$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/IqRwF2zHE9zpEpm7PJuM4W2KPs0.roa File: IqRwF2zHE9zpEpm7PJuM4W2KPs0.roa (raw, json) Hash identifier: YSxL9qdUwDZIO4Dj0hKdw9NxoF5ucrqywgIa3eTbIig= Subject key identifier: 22:A4:70:17:6C:C7:13:DC:E9:12:99:BB:3C:9B:8C:E1:6D:8A:3E:CD Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 01F3 Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/IqRwF2zHE9zpEpm7PJuM4W2KPs0.roa Signing time: Wed 01 Nov 2023 01:30:33 +0000 ROA not before: Wed 01 Nov 2023 01:30:33 +0000 ROA not after: Mon 14 Oct 2024 01:30:03 +0000 asID: 0 IP address blocks: 210.156.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 13:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 499 (0x1f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Nov 1 01:30:33 2023 GMT Not After : Oct 14 01:30:03 2024 GMT Subject: CN=22A470176CC713DCE91299BB3C9B8CE16D8A3ECD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:ac:3b:11:ba:c7:c3:30:19:66:31:d5:86:85: 8a:bc:02:cb:be:60:81:6c:d8:2c:58:98:a8:c4:4f: 45:7b:7c:bb:1a:09:cb:d8:ca:d9:ee:d6:d0:56:3a: e6:28:c5:da:e4:38:a7:c9:d0:40:2c:e8:9e:65:24: 5a:cd:61:6c:27:e8:8f:a8:2d:c7:f1:93:fd:64:02: 46:b3:c6:21:b6:20:7e:e2:a1:d4:29:c1:99:19:50: 7e:d9:b4:f3:40:7b:75:9a:29:84:40:16:b0:ef:ad: f2:d4:e9:41:56:f3:d0:27:86:b6:ff:b8:07:c4:8b: 4e:69:91:50:a6:03:00:d1:6b:33:33:54:e4:66:2d: 2d:6c:d0:92:7c:88:b3:0b:3c:b2:41:60:ca:a1:9d: b2:d5:79:14:fd:0b:56:14:0b:17:22:d9:02:a7:24: 80:bb:29:ac:12:3f:16:21:77:b3:34:8b:b4:f3:2c: 6c:e6:6a:e1:b9:94:53:fe:13:2d:31:76:e8:22:83: a2:0b:0d:a0:e3:12:ff:b4:dc:02:3a:61:2a:b8:3f: 0a:98:11:c2:66:ff:54:95:5c:fd:1c:de:bf:4d:82: 45:eb:95:0e:f8:89:74:c9:ce:1b:4e:4e:b7:db:72: f7:2e:d9:94:a5:69:46:7e:58:ae:1f:91:af:24:8c: 2a:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:A4:70:17:6C:C7:13:DC:E9:12:99:BB:3C:9B:8C:E1:6D:8A:3E:CD X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/IqRwF2zHE9zpEpm7PJuM4W2KPs0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.156.64.0/20 Signature Algorithm: sha256WithRSAEncryption 69:ec:1d:29:36:d3:90:4e:d4:03:a0:01:01:12:8a:2d:26:16: 44:2a:31:fc:70:05:fc:a4:6a:07:a2:fd:9a:ae:0e:c2:a6:a1: b7:f5:b7:86:32:86:33:4e:ab:27:26:fe:c0:59:b1:7b:b6:cd: ad:f4:d4:3a:2f:9e:b8:4b:a6:a1:61:72:ea:67:98:a5:92:c5: 29:9d:7b:6d:2a:1a:45:59:20:55:11:df:59:f8:18:2a:8f:ad: 27:3d:70:d4:63:ca:77:fe:4b:11:e7:87:4d:7a:e5:6d:08:54: 59:7c:22:ba:e6:36:db:4d:ad:c0:fd:ad:90:e1:bb:28:49:9d: 07:81:1f:0f:f6:23:d0:c8:4e:af:f5:d2:9a:aa:df:ba:5d:53: 25:b6:c3:a5:d4:5c:9b:58:f2:56:48:6e:b7:0c:62:93:dd:c7: 0f:13:5a:e2:4d:6f:92:99:be:d4:05:a8:5e:54:92:da:c6:46: 99:0b:31:d0:96:3c:23:43:c2:0d:af:6a:8d:95:72:06:a9:49: 3f:88:f3:7e:36:29:f0:3d:a6:39:d0:ed:39:f0:4f:48:41:7a: 94:4e:b2:27:6d:22:d5:30:9e:dc:42:8c:5f:84:5f:78:b9:75: 4b:0a:2c:ac:28:52:47:75:c4:36:55:c6:3c:85:9d:74:14:12: d5:9d:c8:20 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAfMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yMzExMDEw MTMwMzNaFw0yNDEwMTQwMTMwMDNaMDMxMTAvBgNVBAMTKDIyQTQ3MDE3NkNDNzEz RENFOTEyOTlCQjNDOUI4Q0UxNkQ4QTNFQ0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgrDsRusfDMBlmMdWGhYq8Asu+YIFs2CxYmKjET0V7fLsaCcvY ytnu1tBWOuYoxdrkOKfJ0EAs6J5lJFrNYWwn6I+oLcfxk/1kAkazxiG2IH7iodQp wZkZUH7ZtPNAe3WaKYRAFrDvrfLU6UFW89Anhrb/uAfEi05pkVCmAwDRazMzVORm LS1s0JJ8iLMLPLJBYMqhnbLVeRT9C1YUCxci2QKnJIC7KawSPxYhd7M0i7TzLGzm auG5lFP+Ey0xdugig6ILDaDjEv+03AI6YSq4PwqYEcJm/1SVXP0c3r9NgkXrlQ74 iXTJzhtOTrfbcvcu2ZSlaUZ+WK4fka8kjCrfAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUIqRwF2zHE9zpEpm7PJuM4W2KPs0wHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxL0lxUndGMnpIRTl6cEVwbTdQSnVNNFcyS1BzMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATSnEAwDQYJKoZIhvcNAQELBQADggEBAGnsHSk205BO1AOgAQESii0mFkQq MfxwBfykagei/ZquDsKmobf1t4YyhjNOqycm/sBZsXu2za301DovnrhLpqFhcupn mKWSxSmde20qGkVZIFUR31n4GCqPrSc9cNRjynf+SxHnh0165W0IVFl8IrrmNttN rcD9rZDhuyhJnQeBHw/2I9DITq/10pqq37pdUyW2w6XUXJtY8lZIbrcMYpPdxw8T WuJNb5KZvtQFqF5UktrGRpkLMdCWPCNDwg2vao2VcgapST+I8342KfA9pjnQ7Tnw T0hBepROsidtItUwntxCjF+EX3i5dUsKLKwoUkd1xDZVxjyFnXQUEtWdyCA= -----END CERTIFICATE-----Generated at Fri Apr 26 13:35:58 2024 by rpki-client on console-ams.rpki-client.org