$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/tdMIFAIUUrU5iXForGwfDweTJcU.roa File: tdMIFAIUUrU5iXForGwfDweTJcU.roa (raw, json) Hash identifier: M/HOQNkuYJPrRyJiHmeyoKJVFDwvydJzLg45UrgSf8A= Subject key identifier: B5:D3:08:14:02:14:52:B5:39:89:71:68:AC:6C:1F:0F:07:93:25:C5 Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 01D9 Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/tdMIFAIUUrU5iXForGwfDweTJcU.roa Signing time: Fri 31 May 2024 01:30:55 +0000 ROA not before: Fri 31 May 2024 01:30:55 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 4713 IP address blocks: 211.16.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jul 2024 06:55:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 473 (0x1d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: May 31 01:30:55 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=B5D30814021452B539897168AC6C1F0F079325C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e5:4d:c2:b7:66:e3:d1:4f:4a:7e:e3:a4:ce: 8a:79:78:1a:7e:35:19:6b:8b:1c:54:7d:3a:3a:a3: 79:ea:20:47:7a:e3:08:5f:10:26:ef:a8:ed:6f:b9: f3:33:73:1b:2a:bf:5d:36:74:23:5d:f3:df:b7:09: af:d4:e9:30:91:37:81:a9:44:7b:79:ac:03:a6:2a: 39:ed:73:7e:0f:55:59:b2:80:ea:c1:71:87:ec:fb: 60:4a:17:83:bb:04:e1:a2:56:13:16:04:44:37:d9: 3c:75:c1:2c:f0:9b:0a:49:bb:1d:31:0b:ff:21:cb: 28:5f:bd:ce:8e:7b:a7:fa:cb:c7:b4:ce:0e:6b:a2: 68:42:a8:92:9a:8a:17:2d:ec:06:e2:fa:9d:cc:8e: 48:f0:77:78:8b:b1:b6:9d:71:96:e2:8c:1e:02:d0: 3a:7c:db:1d:74:c5:9e:c2:8d:38:48:65:1b:40:75: 82:69:a8:ce:2c:bd:e6:d3:0c:b6:34:41:ec:4c:54: 44:de:74:20:70:35:05:7c:70:a3:37:92:12:07:0e: 1b:67:20:b5:1a:ce:97:3b:63:4c:78:86:fa:14:6a: e7:ff:a0:bb:eb:ea:2a:e6:bd:ed:78:2d:77:73:96: 9b:1b:c9:1b:c3:ce:c9:b9:05:84:df:76:c4:fc:8d: 60:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:D3:08:14:02:14:52:B5:39:89:71:68:AC:6C:1F:0F:07:93:25:C5 X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/tdMIFAIUUrU5iXForGwfDweTJcU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.16.0.0/15 Signature Algorithm: sha256WithRSAEncryption 34:cf:54:24:ed:16:65:4f:a6:12:c6:a8:49:37:2e:ae:b3:73: 92:ba:2e:8e:23:31:0e:94:ce:1d:8f:e2:2d:23:81:bf:a7:29: c3:ba:7d:77:b5:73:b2:a3:b2:74:68:09:51:56:9b:5b:bf:c7: 19:47:90:41:5d:0c:91:19:57:1d:82:dd:84:a7:35:cf:85:64: e6:99:80:f7:9e:8c:fe:5f:b2:a7:73:0e:a5:88:39:91:a5:38: c9:87:33:f1:79:8e:86:b4:69:6d:e5:ae:96:92:d5:8a:9f:1c: b7:ce:13:0f:c0:87:04:d8:9f:ce:be:15:3d:f2:c9:f9:94:87: 3b:3a:21:f8:3d:c9:fb:a3:f3:23:0c:5e:4e:54:d5:d7:cb:01: 8a:04:9b:24:21:6c:f4:35:38:4c:4f:01:76:9d:41:9e:2b:b6: 75:77:50:dd:05:1b:bb:a1:9b:20:ce:1f:f1:43:41:18:75:87: a1:64:bb:4c:c8:ee:02:87:6b:71:d9:32:28:ac:24:70:b0:fc: 5c:3a:86:56:82:38:a9:21:57:8d:52:37:eb:31:58:99:f2:58: 0d:c8:33:60:b7:7f:ce:ee:76:64:df:fb:ec:6f:14:75:9f:53: 8c:df:58:ca:cb:8c:44:38:78:05:6c:e6:1f:3a:b0:45:6c:f2: df:bd:8e:30 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICAdkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNDA1MzEw MTMwNTVaFw0yNTA1MTUwMTMwMDNaMDMxMTAvBgNVBAMTKEI1RDMwODE0MDIxNDUy QjUzOTg5NzE2OEFDNkMxRjBGMDc5MzI1QzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCo5U3Ct2bj0U9KfuOkzop5eBp+NRlrixxUfTo6o3nqIEd64whf ECbvqO1vufMzcxsqv102dCNd89+3Ca/U6TCRN4GpRHt5rAOmKjntc34PVVmygOrB cYfs+2BKF4O7BOGiVhMWBEQ32Tx1wSzwmwpJux0xC/8hyyhfvc6Oe6f6y8e0zg5r omhCqJKaihct7Abi+p3Mjkjwd3iLsbadcZbijB4C0Dp82x10xZ7CjThIZRtAdYJp qM4svebTDLY0QexMVETedCBwNQV8cKM3khIHDhtnILUazpc7Y0x4hvoUauf/oLvr 6irmve14LXdzlpsbyRvDzsm5BYTfdsT8jWC1AgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUtdMIFAIUUrU5iXForGwfDweTJcUwHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTMxL3RkTUlGQUlVVXJVNWlYRm9yR3dmRHdlVEpjVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwHTEDANBgkqhkiG9w0BAQsFAAOCAQEANM9UJO0WZU+mEsaoSTcurrNzkrou jiMxDpTOHY/iLSOBv6cpw7p9d7VzsqOydGgJUVabW7/HGUeQQV0MkRlXHYLdhKc1 z4Vk5pmA956M/l+yp3MOpYg5kaU4yYcz8XmOhrRpbeWulpLVip8ct84TD8CHBNif zr4VPfLJ+ZSHOzoh+D3J+6PzIwxeTlTV18sBigSbJCFs9DU4TE8Bdp1Bniu2dXdQ 3QUbu6GbIM4f8UNBGHWHoWS7TMjuAodrcdkyKKwkcLD8XDqGVoI4qSFXjVI36zFY mfJYDcgzYLd/zu52ZN/77G8UdZ9TjN9YysuMRDh4BWzmHzqwRWzy372OMA== -----END CERTIFICATE-----Generated at Wed Jun 26 08:12:37 2024 by rpki-client on console-ams.rpki-client.org