$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/554/qnxthfozUQF1jWil6IGJqckMHtU.roa File: qnxthfozUQF1jWil6IGJqckMHtU.roa (raw, json) Hash identifier: cPNVceHBy9LR2Ych0hZpkhDl4e6W/lTrW3TQfvZFlBw= Subject key identifier: AA:7C:6D:85:FA:33:51:01:75:8D:68:A5:E8:81:89:A9:C9:0C:1E:D5 Certificate issuer: /CN=96D92CE24CF3FCC753285CEBAF3FEC1D72581A81 Certificate serial: 2D Authority key identifier: 96:D9:2C:E2:4C:F3:FC:C7:53:28:5C:EB:AF:3F:EC:1D:72:58:1A:81 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ltks4kzz_MdTKFzrrz_sHXJYGoE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/554/qnxthfozUQF1jWil6IGJqckMHtU.roa Signing time: Fri 01 Sep 2023 01:29:58 +0000 ROA not before: Fri 01 Sep 2023 01:29:58 +0000 ROA not after: Wed 14 Aug 2024 01:30:02 +0000 asID: 131921 IP address blocks: 153.124.128.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/554/ltks4kzz_MdTKFzrrz_sHXJYGoE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/554/ltks4kzz_MdTKFzrrz_sHXJYGoE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ltks4kzz_MdTKFzrrz_sHXJYGoE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Jul 2024 14:08:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96D92CE24CF3FCC753285CEBAF3FEC1D72581A81 Validity Not Before: Sep 1 01:29:58 2023 GMT Not After : Aug 14 01:30:02 2024 GMT Subject: CN=AA7C6D85FA335101758D68A5E88189A9C90C1ED5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e4:88:2c:b1:ef:bd:26:f5:09:0b:c3:1c:16: ab:9f:56:9b:d6:4b:0d:62:57:10:d7:74:c2:69:59: 4c:68:21:2f:f4:0f:9f:a8:80:61:98:bf:c6:7d:c2: 33:8d:a2:df:52:3f:79:c4:90:68:56:79:79:6f:57: 4d:d0:f4:17:f0:da:53:6c:3e:fa:71:ce:2e:24:40: ea:ac:c7:a2:1c:ad:fb:1f:97:f0:4f:53:6d:81:3d: bb:be:9a:24:33:e2:8e:b0:dc:c7:c0:e5:c7:8e:d1: 43:3b:69:57:6c:08:6e:c3:5b:3f:43:d5:d4:86:c3: 04:b7:17:e1:05:4f:33:c5:9b:81:cb:51:79:82:41: c6:63:ef:dd:17:9e:ec:31:f6:ed:a6:58:28:f4:9e: 59:c4:9d:68:51:cb:db:3d:b3:00:52:e5:cc:12:5d: ae:b5:6d:87:d9:4c:01:ee:44:19:c4:16:30:e8:43: f0:94:a5:fd:cf:62:02:b1:91:e4:50:74:04:3e:8d: 5a:f5:42:1e:11:a0:11:09:2c:3d:e2:bb:6b:ad:e9: 95:77:d6:55:f2:29:b4:ae:49:e3:98:4b:51:38:28: 1d:7f:a1:62:cf:76:88:61:4f:a8:28:c0:9b:61:86: 67:62:51:91:76:95:c5:dd:90:be:cd:e1:79:c4:1a: 60:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:7C:6D:85:FA:33:51:01:75:8D:68:A5:E8:81:89:A9:C9:0C:1E:D5 X509v3 Authority Key Identifier: keyid:96:D9:2C:E2:4C:F3:FC:C7:53:28:5C:EB:AF:3F:EC:1D:72:58:1A:81 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/554/ltks4kzz_MdTKFzrrz_sHXJYGoE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ltks4kzz_MdTKFzrrz_sHXJYGoE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/554/qnxthfozUQF1jWil6IGJqckMHtU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 