$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/21042/Mkv4g5hQs6DGh1O3z7yJa8MYAz4.roa File: Mkv4g5hQs6DGh1O3z7yJa8MYAz4.roa (raw, json) Hash identifier: sUNTYZSd2Dto5LFjlTe82R5CCKPzsE7AE9BzJBLvSVk= Subject key identifier: 32:4B:F8:83:98:50:B3:A0:C6:87:53:B7:CF:BC:89:6B:C3:18:03:3E Certificate issuer: /CN=4F3E6396C9D76CBDF4ED2D5DE7A2A760214C9837 Certificate serial: 23 Authority key identifier: 4F:3E:63:96:C9:D7:6C:BD:F4:ED:2D:5D:E7:A2:A7:60:21:4C:98:37 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tz5jlsnXbL307S1d56KnYCFMmDc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/Mkv4g5hQs6DGh1O3z7yJa8MYAz4.roa Signing time: Tue 26 Sep 2023 06:17:12 +0000 ROA not before: Tue 26 Sep 2023 06:17:12 +0000 ROA not after: Sat 14 Sep 2024 01:30:03 +0000 asID: 23637 IP address blocks: 202.226.52.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/Tz5jlsnXbL307S1d56KnYCFMmDc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/Tz5jlsnXbL307S1d56KnYCFMmDc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tz5jlsnXbL307S1d56KnYCFMmDc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4F3E6396C9D76CBDF4ED2D5DE7A2A760214C9837 Validity Not Before: Sep 26 06:17:12 2023 GMT Not After : Sep 14 01:30:03 2024 GMT Subject: CN=324BF8839850B3A0C68753B7CFBC896BC318033E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:fc:55:cf:2f:b2:11:c6:c7:0d:14:65:02:65: 13:93:5c:7e:8f:2b:53:2e:cd:28:7f:b9:45:4e:bd: dc:56:9a:43:00:1f:67:d2:32:f2:88:8d:79:5e:57: 11:e2:78:15:7c:fd:6e:8b:ef:99:c8:4d:6a:4c:13: e6:a1:0d:9d:aa:de:58:cf:ae:22:ae:1c:9c:35:03: ec:5d:5a:f2:0e:57:d9:f0:2b:9b:a4:85:49:1a:8d: 6e:cf:54:01:64:10:7a:cc:67:29:25:1d:fe:e9:92: fb:63:93:8a:d3:da:4c:b4:cf:6d:7b:de:2b:75:04: 6e:25:6a:eb:37:ed:0b:2b:73:96:a7:2d:e5:13:4c: 6f:9b:1b:23:70:36:07:f6:c2:d1:73:b5:0d:fa:e2: b9:f7:bb:91:53:2c:47:1b:c4:ed:47:2c:e8:19:a6: 8e:b0:b8:80:ed:09:40:5d:8c:ee:b5:4a:39:bc:d8: da:6c:50:b0:6d:67:80:52:a0:a6:6c:8f:ed:ed:56: f6:51:aa:4f:fb:1b:4a:80:95:a6:86:9b:b7:61:aa: 2c:ae:a7:2e:3c:0b:8b:39:4b:38:90:9d:5a:f4:e7: 8e:b4:9b:41:e0:a4:72:6a:59:a0:ca:08:83:18:21: 3b:3b:37:32:33:d9:03:e1:c2:05:77:85:d7:d7:2b: 4b:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:4B:F8:83:98:50:B3:A0:C6:87:53:B7:CF:BC:89:6B:C3:18:03:3E X509v3 Authority Key Identifier: keyid:4F:3E:63:96:C9:D7:6C:BD:F4:ED:2D:5D:E7:A2:A7:60:21:4C:98:37 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/Tz5jlsnXbL307S1d56KnYCFMmDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tz5jlsnXbL307S1d56KnYCFMmDc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/Mkv4g5hQs6DGh1O3z7yJa8MYAz4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.226.52.0/22 