$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/hc1lGSLAl5jcJrKMxoB7ko5xpOA.roa File: hc1lGSLAl5jcJrKMxoB7ko5xpOA.roa (raw, json) Hash identifier: Hh6YkGj/CEWX8HciHIEzACuZlcuoPZsT2pV616pbnIY= Subject key identifier: 85:CD:65:19:22:C0:97:98:DC:26:B2:8C:C6:80:7B:92:8E:71:A4:E0 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 01D5 Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/hc1lGSLAl5jcJrKMxoB7ko5xpOA.roa Signing time: Sun 01 Oct 2023 01:38:25 +0000 ROA not before: Sun 01 Oct 2023 01:38:25 +0000 ROA not after: Sat 14 Sep 2024 01:30:03 +0000 asID: 9824 IP address blocks: 211.124.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 01:34:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 469 (0x1d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Oct 1 01:38:25 2023 GMT Not After : Sep 14 01:30:03 2024 GMT Subject: CN=85CD651922C09798DC26B28CC6807B928E71A4E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:5c:82:f3:3f:ff:37:09:a0:fb:2a:91:6d:17: cf:04:b6:67:ba:37:e6:88:23:c6:b6:d3:ae:a3:56: c0:63:60:fd:0d:2e:3f:a2:90:80:38:2c:9d:92:13: 55:dd:74:78:e4:cc:d5:eb:06:3a:f7:1b:1b:9c:ca: dc:b4:c6:23:8f:c0:19:08:a2:72:bc:75:38:fb:b0: e0:1f:9f:e7:66:81:dc:7a:ea:19:76:1a:94:87:da: 12:4d:4f:c4:da:0e:7f:27:43:3b:26:8c:8d:26:e6: c7:2c:eb:80:58:b2:d9:84:22:94:a4:3f:9d:76:57: 4e:55:45:a0:dc:9d:e8:22:87:6e:b9:d3:13:88:1a: 81:5f:80:70:a2:f0:1b:30:85:68:0b:af:20:92:b5: 91:33:f8:c9:a4:ce:25:11:bb:93:73:cd:ea:8a:15: 02:40:4b:62:d2:c1:d3:ee:3b:cc:17:61:a3:72:de: ec:16:0e:d2:f2:2c:2d:56:35:ed:fa:4c:0f:95:72: c6:ae:a7:e4:c0:0b:50:f3:01:5e:09:ae:b1:09:d7: 0d:cd:49:5e:0a:f2:fc:a8:9c:5c:bd:8b:4b:ea:55: d9:b9:06:58:8b:ca:2b:29:64:e1:d6:e7:63:6d:1d: 4c:1e:f6:26:3b:21:cc:35:ea:4e:f1:67:e3:1f:53: 55:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:CD:65:19:22:C0:97:98:DC:26:B2:8C:C6:80:7B:92:8E:71:A4:E0 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/hc1lGSLAl5jcJrKMxoB7ko5xpOA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.124.0.0/16 Signature Algorithm: sha256WithRSAEncryption 29:ba:f4:d1:cc:e9:01:17:72:96:96:fc:f1:43:e1:af:90:43: b1:72:91:5f:7e:f1:02:80:c7:f8:ce:72:66:de:66:bb:a1:3d: fb:5d:59:da:4d:9b:86:63:fe:2b:92:88:ef:e4:b1:53:9e:e0: c3:f3:6c:01:23:d7:b4:ce:b3:b3:86:d4:af:a1:26:3e:5d:21: 6d:a1:2a:04:8a:cd:5b:28:7e:2b:b1:29:8e:f9:1e:5f:93:1f: 57:73:be:6c:d3:d3:d0:29:e6:21:61:6f:30:fc:21:b4:ad:d6: af:f5:e3:76:27:ce:99:12:50:83:31:a0:0f:80:4b:40:8e:fb: da:1d:96:24:88:5b:a6:e7:4b:07:2b:be:f5:8f:f2:a2:2f:e0: 2a:fb:57:80:5b:d5:41:98:2d:9c:ce:9e:34:e0:bc:1a:dc:3c: 0e:f8:5b:4d:41:36:bd:a4:3a:9c:1b:8f:6e:a2:3d:72:6c:88: 57:40:7a:11:fe:ab:a0:1e:b2:73:23:f9:85:21:20:73:3a:ee: d6:5b:ac:19:31:49:3f:73:f3:0c:f2:9e:5e:51:6e:ba:34:e9: 78:b7:c8:fa:0e:04:ba:52:f0:fa:4c:8c:bc:e6:cb:85:0f:61: 49:67:95:f0:cc:73:bc:3b:ff:97:10:85:aa:5a:57:6e:d4:98: 10:5c:1f:4e -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICAdUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yMzEwMDEw MTM4MjVaFw0yNDA5MTQwMTMwMDNaMDMxMTAvBgNVBAMTKDg1Q0Q2NTE5MjJDMDk3 OThEQzI2QjI4Q0M2ODA3QjkyOEU3MUE0RTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsXILzP/83CaD7KpFtF88Etme6N+aII8a2066jVsBjYP0NLj+i kIA4LJ2SE1XddHjkzNXrBjr3Gxucyty0xiOPwBkIonK8dTj7sOAfn+dmgdx66hl2 GpSH2hJNT8TaDn8nQzsmjI0m5scs64BYstmEIpSkP512V05VRaDcnegih2650xOI GoFfgHCi8BswhWgLryCStZEz+MmkziURu5NzzeqKFQJAS2LSwdPuO8wXYaNy3uwW DtLyLC1WNe36TA+Vcsaup+TAC1DzAV4JrrEJ1w3NSV4K8vyonFy9i0vqVdm5BliL yispZOHW52NtHUwe9iY7Icw16k7xZ+MfU1VNAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUhc1lGSLAl5jcJrKMxoB7ko5xpOAwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxL2hjMWxHU0xBbDVqY0pyS014b0I3a281eHBPQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDTfDANBgkqhkiG9w0BAQsFAAOCAQEAKbr00czpARdylpb88UPhr5BDsXKR X37xAoDH+M5yZt5mu6E9+11Z2k2bhmP+K5KI7+SxU57gw/NsASPXtM6zs4bUr6Em Pl0hbaEqBIrNWyh+K7EpjvkeX5MfV3O+bNPT0CnmIWFvMPwhtK3Wr/XjdifOmRJQ gzGgD4BLQI772h2WJIhbpudLByu+9Y/yoi/gKvtXgFvVQZgtnM6eNOC8Gtw8Dvhb TUE2vaQ6nBuPbqI9cmyIV0B6Ef6roB6ycyP5hSEgczru1lusGTFJP3PzDPKeXlFu ujTpeLfI+g4EulLw+kyMvObLhQ9hSWeV8MxzvDv/lxCFqlpXbtSYEFwfTg== -----END CERTIFICATE-----Generated at Sat May 18 11:39:42 2024 by rpki-client on console-fra.rpki-client.org