153.124.128.0/20 Signature Algorithm: sha256WithRSAEncryption 73:95:d9:7a:dd:d1:5f:74:df:ef:4c:a0:81:95:2d:10:7b:a3: 6a:cc:34:aa:71:94:0a:e8:33:e1:13:8d:b0:01:80:9a:37:66: aa:e1:75:e8:88:52:57:c5:24:99:1f:0f:8e:65:93:69:04:c9: 8b:27:0d:39:98:af:74:2c:2d:3d:a3:67:91:6f:76:ad:81:d3: b9:c8:fb:d5:9f:7d:30:87:2a:c5:3e:1c:74:2a:b7:2e:cf:d9: a6:35:1f:7c:33:8d:f5:28:b8:c2:8f:10:53:44:fd:86:96:1e: fd:b7:4c:23:16:85:c2:d8:aa:69:3f:a0:2b:56:bf:ea:95:7f: 4f:49:42:37:1f:c5:90:c2:01:4f:7a:84:f5:29:89:19:7e:6b: de:fe:f6:1d:36:27:b1:27:ce:97:0d:e7:fd:e8:52:2f:f2:82: 84:5f:9e:e9:17:e7:d5:6c:a3:d4:35:7d:b1:1b:5d:df:9e:38: c9:f4:b8:13:dd:80:77:88:a0:10:cb:1d:61:c2:d0:77:52:08: f9:3e:0a:b9:7c:05:22:49:b6:17:e8:ba:40:e3:89:36:d8:1b: b1:68:4a:d6:e4:f9:43:22:1e:88:40:d5:7a:6c:44:34:b4:f4: af:47:50:38:d7:27:20:8a:fe:85:77:f8:4d:b3:c1:89:7b:9a: 2e:20:99:53 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBLTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5NkQ5 MkNFMjRDRjNGQ0M3NTMyODVDRUJBRjNGRUMxRDcyNTgxQTgxMB4XDTIzMDkwMTAx Mjk1OFoXDTI0MDgxNDAxMzAwMlowMzExMC8GA1UEAxMoQUE3QzZEODVGQTMzNTEw MTc1OEQ2OEE1RTg4MTg5QTlDOTBDMUVENTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL/kiCyx770m9QkLwxwWq59Wm9ZLDWJXENd0wmlZTGghL/QPn6iA YZi/xn3CM42i31I/ecSQaFZ5eW9XTdD0F/DaU2w++nHOLiRA6qzHohyt+x+X8E9T bYE9u76aJDPijrDcx8Dlx47RQztpV2wIbsNbP0PV1IbDBLcX4QVPM8WbgctReYJB xmPv3Ree7DH27aZYKPSeWcSdaFHL2z2zAFLlzBJdrrVth9lMAe5EGcQWMOhD8JSl /c9iArGR5FB0BD6NWvVCHhGgEQksPeK7a63plXfWVfIptK5J45hLUTgoHX+hYs92 iGFPqCjAm2GGZ2JRkXaVxd2Qvs3hecQaYMMCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSqfG2F+jNRAXWNaKXogYmpyQwe1TAfBgNVHSMEGDAWgBSW2SziTPP8x1MoXOuv P+wdclgagTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTU0L2x0a3M0a3p6X01kVEtGenJyel9zSFhKWUdvRS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2x0a3M0a3p6X01kVEtGenJyel9zSFhK WUdvRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81NTQvcW54dGhmb3pVUUYxaldpbDZJR0pxY2tNSHRVLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBJl8gDANBgkqhkiG9w0BAQsFAAOCAQEAc5XZet3RX3Tf70yggZUtEHujasw0 qnGUCugz4RONsAGAmjdmquF16IhSV8UkmR8PjmWTaQTJiycNOZivdCwtPaNnkW92 rYHTucj71Z99MIcqxT4cdCq3Ls/ZpjUffDON9Si4wo8QU0T9hpYe/bdMIxaFwtiq aT+gK1a/6pV/T0lCNx/FkMIBT3qE9SmJGX5r3v72HTYnsSfOlw3n/ehSL/KChF+e 6Rfn1Wyj1DV9sRtd3544yfS4E92Ad4igEMsdYcLQd1II+T4KuXwFIkm2F+i6QOOJ NtgbsWhK1uT5QyIeiEDVemxENLT0r0dQONcnIIr+hXf4TbPBiXuaLiCZUw== -----END CERTIFICATE-----Generated at Sun Jun 30 15:03:17 2024 by rpki-client on console-fra.rpki-client.org