$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/NlwSPQnkGDNj5mui6Vo7KErsQbI.roa File: NlwSPQnkGDNj5mui6Vo7KErsQbI.roa (raw, json) Hash identifier: sdAGhYTWmpsgthOPSpmaZOxzT4pNqevMYeIgeWPNCbU= Subject key identifier: 36:5C:12:3D:09:E4:18:33:63:E6:6B:A2:E9:5A:3B:28:4A:EC:41:B2 Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 01BE Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/NlwSPQnkGDNj5mui6Vo7KErsQbI.roa Signing time: Sun 31 Mar 2024 01:29:13 +0000 ROA not before: Sun 31 Mar 2024 01:29:13 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 4713 IP address blocks: 153.224.0.0/12 maxlen: 12 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jul 2024 07:52:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 446 (0x1be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: Mar 31 01:29:13 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=365C123D09E4183363E66BA2E95A3B284AEC41B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:be:68:e1:86:7a:41:b4:5c:fc:44:75:f8:bd: 31:3d:ea:0b:66:a4:79:21:cd:22:ea:c5:89:50:ab: 22:c5:e0:c7:63:0e:e9:79:84:bd:f3:73:6b:4d:a2: 31:11:d0:3f:43:30:b0:71:6a:08:6a:c7:81:d7:f5: 59:f4:7a:d4:c7:46:ec:68:b4:25:97:91:32:fa:29: bc:72:84:34:ac:5f:12:cd:bd:5f:e1:ce:ef:96:42: f3:3c:3b:6e:f8:d9:ef:58:9b:a0:a0:dc:21:00:3b: f0:25:17:f2:30:ff:ad:d7:f3:54:1c:21:82:0c:11: 08:8a:fa:a8:f7:52:04:24:6a:2a:4d:5a:78:5f:53: a6:5e:94:02:8e:37:f9:7a:2d:b4:ee:4e:74:89:26: 4d:26:29:aa:d6:bb:88:47:c6:c7:b8:79:e5:a5:e9: 53:c5:a4:5a:65:28:5b:2e:7a:61:d0:c2:a8:6d:d4: 88:f7:83:57:bb:71:e0:8e:b5:fc:ff:bc:84:74:3d: 6e:2d:69:0e:38:74:5c:9f:06:bd:8f:44:c4:4c:37: 86:9e:0b:0d:a6:99:c7:24:19:13:d0:10:17:f3:eb: a8:88:5a:39:35:54:f7:ff:36:19:34:0e:8f:8c:e0: 1d:fe:5a:19:90:35:03:b8:e1:a7:65:b4:99:e5:a8: 27:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:5C:12:3D:09:E4:18:33:63:E6:6B:A2:E9:5A:3B:28:4A:EC:41:B2 X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/NlwSPQnkGDNj5mui6Vo7KErsQbI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 153.224.0.0/12 Signature Algorithm: sha256WithRSAEncryption 2f:57:08:2f:6b:c9:f9:e5:9d:ff:07:1b:44:bc:25:a4:34:a6: 2c:c2:c2:86:c8:64:80:28:1f:e6:ee:57:9f:b7:06:92:77:4e: b6:e0:e6:f1:73:25:51:3c:5d:18:0c:aa:bf:02:27:2b:f9:0c: 9e:30:24:ff:c0:f9:82:64:be:fc:0b:4b:1f:42:75:69:92:70: 19:19:d4:5f:1f:b5:20:7f:7f:c3:82:be:ee:ed:2f:e5:dd:25: 4d:13:09:06:9e:4f:d6:f6:ae:b3:15:24:d2:55:ca:bc:b4:7c: e3:1f:19:f0:83:f8:01:98:16:6a:3f:ed:14:21:81:c0:10:2c: 79:4e:56:f9:f1:13:4f:88:f0:37:12:17:61:a5:9c:60:1d:62: a4:62:3f:47:56:3e:84:4d:03:64:b6:c2:c6:dd:34:bf:a8:a3: 52:c3:d6:24:a7:06:02:e4:1e:d1:08:29:11:66:56:02:48:7a: f7:fa:6d:c6:f3:35:5c:6f:bd:2d:e5:2f:03:6d:45:15:d3:25: 16:45:31:af:16:97:57:3a:e9:d5:a2:ec:d3:08:71:9a:42:fb: 7a:8b:59:72:24:32:43:c0:f3:2f:00:ae:28:68:57:27:7a:06: 59:fb:05:e6:5d:a8:ee:55:bf:d6:74:ff:72:0e:0a:c8:5e:50: 93:b7:ff:1a -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICAb4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNDAzMzEw MTI5MTNaFw0yNTAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDM2NUMxMjNEMDlFNDE4 MzM2M0U2NkJBMkU5NUEzQjI4NEFFQzQxQjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdvmjhhnpBtFz8RHX4vTE96gtmpHkhzSLqxYlQqyLF4MdjDul5 hL3zc2tNojER0D9DMLBxaghqx4HX9Vn0etTHRuxotCWXkTL6KbxyhDSsXxLNvV/h zu+WQvM8O2742e9Ym6Cg3CEAO/AlF/Iw/63X81QcIYIMEQiK+qj3UgQkaipNWnhf U6ZelAKON/l6LbTuTnSJJk0mKarWu4hHxse4eeWl6VPFpFplKFsuemHQwqht1Ij3 g1e7ceCOtfz/vIR0PW4taQ44dFyfBr2PRMRMN4aeCw2mmcckGRPQEBfz66iIWjk1 VPf/Nhk0Do+M4B3+WhmQNQO44adltJnlqCf5AgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUNlwSPQnkGDNj5mui6Vo7KErsQbIwHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTMxL05sd1NQUW5rR0ROajVtdWk2Vm83S0Vyc1FiSS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwSZ4DANBgkqhkiG9w0BAQsFAAOCAQEAL1cIL2vJ+eWd/wcbRLwlpDSmLMLC hshkgCgf5u5Xn7cGkndOtuDm8XMlUTxdGAyqvwInK/kMnjAk/8D5gmS+/AtLH0J1 aZJwGRnUXx+1IH9/w4K+7u0v5d0lTRMJBp5P1vausxUk0lXKvLR84x8Z8IP4AZgW aj/tFCGBwBAseU5W+fETT4jwNxIXYaWcYB1ipGI/R1Y+hE0DZLbCxt00v6ijUsPW JKcGAuQe0QgpEWZWAkh69/ptxvM1XG+9LeUvA21FFdMlFkUxrxaXVzrp1aLs0whx mkL7eotZciQyQ8DzLwCuKGhXJ3oGWfsF5l2o7lW/1nT/cg4KyF5Qk7f/Gg== -----END CERTIFICATE-----Generated at Wed Jun 26 09:28:33 2024 by rpki-client on console-fra.rpki-client.org