$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/68/oIA3jGiB8eGJethst2he6nfovzc.roa File: oIA3jGiB8eGJethst2he6nfovzc.roa (raw, json) Hash identifier: u76SPuOSADv971j2qCRTnT7mOvoLggfwk3gllWJWPfI= Subject key identifier: A0:80:37:8C:68:81:F1:E1:89:7A:D8:6C:B7:68:5E:EA:77:E8:BF:37 Certificate issuer: /CN=65DE52E64BE43E328AA69F3AB2D347F8833EC637 Certificate serial: 2A Authority key identifier: 65:DE:52:E6:4B:E4:3E:32:8A:A6:9F:3A:B2:D3:47:F8:83:3E:C6:37 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/oIA3jGiB8eGJethst2he6nfovzc.roa Signing time: Fri 06 Oct 2023 06:05:40 +0000 ROA not before: Fri 06 Oct 2023 06:05:40 +0000 ROA not after: Sat 14 Sep 2024 01:30:03 +0000 asID: 9374 IP address blocks: 219.121.192.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/Zd5S5kvkPjKKpp86stNH-IM-xjc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/Zd5S5kvkPjKKpp86stNH-IM-xjc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 02:39:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65DE52E64BE43E328AA69F3AB2D347F8833EC637 Validity Not Before: Oct 6 06:05:40 2023 GMT Not After : Sep 14 01:30:03 2024 GMT Subject: CN=A080378C6881F1E1897AD86CB7685EEA77E8BF37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:03:8c:63:7e:60:65:d1:46:91:49:5b:1e:58: d5:f1:43:91:81:a1:c2:08:cf:38:e9:07:04:54:49: 3d:23:1b:cb:64:a9:3f:50:92:7f:12:f1:04:72:b6: f5:00:d0:58:82:2e:0c:bb:92:22:e4:c7:49:9b:03: 52:96:b3:e3:68:35:49:67:b4:f5:d3:f0:37:70:49: 5c:d0:e3:e8:d8:06:6d:e5:2d:81:5b:f1:34:ca:63: 09:8e:6e:f1:bb:a0:0b:97:74:19:c5:94:fc:68:79: c8:e5:ab:31:fa:37:bc:22:32:db:b6:3e:bf:57:61: c0:74:b7:0f:e9:8c:38:8b:a1:8e:21:de:c1:3d:cd: 9c:a9:50:36:33:1e:3b:13:4a:79:76:61:11:c6:f3: db:5f:82:57:49:06:cf:2e:03:20:b3:68:4b:5f:7e: 61:fc:28:89:9e:b4:4e:b8:14:f7:e9:8a:93:fa:71: 85:9e:b7:f3:19:9a:40:ee:64:83:85:cf:b1:8c:17: b3:18:f0:af:91:9d:4b:48:81:08:0f:75:c4:5f:36: c3:dc:09:2e:5b:24:66:dd:ed:7f:a6:63:0b:d7:bf: 79:39:bb:0e:78:d7:03:a5:9f:38:e1:fc:65:54:71: ef:40:87:10:6f:66:70:d1:83:7f:94:22:e3:fc:a7: db:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:80:37:8C:68:81:F1:E1:89:7A:D8:6C:B7:68:5E:EA:77:E8:BF:37 X509v3 Authority Key Identifier: keyid:65:DE:52:E6:4B:E4:3E:32:8A:A6:9F:3A:B2:D3:47:F8:83:3E:C6:37 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/Zd5S5kvkPjKKpp86stNH-IM-xjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/oIA3jGiB8eGJethst2he6nfovzc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.121.192.0/20 