$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/783/QOXZdHt90NmLAP6EYttH2vGk63M.roa File: QOXZdHt90NmLAP6EYttH2vGk63M.roa (raw, json) Hash identifier: wCy0SWoCWepkTdyUuQ8lhaii1lJoNFu085m31zJNYQs= Subject key identifier: 40:E5:D9:74:7B:7D:D0:D9:8B:00:FE:84:62:DB:47:DA:F1:A4:EB:73 Certificate issuer: /CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Certificate serial: 3A Authority key identifier: CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/QOXZdHt90NmLAP6EYttH2vGk63M.roa Signing time: Fri 15 Sep 2023 06:50:49 +0000 ROA not before: Fri 15 Sep 2023 06:50:49 +0000 ROA not after: Sat 14 Sep 2024 01:30:03 +0000 asID: 18144 IP address blocks: 221.12.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 02:39:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Validity Not Before: Sep 15 06:50:49 2023 GMT Not After : Sep 14 01:30:03 2024 GMT Subject: CN=40E5D9747B7DD0D98B00FE8462DB47DAF1A4EB73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:05:d9:3e:06:19:35:f0:13:72:17:1d:d4:89: 8d:19:0b:67:2f:0b:b9:77:b1:60:94:21:cd:50:f9: bc:2a:9e:8e:f3:86:aa:ed:40:48:72:b7:c3:24:fc: 1c:90:77:a5:ee:b3:06:fb:99:58:56:de:9b:4c:57: 66:c8:fa:5a:8a:93:9c:11:b8:b8:71:07:a5:91:e5: 92:85:0b:31:25:72:02:f3:8d:f9:8c:f5:97:05:87: 26:0d:75:e9:30:f3:f9:2d:4f:7f:d0:22:c3:fc:91: 8b:07:c7:ce:fb:92:f5:42:e6:28:af:e6:35:89:9f: 97:11:5a:a1:98:3c:59:9e:28:03:a1:f4:03:04:d5: 20:96:73:32:d9:2e:92:ff:4e:b0:90:28:15:63:7b: 5c:5d:59:44:4d:44:d7:1f:f3:2c:5e:92:c8:f8:bd: 78:ea:1b:8b:d5:79:bc:e9:18:03:9a:60:fa:a7:47: ca:fb:3e:9d:f0:d8:7a:78:49:f7:74:a1:03:99:e1: 79:16:40:3b:55:6a:af:11:b9:48:f8:34:e9:e9:ea: ea:df:76:ac:dc:8f:c5:73:75:27:48:7e:60:fe:50: 10:10:f9:bb:24:ec:7f:e2:c9:18:52:dd:bc:a7:9a: f3:78:c7:ee:6d:d1:d8:88:a6:82:5e:22:f4:f5:fe: 72:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:E5:D9:74:7B:7D:D0:D9:8B:00:FE:84:62:DB:47:DA:F1:A4:EB:73 X509v3 Authority Key Identifier: keyid:CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/QOXZdHt90NmLAP6EYttH2vGk63M.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 221.12.192.0/18 Signature Algorithm: sha256WithRSAEncryption 62:ac:e9:7e:5c:03:8e:11:f7:61:53:20:32:4f:29:ba:22:63: 01:df:cd:df:22:aa:e1:94:17:56:e3:9e:cc:12:42:9a:45:ea: e4:02:12:b7:49:ed:fa:73:b8:8b:13:d7:21:62:30:47:87:e8: b2:fa:ab:bd:67:db:f6:8d:e6:2f:26:fc:e2:a3:4e:02:c9:51: d2:49:33:42:38:01:1d:b8:ed:17:df:cc:44:c8:4d:da:6e:4d: 6e:45:11:4e:3e:26:66:d4:a1:dc:85:70:08:8d:62:d5:e1:da: 4b:36:5e:41:78:a6:03:98:95:78:bb:22:f7:28:44:d2:0d:ab: 25:b0:f5:38:c5:b8:52:04:97:2b:ed:e5:0b:28:a0:0f:78:00: f8:35:e7:69:8d:a5:1a:d3:66:3a:ef:22:18:fb:2a:e4:d3:d2: 62:17:3e:62:ea:33:46:d6:ea:56:bc:d2:73:9f:ce:e4:43:ef: 49:71:4f:a6:e3:47:dd:cc:99:b7:3a:f5:6f:68:c2:07:2d:0b: c9:ed:bb:31:29:12:d3:55:37:dd:2e:6b:fa:6f:ea:b4:8c:c5: 17:19:5d:02:38:db:ec:c3:72:14:67:5b:91:66:9d:98:11:1e: 5e:01:70:6d:1e:ad:ba:49:7a:22:5d:c6:1f:26:1c:53:32:91: 91:1d:a2:79 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBOjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDQjgz MDBCMjA2NTlCQjk1MTA2MEY2MEIxRjRCQzYwOTFBRjI3NjM5MB4XDTIzMDkxNTA2 NTA0OVoXDTI0MDkxNDAxMzAwM1owMzExMC8GA1UEAxMoNDBFNUQ5NzQ3QjdERDBE OThCMDBGRTg0NjJEQjQ3REFGMUE0RUI3MzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALoF2T4GGTXwE3IXHdSJjRkLZy8LuXexYJQhzVD5vCqejvOGqu1A SHK3wyT8HJB3pe6zBvuZWFbem0xXZsj6WoqTnBG4uHEHpZHlkoULMSVyAvON+Yz1 lwWHJg116TDz+S1Pf9Aiw/yRiwfHzvuS9ULmKK/mNYmflxFaoZg8WZ4oA6H0AwTV IJZzMtkukv9OsJAoFWN7XF1ZRE1E1x/zLF6SyPi9eOobi9V5vOkYA5pg+qdHyvs+ nfDYenhJ93ShA5nheRZAO1VqrxG5SPg06enq6t92rNyPxXN1J0h+YP5QEBD5uyTs f+LJGFLdvKea83jH7m3R2Iimgl4i9PX+crkCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRA5dl0e33Q2YsA/oRi20fa8aTrczAfBgNVHSMEGDAWgBTLgwCyBlm7lRBg9gsf S8YJGvJ2OTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNzgzL3k0TUFzZ1padTVVUVlQWUxIMHZHQ1JyeWRqay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3k0TUFzZ1padTVVUVlQWUxIMHZHQ1Jy eWRqay5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC83ODMvUU9YWmRIdDkwTm1MQVA2RVl0dEgydkdrNjNNLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBt0MwDANBgkqhkiG9w0BAQsFAAOCAQEAYqzpflwDjhH3YVMgMk8puiJjAd/N 3yKq4ZQXVuOezBJCmkXq5AISt0nt+nO4ixPXIWIwR4fosvqrvWfb9o3mLyb84qNO AslR0kkzQjgBHbjtF9/MRMhN2m5NbkURTj4mZtSh3IVwCI1i1eHaSzZeQXimA5iV eLsi9yhE0g2rJbD1OMW4UgSXK+3lCyigD3gA+DXnaY2lGtNmOu8iGPsq5NPSYhc+ YuozRtbqVrzSc5/O5EPvSXFPpuNH3cyZtzr1b2jCBy0Lye27MSkS01U33S5r+m/q tIzFFxldAjjb7MNyFGdbkWadmBEeXgFwbR6tukl6Il3GHyYcUzKRkR2ieQ== -----END CERTIFICATE-----Generated at Thu May 30 03:38:53 2024 by rpki-client on console-ams.rpki-client.org