$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/ITMkWqBklTkIaXPbOA2Vq5jmqnQ.roa File: ITMkWqBklTkIaXPbOA2Vq5jmqnQ.roa (raw, json) Hash identifier: Mk5AEsHtajMyaFS8+vWkbOS9bnNBBHDqX4Bup41xUuU= Subject key identifier: 21:33:24:5A:A0:64:95:39:08:69:73:DB:38:0D:95:AB:98:E6:AA:74 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 02D0 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/ITMkWqBklTkIaXPbOA2Vq5jmqnQ.roa Signing time: Sun 30 Jun 2024 01:32:16 +0000 ROA not before: Sun 30 Jun 2024 01:32:16 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 10013 IP address blocks: 153.120.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Oct 2024 13:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 720 (0x2d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Jun 30 01:32:16 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=2133245AA0649539086973DB380D95AB98E6AA74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:a4:14:68:99:a8:cb:ba:cd:ae:5d:4e:5d:f3: ec:1d:d6:e6:44:76:5c:54:3e:33:23:cd:2e:eb:2f: e5:a6:e0:b4:70:94:67:4c:2e:fb:a8:a4:6c:da:f2: 6f:50:a2:ae:f2:fe:a1:93:02:8a:e7:2c:ab:c4:da: 50:1f:57:8d:cd:93:5a:c3:79:5e:05:4d:a2:06:c5: 05:e2:2a:64:f7:2b:17:eb:87:5c:50:7b:97:1a:df: b9:35:8a:b6:de:86:d8:08:6e:2f:9b:c8:fd:a3:25: 56:71:09:6c:54:99:01:98:d9:0b:dd:ac:c2:22:c3: d9:d3:20:d1:47:6a:08:ed:16:16:47:e2:d3:33:ea: 01:c1:17:0a:c4:88:5f:d5:6c:f4:14:3e:5d:0c:fe: 88:0d:a6:01:80:b7:94:32:53:bd:d0:e2:49:b2:a0: d7:6e:e1:a0:3e:fe:f4:47:43:9d:37:e9:85:41:ec: 3d:d1:16:37:6b:0e:31:6b:d6:27:aa:35:91:f5:d8: 1f:8e:c9:34:67:73:71:c6:67:d8:36:56:36:a9:09: 8a:cb:63:e6:3e:55:cd:23:8d:0e:a6:1d:f5:72:ae: 5d:21:c1:1b:11:57:1c:5d:32:d0:f0:83:86:a7:58: 66:01:ea:21:bb:4d:d9:a5:11:c0:66:9e:05:da:d7: ae:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:33:24:5A:A0:64:95:39:08:69:73:DB:38:0D:95:AB:98:E6:AA:74 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/ITMkWqBklTkIaXPbOA2Vq5jmqnQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 153.120.224.0/20 Signature Algorithm: sha256WithRSAEncryption 56:a9:75:2c:63:2d:93:c6:3d:33:f2:95:aa:6c:97:48:3c:21: 8a:e0:d4:e0:42:fe:00:57:4a:ba:53:f2:a5:b4:b1:3c:e6:bb: b1:45:1a:d7:6f:fb:a3:e6:a4:6e:0d:f4:33:e3:5a:7c:e0:ea: 7a:5b:4c:f7:46:07:6d:4c:fd:fd:cf:1d:da:09:69:d5:90:87: df:e2:07:80:5c:3d:98:86:c5:d8:f0:bf:90:3e:24:f5:1b:bc: 83:3c:d6:5e:ae:45:32:99:2f:cc:0b:61:57:e4:64:e2:75:b4: d1:a5:2a:20:62:c4:19:98:fe:8e:c8:86:07:c6:70:fe:39:dd: 5a:c7:57:8d:5b:76:80:7c:89:7a:f2:c3:2b:77:99:89:a0:47: 27:60:71:82:d2:60:f8:5a:31:f1:aa:5f:a0:8d:f0:02:de:65: 8c:46:59:a9:6f:c5:d8:dc:8c:f7:37:09:22:8b:00:32:8d:b6: 0b:c7:f4:27:36:5e:4a:63:26:34:d9:c5:34:26:1c:be:cc:38: 38:05:66:0d:d8:0c:c4:cc:22:66:28:bd:de:ba:44:f0:40:d7: 65:9c:89:da:3b:d0:b6:db:cf:20:ac:f9:7a:e7:7f:26:0d:cf: 4e:0f:6f:ee:fd:c8:3f:27:03:fc:ea:25:1f:55:d7:9b:f2:d5: da:b4:3a:7b -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAtAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNDA2MzAw MTMyMTZaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDIxMzMyNDVBQTA2NDk1 MzkwODY5NzNEQjM4MEQ5NUFCOThFNkFBNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDkpBRomajLus2uXU5d8+wd1uZEdlxUPjMjzS7rL+Wm4LRwlGdM LvuopGza8m9Qoq7y/qGTAornLKvE2lAfV43Nk1rDeV4FTaIGxQXiKmT3Kxfrh1xQ e5ca37k1irbehtgIbi+byP2jJVZxCWxUmQGY2QvdrMIiw9nTINFHagjtFhZH4tMz 6gHBFwrEiF/VbPQUPl0M/ogNpgGAt5QyU73Q4kmyoNdu4aA+/vRHQ5036YVB7D3R FjdrDjFr1ieqNZH12B+OyTRnc3HGZ9g2VjapCYrLY+Y+Vc0jjQ6mHfVyrl0hwRsR VxxdMtDwg4anWGYB6iG7TdmlEcBmngXa1649AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUITMkWqBklTkIaXPbOA2Vq5jmqnQwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L0lUTWtXcUJrbFRrSWFYUGJPQTJWcTVqbXFuUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBASZeOAwDQYJKoZIhvcNAQELBQADggEBAFapdSxjLZPGPTPylapsl0g8IYrg 1OBC/gBXSrpT8qW0sTzmu7FFGtdv+6PmpG4N9DPjWnzg6npbTPdGB21M/f3PHdoJ adWQh9/iB4BcPZiGxdjwv5A+JPUbvIM81l6uRTKZL8wLYVfkZOJ1tNGlKiBixBmY /o7IhgfGcP453VrHV41bdoB8iXrywyt3mYmgRydgcYLSYPhaMfGqX6CN8ALeZYxG WalvxdjcjPc3CSKLADKNtgvH9Cc2XkpjJjTZxTQmHL7MODgFZg3YDMTMImYovd66 RPBA12Wcido70LbbzyCs+XrnfyYNz04Pb+79yD8nA/zqJR9V15vy1dq0Ons= -----END CERTIFICATE-----Generated at Fri Sep 27 05:00:22 2024 by rpki-client on console-fra.rpki-client.org