$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/KdYjtzB5Nxorx1aVgl_Q7uXFjRY.roa File: KdYjtzB5Nxorx1aVgl_Q7uXFjRY.roa (raw, json) Hash identifier: wORQTl4pmDDNcDkyaHRV2JUgjo6P6u9KZatIDtWsAME= Subject key identifier: 29:D6:23:B7:30:79:37:1A:2B:C7:56:95:82:5F:D0:EE:E5:C5:8D:16 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 01B4 Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/KdYjtzB5Nxorx1aVgl_Q7uXFjRY.roa Signing time: Sun 01 Oct 2023 01:38:12 +0000 ROA not before: Sun 01 Oct 2023 01:38:12 +0000 ROA not after: Sat 14 Sep 2024 01:30:03 +0000 asID: 4721 IP address blocks: 219.117.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 01:34:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 436 (0x1b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Oct 1 01:38:12 2023 GMT Not After : Sep 14 01:30:03 2024 GMT Subject: CN=29D623B73079371A2BC75695825FD0EEE5C58D16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9e:bf:2a:da:59:05:90:53:17:db:90:fe:48: 39:1c:63:a6:e1:de:55:9a:61:f7:1a:7b:3b:be:a0: b5:75:91:00:29:67:8e:9b:c7:da:fa:1e:05:7a:29: f5:f6:d0:0f:5f:c7:a7:0d:13:85:78:36:83:94:79: 9a:b5:fa:34:88:1b:80:3d:0d:32:c7:78:4c:83:d0: 22:b5:61:46:3b:e0:69:d7:bb:22:f8:c6:c9:f8:29: 5d:78:6e:64:6a:3c:6e:67:f3:df:f0:cd:94:fd:39: 22:63:a8:77:73:36:aa:83:56:aa:df:b3:66:ac:20: 0c:f5:b0:a7:b6:b5:73:58:83:0e:b3:9b:d9:ce:73: d6:09:87:b8:7f:ab:66:89:23:16:bf:58:a5:4a:4f: 0a:a4:ed:11:5e:77:bd:07:41:19:e2:00:6d:33:e3: 4b:f8:6b:c6:e6:90:3f:b1:f6:ee:b8:ac:3c:6d:90: 6e:03:12:e3:9e:d1:38:6c:25:77:4d:50:8e:f6:e7: d7:9d:69:f7:fd:85:8b:34:90:71:ac:36:7a:7e:9f: d4:88:06:d4:b6:16:11:74:08:1b:a0:4b:ce:0c:85: 91:9d:20:1d:80:2d:2f:3d:72:cf:de:c2:38:ab:a4: 70:9a:c8:83:1f:08:bc:be:43:e7:b8:13:6e:8d:70: ad:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:D6:23:B7:30:79:37:1A:2B:C7:56:95:82:5F:D0:EE:E5:C5:8D:16 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/KdYjtzB5Nxorx1aVgl_Q7uXFjRY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.117.160.0/19 Signature Algorithm: sha256WithRSAEncryption 16:61:67:bb:9d:b8:f1:19:3c:7a:a7:ae:e6:03:0b:79:97:e7: 6c:7a:22:a5:9b:8b:41:82:13:00:cf:fd:77:e0:ed:cc:6f:79: a5:78:e8:b1:a3:08:8b:a6:a3:0d:d9:72:4e:8c:3c:b7:07:69: 33:5e:9e:6d:33:34:ac:3d:9f:36:53:7e:5d:b2:73:cf:52:9f: b3:fb:fa:4d:cf:63:f7:9d:37:46:71:20:74:c8:6d:91:c1:b0: a9:4b:f7:7b:fd:dc:fd:15:7e:b7:12:29:a2:a2:13:05:42:a1: 4f:86:99:51:64:f0:10:35:5c:a6:f7:eb:5b:c3:28:06:37:11: 6d:b7:ef:02:60:e7:07:2f:00:06:6d:f6:4b:f3:64:fd:fa:65: d7:92:27:5b:ea:89:2b:78:84:e2:60:60:45:64:a7:69:d5:37: 2c:27:df:47:f2:31:4c:e7:4f:40:4f:30:95:c5:2f:42:4f:c3: a4:81:3a:10:0b:83:c4:6a:a9:e1:cb:99:dc:a4:4d:fb:a0:ef: c8:1a:17:9e:89:ab:8e:de:2f:0b:31:f6:db:27:17:de:29:52: 79:da:fc:21:9e:f9:6c:0a:94:15:fc:24:b1:59:e8:6d:96:14: 8e:1b:c1:46:f8:16:7c:99:40:40:9d:1b:25:2a:65:c9:82:bd: b8:ec:eb:91 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAbQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yMzEwMDEw MTM4MTJaFw0yNDA5MTQwMTMwMDNaMDMxMTAvBgNVBAMTKDI5RDYyM0I3MzA3OTM3 MUEyQkM3NTY5NTgyNUZEMEVFRTVDNThEMTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBnr8q2lkFkFMX25D+SDkcY6bh3lWaYfcaezu+oLV1kQApZ46b x9r6HgV6KfX20A9fx6cNE4V4NoOUeZq1+jSIG4A9DTLHeEyD0CK1YUY74GnXuyL4 xsn4KV14bmRqPG5n89/wzZT9OSJjqHdzNqqDVqrfs2asIAz1sKe2tXNYgw6zm9nO c9YJh7h/q2aJIxa/WKVKTwqk7RFed70HQRniAG0z40v4a8bmkD+x9u64rDxtkG4D EuOe0ThsJXdNUI7259edaff9hYs0kHGsNnp+n9SIBtS2FhF0CBugS84MhZGdIB2A LS89cs/ewjirpHCayIMfCLy+Q+e4E26NcK3DAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUKdYjtzB5Nxorx1aVgl/Q7uXFjRYwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxL0tkWWp0ekI1TnhvcngxYVZnbF9RN3VYRmpSWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXbdaAwDQYJKoZIhvcNAQELBQADggEBABZhZ7uduPEZPHqnruYDC3mX52x6 IqWbi0GCEwDP/Xfg7cxveaV46LGjCIumow3Zck6MPLcHaTNenm0zNKw9nzZTfl2y c89Sn7P7+k3PY/edN0ZxIHTIbZHBsKlL93v93P0VfrcSKaKiEwVCoU+GmVFk8BA1 XKb361vDKAY3EW237wJg5wcvAAZt9kvzZP36ZdeSJ1vqiSt4hOJgYEVkp2nVNywn 30fyMUznT0BPMJXFL0JPw6SBOhALg8RqqeHLmdykTfug78gaF56Jq47eLwsx9tsn F94pUnna/CGe+WwKlBX8JLFZ6G2WFI4bwUb4FnyZQECdGyUqZcmCvbjs65E= -----END CERTIFICATE-----Generated at Sat May 18 12:40:39 2024 by rpki-client on console-ams.rpki-client.org