$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/897/EG0bDhLVWIojsD-7IA1ZEFdL7RM.roa File: EG0bDhLVWIojsD-7IA1ZEFdL7RM.roa (raw, json) Hash identifier: 3dFqxT0XxFJid1vX13YpHA/oj32UNPqCI8PGZJfxM/g= Subject key identifier: 10:6D:1B:0E:12:D5:58:8A:23:B0:3F:BB:20:0D:59:10:57:4B:ED:13 Certificate issuer: /CN=AA08097C6060710280CDAAA4E7E06C1F13CD16F2 Certificate serial: 67 Authority key identifier: AA:08:09:7C:60:60:71:02:80:CD:AA:A4:E7:E0:6C:1F:13:CD:16:F2 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qggJfGBgcQKAzaqk5-BsHxPNFvI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/EG0bDhLVWIojsD-7IA1ZEFdL7RM.roa Signing time: Fri 01 Dec 2023 01:29:53 +0000 ROA not before: Fri 01 Dec 2023 01:29:53 +0000 ROA not after: Thu 14 Nov 2024 01:30:03 +0000 asID: 9621 IP address blocks: 123.108.192.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/qggJfGBgcQKAzaqk5-BsHxPNFvI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/qggJfGBgcQKAzaqk5-BsHxPNFvI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qggJfGBgcQKAzaqk5-BsHxPNFvI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Jun 2024 01:31:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA08097C6060710280CDAAA4E7E06C1F13CD16F2 Validity Not Before: Dec 1 01:29:53 2023 GMT Not After : Nov 14 01:30:03 2024 GMT Subject: CN=106D1B0E12D5588A23B03FBB200D5910574BED13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:2b:85:9b:31:16:f7:cc:6b:e1:6c:28:45:db: f5:d7:9d:8b:f3:a1:29:f2:85:b7:3c:2d:be:23:b4: 1f:88:44:37:8d:69:22:b0:c1:40:cb:94:a5:52:cb: 38:bf:e8:c1:de:ca:2f:24:3b:9a:33:63:8c:ad:f1: 92:f4:8b:23:5f:38:a7:70:25:a3:c4:3c:fe:72:7b: 16:98:37:74:b3:f5:7c:79:9e:3c:1b:c7:e6:84:06: bf:c1:60:18:75:81:ce:e7:80:7e:65:b4:bb:9c:69: 34:72:04:42:be:c4:0c:aa:b0:ff:59:da:c3:5c:22: 66:39:1b:15:6c:f0:7f:56:20:06:e7:f8:45:dc:7b: cf:da:47:3f:af:9f:33:02:de:c2:9e:b6:c7:49:9f: f2:e5:fb:ba:65:ab:62:78:1b:12:5e:dd:b4:a1:3f: 42:25:ef:23:d8:9a:22:f7:fe:34:84:9b:02:8f:27: b4:e5:80:d4:55:89:4d:f4:f4:e6:6b:80:33:24:b1: 68:61:8d:10:e0:72:c6:73:e4:93:d1:98:e3:1d:b1: e7:c8:d6:58:03:8c:8d:6d:b4:d4:57:8c:ff:7d:91: aa:1e:5f:6d:8d:22:1e:3d:97:f7:39:b2:d1:81:48: 92:c8:ed:a7:be:fd:29:bb:b5:86:fd:da:f4:c0:f8: c6:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:6D:1B:0E:12:D5:58:8A:23:B0:3F:BB:20:0D:59:10:57:4B:ED:13 X509v3 Authority Key Identifier: keyid:AA:08:09:7C:60:60:71:02:80:CD:AA:A4:E7:E0:6C:1F:13:CD:16:F2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/qggJfGBgcQKAzaqk5-BsHxPNFvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qggJfGBgcQKAzaqk5-BsHxPNFvI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/EG0bDhLVWIojsD-7IA1ZEFdL7RM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.108.192.0/21 