$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1085/kKBnZr3Eh_oPgqy9-tDgb7XeqfQ.roa File: kKBnZr3Eh_oPgqy9-tDgb7XeqfQ.roa (raw, json) Hash identifier: DDoMp5x4khhPZmsg7qKmhIBpXTR4RkAsGrm1Kzqd52U= Subject key identifier: 90:A0:67:66:BD:C4:87:FA:0F:82:AC:BD:FA:D0:E0:6F:B5:DE:A9:F4 Certificate issuer: /CN=0A86E6C0DD4733C142F01DD532FB3EAEE423B320 Certificate serial: 0E Authority key identifier: 0A:86:E6:C0:DD:47:33:C1:42:F0:1D:D5:32:FB:3E:AE:E4:23:B3:20 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CobmwN1HM8FC8B3VMvs-ruQjsyA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1085/kKBnZr3Eh_oPgqy9-tDgb7XeqfQ.roa Signing time: Sat 14 Oct 2023 09:17:06 +0000 ROA not before: Sat 14 Oct 2023 09:17:06 +0000 ROA not after: Sat 14 Sep 2024 01:30:03 +0000 asID: 0 IP address blocks: 202.255.204.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1085/CobmwN1HM8FC8B3VMvs-ruQjsyA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1085/CobmwN1HM8FC8B3VMvs-ruQjsyA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CobmwN1HM8FC8B3VMvs-ruQjsyA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 01:42:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14 (0xe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A86E6C0DD4733C142F01DD532FB3EAEE423B320 Validity Not Before: Oct 14 09:17:06 2023 GMT Not After : Sep 14 01:30:03 2024 GMT Subject: CN=90A06766BDC487FA0F82ACBDFAD0E06FB5DEA9F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:6a:49:de:36:a2:d5:26:5e:f1:ad:43:ad:3a: ef:91:42:0b:d8:ad:21:66:41:ed:a8:a4:c6:7c:c1: 4d:f6:ad:1b:be:5f:74:7b:87:47:06:e4:14:fe:2e: 59:28:08:73:0f:96:ff:dd:c7:13:4e:f0:dd:84:de: c4:18:00:31:bd:19:f3:e0:b4:91:89:dc:ad:f0:1d: 61:8f:73:66:c3:aa:0e:d8:2c:9d:c4:a9:35:73:2c: ee:7a:9e:05:b0:f2:68:8b:f8:5d:a9:2e:04:56:52: ba:12:51:75:ea:77:b0:6d:ea:f5:0e:ea:a0:a9:3d: 1f:9d:89:f1:52:e6:75:71:08:c8:6b:06:07:78:fb: f3:f6:3f:24:05:bd:00:c1:1e:a0:16:ac:9e:8c:4b: 96:41:a6:ca:a4:46:4c:69:d6:0d:e1:5a:ae:95:fc: 58:89:27:4f:a5:df:3e:51:b4:c8:7e:9d:34:37:f3: 6e:8c:e6:ae:5e:0c:cb:33:6f:c6:a0:e9:57:77:a4: 9d:56:b6:e7:61:dd:51:f0:e6:35:74:16:d3:54:79: 27:be:0e:1a:5f:92:1b:c9:9a:30:79:80:3c:77:4c: 41:ca:03:8b:de:ca:6f:e2:d5:f8:39:19:f6:2a:ba: 93:32:ef:fc:36:6e:bd:13:d8:20:82:06:88:d4:5a: dc:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:A0:67:66:BD:C4:87:FA:0F:82:AC:BD:FA:D0:E0:6F:B5:DE:A9:F4 X509v3 Authority Key Identifier: keyid:0A:86:E6:C0:DD:47:33:C1:42:F0:1D:D5:32:FB:3E:AE:E4:23:B3:20 