$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/783/OOyZyngOJ4vfqbbo1SOBUcf-ZG0.roa File: OOyZyngOJ4vfqbbo1SOBUcf-ZG0.roa (raw, json) Hash identifier: vN3CwpmBi0waXtKwi6Lw1aXNzrd/GMoQlook38iCwy8= Subject key identifier: 38:EC:99:CA:78:0E:27:8B:DF:A9:B6:E8:D5:23:81:51:C7:FE:64:6D Certificate issuer: /CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Certificate serial: 2D Authority key identifier: CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/OOyZyngOJ4vfqbbo1SOBUcf-ZG0.roa Signing time: Fri 15 Sep 2023 06:44:34 +0000 ROA not before: Fri 15 Sep 2023 06:44:34 +0000 ROA not after: Sat 14 Sep 2024 01:30:03 +0000 asID: 18144 IP address blocks: 61.195.8.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 16 Jun 2024 02:07:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Validity Not Before: Sep 15 06:44:34 2023 GMT Not After : Sep 14 01:30:03 2024 GMT Subject: CN=38EC99CA780E278BDFA9B6E8D5238151C7FE646D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e2:90:d0:86:67:ff:4a:5f:d0:3d:a7:81:15: a0:6f:fc:4f:e5:5d:ca:96:22:54:91:ea:2f:9a:2f: bc:d9:ce:c2:ba:d4:d3:57:4a:89:3b:b6:e0:d2:ea: 35:03:90:05:f7:bc:b3:a1:8a:05:2a:11:5f:e5:5a: f4:9a:99:9f:7c:21:9b:9f:f1:e0:2e:36:77:31:17: 94:2c:32:0d:4e:e6:61:c3:d1:f3:2a:8d:b8:0d:61: b7:be:16:98:48:d5:ee:8e:d5:69:ea:1a:83:ee:cd: eb:b4:38:6f:0d:c7:c2:78:b9:3b:d0:4c:53:46:93: d6:64:97:e3:c3:f1:51:90:67:5c:48:c9:d3:a5:bb: a3:bb:c7:42:34:bf:7b:23:8c:40:77:5e:c3:88:2b: 3c:85:b8:1f:97:7e:5c:6c:7d:5e:f4:a0:c5:cf:a1: a8:6c:81:c5:c0:70:5e:b0:d3:dc:d2:67:de:9f:69: 9c:1b:e6:0b:be:d8:75:34:af:32:b5:63:5f:69:7b: 6e:8c:74:57:b3:b3:90:f1:2c:2e:e8:43:89:9e:95: 52:89:b3:db:c5:e6:c7:50:c5:2e:88:6e:4e:5d:46: d2:e8:40:4b:64:08:4e:2d:8d:ca:a9:90:d0:bb:29: c1:9e:f1:62:03:6e:77:00:b6:27:f8:af:92:3b:48: 54:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:EC:99:CA:78:0E:27:8B:DF:A9:B6:E8:D5:23:81:51:C7:FE:64:6D X509v3 Authority Key Identifier: keyid:CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/OOyZyngOJ4vfqbbo1SOBUcf-ZG0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.195.8.0/21 Signature Algorithm: sha256WithRSAEncryption 13:ca:03:20:57:c1:3b:0c:ea:f8:16:aa:8b:c9:bb:14:40:4c: 14:00:43:c0:64:1f:61:55:04:ea:11:e4:6b:17:e7:02:a7:be: 05:11:bf:3b:81:97:a2:42:86:5e:ee:2d:46:13:02:03:45:a4: 3f:6e:9f:e8:99:fc:7f:f1:19:0f:69:e5:80:11:f3:25:43:3a: 9a:d1:c2:45:3e:a0:0e:4b:2e:4e:4c:4c:d1:8a:1d:98:9e:60: 1e:c0:83:4d:33:e5:85:44:df:bd:cc:93:28:d3:d7:13:b6:f1: b1:c1:2b:c6:b5:9e:ce:db:66:55:e6:66:ab:62:f2:07:4d:b5: 65:f9:ad:2d:50:18:8d:ed:d4:ef:b1:5d:b1:85:81:18:f3:f1: 4d:f1:81:60:93:ef:a4:3a:1f:4c:2c:8a:43:5e:e4:98:b9:1f: 27:85:86:9d:14:01:dc:b4:c4:30:8b:e0:b2:51:86:3c:81:17: 1e:6a:9a:c0:13:a8:c3:91:f8:70:e9:7a:7c:44:fa:10:56:27: 40:dd:24:81:f1:ef:66:bb:42:57:28:e1:02:c2:c5:fa:bb:b8: d4:69:9f:3c:1c:4f:88:c0:5b:40:66:7e:6b:78:e7:17:ae:5d: 50:8d:a8:85:3f:8f:03:9d:9a:a1:2d:0c:ba:95:38:a2:78:ea: 2b:a2:81:1f -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBLTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDQjgz MDBCMjA2NTlCQjk1MTA2MEY2MEIxRjRCQzYwOTFBRjI3NjM5MB4XDTIzMDkxNTA2 NDQzNFoXDTI0MDkxNDAxMzAwM1owMzExMC8GA1UEAxMoMzhFQzk5Q0E3ODBFMjc4 QkRGQTlCNkU4RDUyMzgxNTFDN0ZFNjQ2RDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANXikNCGZ/9KX9A9p4EVoG/8T+VdypYiVJHqL5ovvNnOwrrU01dK iTu24NLqNQOQBfe8s6GKBSoRX+Va9JqZn3whm5/x4C42dzEXlCwyDU7mYcPR8yqN uA1ht74WmEjV7o7Vaeoag+7N67Q4bw3Hwni5O9BMU0aT1mSX48PxUZBnXEjJ06W7 o7vHQjS/eyOMQHdew4grPIW4H5d+XGx9XvSgxc+hqGyBxcBwXrDT3NJn3p9pnBvm C77YdTSvMrVjX2l7box0V7OzkPEsLuhDiZ6VUomz28Xmx1DFLohuTl1G0uhAS2QI Ti2NyqmQ0LspwZ7xYgNudwC2J/ivkjtIVAECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQ47JnKeA4ni9+ptujVI4FRx/5kbTAfBgNVHSMEGDAWgBTLgwCyBlm7lRBg9gsf S8YJGvJ2OTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNzgzL3k0TUFzZ1padTVVUVlQWUxIMHZHQ1JyeWRqay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3k0TUFzZ1padTVVUVlQWUxIMHZHQ1Jy eWRqay5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC83ODMvT095WnluZ09KNHZmcWJibzFTT0JVY2YtWkcwLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAz3DCDANBgkqhkiG9w0BAQsFAAOCAQEAE8oDIFfBOwzq+Baqi8m7FEBMFABD wGQfYVUE6hHkaxfnAqe+BRG/O4GXokKGXu4tRhMCA0WkP26f6Jn8f/EZD2nlgBHz JUM6mtHCRT6gDksuTkxM0YodmJ5gHsCDTTPlhUTfvcyTKNPXE7bxscErxrWezttm VeZmq2LyB021ZfmtLVAYje3U77FdsYWBGPPxTfGBYJPvpDofTCyKQ17kmLkfJ4WG nRQB3LTEMIvgslGGPIEXHmqawBOow5H4cOl6fET6EFYnQN0kgfHvZrtCVyjhAsLF +ru41GmfPBxPiMBbQGZ+a3jnF65dUI2ohT+PA52aoS0MupU4onjqK6KBHw== -----END CERTIFICATE-----Generated at Mon Jun 10 10:26:17 2024 by rpki-client on console-fra.rpki-client.org