$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/3SDTsqKjxvkbC-RGVFVd90BsVZs.roa File: 3SDTsqKjxvkbC-RGVFVd90BsVZs.roa (raw, json) Hash identifier: 0cSaqs8oxJPMnKyT6Xi7Y44O28Qa2wN7/Se1GqI9lc0= Subject key identifier: DD:20:D3:B2:A2:A3:C6:F9:1B:0B:E4:46:54:55:5D:F7:40:6C:55:9B Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 02D4 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/3SDTsqKjxvkbC-RGVFVd90BsVZs.roa Signing time: Sun 30 Jun 2024 01:32:17 +0000 ROA not before: Sun 30 Jun 2024 01:32:17 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 10013 IP address blocks: 180.131.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Oct 2024 13:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 724 (0x2d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Jun 30 01:32:17 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=DD20D3B2A2A3C6F91B0BE44654555DF7406C559B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c4:54:f6:7c:20:76:47:36:1c:47:5c:d9:7f: d3:a7:58:0d:f6:63:01:61:a7:f2:e2:eb:b1:84:69: 45:5f:41:13:6c:0f:b0:d7:dd:81:bb:2f:71:47:5f: 9e:65:ef:b5:45:27:59:b0:39:a2:06:c3:66:96:2e: d3:7d:d5:5b:86:3a:4d:c0:4d:e7:b6:3a:b5:3a:d3: 65:3a:e6:a9:6c:0a:ea:7b:b3:ae:f2:5a:c6:8c:f9: 23:83:6e:82:c5:5d:77:d1:44:97:d2:17:fc:db:28: 56:8d:05:67:75:27:43:e1:95:46:ef:b0:d4:d7:cd: f5:eb:f2:c5:b7:4c:94:14:63:6a:34:ce:80:94:bc: 3e:8b:7e:db:06:32:2f:f7:61:34:48:e1:eb:d6:c6: f8:b3:f3:6a:39:f8:ff:01:f0:0e:c6:77:f1:c6:01: a5:7f:9c:73:ca:df:6f:17:2f:55:16:0a:95:24:3a: e2:87:7a:5d:3b:d2:fc:b9:9e:55:9f:24:7d:3d:3a: 9a:9d:17:49:72:53:14:6b:0a:74:d9:08:6c:42:c6: 0b:47:44:5b:c3:a6:9c:dc:97:16:2a:2e:3c:13:e9: 88:8b:13:73:9f:5e:90:53:06:a7:bb:ff:1d:88:38: b2:84:13:c1:7f:13:ef:a9:6e:2c:d9:cb:e3:58:41: b3:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:20:D3:B2:A2:A3:C6:F9:1B:0B:E4:46:54:55:5D:F7:40:6C:55:9B X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/3SDTsqKjxvkbC-RGVFVd90BsVZs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.131.114.0/24 Signature Algorithm: sha256WithRSAEncryption 38:45:0a:ee:33:a9:c8:92:18:17:4c:4d:e3:32:14:d3:20:60: c1:46:b8:ed:1b:f8:43:f0:d6:c3:f3:7f:0b:2d:f1:0e:88:f4: 3b:94:42:a8:40:71:92:41:ad:aa:fc:e8:ea:3f:5e:6a:15:2a: 5f:e5:ea:b0:1b:bc:ab:ef:c4:26:77:6b:f8:12:5e:81:5d:08: 5d:c7:e2:c2:6c:b6:d9:35:a7:44:a7:92:91:ec:77:0f:16:c6: 5e:b2:03:ed:23:04:b5:e1:26:78:b6:6d:93:03:b5:a2:3b:b5: f9:66:7f:d7:b0:45:1a:2e:05:96:50:c2:48:79:63:78:69:15: 77:e4:fd:56:09:af:b2:ad:45:b2:a8:73:54:5f:07:f9:78:25: 4f:09:46:87:6b:7d:0d:b2:4b:3f:2a:78:ec:05:f4:07:f3:13: 01:91:85:0c:35:5b:cf:2e:52:ad:e6:67:66:c9:69:c3:7e:fb: c8:db:e7:d2:3c:c3:3a:74:1f:23:1a:ca:27:2b:99:64:f1:39: 0b:53:55:71:73:80:e0:5a:97:88:68:28:66:3c:8c:9e:a8:ee: 0a:27:f9:81:f3:9c:7c:fe:59:56:fd:37:d9:02:08:f7:3b:c9: dc:51:92:50:53:c9:79:56:31:e7:7b:4e:53:69:e8:28:c8:99: 46:63:0b:9f -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAtQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNDA2MzAw MTMyMTdaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKEREMjBEM0IyQTJBM0M2 RjkxQjBCRTQ0NjU0NTU1REY3NDA2QzU1OUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqxFT2fCB2RzYcR1zZf9OnWA32YwFhp/Li67GEaUVfQRNsD7DX 3YG7L3FHX55l77VFJ1mwOaIGw2aWLtN91VuGOk3ATee2OrU602U65qlsCup7s67y WsaM+SODboLFXXfRRJfSF/zbKFaNBWd1J0PhlUbvsNTXzfXr8sW3TJQUY2o0zoCU vD6LftsGMi/3YTRI4evWxviz82o5+P8B8A7Gd/HGAaV/nHPK328XL1UWCpUkOuKH el070vy5nlWfJH09OpqdF0lyUxRrCnTZCGxCxgtHRFvDppzclxYqLjwT6YiLE3Of XpBTBqe7/x2IOLKEE8F/E++pbizZy+NYQbOBAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU3SDTsqKjxvkbC+RGVFVd90BsVZswHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0LzNTRFRzcUtqeHZrYkMtUkdWRlZkOTBCc1Zacy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAC0g3IwDQYJKoZIhvcNAQELBQADggEBADhFCu4zqciSGBdMTeMyFNMgYMFG uO0b+EPw1sPzfwst8Q6I9DuUQqhAcZJBrar86Oo/XmoVKl/l6rAbvKvvxCZ3a/gS XoFdCF3H4sJsttk1p0SnkpHsdw8Wxl6yA+0jBLXhJni2bZMDtaI7tflmf9ewRRou BZZQwkh5Y3hpFXfk/VYJr7KtRbKoc1RfB/l4JU8JRodrfQ2ySz8qeOwF9AfzEwGR hQw1W88uUq3mZ2bJacN++8jb59I8wzp0HyMayicrmWTxOQtTVXFzgOBal4hoKGY8 jJ6o7gon+YHznHz+WVb9N9kCCPc7ydxRklBTyXlWMed7TlNp6CjImUZjC58= -----END CERTIFICATE-----Generated at Fri Sep 27 05:00:22 2024 by rpki-client on console-fra.rpki-client.org