$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/EQjcXctXhdwR3gppv07FWU_AQxA.roa File: EQjcXctXhdwR3gppv07FWU_AQxA.roa (raw, json) Hash identifier: OM+Cg6MHZ1PlvocPTx1x1xEdZ+6tZ/U6bWWseF0zm+w= Subject key identifier: 11:08:DC:5D:CB:57:85:DC:11:DE:0A:69:BF:4E:C5:59:4F:C0:43:10 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0258 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/EQjcXctXhdwR3gppv07FWU_AQxA.roa Signing time: Fri 31 May 2024 01:35:41 +0000 ROA not before: Fri 31 May 2024 01:35:41 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 10013 IP address blocks: 59.156.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Oct 2024 13:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 600 (0x258) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 31 01:35:41 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=1108DC5DCB5785DC11DE0A69BF4EC5594FC04310 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:72:1e:92:a7:8e:09:d0:71:a0:13:74:bd:09: cf:6d:c2:d2:e6:06:88:c9:46:23:d5:28:8a:e6:17: cd:fc:34:2d:dd:6d:c6:d9:7f:98:92:d9:31:13:b6: 48:62:a4:24:b2:db:99:ab:ca:ed:35:e3:78:25:67: 6e:5f:15:81:0b:b2:4b:d1:57:3a:f2:62:4b:1d:39: d0:05:24:e3:6f:57:b0:a2:c5:ce:59:66:ac:3b:80: d9:ac:b9:46:24:4a:83:19:1a:eb:af:77:1e:c7:43: 3f:9d:d5:b8:4f:51:b8:b4:c4:5a:25:94:c5:ff:26: 96:96:65:8c:d6:e7:f9:0a:5a:c2:48:70:a9:5c:e5: ba:04:63:42:4f:5f:50:ae:bb:79:2c:4e:b5:72:f0: ca:5e:07:0c:ba:02:c8:0e:7a:52:9c:91:98:82:cd: 44:c7:67:a2:2d:2a:1e:b6:cd:71:67:13:60:24:e2: ca:e4:70:72:33:ad:35:e3:dd:64:9a:66:e3:3b:9e: 17:f0:12:dd:98:fb:48:2b:a6:24:1a:49:58:cd:99: a3:d7:91:a1:69:50:0c:b4:89:e8:96:14:bd:51:40: 4a:1e:63:a0:01:ff:48:b9:e9:03:2a:22:72:00:a2: 37:d0:1d:ec:bc:64:b9:e3:35:0c:14:4e:57:2f:36: 52:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:08:DC:5D:CB:57:85:DC:11:DE:0A:69:BF:4E:C5:59:4F:C0:43:10 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/EQjcXctXhdwR3gppv07FWU_AQxA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.156.20.0/24 Signature Algorithm: sha256WithRSAEncryption 68:cc:6d:ab:04:d3:a7:3a:20:9c:df:ff:87:b5:6a:fd:ae:b7: 56:0b:dc:26:f0:6f:b6:1a:11:67:aa:34:1c:28:67:ff:90:ac: d7:61:3b:7c:88:8c:bc:08:78:a3:43:5c:bf:5a:f0:d0:26:ec: 10:72:b2:68:ff:7a:48:dc:91:2c:63:91:94:55:e3:08:e8:05: 26:f8:eb:c0:56:5f:66:60:fa:18:e6:39:55:f0:c2:01:bc:91: e7:5b:4c:4f:34:59:47:b9:ef:f8:5d:f1:8f:0c:9b:b9:50:dd: 10:7a:05:a0:63:c0:7a:a7:41:13:38:80:78:49:82:1c:52:40: 03:a5:a5:b1:49:9f:c4:c9:59:3d:c8:10:2b:d9:71:e7:a9:16: f5:0d:fc:60:25:d4:c6:e1:b7:44:fa:7b:b8:de:fa:57:be:45: 99:91:14:b2:fe:3f:40:13:b8:28:2b:b7:37:d7:08:f5:ef:a2: ae:a5:d8:66:15:27:c0:cb:1f:1e:d1:c7:d5:19:d3:b1:81:1b: 12:b0:d0:37:92:cd:99:42:8d:ab:5b:38:28:3d:bc:f3:32:fc: 7f:67:b2:d2:1d:77:62:a3:db:c0:ce:1f:f2:96:9f:db:9f:ef: 88:d3:b0:23:2c:24:bb:4b:11:71:ac:6b:39:b4:bc:37:73:e4: 7b:db:c3:84 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAlgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNDA1MzEw MTM1NDFaFw0yNTA1MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDExMDhEQzVEQ0I1Nzg1 REMxMURFMEE2OUJGNEVDNTU5NEZDMDQzMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvch6Sp44J0HGgE3S9Cc9twtLmBojJRiPVKIrmF838NC3dbcbZ f5iS2TETtkhipCSy25mryu0143glZ25fFYELskvRVzryYksdOdAFJONvV7Cixc5Z Zqw7gNmsuUYkSoMZGuuvdx7HQz+d1bhPUbi0xFollMX/JpaWZYzW5/kKWsJIcKlc 5boEY0JPX1Cuu3ksTrVy8MpeBwy6AsgOelKckZiCzUTHZ6ItKh62zXFnE2Ak4srk cHIzrTXj3WSaZuM7nhfwEt2Y+0grpiQaSVjNmaPXkaFpUAy0ieiWFL1RQEoeY6AB /0i56QMqInIAojfQHey8ZLnjNQwUTlcvNlJRAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUEQjcXctXhdwR3gppv07FWU/AQxAwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L0VRamNYY3RYaGR3UjNncHB2MDdGV1VfQVF4QS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA7nBQwDQYJKoZIhvcNAQELBQADggEBAGjMbasE06c6IJzf/4e1av2ut1YL 3Cbwb7YaEWeqNBwoZ/+QrNdhO3yIjLwIeKNDXL9a8NAm7BBysmj/ekjckSxjkZRV 4wjoBSb468BWX2Zg+hjmOVXwwgG8kedbTE80WUe57/hd8Y8Mm7lQ3RB6BaBjwHqn QRM4gHhJghxSQAOlpbFJn8TJWT3IECvZceepFvUN/GAl1Mbht0T6e7je+le+RZmR FLL+P0ATuCgrtzfXCPXvoq6l2GYVJ8DLHx7Rx9UZ07GBGxKw0DeSzZlCjatbOCg9 vPMy/H9nstIdd2Kj28DOH/KWn9uf74jTsCMsJLtLEXGsazm0vDdz5Hvbw4Q= -----END CERTIFICATE-----