:45:91: 80:e5:55:c4:44:80:58:22:f5:09:dd:b0:2c:a5:23: b6:06:63:cc:ce:a8:13:5e:8c:50:4b:ab:99:75:9c: 07:02:4a:ee:41:97:80:fa:fc:3b:6c:c0:5f:19:df: dc:07:9a:59:0e:02:71:b6:4f:8b:e1:bb:c4:b8:c1: d0:9a:4f:44:3f:f3:be:d7:bb:a5:08:87:51:60:0d: 02:9d:a9:4e:25:5f:08:3d:8e:8d:1d:b6:ea:62:43: 19:c3:75:df:33:0e:26:22:22:e8:ef:d7:e3:02:a8: 51:e3:a2:7e:13:6c:c8:9c:16:9b:b1:6e:38:4f:c7: 5e:db:c8:8c:0d:2d:df:55:67:92:90:ea:6f:68:20: 21:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:39:21:76:04:A3:49:B6:F4:7A:AE:C4:10:9E:BE:1E:CD:6E:DD:34 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/HTkhdgSjSbb0eq7EEJ6-Hs1u3TQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.70.128.0/18 Signature Algorithm: sha256WithRSAEncryption b8:8d:02:7d:9d:4b:20:b9:c8:cd:ed:52:f5:62:27:d3:55:ef: 73:4d:71:25:c1:40:d6:2b:f0:05:66:a1:b8:47:3f:b4:91:6e: aa:32:26:71:03:c5:e5:cd:48:49:ed:e1:d0:59:ca:a2:2e:89: a6:77:91:f7:e4:75:d4:1a:2d:d8:82:d1:f5:59:e2:6e:dc:82: 1b:e5:e8:aa:df:a1:b8:3b:98:3e:fd:d1:5d:c6:3e:d4:3e:cd: 35:74:ef:b5:9a:01:9e:24:76:ab:54:62:ec:a3:5d:55:59:8a: 77:b6:7a:f7:d1:ec:bd:82:c4:10:c6:3e:3d:14:4a:a8:8d:9e: a9:8c:38:26:73:5e:38:fe:03:6d:80:f4:62:38:2d:34:e1:91: 46:e0:cf:80:24:3c:60:33:4f:eb:24:3a:3a:2a:e4:37:0e:ce: 69:cd:d7:2c:3e:75:7a:9c:81:13:44:cb:40:f2:76:1d:57:ee: eb:98:81:f6:21:60:78:cc:a0:bd:f7:ee:ae:71:57:b9:4a:dd: 7b:d0:41:86:10:5c:9f:60:f7:70:8f:92:82:4f:85:77:c6:cf: 15:7a:e8:5b:e9:81:cc:d9:81:6d:e8:dc:d7:a1:84:a1:c1:39: 5f:88:8d:1e:d3:f1:54:59:a0:ff:2e:ed:1a:39:e4:d7:9f:49: 46:c3:c3:ee -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAeQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yMzEwMDEw MTQwMDRaFw0yNDA5MTQwMTMwMDNaMDMxMTAvBgNVBAMTKDFEMzkyMTc2MDRBMzQ5 QjZGNDdBQUVDNDEwOUVCRTFFQ0Q2RUREMzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuXGEyD5pqpGFlCSx+i5YuvwDD6557V5AXmzlANnKvjs9fJFZY eB2B1BgcUtyD1l9Z7UBVDQfO6FQV3cWuzyDgvpCMxI6IfJoIntepIaeeaFBPEgsB S8w3A7KHy0TOM8xJhEawL/Jp1C/O/Ej4nBahwAU10VxFkYDlVcREgFgi9QndsCyl I7YGY8zOqBNejFBLq5l1nAcCSu5Bl4D6/DtswF8Z39wHmlkOAnG2T4vhu8S4wdCa T0Q/877Xu6UIh1FgDQKdqU4lXwg9jo0dtupiQxnDdd8zDiYiIujv1+MCqFHjon4T bMicFpuxbjhPx17byIwNLd9VZ5KQ6m9oICHdAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUHTkhdgSjSbb0eq7EEJ6+Hs1u3TQwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxL0hUa2hkZ1NqU2JiMGVxN0VFSjYtSHMxdTNUUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZ0RoAwDQYJKoZIhvcNAQELBQADggEBALiNAn2dSyC5yM3tUvViJ9NV73NN cSXBQNYr8AVmobhHP7SRbqoyJnEDxeXNSEnt4dBZyqIuiaZ3kffkddQaLdiC0fVZ 4m7cghvl6Krfobg7mD790V3GPtQ+zTV077WaAZ4kdqtUYuyjXVVZine2evfR7L2C xBDGPj0USqiNnqmMOCZzXjj+A22A9GI4LTThkUbgz4AkPGAzT+skOjoq5DcOzmnN 1yw+dXqcgRNEy0Dydh1X7uuYgfYhYHjMoL337q5xV7lK3XvQQYYQXJ9g93CPkoJP hXfGzxV66FvpgczZgW3o3NehhKHBOV+IjR7T8VRZoP8u7Ro55NefSUbDw+4= -----END CERTIFICATE-----Generated at Sat May 18 12:40:39 2024 by rpki-client on console-ams.rpki-client.org