$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/990/VgnlN1Ga3JDTwpM9Lw1ubysEJOA.roa File: VgnlN1Ga3JDTwpM9Lw1ubysEJOA.roa (raw, json) Hash identifier: g8h1zEsQkIQYWiH9OTt957EeVVxNUL+VhEwgGcT+0aY= Subject key identifier: 56:09:E5:37:51:9A:DC:90:D3:C2:93:3D:2F:0D:6E:6F:2B:04:24:E0 Certificate issuer: /CN=42E32457C16BA874216A8F5DBB0D335BD148CB31 Certificate serial: 31 Authority key identifier: 42:E3:24:57:C1:6B:A8:74:21:6A:8F:5D:BB:0D:33:5B:D1:48:CB:31 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QuMkV8FrqHQhao9duw0zW9FIyzE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/990/VgnlN1Ga3JDTwpM9Lw1ubysEJOA.roa Signing time: Sat 01 Jun 2024 06:45:19 +0000 ROA not before: Sat 01 Jun 2024 06:45:19 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 131965 IP address blocks: 202.254.232.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/990/QuMkV8FrqHQhao9duw0zW9FIyzE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/990/QuMkV8FrqHQhao9duw0zW9FIyzE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QuMkV8FrqHQhao9duw0zW9FIyzE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Jun 2024 14:09:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42E32457C16BA874216A8F5DBB0D335BD148CB31 Validity Not Before: Jun 1 06:45:19 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=5609E537519ADC90D3C2933D2F0D6E6F2B0424E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:60:ae:9a:46:f9:cd:12:11:24:f2:3e:85:2d: 29:15:59:43:68:30:9c:c2:3d:19:b3:e7:ba:b7:11: db:c9:98:e4:8f:28:d7:09:57:59:e9:b0:0d:d3:8c: b8:bc:fd:14:d9:62:a6:c2:dd:c8:5f:70:da:66:72: 7f:b2:45:76:1a:b5:ee:cb:31:84:f6:1a:ca:9a:ce: b0:6d:c2:bf:9d:db:13:3a:30:c4:c6:0e:79:12:e6: bb:ce:27:00:08:2c:7f:88:2c:06:ac:db:58:d0:4c: 75:a1:c1:4b:ad:60:fb:a6:cd:11:59:c2:d4:b8:06: 17:d7:5e:4e:ad:75:c3:aa:61:7f:fa:af:6d:9c:25: ec:af:71:03:0d:c2:20:d9:8f:b7:ce:97:02:ec:3e: ca:4a:65:aa:b4:a8:30:c3:1f:a3:f5:ad:25:8b:8b: d3:9a:1a:da:1a:b8:07:15:81:3e:77:26:24:4e:f4: 81:0f:30:dd:ff:f6:8d:80:d1:aa:c6:29:43:e6:ce: 02:cd:5b:2b:23:bf:8b:49:28:3b:fc:c2:71:17:3d: 49:36:fa:99:67:6b:27:0c:c2:fb:71:1d:fc:13:12: 58:04:64:1f:e2:e6:f0:c7:f2:a2:84:1a:94:a8:93: 33:12:eb:8c:d1:19:4e:ba:e6:9a:54:29:b7:a9:bf: 6c:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:09:E5:37:51:9A:DC:90:D3:C2:93:3D:2F:0D:6E:6F:2B:04:24:E0 X509v3 Authority Key Identifier: keyid:42:E3:24:57:C1:6B:A8:74:21:6A:8F:5D:BB:0D:33:5B:D1:48:CB:31 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/990/QuMkV8FrqHQhao9duw0zW9FIyzE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QuMkV8FrqHQhao9duw0zW9FIyzE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/990/VgnlN1Ga3JDTwpM9Lw1ubysEJOA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.254.232.0/21 