$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/897/O4BUOWqXuLmJ0wiSTUlFl2w9fLg.roa File: O4BUOWqXuLmJ0wiSTUlFl2w9fLg.roa (raw, json) Hash identifier: j/7ctRwdoJpEnm64TtSGuYQTzu0SymPdZi7VtvHjZHA= Subject key identifier: 3B:80:54:39:6A:97:B8:B9:89:D3:08:92:4D:49:45:97:6C:3D:7C:B8 Certificate issuer: /CN=AA08097C6060710280CDAAA4E7E06C1F13CD16F2 Certificate serial: 6A Authority key identifier: AA:08:09:7C:60:60:71:02:80:CD:AA:A4:E7:E0:6C:1F:13:CD:16:F2 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qggJfGBgcQKAzaqk5-BsHxPNFvI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/O4BUOWqXuLmJ0wiSTUlFl2w9fLg.roa Signing time: Fri 01 Dec 2023 01:29:55 +0000 ROA not before: Fri 01 Dec 2023 01:29:55 +0000 ROA not after: Thu 14 Nov 2024 01:30:03 +0000 asID: 9621 IP address blocks: 119.59.88.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/qggJfGBgcQKAzaqk5-BsHxPNFvI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/qggJfGBgcQKAzaqk5-BsHxPNFvI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qggJfGBgcQKAzaqk5-BsHxPNFvI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 14:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 106 (0x6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA08097C6060710280CDAAA4E7E06C1F13CD16F2 Validity Not Before: Dec 1 01:29:55 2023 GMT Not After : Nov 14 01:30:03 2024 GMT Subject: CN=3B8054396A97B8B989D308924D4945976C3D7CB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:8a:75:7b:87:05:bd:e0:e4:e2:29:5b:6c:77: db:a2:e6:96:82:d8:53:ba:51:52:5e:50:5a:aa:90: 18:65:00:7a:b6:41:74:b2:51:f0:c4:0a:37:4a:06: 1a:7b:a3:20:08:04:b3:4a:38:48:1d:80:16:9e:9b: 67:77:51:a7:5e:22:08:88:4b:d6:8a:21:33:a3:10: 78:8c:9d:54:cd:2e:6b:ae:4d:53:9a:8c:bb:1b:2d: ce:7b:37:05:35:e4:3c:01:04:28:75:62:de:06:20: 1e:64:ca:ee:7c:e9:be:3c:5a:2f:03:cc:20:06:ba: 79:ea:4f:c7:6e:1b:5b:db:7f:d9:5b:9d:3f:50:25: 5a:e7:b7:9d:a1:d0:3c:d0:27:62:54:ec:2a:6a:31: 3e:9b:8c:60:c7:fe:59:0c:cb:4e:f7:10:a9:f5:ad: 56:1c:7c:ea:1d:6f:ae:fa:04:61:25:77:af:70:b1: f2:a8:ac:aa:71:7c:26:c5:a2:60:8c:da:42:d5:16: 4b:25:72:a1:90:8e:bb:f2:bc:59:5a:b0:5a:d1:d5: 9f:21:d4:4e:f7:a5:32:4d:50:82:24:d6:b5:f6:9e: dc:69:24:98:f9:61:01:8f:56:26:aa:1b:cc:bd:f6: 43:dd:86:e4:4b:5e:c3:b3:7b:0c:94:09:f9:4a:2c: b4:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:80:54:39:6A:97:B8:B9:89:D3:08:92:4D:49:45:97:6C:3D:7C:B8 X509v3 Authority Key Identifier: keyid:AA:08:09:7C:60:60:71:02:80:CD:AA:A4:E7:E0:6C:1F:13:CD:16:F2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/qggJfGBgcQKAzaqk5-BsHxPNFvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qggJfGBgcQKAzaqk5-BsHxPNFvI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/897/O4BUOWqXuLmJ0wiSTUlFl2w9fLg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.59.88.0/21 