$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/loz2qyHrfRIykUgiYhExepuPH7o.roa File: loz2qyHrfRIykUgiYhExepuPH7o.roa (raw, json) Hash identifier: dRPLlIXJPlhCPkcY/3vWMt3+WkLIsd7Zxszdd5KtKRw= Subject key identifier: 96:8C:F6:AB:21:EB:7D:12:32:91:48:22:62:11:31:7A:9B:8F:1F:BA Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 0111 Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/loz2qyHrfRIykUgiYhExepuPH7o.roa Signing time: Fri 01 Sep 2023 01:30:21 +0000 ROA not before: Fri 01 Sep 2023 01:30:21 +0000 ROA not after: Wed 14 Aug 2024 01:30:02 +0000 asID: 4721 IP address blocks: 114.142.128.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 02:39:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Sep 1 01:30:21 2023 GMT Not After : Aug 14 01:30:02 2024 GMT Subject: CN=968CF6AB21EB7D12329148226211317A9B8F1FBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:7c:d5:33:74:d7:77:27:19:2c:4a:4c:d4:fc: 4e:c6:71:4e:ab:7a:2e:8b:54:5c:92:01:32:b7:f9: 29:ab:86:10:23:fd:25:d8:ef:94:ff:23:9c:16:a8: 66:7e:82:a0:ef:31:59:7a:00:39:5c:4c:ff:32:d8: 91:b9:86:36:b1:2e:ac:0b:a4:53:23:b6:1f:86:9b: e7:74:bc:50:3e:45:1d:c0:d9:2e:d2:06:6d:1b:b0: 39:b6:6d:54:4f:38:fd:13:10:64:29:e3:b3:4a:5e: c5:a6:ef:53:5b:59:0a:e3:09:ce:ae:e8:80:9d:5b: 6d:dd:8f:47:01:1c:07:d4:02:e0:d8:cd:43:d6:db: a3:4c:4d:a8:5a:aa:4d:69:3e:70:5b:76:68:a1:e4: c1:10:50:a5:b0:1c:24:be:b5:05:1b:73:43:ba:c4: 13:a2:2d:53:f1:1b:db:5d:4b:55:ec:57:75:75:0d: dd:6e:ee:06:aa:fe:d4:6f:5b:51:2c:2c:15:c8:5a: e8:7a:31:48:07:70:6f:0f:90:3c:7d:25:a7:74:78: d7:69:52:0f:df:27:f9:7d:b5:97:44:d6:f7:db:ef: e0:5a:95:6f:71:a0:c0:28:4b:f8:10:07:bf:8e:a5: d6:71:35:dd:c4:dc:d5:77:db:a2:13:8a:c0:34:92: f9:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:8C:F6:AB:21:EB:7D:12:32:91:48:22:62:11:31:7A:9B:8F:1F:BA X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/loz2qyHrfRIykUgiYhExepuPH7o.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.142.128.0/21 Signature Algorithm: sha256WithRSAEncryption 97:07:99:dc:7a:9a:7a:61:bc:f9:2a:02:4f:82:53:14:23:e8: 6d:2a:c3:d9:fe:3a:08:4e:ef:53:aa:cd:38:e4:4e:ce:c0:df: 42:db:a5:fd:4b:d8:60:23:ae:f8:f6:e9:cd:b8:5b:73:26:7a: 85:53:70:89:a5:9a:91:5c:22:dd:bd:42:01:f3:22:76:5f:8b: 5e:53:40:cc:d9:5c:c7:70:e7:5d:17:02:b7:b5:b6:ab:6f:71: ed:65:fc:93:47:42:d1:c7:e8:6d:14:16:61:94:94:be:a4:72: 17:f4:8e:c3:ec:bd:20:35:52:83:98:1b:bd:fa:0d:86:4b:d2: 56:02:5f:35:ef:2c:80:db:18:76:55:69:54:a0:2c:0e:03:e5: cd:39:0e:db:91:61:4f:67:a2:24:df:2b:a4:11:72:89:43:66: 60:7d:e5:03:54:f6:62:dc:1f:d6:dd:ab:6c:6e:5d:17:85:94: 5d:c0:8d:1c:ea:0b:5a:74:72:94:55:af:b8:61:5c:66:9a:de: 86:0b:1f:c0:99:2c:22:0e:75:c3:a9:06:4e:fc:07:88:c3:ad: 65:4d:4b:e7:83:75:ab:58:87:8a:70:59:30:56:80:77:29:3d: ce:69:9b:5b:31:06:3d:00:ea:09:cb:fc:e3:67:ab:d3:71:bf: c7:32:fe:a5 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAREwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yMzA5MDEw MTMwMjFaFw0yNDA4MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDk2OENGNkFCMjFFQjdE MTIzMjkxNDgyMjYyMTEzMTdBOUI4RjFGQkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8fNUzdNd3JxksSkzU/E7GcU6rei6LVFySATK3+SmrhhAj/SXY 75T/I5wWqGZ+gqDvMVl6ADlcTP8y2JG5hjaxLqwLpFMjth+Gm+d0vFA+RR3A2S7S Bm0bsDm2bVRPOP0TEGQp47NKXsWm71NbWQrjCc6u6ICdW23dj0cBHAfUAuDYzUPW 26NMTahaqk1pPnBbdmih5MEQUKWwHCS+tQUbc0O6xBOiLVPxG9tdS1XsV3V1Dd1u 7gaq/tRvW1EsLBXIWuh6MUgHcG8PkDx9Jad0eNdpUg/fJ/l9tZdE1vfb7+BalW9x oMAoS/gQB7+OpdZxNd3E3NV326ITisA0kvlpAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUloz2qyHrfRIykUgiYhExepuPH7owHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxL2xvejJxeUhyZlJJeWtVZ2lZaEV4ZXB1UEg3by5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANyjoAwDQYJKoZIhvcNAQELBQADggEBAJcHmdx6mnphvPkqAk+CUxQj6G0q w9n+OghO71OqzTjkTs7A30Lbpf1L2GAjrvj26c24W3MmeoVTcImlmpFcIt29QgHz InZfi15TQMzZXMdw510XAre1tqtvce1l/JNHQtHH6G0UFmGUlL6kchf0jsPsvSA1 UoOYG736DYZL0lYCXzXvLIDbGHZVaVSgLA4D5c05DtuRYU9noiTfK6QRcolDZmB9 5QNU9mLcH9bdq2xuXReFlF3AjRzqC1p0cpRVr7hhXGaa3oYLH8CZLCIOdcOpBk78 B4jDrWVNS+eDdatYh4pwWTBWgHcpPc5pm1sxBj0A6gnL/ONnq9Nxv8cy/qU= -----END CERTIFICATE-----Generated at Thu May 30 03:08:56 2024 by rpki-client on console-fra.rpki-client.org