$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10173/U7qJD_YB8TxK3YYD1ZjKY9hH9vc.roa File: U7qJD_YB8TxK3YYD1ZjKY9hH9vc.roa (raw, json) Hash identifier: XJYkbVgU56HcZMxYQ3z/YqJ3EBRYpmMicqgEu03bv6k= Subject key identifier: 53:BA:89:0F:F6:01:F1:3C:4A:DD:86:03:D5:98:CA:63:D8:47:F6:F7 Certificate issuer: /CN=101A90E4E74C403ABE8E5E0A1FE8E4157ABD2AE7 Certificate serial: A1 Authority key identifier: 10:1A:90:E4:E7:4C:40:3A:BE:8E:5E:0A:1F:E8:E4:15:7A:BD:2A:E7 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/EBqQ5OdMQDq-jl4KH-jkFXq9Kuc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10173/U7qJD_YB8TxK3YYD1ZjKY9hH9vc.roa Signing time: Thu 29 Feb 2024 01:30:07 +0000 ROA not before: Thu 29 Feb 2024 01:30:07 +0000 ROA not after: Fri 14 Feb 2025 01:30:03 +0000 asID: 18126 IP address blocks: 219.117.32.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10173/EBqQ5OdMQDq-jl4KH-jkFXq9Kuc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10173/EBqQ5OdMQDq-jl4KH-jkFXq9Kuc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/EBqQ5OdMQDq-jl4KH-jkFXq9Kuc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 161 (0xa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=101A90E4E74C403ABE8E5E0A1FE8E4157ABD2AE7 Validity Not Before: Feb 29 01:30:07 2024 GMT Not After : Feb 14 01:30:03 2025 GMT Subject: CN=53BA890FF601F13C4ADD8603D598CA63D847F6F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:06:94:fb:f3:a3:e7:4a:99:fa:26:42:8f:1f: a4:33:be:56:36:44:70:d4:da:be:78:d2:ba:15:51: 8c:f3:60:7b:0f:bd:da:91:45:c0:23:70:6f:85:4c: f9:b5:d0:f7:3b:77:9b:e3:5d:3c:5a:14:ae:ce:86: bf:7f:b4:b5:1c:e0:82:7e:8b:f4:ab:73:ee:48:72: 5e:37:6d:1a:7b:98:5c:41:13:d8:83:a1:dc:e0:37: 76:12:6a:04:a5:70:40:f8:e4:16:d4:5f:d7:3d:d0: f9:b7:7d:93:64:e1:6e:4b:4f:49:96:e5:08:71:9e: d1:1b:1e:a5:9f:5a:81:1f:6b:a0:1b:c7:fe:c0:12: a4:af:01:f5:35:b1:88:af:df:0e:11:39:9f:38:ce: f4:99:3e:fa:47:77:cc:42:fa:c0:66:16:cf:a0:c8: 0b:58:da:b0:8e:60:c1:46:05:03:5e:e5:e7:97:58: 4a:f3:f4:42:5b:a0:26:56:76:