Signature Algorithm: sha256WithRSAEncryption 72:8c:5c:28:32:dd:ce:79:35:60:fe:8f:be:5c:93:f7:c5:65: 26:e1:a9:b0:03:d0:02:0d:cc:b8:52:9e:c9:02:50:74:d6:78: 08:3b:48:75:e9:1a:96:70:24:42:03:08:ba:c5:f3:cb:9c:c8: 76:f4:94:05:e6:d7:e7:be:d9:47:6e:94:60:84:e9:4b:58:ba: 29:10:90:6a:d5:39:09:d1:91:09:fb:40:da:ff:fd:57:9e:61: 0f:7a:63:3f:1d:14:c4:12:a8:44:a9:c8:6e:ee:64:95:78:d2: 89:2c:8f:bf:ac:72:97:42:ea:ef:53:c3:7f:4f:af:48:69:fb: 3c:d9:0b:0c:c0:f1:7d:ae:ba:93:20:3d:a0:c9:da:61:0d:95: 0d:ee:d2:67:8b:85:7a:b8:e0:22:85:e1:4c:41:20:42:62:10: e9:0a:7a:0b:d1:f7:20:77:82:46:0d:27:d3:bb:80:99:9c:59: 13:81:7d:09:37:c5:a4:fb:75:43:ac:9a:bb:fe:66:ec:36:f7: 74:66:11:b4:15:5a:d9:13:a3:fe:92:f0:6d:8d:84:29:39:eb: 93:39:f9:42:2c:9c:23:a4:4e:17:25:d0:44:9c:ac:91:98:45: ed:29:c3:dd:03:b0:1b:79:f5:71:67:c6:72:83:88:2d:b6:fb: 08:b9:0c:e6 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBZzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBQTA4 MDk3QzYwNjA3MTAyODBDREFBQTRFN0UwNkMxRjEzQ0QxNkYyMB4XDTIzMTIwMTAx Mjk1M1oXDTI0MTExNDAxMzAwM1owMzExMC8GA1UEAxMoMTA2RDFCMEUxMkQ1NTg4 QTIzQjAzRkJCMjAwRDU5MTA1NzRCRUQxMzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMsrhZsxFvfMa+FsKEXb9dedi/OhKfKFtzwtviO0H4hEN41pIrDB QMuUpVLLOL/owd7KLyQ7mjNjjK3xkvSLI184p3Alo8Q8/nJ7Fpg3dLP1fHmePBvH 5oQGv8FgGHWBzueAfmW0u5xpNHIEQr7EDKqw/1naw1wiZjkbFWzwf1YgBuf4Rdx7 z9pHP6+fMwLewp62x0mf8uX7umWrYngbEl7dtKE/QiXvI9iaIvf+NISbAo8ntOWA 1FWJTfT05muAMySxaGGNEOByxnPkk9GY4x2x58jWWAOMjW201FeM/32Rqh5fbY0i Hj2X9zmy0YFIksjtp779Kbu1hv3a9MD4xq0CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQQbRsOEtVYiiOwP7sgDVkQV0vtEzAfBgNVHSMEGDAWgBSqCAl8YGBxAoDNqqTn 4GwfE80W8jAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODk3L3FnZ0pmR0JnY1FLQXphcWs1LUJzSHhQTkZ2SS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3FnZ0pmR0JnY1FLQXphcWs1LUJzSHhQ TkZ2SS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84OTcvRUcwYkRoTFZXSW9qc0QtN0lBMVpFRmRMN1JNLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA3tswDANBgkqhkiG9w0BAQsFAAOCAQEAcoxcKDLdznk1YP6PvlyT98VlJuGp sAPQAg3MuFKeyQJQdNZ4CDtIdekalnAkQgMIusXzy5zIdvSUBebX577ZR26UYITp S1i6KRCQatU5CdGRCftA2v/9V55hD3pjPx0UxBKoRKnIbu5klXjSiSyPv6xyl0Lq 71PDf0+vSGn7PNkLDMDxfa66kyA9oMnaYQ2VDe7SZ4uFerjgIoXhTEEgQmIQ6Qp6 C9H3IHeCRg0n07uAmZxZE4F9CTfFpPt1Q6yau/5m7Db3dGYRtBVa2ROj/pLwbY2E KTnrkzn5QiycI6ROFyXQRJyskZhF7SnD3QOwG3n1cWfGcoOILbb7CLkM5g== -----END CERTIFICATE-----Generated at Thu Jun 6 14:56:24 2024 by rpki-client on console-fra.rpki-client.org