$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/3iG4-6TNrixgRXYKKcM7A2ZTFCc.roa File: 3iG4-6TNrixgRXYKKcM7A2ZTFCc.roa (raw, json) Hash identifier: 4T0gQKL2pzxkbZ49z0fA/WuwUfF815KevMKrYqs9RZo= Subject key identifier: DE:21:B8:FB:A4:CD:AE:2C:60:45:76:0A:29:C3:3B:03:66:53:14:27 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 02B7 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/3iG4-6TNrixgRXYKKcM7A2ZTFCc.roa Signing time: Fri 31 May 2024 01:41:44 +0000 ROA not before: Fri 31 May 2024 01:41:44 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 10013 IP address blocks: 183.181.120.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Oct 2024 13:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 695 (0x2b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 31 01:41:44 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=DE21B8FBA4CDAE2C6045760A29C33B0366531427 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ee:3a:26:eb:70:fb:82:34:c0:50:86:32:64: a3:88:a5:89:08:4f:d9:b2:2d:43:f5:ea:13:0b:dd: 56:6a:20:49:ad:8b:5c:b7:f1:3c:a8:e1:2b:db:6a: b9:b1:0b:06:bb:3b:b3:16:b3:d1:e2:d8:d5:b5:d6: 94:7d:6d:5b:c3:21:e8:53:d9:ae:63:84:72:50:59: 6d:33:b5:6b:e2:2e:a3:2f:1e:7b:48:6a:bb:60:59: 38:60:21:ee:50:3f:70:ab:4b:69:98:88:d1:51:ff: 68:f1:6f:65:c3:13:c8:ed:bf:f1:e5:d2:31:25:e6: 95:9d:d4:db:90:81:e0:e5:dc:81:92:5f:84:73:92: ce:a9:dd:eb:a1:e7:09:34:91:97:24:4d:74:0f:21: ea:59:2c:4f:5a:2e:a7:fa:6c:cc:63:d1:e6:7e:68: 51:7f:8f:56:56:b1:0e:2b:a1:a4:2b:be:00:1b:4b: 6f:94:a2:96:21:bd:0b:14:07:a2:dc:3b:e6:bd:29: 69:4d:f5:bd:aa:72:59:7e:00:ee:23:a2:6f:87:51: a8:80:bb:e1:25:0a:57:7f:b6:76:af:7f:8f:22:9d: be:94:83:e3:24:c8:76:91:64:3b:e6:4f:bc:c0:53: b5:bb:69:ef:dc:d5:08:8d:58:fc:c6:7d:6d:37:41: 73:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:21:B8:FB:A4:CD:AE:2C:60:45:76:0A:29:C3:3B:03:66:53:14:27 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/3iG4-6TNrixgRXYKKcM7A2ZTFCc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 183.181.120.0/23 Signature Algorithm: sha256WithRSAEncryption 77:bd:24:e5:09:b3:e3:6c:b6:57:c7:ff:5a:ba:7c:d8:38:ff: 3a:c6:6d:7f:41:68:5c:b9:3b:87:9a:72:06:21:01:f8:0a:24: ff:9f:15:b6:16:0f:55:be:bc:b5:e0:ac:22:b9:72:2a:36:4f: a9:2e:52:54:db:50:47:10:36:ce:cd:c2:0a:84:e3:6f:f2:fb: a1:88:10:19:f9:cc:ca:bc:ee:71:6b:59:d9:ed:39:ea:b8:fd: a4:05:c4:6f:9a:29:84:a9:a4:68:69:3f:50:84:ac:33:25:9a: d5:7b:82:21:44:36:f4:9b:ab:7f:f0:7e:ce:76:92:6c:16:f8: 7a:3a:3b:3c:a3:e7:00:18:ec:2b:36:b5:4e:79:ee:1a:3a:e2: 85:c2:70:cd:41:6e:66:bd:ca:12:bc:99:4b:f4:ea:7b:8e:0b: c6:a9:43:ec:52:64:2a:7f:ac:43:ac:7a:6c:e5:d0:0a:6b:6e: a1:93:51:2a:c7:3a:15:b9:9f:a2:7b:4d:71:f2:2c:6d:d2:8c: 4d:b2:9e:61:40:f8:09:8e:95:7e:d0:a1:2a:9a:69:d4:9f:1f: f3:3f:58:38:5b:df:60:90:02:e0:c0:0a:5c:80:d4:ac:9f:ca: 1d:5b:85:27:d4:ca:db:5d:ed:27:bd:4f:54:e2:c3:7f:83:bc: df:86:5d:99 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICArcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNDA1MzEw MTQxNDRaFw0yNTA1MTUwMTMwMDNaMDMxMTAvBgNVBAMTKERFMjFCOEZCQTRDREFF MkM2MDQ1NzYwQTI5QzMzQjAzNjY1MzE0MjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCf7jom63D7gjTAUIYyZKOIpYkIT9myLUP16hML3VZqIEmti1y3 8Tyo4SvbarmxCwa7O7MWs9Hi2NW11pR9bVvDIehT2a5jhHJQWW0ztWviLqMvHntI artgWThgIe5QP3CrS2mYiNFR/2jxb2XDE8jtv/Hl0jEl5pWd1NuQgeDl3IGSX4Rz ks6p3euh5wk0kZckTXQPIepZLE9aLqf6bMxj0eZ+aFF/j1ZWsQ4roaQrvgAbS2+U opYhvQsUB6LcO+a9KWlN9b2qcll+AO4jom+HUaiAu+ElCld/tnavf48inb6Ug+Mk yHaRZDvmT7zAU7W7ae/c1QiNWPzGfW03QXPjAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU3iG4+6TNrixgRXYKKcM7A2ZTFCcwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0LzNpRzQtNlROcml4Z1JYWUtLY003QTJaVEZDYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAG3tXgwDQYJKoZIhvcNAQELBQADggEBAHe9JOUJs+NstlfH/1q6fNg4/zrG bX9BaFy5O4eacgYhAfgKJP+fFbYWD1W+vLXgrCK5cio2T6kuUlTbUEcQNs7NwgqE 42/y+6GIEBn5zMq87nFrWdntOeq4/aQFxG+aKYSppGhpP1CErDMlmtV7giFENvSb q3/wfs52kmwW+Ho6Ozyj5wAY7Cs2tU557ho64oXCcM1Bbma9yhK8mUv06nuOC8ap Q+xSZCp/rEOsemzl0AprbqGTUSrHOhW5n6J7TXHyLG3SjE2ynmFA+AmOlX7QoSqa adSfH/M/WDhb32CQAuDAClyA1Kyfyh1bhSfUyttd7Se9T1Tiw3+DvN+GXZk= -----END CERTIFICATE-----Generated at Fri Sep 27 05:00:22 2024 by rpki-client on console-fra.rpki-client.org