$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/cTh6eyYmbzf1ihjD7TXzYisKsM0.roa File: cTh6eyYmbzf1ihjD7TXzYisKsM0.roa (raw, json) Hash identifier: rD7zC2rpE23yyTVtuzmPGeAkqixinyzTBCilw4tFy9U= Subject key identifier: 71:38:7A:7B:26:26:6F:37:F5:8A:18:C3:ED:35:F3:62:2B:0A:B0:CD Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 010E Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/cTh6eyYmbzf1ihjD7TXzYisKsM0.roa Signing time: Fri 01 Sep 2023 01:30:20 +0000 ROA not before: Fri 01 Sep 2023 01:30:20 +0000 ROA not after: Wed 14 Aug 2024 01:30:02 +0000 asID: 9824 IP address blocks: 202.43.68.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 01:34:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Sep 1 01:30:20 2023 GMT Not After : Aug 14 01:30:02 2024 GMT Subject: CN=71387A7B26266F37F58A18C3ED35F3622B0AB0CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b7:2e:0e:34:67:95:59:a3:94:eb:52:fe:4f: 95:45:4d:5f:33:f6:d3:73:fd:9f:cb:c7:82:8e:f3: 2f:39:80:99:bc:01:f0:5f:53:06:53:9c:46:dd:9a: 19:82:94:b4:2c:ea:94:d8:cb:10:1a:91:4d:25:5b: 13:b6:4e:9f:20:42:6a:5c:67:1b:f9:7b:89:67:53: d9:d9:f1:f0:18:3c:1e:21:d7:29:ee:50:88:37:38: 1b:53:5b:ee:b3:c9:4a:1a:d1:fb:ae:17:12:47:f7: 82:b5:e6:a3:27:6f:a5:cf:88:71:02:b3:f7:f0:36: 10:eb:bf:33:59:2c:7e:49:65:0b:84:80:9c:7f:2a: 43:93:bd:f8:d2:0e:21:15:e3:24:c2:88:f2:94:c0: c1:31:27:f1:57:75:73:ea:9f:cb:89:45:2d:6f:28: fb:77:69:2a:c8:79:6a:93:0e:d6:bc:79:fa:49:96: 2e:6d:4b:3e:d5:ed:ed:91:ae:a1:3c:98:6e:62:b9: 4e:e8:09:b3:bf:bd:98:b4:bc:76:f2:54:ce:60:48: 9f:e0:f5:aa:6e:19:77:92:d3:ca:d0:cc:80:b1:1b: 17:3a:8e:d2:49:f1:ba:6a:c4:79:02:d0:0c:ce:b2: 20:dd:23:e9:90:34:1e:ac:5b:62:ce:f4:1d:a2:dd: 82:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:38:7A:7B:26:26:6F:37:F5:8A:18:C3:ED:35:F3:62:2B:0A:B0:CD X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/cTh6eyYmbzf1ihjD7TXzYisKsM0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.43.68.0/22 Signature Algorithm: sha256WithRSAEncryption ab:cb:71:c0:fe:85:3f:98:5d:7a:d2:d8:d7:71:e1:86:0c:17: 93:26:7b:9c:e4:42:9d:dd:87:34:03:94:55:4e:14:65:f4:28: 61:73:7c:c1:96:1f:be:af:76:88:70:2b:9d:9d:b7:86:de:3b: 8a:1a:ff:82:96:08:23:14:03:36:65:cc:5b:4c:cf:20:51:fd: 87:e0:05:35:9c:5a:2e:31:3a:11:32:14:e3:e5:31:f2:fd:11: 5d:27:94:d5:84:52:dd:45:59:4f:18:fe:6e:d0:24:dc:b0:5e: ac:1f:4a:f3:17:c5:42:07:38:f0:0e:bf:b2:fa:ea:3a:d2:15: 5e:23:09:90:cd:44:c0:d6:a2:3a:ab:c8:9b:26:69:51:1b:24: b3:20:90:e6:18:ea:24:d1:30:7a:4a:0c:f8:50:db:7c:36:99: 84:a7:c5:20:d9:50:09:24:a4:ed:22:c5:56:47:cd:94:d5:0e: 16:df:c2:89:e3:41:50:c2:60:ef:73:81:b1:20:31:fd:5e:4d: e9:b4:f1:be:ab:42:3a:5f:bb:90:e3:2b:a6:de:85:52:45:46: af:bb:ae:f4:56:2f:f1:fb:05:23:a8:04:67:13:c1:44:8c:46: b4:77:26:aa:89:04:15:e5:f0:31:ca:e3:bc:01:be:22:58:9f: 42:2c:ed:2b -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yMzA5MDEw MTMwMjBaFw0yNDA4MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDcxMzg3QTdCMjYyNjZG MzdGNThBMThDM0VEMzVGMzYyMkIwQUIwQ0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHty4ONGeVWaOU61L+T5VFTV8z9tNz/Z/Lx4KO8y85gJm8AfBf UwZTnEbdmhmClLQs6pTYyxAakU0lWxO2Tp8gQmpcZxv5e4lnU9nZ8fAYPB4h1ynu UIg3OBtTW+6zyUoa0fuuFxJH94K15qMnb6XPiHECs/fwNhDrvzNZLH5JZQuEgJx/ KkOTvfjSDiEV4yTCiPKUwMExJ/FXdXPqn8uJRS1vKPt3aSrIeWqTDta8efpJli5t Sz7V7e2RrqE8mG5iuU7oCbO/vZi0vHbyVM5gSJ/g9apuGXeS08rQzICxGxc6jtJJ 8bpqxHkC0AzOsiDdI+mQNB6sW2LO9B2i3YINAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUcTh6eyYmbzf1ihjD7TXzYisKsM0wHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxL2NUaDZleVltYnpmMWloakQ3VFh6WWlzS3NNMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALKK0QwDQYJKoZIhvcNAQELBQADggEBAKvLccD+hT+YXXrS2Ndx4YYMF5Mm e5zkQp3dhzQDlFVOFGX0KGFzfMGWH76vdohwK52dt4beO4oa/4KWCCMUAzZlzFtM zyBR/YfgBTWcWi4xOhEyFOPlMfL9EV0nlNWEUt1FWU8Y/m7QJNywXqwfSvMXxUIH OPAOv7L66jrSFV4jCZDNRMDWojqryJsmaVEbJLMgkOYY6iTRMHpKDPhQ23w2mYSn xSDZUAkkpO0ixVZHzZTVDhbfwonjQVDCYO9zgbEgMf1eTem08b6rQjpfu5DjK6be hVJFRq+7rvRWL/H7BSOoBGcTwUSMRrR3JqqJBBXl8DHK47wBviJYn0Is7Ss= -----END CERTIFICATE-----Generated at Sat May 18 12:40:39 2024 by rpki-client on console-ams.rpki-client.org