Signature Algorithm: sha256WithRSAEncryption ab:ed:19:41:34:32:71:56:43:bf:4a:22:7f:c3:8e:04:c3:62: f8:39:39:6a:62:1f:b6:94:d0:0c:c3:69:a9:cb:e3:fa:a1:5b: 08:02:89:61:0e:89:95:85:eb:13:95:7a:4e:d5:f3:b1:d4:b6: 24:6e:45:b0:4b:b1:93:37:26:d5:6c:35:ac:e6:d1:ae:49:96: 32:9c:51:b9:01:7a:e9:38:ec:04:99:55:a2:96:0c:0c:80:e9: 2d:89:73:05:25:fe:5a:eb:61:bd:d3:de:e8:cd:82:e7:25:0e: c7:1d:71:ca:07:23:24:03:02:f5:8a:f7:26:11:ef:7c:19:5b: 3f:22:da:52:3d:74:ad:e2:34:89:bc:7b:39:3c:e6:8f:2c:d0: 0b:b4:67:a1:3a:f9:12:70:a5:a6:14:97:60:5f:97:7e:99:ff: a9:1a:26:5f:c2:47:92:b5:55:a5:41:f7:1d:64:89:6f:9a:4f: 90:4a:96:8f:29:ec:29:6a:8e:70:62:73:44:47:db:8e:fa:cf: 9b:09:5d:5f:16:a1:4c:e2:29:5c:cd:0f:15:35:2e:3f:1c:c1: 78:2c:25:47:d2:5b:1b:77:be:93:04:35:0b:c1:c9:e0:45:f1: 33:6b:6a:52:6a:8f:57:66:d1:d2:af:ae:bb:0c:cc:98:7c:91: 2a:c3:81:dc -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBajANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBQTA4 MDk3QzYwNjA3MTAyODBDREFBQTRFN0UwNkMxRjEzQ0QxNkYyMB4XDTIzMTIwMTAx Mjk1NVoXDTI0MTExNDAxMzAwM1owMzExMC8GA1UEAxMoM0I4MDU0Mzk2QTk3QjhC OTg5RDMwODkyNEQ0OTQ1OTc2QzNEN0NCODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMmKdXuHBb3g5OIpW2x326LmloLYU7pRUl5QWqqQGGUAerZBdLJR 8MQKN0oGGnujIAgEs0o4SB2AFp6bZ3dRp14iCIhL1oohM6MQeIydVM0ua65NU5qM uxstzns3BTXkPAEEKHVi3gYgHmTK7nzpvjxaLwPMIAa6eepPx24bW9t/2VudP1Al Wue3naHQPNAnYlTsKmoxPpuMYMf+WQzLTvcQqfWtVhx86h1vrvoEYSV3r3Cx8qis qnF8JsWiYIzaQtUWSyVyoZCOu/K8WVqwWtHVnyHUTvelMk1QgiTWtfae3GkkmPlh AY9WJqobzL32Q92G5Etew7N7DJQJ+UostJECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQ7gFQ5ape4uYnTCJJNSUWXbD18uDAfBgNVHSMEGDAWgBSqCAl8YGBxAoDNqqTn 4GwfE80W8jAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODk3L3FnZ0pmR0JnY1FLQXphcWs1LUJzSHhQTkZ2SS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3FnZ0pmR0JnY1FLQXphcWs1LUJzSHhQ TkZ2SS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84OTcvTzRCVU9XcVh1TG1KMHdpU1RVbEZsMnc5ZkxnLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA3c7WDANBgkqhkiG9w0BAQsFAAOCAQEAq+0ZQTQycVZDv0oif8OOBMNi+Dk5 amIftpTQDMNpqcvj+qFbCAKJYQ6JlYXrE5V6TtXzsdS2JG5FsEuxkzcm1Ww1rObR rkmWMpxRuQF66TjsBJlVopYMDIDpLYlzBSX+WuthvdPe6M2C5yUOxx1xygcjJAMC 9Yr3JhHvfBlbPyLaUj10reI0ibx7OTzmjyzQC7RnoTr5EnClphSXYF+Xfpn/qRom X8JHkrVVpUH3HWSJb5pPkEqWjynsKWqOcGJzREfbjvrPmwldXxahTOIpXM0PFTUu PxzBeCwlR9JbG3e+kwQ1C8HJ4EXxM2tqUmqPV2bR0q+uuwzMmHyRKsOB3A== -----END CERTIFICATE-----Generated at Fri Jun 7 15:25:08 2024 by rpki-client on console-fra.rpki-client.org