$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/VNB5qsO-Ehlnz_RfiKP6Wok7ffc.roa File: VNB5qsO-Ehlnz_RfiKP6Wok7ffc.roa (raw, json) Hash identifier: Mc2IP/yjbM5lITkjrCNTa6iXC3n3v4sAuQ72KEZr2uE= Subject key identifier: 54:D0:79:AA:C3:BE:12:19:67:CF:F4:5F:88:A3:FA:5A:89:3B:7D:F7 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 0131 Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/VNB5qsO-Ehlnz_RfiKP6Wok7ffc.roa Signing time: Sun 01 Oct 2023 01:30:11 +0000 ROA not before: Sun 01 Oct 2023 01:30:11 +0000 ROA not after: Sat 14 Sep 2024 01:30:03 +0000 asID: 9824 IP address blocks: 210.228.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 01:34:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 305 (0x131) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Oct 1 01:30:11 2023 GMT Not After : Sep 14 01:30:03 2024 GMT Subject: CN=54D079AAC3BE121967CFF45F88A3FA5A893B7DF7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:08:56:19:19:65:04:40:8a:ce:c5:ab:13:4d: e2:7e:49:a1:6c:ed:d7:cd:25:9a:4c:e5:1e:33:e5: 9e:8f:4d:d3:96:83:4a:b0:b3:77:bd:88:aa:85:af: 82:00:11:34:03:90:7e:17:04:56:e4:11:67:06:22: c2:dd:5c:95:1e:65:e0:a3:59:3d:cb:d3:01:02:22: 5a:0a:4a:e4:ce:82:b9:96:46:0a:e7:95:50:1a:79: 5b:c4:83:44:09:a2:85:ca:cb:d9:20:21:f9:ab:27: d3:1b:8f:79:59:d9:de:2e:4c:03:86:71:50:03:e9: 93:27:f2:da:f5:0b:af:8b:d3:10:d4:e2:1a:8d:c6: c5:71:a8:af:93:12:8d:49:e2:44:45:fe:82:9e:4c: 6f:1d:dd:cb:69:12:20:b8:51:b3:de:6b:2c:66:57: f0:03:7c:20:0f:44:1e:e6:44:c0:ff:b4:2c:e1:0a: 7a:42:1f:5c:de:d1:27:d5:59:3e:9a:6c:0e:8f:e9: 27:19:7e:d2:c7:bc:ca:24:bf:9c:b0:a1:3c:18:b6: 93:56:d7:d1:24:08:19:64:09:0e:55:69:80:fc:37: 51:81:e7:93:81:0b:43:f0:1c:a2:86:3c:32:cb:1d: 47:31:1d:d4:1a:40:21:11:27:3b:df:35:03:b6:92: 14:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:D0:79:AA:C3:BE:12:19:67:CF:F4:5F:88:A3:FA:5A:89:3B:7D:F7 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/VNB5qsO-Ehlnz_RfiKP6Wok7ffc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.228.0.0/20 Signature Algorithm: sha256WithRSAEncryption dc:75:a0:cf:ea:f4:74:53:7e:b9:20:a3:12:29:8b:40:50:36: 74:0e:5e:62:7d:f6:30:58:f2:7a:cc:ce:2a:cb:77:d3:2d:f7: 77:4e:9a:29:48:22:be:82:87:48:de:f0:fe:8c:c1:7f:8c:c1: 78:ac:4f:10:04:b2:c7:7c:2b:03:ee:7a:be:0d:04:0a:b2:69: cb:55:6c:79:03:f4:2f:2f:2a:3f:46:81:96:44:bf:9e:39:88: 84:4a:34:0b:f8:06:0f:d1:52:e1:47:76:49:6e:ad:96:5d:ae: 64:e3:d3:99:7d:68:b1:f7:7c:7c:9a:79:2f:b3:a4:1f:d4:4e: 48:9e:a5:9e:8e:fd:e5:40:1f:8c:96:93:8e:73:ca:c6:b0:81: 15:3f:bc:43:9f:48:1a:a5:17:e6:62:6b:1a:08:55:d6:70:b2: 19:fb:01:bc:7d:02:82:b9:98:10:7b:82:71:38:cb:9b:60:7f: 5e:9b:4e:74:4e:d5:d8:f9:33:8b:bf:2a:22:91:08:40:a8:21: 89:2c:3a:51:ef:05:94:f3:76:85:72:47:99:77:b6:7d:6c:f2: 0d:3c:3f:a2:23:09:2c:46:30:d4:38:0b:72:ab:66:16:20:5a: 26:b3:97:16:36:f4:ae:35:e0:dc:0c:6a:f0:e2:c5:50:fc:c5: 85:fd:d6:17 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICATEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yMzEwMDEw MTMwMTFaFw0yNDA5MTQwMTMwMDNaMDMxMTAvBgNVBAMTKDU0RDA3OUFBQzNCRTEy MTk2N0NGRjQ1Rjg4QTNGQTVBODkzQjdERjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD1CFYZGWUEQIrOxasTTeJ+SaFs7dfNJZpM5R4z5Z6PTdOWg0qw s3e9iKqFr4IAETQDkH4XBFbkEWcGIsLdXJUeZeCjWT3L0wECIloKSuTOgrmWRgrn lVAaeVvEg0QJooXKy9kgIfmrJ9Mbj3lZ2d4uTAOGcVAD6ZMn8tr1C6+L0xDU4hqN xsVxqK+TEo1J4kRF/oKeTG8d3ctpEiC4UbPeayxmV/ADfCAPRB7mRMD/tCzhCnpC H1ze0SfVWT6abA6P6ScZftLHvMokv5ywoTwYtpNW19EkCBlkCQ5VaYD8N1GB55OB C0PwHKKGPDLLHUcxHdQaQCERJzvfNQO2khQtAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUVNB5qsO+Ehlnz/RfiKP6Wok7ffcwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxL1ZOQjVxc08tRWhsbnpfUmZpS1A2V29rN2ZmYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATS5AAwDQYJKoZIhvcNAQELBQADggEBANx1oM/q9HRTfrkgoxIpi0BQNnQO XmJ99jBY8nrMzirLd9Mt93dOmilIIr6Ch0je8P6MwX+MwXisTxAEssd8KwPuer4N BAqyactVbHkD9C8vKj9GgZZEv545iIRKNAv4Bg/RUuFHdklurZZdrmTj05l9aLH3 fHyaeS+zpB/UTkiepZ6O/eVAH4yWk45zysawgRU/vEOfSBqlF+ZiaxoIVdZwshn7 Abx9AoK5mBB7gnE4y5tgf16bTnRO1dj5M4u/KiKRCECoIYksOlHvBZTzdoVyR5l3 tn1s8g08P6IjCSxGMNQ4C3KrZhYgWiazlxY29K414NwMavDixVD8xYX91hc= -----END CERTIFICATE-----Generated at Sat May 18 12:40:39 2024 by rpki-client on console-ams.rpki-client.org