$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/905/Zh3hfRwVUN1SZzOKWkuHexKFtRs.roa File: Zh3hfRwVUN1SZzOKWkuHexKFtRs.roa (raw, json) Hash identifier: Ou5TIw0KdkOxWbhy4i7WKcKQYdOjv0Dic9O0FSoTNsM= Subject key identifier: 66:1D:E1:7D:1C:15:50:DD:52:67:33:8A:5A:4B:87:7B:12:85:B5:1B Certificate issuer: /CN=FAEF57FF144D25094E460E0FD38C80379334ED6D Certificate serial: 05 Authority key identifier: FA:EF:57:FF:14:4D:25:09:4E:46:0E:0F:D3:8C:80:37:93:34:ED:6D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-u9X_xRNJQlORg4P04yAN5M07W0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/905/Zh3hfRwVUN1SZzOKWkuHexKFtRs.roa Signing time: Tue 03 Oct 2023 07:44:42 +0000 ROA not before: Tue 03 Oct 2023 07:44:42 +0000 ROA not after: Wed 18 Sep 2024 07:00:52 +0000 asID: 24255 IP address blocks: 202.88.192.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/905/-u9X_xRNJQlORg4P04yAN5M07W0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/905/-u9X_xRNJQlORg4P04yAN5M07W0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-u9X_xRNJQlORg4P04yAN5M07W0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 14:03:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FAEF57FF144D25094E460E0FD38C80379334ED6D Validity Not Before: Oct 3 07:44:42 2023 GMT Not After : Sep 18 07:00:52 2024 GMT Subject: CN=661DE17D1C1550DD5267338A5A4B877B1285B51B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:40:43:c8:a4:14:16:c3:e4:93:f3:1a:d6:8d: 84:23:77:7e:f1:b6:ee:09:9b:4e:5f:50:b8:30:6b: fc:61:4d:a5:67:00:d8:fd:ea:8c:59:48:38:25:70: 03:8d:1d:31:fb:9f:83:23:ec:4c:d8:6a:21:aa:0e: f0:77:43:93:67:ff:ed:2a:ca:ed:7f:ef:a7:54:b5: 3b:5e:26:28:58:a8:c8:69:9b:b1:25:90:54:13:b3: 81:0e:63:ef:02:24:69:83:fc:78:f2:a5:97:c8:8a: 6b:49:b5:dd:65:c8:91:7f:0c:a8:12:c7:25:58:79: 07:ab:c8:27:08:fe:75:b9:c8:4d:08:b2:3e:15:2f: 35:3c:93:66:2d:cd:79:e7:d3:1b:12:9c:58:35:ab: fb:37:72:b0:42:26:e6:37:5e:0b:93:d0:b8:9b:98: 72:26:c3:e8:09:0d:c7:9d:84:36:f5:64:45:e5:fe: e5:9c:65:af:bc:0f:f3:5e:f6:d1:9f:28:74:3f:7a: 31:1a:ea:cb:e0:df:0d:20:94:7f:3a:54:3c:47:13: f5:04:99:56:10:bb:09:8a:2c:98:2b:55:59:4a:08: cb:81:01:5b:b9:c5:40:3f:e0:e0:97:bb:e0:d1:6b: 1c:13:7f:95:78:cb:66:40:f6:aa:0e:04:12:d7:97: e6:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:1D:E1:7D:1C:15:50:DD:52:67:33:8A:5A:4B:87:7B:12:85:B5:1B X509v3 Authority Key Identifier: keyid:FA:EF:57:FF:14:4D:25:09:4E:46:0E:0F:D3:8C:80:37:93:34:ED:6D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/905/-u9X_xRNJQlORg4P04yAN5M07W0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-u9X_xRNJQlORg4P04yAN5M07W0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/905/Zh3hfRwVUN1SZzOKWkuHexKFtRs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.88.192.0/21 