$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/68/sgNHMi_3hd47oZulzv4c31l0q3o.roa File: sgNHMi_3hd47oZulzv4c31l0q3o.roa (raw, json) Hash identifier: 3DffPhqsxZeGbTU5bPGp4amJs9DKTME9KovFVdPI+98= Subject key identifier: B2:03:47:32:2F:F7:85:DE:3B:A1:9B:A5:CE:FE:1C:DF:59:74:AB:7A Certificate issuer: /CN=65DE52E64BE43E328AA69F3AB2D347F8833EC637 Certificate serial: 2E Authority key identifier: 65:DE:52:E6:4B:E4:3E:32:8A:A6:9F:3A:B2:D3:47:F8:83:3E:C6:37 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/sgNHMi_3hd47oZulzv4c31l0q3o.roa Signing time: Fri 06 Oct 2023 06:05:43 +0000 ROA not before: Fri 06 Oct 2023 06:05:43 +0000 ROA not after: Sat 14 Sep 2024 01:30:03 +0000 asID: 9374 IP address blocks: 180.189.128.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/Zd5S5kvkPjKKpp86stNH-IM-xjc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/Zd5S5kvkPjKKpp86stNH-IM-xjc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Jun 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65DE52E64BE43E328AA69F3AB2D347F8833EC637 Validity Not Before: Oct 6 06:05:43 2023 GMT Not After : Sep 14 01:30:03 2024 GMT Subject: CN=B20347322FF785DE3BA19BA5CEFE1CDF5974AB7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:cf:e0:b0:2d:a5:bb:4f:40:98:20:d4:fd:e2: 30:6e:04:07:52:29:55:0c:3f:12:dc:81:28:1a:d4: 96:c5:4d:ed:32:29:d1:05:f2:48:7d:c2:e9:6c:42: 47:de:e6:b7:f6:51:2c:70:50:73:14:38:2d:e8:fc: e6:98:47:90:41:6d:ae:e4:f0:f1:6a:e6:26:ff:93: cb:d4:90:16:66:50:f4:1a:da:e2:a9:93:ae:90:74: 63:9f:f0:a9:b9:14:7c:6c:9b:64:11:49:31:4b:04: d8:94:17:1b:4b:a1:a7:64:12:8c:8c:46:79:86:f3: 1e:95:e7:64:92:1a:91:2d:eb:3f:da:df:7b:a2:ca: 04:4f:79:3b:18:0d:41:07:a8:a6:c3:66:28:e0:0f: 19:aa:0b:05:5f:f7:d7:23:f3:a8:fa:5c:9a:25:2c: e6:25:cc:f9:fa:4d:af:4f:a1:d5:65:dd:1a:45:e4: 84:61:d7:a9:b2:16:e2:c0:a9:7a:c6:cf:9a:75:ff: 07:75:bd:11:d3:4f:f7:15:e7:37:c5:a8:4a:0b:2a: db:48:03:e7:54:a4:e2:f8:4a:15:71:49:f8:34:10: 14:25:34:c9:65:bb:24:0d:db:21:11:0d:07:dc:37: 6d:56:cc:19:e8:bb:16:5a:1e:fd:1e:39:ee:ee:6e: 35:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:03:47:32:2F:F7:85:DE:3B:A1:9B:A5:CE:FE:1C:DF:59:74:AB:7A X509v3 Authority Key Identifier: keyid:65:DE:52:E6:4B:E4:3E:32:8A:A6:9F:3A:B2:D3:47:F8:83:3E:C6:37 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/Zd5S5kvkPjKKpp86stNH-IM-xjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/sgNHMi_3hd47oZulzv4c31l0q3o.