$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/783/h6VCcwWDXscljWs5juVggNNSse8.roa File: h6VCcwWDXscljWs5juVggNNSse8.roa (raw, json) Hash identifier: oxOAoUa2lt8SL4X2r+rzOyp9uko2NDsZm2gWmwF0+So= Subject key identifier: 87:A5:42:73:05:83:5E:C7:25:8D:6B:39:8E:E5:60:80:D3:52:B1:EF Certificate issuer: /CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Certificate serial: 2F Authority key identifier: CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/h6VCcwWDXscljWs5juVggNNSse8.roa Signing time: Fri 15 Sep 2023 06:46:40 +0000 ROA not before: Fri 15 Sep 2023 06:46:40 +0000 ROA not after: Sat 14 Sep 2024 01:30:03 +0000 asID: 18144 IP address blocks: 103.205.168.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 16 Jun 2024 02:07:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Validity Not Before: Sep 15 06:46:40 2023 GMT Not After : Sep 14 01:30:03 2024 GMT Subject: CN=87A5427305835EC7258D6B398EE56080D352B1EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:08:c5:77:3c:18:e2:31:ab:f0:84:86:10:d9: 59:7b:4d:e0:ee:c9:9b:72:ba:79:e8:ed:c8:be:67: 7f:20:3f:f8:64:d7:0c:9f:73:ac:0c:b1:fe:7b:de: 5f:0d:3e:29:e8:af:e2:d0:be:ed:95:0e:2a:1d:5d: d6:df:15:b8:a9:7f:72:60:5d:a3:7c:bc:bb:e4:e8: e9:6d:65:5a:93:a6:ba:bd:2e:ae:92:db:af:5d:1c: 59:0e:45:fa:29:22:e3:62:38:23:46:21:a8:ae:65: 11:52:0d:70:7e:6c:5d:53:5a:e3:68:e9:95:25:c7: 6d:df:76:c7:11:24:da:c6:da:31:78:c2:a8:af:73: e9:7e:50:7a:aa:78:54:ac:33:77:ac:cb:39:10:d5: bf:2e:83:00:af:d1:78:27:56:8b:9f:4b:dd:db:20: 01:26:8a:8b:b3:39:3a:c7:aa:ce:62:c0:ee:c5:77: 1b:22:7d:9d:3b:8b:90:1e:f8:54:fe:83:29:57:10: 6a:0a:8d:c3:10:be:f6:f1:82:43:87:6d:0b:51:6a: c2:43:51:3f:05:f8:f4:09:de:33:e5:0c:9b:08:e3: ef:85:bb:a4:f5:49:f7:30:34:4a:2d:d9:84:05:7b: de:27:92:59:e4:63:c0:e5:35:90:30:78:0a:33:62: 03:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:A5:42:73:05:83:5E:C7:25:8D:6B:39:8E:E5:60:80:D3:52:B1:EF X509v3 Authority Key Identifier: keyid:CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/h6VCcwWDXscljWs5juVggNNSse8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.205.168.0/22 Signature Algorithm: sha256WithRSAEncryption 25:37:80:b8:f7:78:d7:dc:05:1d:30:02:04:59:a7:8f:8a:fa: 1a:75:cf:4f:d4:3e:6a:d0:3b:99:4a:60:40:c1:9d:af:83:91: 38:08:38:b0:b7:da:4d:6a:76:a7:8d:16:86:ac:7d:b8:84:09: ff:45:33:7d:e7:29:e8:36:40:76:19:0c:d9:d8:e8:34:f4:ac: e0:81:0f:2e:78:81:08:35:60:2e:f1:1f:62:61:3b:43:a5:43: 69:15:e7:7f:68:5a:1e:49:e8:41:4e:39:4b:e4:8f:b4:b4:d2: e9:95:f1:87:5f:05:3c:c5:c7:ac:b9:85:81:88:8d:61:96:6d: 53:0b:8c:e0:ea:23:75:4a:db:df:7b:f1:a0:6c:e7:d7:89:a4: 01:1f:97:a5:de:ce:c3:4e:f5:b0:4e:cd:1b:2d:a0:eb:4d:39: 2c:c6:e5:0d:7c:6a:16:70:0c:85:f5:61:35:c5:89:04:48:8a: b7:dd:e2:c1:8a:ab:f5:7c:dc:e3:8a:b6:85:0f:2c:74:01:0a: d7:fd:31:78:71:0c:92:06:cd:bf:49:3d:dc:f3:dd:68:29:6e: f7:80:55:20:89:d7:22:2a:ca:3e:97:17:e9:66:0a:28:55:3b: fb:58:1f:1a:73:dd:56:67:d7:72:5b:83:78:6e:e0:f8:5d:b1: 23:9f:b9:89 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBLzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDQjgz MDBCMjA2NTlCQjk1MTA2MEY2MEIxRjRCQzYwOTFBRjI3NjM5MB4XDTIzMDkxNTA2 NDY0MFoXDTI0MDkxNDAxMzAwM1owMzExMC8GA1UEAxMoODdBNTQyNzMwNTgzNUVD NzI1OEQ2QjM5OEVFNTYwODBEMzUyQjFFRjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAK0IxXc8GOIxq/CEhhDZWXtN4O7Jm3K6eejtyL5nfyA/+GTXDJ9z rAyx/nveXw0+Keiv4tC+7ZUOKh1d1t8VuKl/cmBdo3y8u+To6W1lWpOmur0urpLb r10cWQ5F+iki42I4I0YhqK5lEVINcH5sXVNa42jplSXHbd92xxEk2sbaMXjCqK9z 6X5Qeqp4VKwzd6zLORDVvy6DAK/ReCdWi59L3dsgASaKi7M5OseqzmLA7sV3GyJ9 nTuLkB74VP6DKVcQagqNwxC+9vGCQ4dtC1FqwkNRPwX49AneM+UMmwjj74W7pPVJ 9zA0Si3ZhAV73ieSWeRjwOU1kDB4CjNiA7UCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSHpUJzBYNexyWNazmO5WCA01Kx7zAfBgNVHSMEGDAWgBTLgwCyBlm7lRBg9gsf S8YJGvJ2OTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNzgzL3k0TUFzZ1padTVVUVlQWUxIMHZHQ1JyeWRqay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3k0TUFzZ1padTVVUVlQWUxIMHZHQ1Jy eWRqay5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC83ODMvaDZWQ2N3V0RYc2NsaldzNWp1VmdnTk5Tc2U4LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmfNqDANBgkqhkiG9w0BAQsFAAOCAQEAJTeAuPd419wFHTACBFmnj4r6GnXP T9Q+atA7mUpgQMGdr4OROAg4sLfaTWp2p40Whqx9uIQJ/0Uzfecp6DZAdhkM2djo NPSs4IEPLniBCDVgLvEfYmE7Q6VDaRXnf2haHknoQU45S+SPtLTS6ZXxh18FPMXH rLmFgYiNYZZtUwuM4OojdUrb33vxoGzn14mkAR+Xpd7Ow071sE7NGy2g6005LMbl DXxqFnAMhfVhNcWJBEiKt93iwYqr9Xzc44q2hQ8sdAEK1/0xeHEMkgbNv0k93PPd aClu94BVIInXIirKPpcX6WYKKFU7+1gfGnPdVmfXcluDeG7g+F2xI5+5iQ== -----END CERTIFICATE-----Generated at Mon Jun 10 09:56:21 2024 by rpki-client on console-ams.rpki-client.org