Signature Algorithm: sha256WithRSAEncryption 79:e5:df:78:21:1b:82:ac:57:14:04:53:be:df:c6:a1:fb:45: d6:95:cb:a8:64:b4:78:fb:e1:47:31:71:d3:be:48:cb:7a:54: 4d:2a:a7:d7:db:e3:ee:df:12:24:93:a0:e6:ae:44:3d:66:f8: 54:51:3d:7a:39:4a:a4:21:c6:0f:fe:4a:cc:03:68:f6:f7:36: cf:fd:5c:ce:5c:fc:47:42:91:1b:c6:37:db:b9:07:a1:b3:53: 0c:c8:3b:8c:25:15:d9:37:f5:aa:69:57:d8:f6:07:f6:ca:3a: 00:6b:c9:67:a3:17:71:a4:83:25:f5:83:61:fe:1a:3e:51:41: 6a:d7:c3:f3:e5:49:d8:3b:0f:e4:65:cd:e9:fd:15:3f:b1:81: a4:69:19:18:8e:82:80:04:57:7e:14:b0:40:88:75:4d:25:e7: e1:01:bb:63:52:70:1f:f7:6e:64:6f:e4:f1:27:36:d1:6b:b5: b9:a5:bd:34:26:6c:0f:28:08:90:a2:82:94:15:84:6f:d6:c9: 2f:a7:7a:0f:b5:d2:86:e6:9a:6d:6d:26:fe:93:23:d1:3d:63: aa:d0:e6:8c:26:ba:de:d1:60:dc:f2:e3:94:3c:57:15:3f:d2: 7b:dc:a1:36:4f:8e:89:1e:2c:30:30:38:25:5c:d1:89:72:d8: 8c:2f:87:9a -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBKjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2NURF NTJFNjRCRTQzRTMyOEFBNjlGM0FCMkQzNDdGODgzM0VDNjM3MB4XDTIzMTAwNjA2 MDU0MFoXDTI0MDkxNDAxMzAwM1owMzExMC8GA1UEAxMoQTA4MDM3OEM2ODgxRjFF MTg5N0FEODZDQjc2ODVFRUE3N0U4QkYzNzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJ4DjGN+YGXRRpFJWx5Y1fFDkYGhwgjPOOkHBFRJPSMby2SpP1CS fxLxBHK29QDQWIIuDLuSIuTHSZsDUpaz42g1SWe09dPwN3BJXNDj6NgGbeUtgVvx NMpjCY5u8bugC5d0GcWU/Gh5yOWrMfo3vCIy27Y+v1dhwHS3D+mMOIuhjiHewT3N nKlQNjMeOxNKeXZhEcbz21+CV0kGzy4DILNoS19+YfwoiZ60TrgU9+mKk/pxhZ63 8xmaQO5kg4XPsYwXsxjwr5GdS0iBCA91xF82w9wJLlskZt3tf6ZjC9e/eTm7DnjX A6WfOOH8ZVRx70CHEG9mcNGDf5Qi4/yn2xMCAwEAAaOCAiIwggIeMB0GA1UdDgQW BBSggDeMaIHx4Yl62Gy3aF7qd+i/NzAfBgNVHSMEGDAWgBRl3lLmS+Q+Moqmnzqy 00f4gz7GNzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjgvWmQ1UzVrdmtQaktLcHA4NnN0TkgtSU0teGpjLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvWmQ1UzVrdmtQaktLcHA4NnN0TkgtSU0t eGpjLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzY4L29JQTNqR2lCOGVHSmV0aHN0MmhlNm5mb3Z6Yy5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BATbecAwDQYJKoZIhvcNAQELBQADggEBAHnl33ghG4KsVxQEU77fxqH7RdaVy6hk tHj74UcxcdO+SMt6VE0qp9fb4+7fEiSToOauRD1m+FRRPXo5SqQhxg/+SswDaPb3 Ns/9XM5c/EdCkRvGN9u5B6GzUwzIO4wlFdk39appV9j2B/bKOgBryWejF3GkgyX1 g2H+Gj5RQWrXw/PlSdg7D+Rlzen9FT+xgaRpGRiOgoAEV34UsECIdU0l5+EBu2NS cB/3bmRv5PEnNtFrtbmlvTQmbA8oCJCigpQVhG/WyS+neg+10obmmm1tJv6TI9E9 Y6rQ5owmut7RYNzy45Q8VxU/0nvcoTZPjokeLDAwOCVc0Yly2Iwvh5o= -----END CERTIFICATE-----Generated at Thu May 30 03:08:56 2024 by rpki-client on console-fra.rpki-client.org