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.189.128.0/21 Signature Algorithm: sha256WithRSAEncryption 42:50:2f:b6:d1:4f:8b:8a:ab:3d:f3:37:0f:fc:06:46:d0:59: 73:a2:6b:c8:15:cf:cb:e1:74:83:f9:57:ca:47:b7:fb:f2:b0: 27:6c:ff:ef:9a:11:4f:02:52:5d:1a:71:44:33:2b:5c:18:fb: 77:36:fb:30:16:b8:59:68:97:c6:c0:ce:bc:b7:7a:48:e9:17: 4f:7f:eb:b0:60:0b:68:d1:91:1a:25:5a:7d:5e:5d:c8:0a:c3: 7f:fc:9b:10:75:94:bd:a1:89:09:4a:2b:aa:85:f1:c2:cb:c1: 76:18:97:b7:42:ac:3f:f0:80:d2:51:3d:d3:da:fc:29:f5:e6: 3b:e1:25:b2:ce:c4:38:db:e7:b3:1d:d6:e6:ce:16:48:49:45: 25:16:d6:72:d6:5d:26:79:73:39:34:30:99:af:0c:e7:ba:1b: 61:e8:bc:63:a2:04:16:96:c8:ea:b2:9f:fb:88:f2:55:47:14: 38:53:61:9a:91:e8:ee:53:69:2b:08:91:ba:26:c9:10:8f:70: 9c:da:0f:2d:35:84:ce:9a:ff:c7:62:15:2c:e3:6d:0a:df:17: c9:15:42:6a:69:32:6a:b2:8f:19:0c:f6:fd:99:87:3a:1e:5f: 51:70:ab:7d:f0:39:e4:37:28:78:b6:f8:e8:92:11:83:99:89: 56:39:e8:09 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBLjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2NURF NTJFNjRCRTQzRTMyOEFBNjlGM0FCMkQzNDdGODgzM0VDNjM3MB4XDTIzMTAwNjA2 MDU0M1oXDTI0MDkxNDAxMzAwM1owMzExMC8GA1UEAxMoQjIwMzQ3MzIyRkY3ODVE RTNCQTE5QkE1Q0VGRTFDREY1OTc0QUI3QTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALDP4LAtpbtPQJgg1P3iMG4EB1IpVQw/EtyBKBrUlsVN7TIp0QXy SH3C6WxCR97mt/ZRLHBQcxQ4Lej85phHkEFtruTw8WrmJv+Ty9SQFmZQ9Bra4qmT rpB0Y5/wqbkUfGybZBFJMUsE2JQXG0uhp2QSjIxGeYbzHpXnZJIakS3rP9rfe6LK BE95OxgNQQeopsNmKOAPGaoLBV/31yPzqPpcmiUs5iXM+fpNr0+h1WXdGkXkhGHX qbIW4sCpesbPmnX/B3W9EdNP9xXnN8WoSgsq20gD51Sk4vhKFXFJ+DQQFCU0yWW7 JA3bIRENB9w3bVbMGei7Floe/R457u5uNZkCAwEAAaOCAiIwggIeMB0GA1UdDgQW BBSyA0cyL/eF3juhm6XO/hzfWXSrejAfBgNVHSMEGDAWgBRl3lLmS+Q+Moqmnzqy 00f4gz7GNzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjgvWmQ1UzVrdmtQaktLcHA4NnN0TkgtSU0teGpjLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvWmQ1UzVrdmtQaktLcHA4NnN0TkgtSU0t eGpjLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzY4L3NnTkhNaV8zaGQ0N29adWx6djRjMzFsMHEzby5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAO0vYAwDQYJKoZIhvcNAQELBQADggEBAEJQL7bRT4uKqz3zNw/8BkbQWXOia8gV z8vhdIP5V8pHt/vysCds/++aEU8CUl0acUQzK1wY+3c2+zAWuFlol8bAzry3ekjp F09/67BgC2jRkRolWn1eXcgKw3/8mxB1lL2hiQlKK6qF8cLLwXYYl7dCrD/wgNJR PdPa/Cn15jvhJbLOxDjb57Md1ubOFkhJRSUW1nLWXSZ5czk0MJmvDOe6G2HovGOi BBaWyOqyn/uI8lVHFDhTYZqR6O5TaSsIkbomyRCPcJzaDy01hM6a/8diFSzjbQrf F8kVQmppMmqyjxkM9v2ZhzoeX1Fwq33wOeQ3KHi2+OiSEYOZiVY56Ak= -----END CERTIFICATE-----Generated at Fri Jun 14 04:10:42 2024 by rpki-client on console-fra.rpki-client.org