Signature Algorithm: sha256WithRSAEncryption 87:58:f2:50:75:1e:f0:54:5f:40:aa:d3:a8:89:c9:0b:a4:5e: d3:0e:c9:a1:06:0b:b9:dd:c5:6f:06:11:ad:d9:63:10:db:fe: 42:08:38:d9:0b:91:56:16:60:88:26:7f:5e:85:07:4f:f4:87: 92:8d:21:fe:ea:32:67:d3:20:83:c6:04:d7:24:d3:01:ca:73: 55:56:3b:e7:4a:16:72:07:4a:ac:c0:0a:4d:0a:c3:fa:50:71: 3a:ec:7b:f8:1c:14:aa:ee:96:ed:5f:5b:aa:20:be:77:3e:a3: 2d:37:41:1a:36:9e:fd:c1:a1:86:27:61:25:de:5e:5b:95:98: 97:44:8c:a1:ba:93:32:3a:7a:6c:9d:b7:c4:12:16:3d:f4:0e: 19:9c:02:81:1f:36:eb:36:e4:bb:1b:f8:bb:30:ea:89:66:21: 6d:5e:df:42:f2:64:8d:83:b6:a8:36:3d:65:98:2a:fc:18:e1: 9a:79:00:01:6c:95:13:20:fe:62:ab:b7:06:97:c6:5d:5d:d6: 44:af:6a:f9:db:5d:21:a9:38:ea:2f:e9:61:e7:25:32:93:e8: bd:42:ba:a2:a3:47:b2:69:8b:6a:b2:53:04:de:8e:2f:c0:6c: 17:02:b3:ad:98:5d:c5:b1:a1:89:77:70:87:4e:33:4b:02:1f: 96:1f:00:b0 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBMTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0MkUz MjQ1N0MxNkJBODc0MjE2QThGNURCQjBEMzM1QkQxNDhDQjMxMB4XDTI0MDYwMTA2 NDUxOVoXDTI1MDUxNTAxMzAwM1owMzExMC8GA1UEAxMoNTYwOUU1Mzc1MTlBREM5 MEQzQzI5MzNEMkYwRDZFNkYyQjA0MjRFMDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALRgrppG+c0SESTyPoUtKRVZQ2gwnMI9GbPnurcR28mY5I8o1wlX WemwDdOMuLz9FNlipsLdyF9w2mZyf7JFdhq17ssxhPYayprOsG3Cv53bEzowxMYO eRLmu84nAAgsf4gsBqzbWNBMdaHBS61g+6bNEVnC1LgGF9deTq11w6phf/qvbZwl 7K9xAw3CINmPt86XAuw+ykplqrSoMMMfo/WtJYuL05oa2hq4BxWBPncmJE70gQ8w 3f/2jYDRqsYpQ+bOAs1bKyO/i0koO/zCcRc9STb6mWdrJwzC+3Ed/BMSWARkH+Lm 8MfyooQalKiTMxLrjNEZTrrmmlQpt6m/bL8CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRWCeU3UZrckNPCkz0vDW5vKwQk4DAfBgNVHSMEGDAWgBRC4yRXwWuodCFqj127 DTNb0UjLMTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTkwL1F1TWtWOEZycUhRaGFvOWR1dzB6VzlGSXl6RS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1F1TWtWOEZycUhRaGFvOWR1dzB6VzlG SXl6RS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85OTAvVmdubE4xR2EzSkRUd3BNOUx3MXVieXNFSk9BLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA8r+6DANBgkqhkiG9w0BAQsFAAOCAQEAh1jyUHUe8FRfQKrTqInJC6Re0w7J oQYLud3FbwYRrdljENv+Qgg42QuRVhZgiCZ/XoUHT/SHko0h/uoyZ9Mgg8YE1yTT AcpzVVY750oWcgdKrMAKTQrD+lBxOux7+BwUqu6W7V9bqiC+dz6jLTdBGjae/cGh hidhJd5eW5WYl0SMobqTMjp6bJ23xBIWPfQOGZwCgR826zbkuxv4uzDqiWYhbV7f QvJkjYO2qDY9ZZgq/BjhmnkAAWyVEyD+Yqu3BpfGXV3WRK9q+dtdIak46i/pYecl MpPovUK6oqNHsmmLarJTBN6OL8BsFwKzrZhdxbGhiXdwh04zSwIflh8AsA== -----END CERTIFICATE-----Generated at Mon Jun 17 14:52:22 2024 by rpki-client on console-ams.rpki-client.org