$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/j6q38Dx2pXNZ1Lof1oJYjBUhFQ0.roa File: j6q38Dx2pXNZ1Lof1oJYjBUhFQ0.roa (raw, json) Hash identifier: pP97IHPftkJpZB4xRvIL+3odU0zaIx0fztO6bTxHKqw= Subject key identifier: 8F:AA:B7:F0:3C:76:A5:73:59:D4:BA:1F:D6:82:58:8C:15:21:15:0D Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 010B Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/j6q38Dx2pXNZ1Lof1oJYjBUhFQ0.roa Signing time: Fri 01 Sep 2023 01:30:18 +0000 ROA not before: Fri 01 Sep 2023 01:30:18 +0000 ROA not after: Wed 14 Aug 2024 01:30:02 +0000 asID: 4721 IP address blocks: 110.232.128.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 02:39:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Sep 1 01:30:18 2023 GMT Not After : Aug 14 01:30:02 2024 GMT Subject: CN=8FAAB7F03C76A57359D4BA1FD682588C1521150D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:23:10:3c:f4:c0:47:30:d5:f4:37:fe:2c:5a: a9:73:63:ea:02:b3:0f:ee:8d:24:20:4e:63:24:0f: 2a:12:65:cd:6d:08:a4:80:10:b2:0e:9d:d8:1e:1f: 4d:15:a1:e5:d3:0c:f2:b4:8a:1a:88:fc:75:4e:49: 81:a9:a9:9d:6b:15:5e:21:d9:ed:01:8c:f6:ba:a8: 46:4b:94:e0:ea:1e:3e:53:a0:2a:d9:ea:22:98:a1: d5:40:85:84:cd:e7:28:a4:eb:5f:7d:57:ee:0b:e6: 99:cc:49:fe:97:45:9f:92:34:ec:a9:be:9c:e3:05: 31:14:8a:46:0b:8f:b5:93:0e:2e:ef:e7:1c:42:cf: 67:9f:8a:1a:d6:61:c3:c3:5e:d5:37:51:7f:95:1d: 92:ad:78:38:d1:4e:53:f1:7d:b2:21:f7:a7:b6:85: 84:62:ba:c5:72:15:f0:b6:7a:5e:ef:22:bb:86:16: 28:c0:1a:38:ee:f4:b8:40:3a:8d:2a:75:0c:f9:be: 61:1c:96:0c:f0:ec:7f:2e:7e:6f:cb:ad:8e:56:d2: a6:7e:c8:6b:7b:ce:f0:17:7b:04:2b:db:b1:d5:97: 8e:e2:94:f5:8f:52:46:2f:a1:68:a1:4d:37:23:d4: f9:10:e4:7c:06:08:ee:4b:5b:3c:67:a7:86:33:96: ec:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:AA:B7:F0:3C:76:A5:73:59:D4:BA:1F:D6:82:58:8C:15:21:15:0D X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/j6q38Dx2pXNZ1Lof1oJYjBUhFQ0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.232.128.0/21 Signature Algorithm: sha256WithRSAEncryption b6:15:69:c9:79:cb:6e:9f:01:b0:bd:82:34:b4:e6:6c:06:f2: 7c:7f:74:57:5f:e1:9c:58:7c:c3:24:8c:09:27:1c:f5:06:d6: 0f:2b:37:e3:d1:e2:0d:a5:bd:89:71:e3:ad:f7:53:8a:43:a2: 4a:5b:84:20:5e:a0:f9:df:a4:d9:2f:43:33:19:bf:4d:43:9a: e3:8c:20:7e:42:d0:2b:eb:c1:a5:8b:db:d8:0f:1d:92:2d:4e: 97:61:49:dc:f7:ff:9b:49:69:c1:65:91:70:e9:ca:75:ed:cf: 4d:4f:32:7d:fa:6d:44:ca:37:92:56:dc:1e:1f:ee:60:72:19: 88:e3:f6:16:7e:2c:cc:48:2c:f2:f0:ff:e5:af:44:f9:ea:d3: 1b:be:d1:6e:57:a3:7f:1b:aa:7d:15:c7:f2:eb:ea:a1:75:a1: ff:32:3e:18:aa:45:e8:b8:d6:70:81:b2:9b:40:56:56:70:0b: 02:2a:c9:bd:81:5f:15:32:58:f5:c2:da:2b:3a:06:b3:50:b0: 1d:f9:dc:ed:f9:53:05:3e:07:c6:69:dd:05:55:01:b8:03:37: 06:1d:a8:66:f6:80:2f:2c:cc:21:fc:fb:b8:19:d4:d4:44:4b: 3e:76:09:00:68:3b:ea:03:38:44:0f:41:ac:96:f7:00:90:11: c8:c2:a6:99 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAQswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yMzA5MDEw MTMwMThaFw0yNDA4MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDhGQUFCN0YwM0M3NkE1 NzM1OUQ0QkExRkQ2ODI1ODhDMTUyMTE1MEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWIxA89MBHMNX0N/4sWqlzY+oCsw/ujSQgTmMkDyoSZc1tCKSA ELIOndgeH00VoeXTDPK0ihqI/HVOSYGpqZ1rFV4h2e0BjPa6qEZLlODqHj5ToCrZ 6iKYodVAhYTN5yik6199V+4L5pnMSf6XRZ+SNOypvpzjBTEUikYLj7WTDi7v5xxC z2efihrWYcPDXtU3UX+VHZKteDjRTlPxfbIh96e2hYRiusVyFfC2el7vIruGFijA Gjju9LhAOo0qdQz5vmEclgzw7H8ufm/LrY5W0qZ+yGt7zvAXewQr27HVl47ilPWP UkYvoWihTTcj1PkQ5HwGCO5LWzxnp4YzluzLAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUj6q38Dx2pXNZ1Lof1oJYjBUhFQ0wHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxL2o2cTM4RHgycFhOWjFMb2Yxb0pZakJVaEZRMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANu6IAwDQYJKoZIhvcNAQELBQADggEBALYVacl5y26fAbC9gjS05mwG8nx/ dFdf4ZxYfMMkjAknHPUG1g8rN+PR4g2lvYlx4633U4pDokpbhCBeoPnfpNkvQzMZ v01DmuOMIH5C0CvrwaWL29gPHZItTpdhSdz3/5tJacFlkXDpynXtz01PMn36bUTK N5JW3B4f7mByGYjj9hZ+LMxILPLw/+WvRPnq0xu+0W5Xo38bqn0Vx/Lr6qF1of8y PhiqRei41nCBsptAVlZwCwIqyb2BXxUyWPXC2is6BrNQsB353O35UwU+B8Zp3QVV AbgDNwYdqGb2gC8szCH8+7gZ1NRESz52CQBoO+oDOEQPQayW9wCQEcjCppk= -----END CERTIFICATE-----Generated at Thu May 30 03:08:56 2024 by rpki-client on console-fra.rpki-client.org