Signature Algorithm: sha256WithRSAEncryption 77:35:78:c6:0d:52:dc:92:6f:d4:1a:f3:90:12:ae:e6:e8:52: 67:e9:a8:f6:87:bd:42:f4:e3:ac:55:de:79:48:49:ff:61:0f: 97:7f:e9:9b:95:2f:27:ea:a8:86:d9:9c:06:9e:b6:5b:c1:c3: 6f:e6:00:2f:17:ab:8f:c4:fb:cc:49:c1:f1:29:65:8c:d8:77: fa:57:5b:55:0c:96:4b:04:b1:64:25:5a:68:eb:3a:8e:69:f5: b6:1d:f3:b9:b2:9c:dd:37:d2:1b:b1:b3:ea:4d:9e:ab:6b:28: 2b:a0:50:4c:c4:26:68:d2:c1:1c:62:23:4a:c8:54:a2:08:99: f8:46:d0:50:61:7f:c4:16:d7:ff:fc:67:29:b8:e8:f3:a5:ec: dc:64:b1:f4:22:75:2c:ed:df:98:05:4f:7b:cf:32:12:5b:75: ec:62:2f:5b:5b:7a:fd:27:2a:71:56:64:87:ea:42:b4:8a:8d: 1b:54:90:6a:9a:47:dd:93:2d:36:21:a5:65:39:27:7c:28:b4: 8e:2e:06:c6:77:17:b7:8c:6c:27:7e:80:eb:99:04:71:2a:7c: 39:05:14:e9:33:16:42:6e:37:c9:81:ae:88:96:84:4b:44:73: de:dc:1d:a5:e5:ea:39:05:d2:00:9b:e1:f2:19:f5:3a:a0:9b: 40:52:b0:93 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBIzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0RjNF NjM5NkM5RDc2Q0JERjRFRDJENURFN0EyQTc2MDIxNEM5ODM3MB4XDTIzMDkyNjA2 MTcxMloXDTI0MDkxNDAxMzAwM1owMzExMC8GA1UEAxMoMzI0QkY4ODM5ODUwQjNB MEM2ODc1M0I3Q0ZCQzg5NkJDMzE4MDMzRTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALD8Vc8vshHGxw0UZQJlE5Ncfo8rUy7NKH+5RU693FaaQwAfZ9Iy 8oiNeV5XEeJ4FXz9bovvmchNakwT5qENnareWM+uIq4cnDUD7F1a8g5X2fArm6SF SRqNbs9UAWQQesxnKSUd/umS+2OTitPaTLTPbXveK3UEbiVq6zftCytzlqct5RNM b5sbI3A2B/bC0XO1Dfriufe7kVMsRxvE7Ucs6BmmjrC4gO0JQF2M7rVKObzY2mxQ sG1ngFKgpmyP7e1W9lGqT/sbSoCVpoabt2GqLK6nLjwLizlLOJCdWvTnjrSbQeCk cmpZoMoIgxghOzs3MjPZA+HCBXeF19crS3MCAwEAAaOCAigwggIkMB0GA1UdDgQW BBQyS/iDmFCzoMaHU7fPvIlrwxgDPjAfBgNVHSMEGDAWgBRPPmOWyddsvfTtLV3n oqdgIUyYNzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjEwNDIvVHo1amxzblhiTDMwN1MxZDU2S25ZQ0ZNbURjLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvVHo1amxzblhiTDMwN1MxZDU2S25Z Q0ZNbURjLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIxMDQyL01rdjRnNWhRczZER2gxTzN6N3lKYThNWUF6NC5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBALK4jQwDQYJKoZIhvcNAQELBQADggEBAHc1eMYNUtySb9Qa85ASrubo UmfpqPaHvUL046xV3nlISf9hD5d/6ZuVLyfqqIbZnAaetlvBw2/mAC8Xq4/E+8xJ wfEpZYzYd/pXW1UMlksEsWQlWmjrOo5p9bYd87mynN030huxs+pNnqtrKCugUEzE JmjSwRxiI0rIVKIImfhG0FBhf8QW1//8Zym46POl7NxksfQidSzt35gFT3vPMhJb dexiL1tbev0nKnFWZIfqQrSKjRtUkGqaR92TLTYhpWU5J3wotI4uBsZ3F7eMbCd+ gOuZBHEqfDkFFOkzFkJuN8mBroiWhEtEc97cHaXl6jkF0gCb4fIZ9Tqgm0BSsJM= -----END CERTIFICATE-----Generated at Sun Jun 2 12:45:44 2024 by rpki-client on console-ams.rpki-client.org