$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/KLkZUWNxKLoQMmSWIYEP3TkP00Y.roa File: KLkZUWNxKLoQMmSWIYEP3TkP00Y.roa (raw, json) Hash identifier: lRAi+vHj74B/4fZPamb01LKt7cBiAL9lafCO+i4RTkg= Subject key identifier: 28:B9:19:51:63:71:28:BA:10:32:64:96:21:81:0F:DD:39:0F:D3:46 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0259 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/KLkZUWNxKLoQMmSWIYEP3TkP00Y.roa Signing time: Fri 31 May 2024 01:35:42 +0000 ROA not before: Fri 31 May 2024 01:35:42 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 10013 IP address blocks: 59.156.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Oct 2024 13:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 601 (0x259) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 31 01:35:42 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=28B91951637128BA1032649621810FDD390FD346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:fe:ee:1d:3e:4b:3c:21:40:ad:0a:86:e4:e3: 97:f8:20:39:49:25:54:17:9e:f0:14:b0:dd:34:59: a9:ba:af:e7:77:56:4c:0f:3c:63:b2:93:e4:85:96: 7c:91:e5:06:99:cd:5c:df:b8:95:10:19:61:eb:bf: 44:1a:87:a1:9a:16:4d:88:23:30:12:b7:74:42:91: 36:71:d4:c8:8f:ff:bc:05:a6:d9:a9:df:53:12:7d: 3b:20:26:cd:f2:81:2f:02:9a:22:cc:84:2f:d7:ff: c4:0b:6e:b9:3c:d1:63:f3:5e:2f:0a:cb:14:49:a5: 64:5b:a6:45:7c:07:c0:49:c2:bb:08:0c:e8:a4:ea: 45:3a:46:77:d0:83:ae:12:dc:8c:a6:47:bd:90:17: 8a:e0:cb:6e:97:28:83:72:4a:52:8c:0a:9c:30:af: de:aa:28:37:07:29:64:4d:0d:76:02:03:3b:35:0a: cb:7b:52:e1:37:dc:e9:27:39:ac:ec:ba:9e:9d:38: c7:d3:a5:8e:87:a9:e9:f6:58:eb:d8:f3:ee:94:a6: 22:dc:3d:3b:d2:1e:bf:26:0d:f5:0b:d0:6f:fd:ea: 31:13:ad:22:72:6e:d1:e1:f9:96:96:68:36:3b:1d: c8:de:9c:4b:db:64:13:d4:38:fb:ee:69:0b:be:7e: d8:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:B9:19:51:63:71:28:BA:10:32:64:96:21:81:0F:DD:39:0F:D3:46 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/KLkZUWNxKLoQMmSWIYEP3TkP00Y.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.156.24.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:f6:40:45:ef:8e:09:1c:c6:92:11:83:c6:03:cc:19:83:6a: 41:09:83:f1:ba:23:5c:bd:4c:a6:31:2f:9d:02:ea:56:3e:27: 11:30:5c:bc:50:b8:d9:0b:cb:30:c2:4c:93:55:df:a0:4e:5f: ef:15:f9:6f:fb:f8:cd:32:63:1f:ef:a1:b4:fc:5c:78:21:0e: 22:b2:03:b0:2e:a1:38:18:c6:d7:c3:5d:15:3f:b2:04:06:bf: fe:3a:a8:75:0e:f0:60:1e:46:a3:0f:ea:d7:91:4e:a4:98:2f: fe:f9:63:e1:30:33:f7:90:4d:34:52:b9:29:24:4e:da:df:4d: fa:0b:c9:5b:d1:a8:69:48:48:71:90:84:3e:c4:9a:60:eb:c5: 3d:11:32:0b:c5:da:00:a3:77:67:66:5f:a8:79:69:d8:be:c0: be:eb:04:cc:c5:89:b3:0b:4f:df:f5:44:9d:dc:0f:be:b7:b9: 5e:7c:4e:e4:fc:b0:9a:47:d2:18:81:1d:a0:3c:ab:04:1b:f1: b2:4b:31:55:7a:c1:32:c3:4a:36:a5:37:a2:06:eb:3a:b1:7d: 12:3e:2a:02:d6:c9:0a:90:d4:b4:a2:2f:aa:d6:de:75:ce:7b: 21:e2:37:e9:2f:c1:c2:d5:03:f0:cc:4f:53:a3:c0:04:7c:59: 95:81:a8:26 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAlkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNDA1MzEw MTM1NDJaFw0yNTA1MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDI4QjkxOTUxNjM3MTI4 QkExMDMyNjQ5NjIxODEwRkREMzkwRkQzNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDa/u4dPks8IUCtCobk45f4IDlJJVQXnvAUsN00Wam6r+d3VkwP PGOyk+SFlnyR5QaZzVzfuJUQGWHrv0Qah6GaFk2IIzASt3RCkTZx1MiP/7wFptmp 31MSfTsgJs3ygS8CmiLMhC/X/8QLbrk80WPzXi8KyxRJpWRbpkV8B8BJwrsIDOik 6kU6RnfQg64S3IymR72QF4rgy26XKINySlKMCpwwr96qKDcHKWRNDXYCAzs1Cst7 UuE33OknOazsup6dOMfTpY6Hqen2WOvY8+6UpiLcPTvSHr8mDfUL0G/96jETrSJy btHh+ZaWaDY7HcjenEvbZBPUOPvuaQu+ftgVAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUKLkZUWNxKLoQMmSWIYEP3TkP00YwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L0tMa1pVV054S0xvUU1tU1dJWUVQM1RrUDAwWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA7nBgwDQYJKoZIhvcNAQELBQADggEBAE32QEXvjgkcxpIRg8YDzBmDakEJ g/G6I1y9TKYxL50C6lY+JxEwXLxQuNkLyzDCTJNV36BOX+8V+W/7+M0yYx/vobT8 XHghDiKyA7AuoTgYxtfDXRU/sgQGv/46qHUO8GAeRqMP6teRTqSYL/75Y+EwM/eQ TTRSuSkkTtrfTfoLyVvRqGlISHGQhD7EmmDrxT0RMgvF2gCjd2dmX6h5adi+wL7r BMzFibMLT9/1RJ3cD763uV58TuT8sJpH0hiBHaA8qwQb8bJLMVV6wTLDSjalN6IG 6zqxfRI+KgLWyQqQ1LSiL6rW3nXOeyHiN+kvwcLVA/DMT1OjwAR8WZWBqCY= -----END CERTIFICATE-----Generated at Fri Sep 27 05:00:22 2024 by rpki-client on console-fra.rpki-client.org