$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/CewEA1jWxsOdshcgIBZeddyYXfk.roa File: CewEA1jWxsOdshcgIBZeddyYXfk.roa (raw, json) Hash identifier: YWn2vyo8RvCrwa7JfHmprtcXJkHK5/l7f1q5wRGFs6s= Subject key identifier: 09:EC:04:03:58:D6:C6:C3:9D:B2:17:20:20:16:5E:75:DC:98:5D:F9 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 029F Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/CewEA1jWxsOdshcgIBZeddyYXfk.roa Signing time: Fri 31 May 2024 01:39:50 +0000 ROA not before: Fri 31 May 2024 01:39:50 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 10013 IP address blocks: 153.120.220.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Oct 2024 13:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 671 (0x29f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 31 01:39:50 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=09EC040358D6C6C39DB2172020165E75DC985DF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2d:90:08:6f:16:9b:7c:ef:32:1a:b3:6e:51: d1:33:de:c5:55:91:a5:6e:51:fb:33:02:79:d9:42: 03:bc:9e:0d:d1:96:db:0e:bb:4a:1d:be:01:f0:38: 49:02:e6:97:70:e1:ab:8b:f3:71:54:ed:9c:8f:bd: 60:5a:02:bf:b8:03:59:20:ed:24:41:7f:18:79:e0: 4c:0c:bf:06:c9:27:68:d3:2f:96:db:cd:c2:78:31: 1a:67:22:f9:b4:49:6c:51:c2:52:ac:aa:70:14:ce: 40:d6:40:6d:fd:6a:46:73:0d:cb:92:e6:2c:c9:ec: 2f:f5:50:9b:79:76:3e:9f:9b:b9:2e:94:07:7e:e1: db:45:08:5c:f6:32:6e:b4:e0:4e:8c:fb:69:5f:0c: 73:29:45:b1:1a:da:73:bc:0c:f3:4f:26:13:f9:0c: 0c:d7:f4:17:03:11:ca:97:2f:50:95:8c:e1:2b:3b: ed:97:b2:c0:0b:29:4e:21:90:52:10:45:c1:6f:72: 9e:b0:09:0e:88:37:02:50:09:b6:a5:db:cd:2d:2a: 93:a3:5c:d0:cb:5d:1d:cb:b2:02:ca:85:5b:2f:b8: e0:bc:cf:39:de:d1:cf:31:d4:ad:bb:25:fe:83:0e: d0:ab:c6:ed:48:9b:4d:36:6e:b0:b9:1e:35:82:9e: 48:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:EC:04:03:58:D6:C6:C3:9D:B2:17:20:20:16:5E:75:DC:98:5D:F9 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/CewEA1jWxsOdshcgIBZeddyYXfk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 153.120.220.0/23 Signature Algorithm: sha256WithRSAEncryption 4c:f6:2f:65:ea:7f:c5:0f:45:5e:d0:35:8f:9d:7e:a4:76:6e: bb:74:10:70:80:6e:94:74:6b:d0:c8:93:fc:df:52:db:7a:38: 46:33:aa:39:c9:a8:ba:b3:e2:ce:b4:fc:cc:ef:72:c2:4f:90: c5:0b:a0:4b:34:9b:d2:b7:55:88:8b:35:ad:ba:93:ff:7a:6f: 98:f2:e3:3c:a2:03:a5:64:a6:09:34:3d:8f:58:08:93:6a:19: 53:68:f2:0d:42:21:0c:d5:8c:00:84:82:2d:29:f0:30:6a:56: d0:8e:cd:3a:23:64:23:06:21:f2:82:3f:d6:73:d1:58:25:e1: 9b:90:38:e5:51:b6:c4:86:0e:68:57:b9:08:a7:36:7c:1e:7c: 11:44:b8:d7:06:d0:b5:fd:ee:f1:83:f3:f1:30:9d:46:45:73: a6:02:e0:b0:0f:d6:6c:19:44:24:4a:d1:49:2c:27:b7:2b:44: 0c:08:ca:5a:38:c7:2e:7b:d5:30:a8:a9:0c:5d:dc:dc:26:ef: a5:d8:eb:ab:e1:f2:17:06:fd:c1:91:c7:98:b4:8c:f6:78:c1: 63:b4:ab:88:35:ec:37:0c:66:ea:7c:57:a0:b1:97:78:e8:95: 2d:a6:ff:65:62:17:4c:a7:e5:7a:d1:f8:28:e1:d7:b5:e6:90: ee:f5:19:47 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAp8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNDA1MzEw MTM5NTBaFw0yNTA1MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDA5RUMwNDAzNThENkM2 QzM5REIyMTcyMDIwMTY1RTc1REM5ODVERjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHLZAIbxabfO8yGrNuUdEz3sVVkaVuUfszAnnZQgO8ng3RltsO u0odvgHwOEkC5pdw4auL83FU7ZyPvWBaAr+4A1kg7SRBfxh54EwMvwbJJ2jTL5bb zcJ4MRpnIvm0SWxRwlKsqnAUzkDWQG39akZzDcuS5izJ7C/1UJt5dj6fm7kulAd+ 4dtFCFz2Mm604E6M+2lfDHMpRbEa2nO8DPNPJhP5DAzX9BcDEcqXL1CVjOErO+2X ssALKU4hkFIQRcFvcp6wCQ6INwJQCbal280tKpOjXNDLXR3LsgLKhVsvuOC8zzne 0c8x1K27Jf6DDtCrxu1Im002brC5HjWCnkiRAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUCewEA1jWxsOdshcgIBZeddyYXfkwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L0Nld0VBMWpXeHNPZHNoY2dJQlplZGR5WVhmay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAGZeNwwDQYJKoZIhvcNAQELBQADggEBAEz2L2Xqf8UPRV7QNY+dfqR2brt0 EHCAbpR0a9DIk/zfUtt6OEYzqjnJqLqz4s60/MzvcsJPkMULoEs0m9K3VYiLNa26 k/96b5jy4zyiA6Vkpgk0PY9YCJNqGVNo8g1CIQzVjACEgi0p8DBqVtCOzTojZCMG IfKCP9Zz0Vgl4ZuQOOVRtsSGDmhXuQinNnwefBFEuNcG0LX97vGD8/EwnUZFc6YC 4LAP1mwZRCRK0UksJ7crRAwIylo4xy571TCoqQxd3Nwm76XY66vh8hcG/cGRx5i0 jPZ4wWO0q4g17DcMZup8V6Cxl3jolS2m/2ViF0yn5XrR+Cjh17XmkO71GUc= -----END CERTIFICATE-----Generated at Fri Sep 27 05:00:22 2024 by rpki-client on console-fra.rpki-client.org