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1085/CobmwN1HM8FC8B3VMvs-ruQjsyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CobmwN1HM8FC8B3VMvs-ruQjsyA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1085/kKBnZr3Eh_oPgqy9-tDgb7XeqfQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.255.204.0/22 Signature Algorithm: sha256WithRSAEncryption 37:38:39:84:ef:41:6f:3c:7c:48:bd:74:8f:a4:91:46:a3:3e: 20:88:e3:ee:db:ee:a0:b1:ed:93:96:ee:65:82:43:2d:4c:b3: a4:20:8c:12:f7:dc:c9:5d:29:a7:6b:be:2d:6d:5c:97:f4:ab: 32:6a:72:b0:d0:e0:27:70:bf:45:00:de:68:23:5c:9d:41:49: 34:8a:25:fa:8e:96:2e:fa:30:d2:02:5a:34:c0:ce:1b:96:31: 5a:74:f0:06:d0:6e:10:12:b9:be:63:0f:d0:b4:73:4f:6f:29: 8c:d1:35:4e:e7:a7:a7:fb:dc:48:df:57:41:e2:10:df:4a:7b: 3b:bf:10:d2:46:d3:b5:c3:cf:a4:fe:6f:69:7b:68:21:2d:21: 2f:9e:8f:cc:0e:e8:95:5d:4d:6e:50:e9:0a:9c:7d:b8:a4:04: b5:16:28:a0:03:83:29:a3:9c:ed:2f:d3:04:99:54:80:2f:a6: b6:03:3e:cd:64:7e:bd:d6:7a:bd:1d:b6:cb:3f:70:cd:8e:1d: 70:ff:a0:2a:10:bd:f9:e8:cb:3a:e0:c7:03:db:bb:56:ca:d2: 68:9e:27:ec:15:29:c1:c5:c6:eb:f6:51:e6:1c:40:90:d4:e2: 16:38:14:33:66:94:b2:fb:54:6d:e3:23:94:2f:42:d8:54:0a: 1c:f2:04:56 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBDjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwQTg2 RTZDMERENDczM0MxNDJGMDFERDUzMkZCM0VBRUU0MjNCMzIwMB4XDTIzMTAxNDA5 MTcwNloXDTI0MDkxNDAxMzAwM1owMzExMC8GA1UEAxMoOTBBMDY3NjZCREM0ODdG QTBGODJBQ0JERkFEMEUwNkZCNURFQTlGNDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANBqSd42otUmXvGtQ60675FCC9itIWZB7aikxnzBTfatG75fdHuH RwbkFP4uWSgIcw+W/93HE07w3YTexBgAMb0Z8+C0kYncrfAdYY9zZsOqDtgsncSp NXMs7nqeBbDyaIv4XakuBFZSuhJRdep3sG3q9Q7qoKk9H52J8VLmdXEIyGsGB3j7 8/Y/JAW9AMEeoBasnoxLlkGmyqRGTGnWDeFarpX8WIknT6XfPlG0yH6dNDfzbozm rl4MyzNvxqDpV3eknVa252HdUfDmNXQW01R5J74OGl+SG8maMHmAPHdMQcoDi97K b+LV+DkZ9iq6kzLv/DZuvRPYIIIGiNRa3I0CAwEAAaOCAiYwggIiMB0GA1UdDgQW BBSQoGdmvcSH+g+CrL360OBvtd6p9DAfBgNVHSMEGDAWgBQKhubA3UczwULwHdUy +z6u5COzIDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTA4NS9Db2Jtd04xSE04RkM4QjNWTXZzLXJ1UWpzeUEuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9Db2Jtd04xSE04RkM4QjNWTXZzLXJ1 UWpzeUEuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTA4NS9rS0JuWnIzRWhfb1BncXk5LXREZ2I3WGVxZlEucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQCyv/MMA0GCSqGSIb3DQEBCwUAA4IBAQA3ODmE70FvPHxIvXSPpJFGoz4g iOPu2+6gse2Tlu5lgkMtTLOkIIwS99zJXSmna74tbVyX9KsyanKw0OAncL9FAN5o I1ydQUk0iiX6jpYu+jDSAlo0wM4bljFadPAG0G4QErm+Yw/QtHNPbymM0TVO56en +9xI31dB4hDfSns7vxDSRtO1w8+k/m9pe2ghLSEvno/MDuiVXU1uUOkKnH24pAS1 FiigA4Mpo5ztL9MEmVSAL6a2Az7NZH691nq9HbbLP3DNjh1w/6AqEL356Ms64McD 27tWytJonifsFSnBxcbr9lHmHECQ1OIWOBQzZpSy+1Rt4yOUL0LYVAoc8gRW -----END CERTIFICATE-----Generated at Fri May 3 11:55:34 2024 by rpki-client on console-fra.rpki-client.org