$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/QdDzxtYMGyhfwbLJmYVnML5lDIs.roa File: QdDzxtYMGyhfwbLJmYVnML5lDIs.roa (raw, json) Hash identifier: 7wnseiITTZRRQuOTcSVgppcOCXAoW8HGefLtfHiUUtQ= Subject key identifier: 41:D0:F3:C6:D6:0C:1B:28:5F:C1:B2:C9:99:85:67:30:BE:65:0C:8B Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 01E7 Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/QdDzxtYMGyhfwbLJmYVnML5lDIs.roa Signing time: Fri 31 May 2024 01:34:48 +0000 ROA not before: Fri 31 May 2024 01:34:48 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 4713 IP address blocks: 221.184.0.0/13 maxlen: 13 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jul 2024 07:52:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 487 (0x1e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: May 31 01:34:48 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=41D0F3C6D60C1B285FC1B2C999856730BE650C8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:8b:a6:c9:14:27:1a:8b:fd:d0:9f:4b:8f:c4: dd:61:7a:97:03:7f:f3:e2:c5:d9:c1:e3:b2:80:40: 53:25:2e:25:24:45:50:de:82:12:b5:b1:91:3e:cd: ca:40:ba:e9:dc:fd:bb:e0:13:86:6b:0a:da:a6:1f: ab:a3:75:af:2a:db:8b:43:ef:75:19:8b:98:dc:98: ea:89:c3:20:e7:b5:e6:88:46:5a:5b:e9:09:e6:3c: 7e:66:95:fd:a8:7f:29:33:44:60:23:ad:6c:a5:99: 97:e2:dd:94:e0:a1:2d:20:81:be:79:43:b3:56:53: 93:43:cd:c2:a7:1a:41:7b:f8:58:54:da:c4:78:97: d8:73:f3:4b:4c:55:ef:37:61:6d:9d:9a:45:64:5c: 3e:e8:62:8f:b9:fd:65:f4:ca:a0:80:fa:9f:fe:e3: 8e:06:c1:01:33:53:21:1e:f2:9c:57:a6:23:a6:8e: ce:14:3b:18:b8:29:65:3d:8f:7c:50:6f:5d:df:71: c7:02:4b:bf:31:51:aa:72:df:a8:36:ca:4c:4e:8c: 7f:63:65:7a:21:2a:7b:df:39:89:20:ad:3e:49:10: 82:c8:f8:8e:45:3c:18:88:d0:bd:54:af:d8:6c:15: 22:3a:3f:ef:48:39:1d:dd:8c:c0:80:43:98:9f:5e: 18:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:D0:F3:C6:D6:0C:1B:28:5F:C1:B2:C9:99:85:67:30:BE:65:0C:8B X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/QdDzxtYMGyhfwbLJmYVnML5lDIs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 221.184.0.0/13 Signature Algorithm: sha256WithRSAEncryption 5e:9c:76:99:d2:b0:d5:69:5a:a4:28:8a:ad:89:06:f1:4c:e9: 8b:22:98:c4:1d:3b:5a:16:c5:fc:36:2a:73:f3:ab:a5:f6:08: fb:02:78:89:9f:20:be:c0:0e:fd:d0:f7:d5:ac:e8:bb:45:b5: 3c:ec:93:e8:92:92:fe:6a:73:ef:74:f1:e0:2b:22:16:c3:f1: 78:dd:73:cf:4a:3f:1b:50:fd:c7:ad:41:7c:1f:35:54:db:24: 11:e3:9a:74:e4:9f:46:ac:2c:cf:07:d2:2f:57:f9:4c:26:af: a7:d0:bd:fb:0b:71:ad:68:2c:88:e8:f8:39:91:5d:65:5a:56: cd:19:a7:dc:dc:59:ab:b7:f1:7b:42:86:e8:46:57:77:c9:21: b6:ed:48:44:8f:a8:77:65:b5:5c:cd:90:e1:34:c2:57:59:f9: a8:9c:03:2e:b5:a8:d9:4a:da:e7:3b:51:59:e7:c6:a4:1b:f7: aa:de:dc:c9:9a:0c:4b:5b:0e:97:0b:18:bb:ab:64:50:29:37: 45:4d:a6:61:a4:e5:83:0d:ba:0e:84:6f:9e:c3:f8:db:a4:06: dd:61:ff:8d:d7:09:23:0b:7a:c1:d3:7d:63:fe:68:cc:05:1b: 41:bf:84:65:d9:90:d8:73:3c:0e:48:66:3d:78:05:8e:a6:04: cd:6c:0b:d2 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICAecwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNDA1MzEw MTM0NDhaFw0yNTA1MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDQxRDBGM0M2RDYwQzFC Mjg1RkMxQjJDOTk5ODU2NzMwQkU2NTBDOEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCki6bJFCcai/3Qn0uPxN1hepcDf/PixdnB47KAQFMlLiUkRVDe ghK1sZE+zcpAuunc/bvgE4ZrCtqmH6ujda8q24tD73UZi5jcmOqJwyDnteaIRlpb 6QnmPH5mlf2ofykzRGAjrWylmZfi3ZTgoS0ggb55Q7NWU5NDzcKnGkF7+FhU2sR4 l9hz80tMVe83YW2dmkVkXD7oYo+5/WX0yqCA+p/+444GwQEzUyEe8pxXpiOmjs4U Oxi4KWU9j3xQb13fcccCS78xUapy36g2ykxOjH9jZXohKnvfOYkgrT5JEILI+I5F PBiI0L1Ur9hsFSI6P+9IOR3djMCAQ5ifXhgrAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUQdDzxtYMGyhfwbLJmYVnML5lDIswHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTMxL1FkRHp4dFlNR3loZndiTEptWVZuTUw1bERJcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwPduDANBgkqhkiG9w0BAQsFAAOCAQEAXpx2mdKw1WlapCiKrYkG8UzpiyKY xB07WhbF/DYqc/OrpfYI+wJ4iZ8gvsAO/dD31azou0W1POyT6JKS/mpz73Tx4Csi FsPxeN1zz0o/G1D9x61BfB81VNskEeOadOSfRqwszwfSL1f5TCavp9C9+wtxrWgs iOj4OZFdZVpWzRmn3NxZq7fxe0KG6EZXd8khtu1IRI+od2W1XM2Q4TTCV1n5qJwD LrWo2Ura5ztRWefGpBv3qt7cyZoMS1sOlwsYu6tkUCk3RU2mYaTlgw26DoRvnsP4 26QG3WH/jdcJIwt6wdN9Y/5ozAUbQb+EZdmQ2HM8DkhmPXgFjqYEzWwL0g== -----END CERTIFICATE-----Generated at Wed Jun 26 09:28:33 2024 by rpki-client on console-fra.rpki-client.org