Signature Algorithm: sha256WithRSAEncryption c0:52:ac:b8:66:7d:56:70:f8:49:37:0e:19:88:67:c1:3e:21: 3e:e9:c4:71:27:a1:5b:4c:d5:9f:a6:59:20:4f:09:89:98:9d: 6f:79:26:4a:c4:1d:49:5f:44:84:5e:7b:48:7d:1c:cd:c0:ce: f3:92:d0:db:78:15:88:58:42:48:c7:5f:98:d0:eb:1c:02:21: d7:f5:68:89:73:a7:c5:34:cb:b6:af:2e:8e:7d:43:b5:37:4b: f4:41:c8:06:43:b2:01:af:4e:fe:60:d4:44:ed:7a:8d:57:e5: 7a:21:75:ce:c2:79:a8:f8:7d:65:2a:c1:73:a6:53:40:84:13: ed:7e:71:8b:60:52:58:41:b5:3e:c6:43:72:d7:63:2e:81:70: 9f:b3:a4:60:ee:4a:24:11:0f:72:54:ea:be:a9:46:75:2f:0b: 8e:4d:04:d3:25:93:3f:72:2c:a7:c1:0f:35:19:10:fb:b4:9a: 95:c9:53:46:34:5d:84:44:9f:50:26:c9:15:e8:d2:4f:37:f8: 18:59:31:e8:0e:31:4d:4f:fd:60:d7:75:6b:14:a8:b9:3e:93: 8c:6a:30:07:b5:b7:f3:95:d3:99:57:22:99:b2:1b:db:66:bc: be:67:93:95:87:db:d5:03:2e:4c:12:e1:67:35:f5:16:cd:c1: 48:6d:92:86 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBBTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGQUVG NTdGRjE0NEQyNTA5NEU0NjBFMEZEMzhDODAzNzkzMzRFRDZEMB4XDTIzMTAwMzA3 NDQ0MloXDTI0MDkxODA3MDA1MlowMzExMC8GA1UEAxMoNjYxREUxN0QxQzE1NTBE RDUyNjczMzhBNUE0Qjg3N0IxMjg1QjUxQjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANBAQ8ikFBbD5JPzGtaNhCN3fvG27gmbTl9QuDBr/GFNpWcA2P3q jFlIOCVwA40dMfufgyPsTNhqIaoO8HdDk2f/7SrK7X/vp1S1O14mKFioyGmbsSWQ VBOzgQ5j7wIkaYP8ePKll8iKa0m13WXIkX8MqBLHJVh5B6vIJwj+dbnITQiyPhUv NTyTZi3NeefTGxKcWDWr+zdysEIm5jdeC5PQuJuYcibD6AkNx52ENvVkReX+5Zxl r7wP81720Z8odD96MRrqy+DfDSCUfzpUPEcT9QSZVhC7CYosmCtVWUoIy4EBW7nF QD/g4Je74NFrHBN/lXjLZkD2qg4EEteX5tECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRmHeF9HBVQ3VJnM4paS4d7EoW1GzAfBgNVHSMEGDAWgBT671f/FE0lCU5GDg/T jIA3kzTtbTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTA1Ly11OVhfeFJOSlFsT1JnNFAwNHlBTjVNMDdXMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLy11OVhfeFJOSlFsT1JnNFAwNHlBTjVN MDdXMC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85MDUvWmgzaGZSd1ZVTjFTWnpPS1drdUhleEtGdFJzLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA8pYwDANBgkqhkiG9w0BAQsFAAOCAQEAwFKsuGZ9VnD4STcOGYhnwT4hPunE cSehW0zVn6ZZIE8JiZidb3kmSsQdSV9EhF57SH0czcDO85LQ23gViFhCSMdfmNDr HAIh1/VoiXOnxTTLtq8ujn1DtTdL9EHIBkOyAa9O/mDURO16jVfleiF1zsJ5qPh9 ZSrBc6ZTQIQT7X5xi2BSWEG1PsZDctdjLoFwn7OkYO5KJBEPclTqvqlGdS8Ljk0E 0yWTP3Isp8EPNRkQ+7SalclTRjRdhESfUCbJFejSTzf4GFkx6A4xTU/9YNd1axSo uT6TjGowB7W385XTmVcimbIb22a8vmeTlYfb1QMuTBLhZzX1Fs3BSG2Shg== -----END CERTIFICATE-----Generated at Thu Jun 6 15:06:50 2024 by rpki-client on console-ams.rpki-client.org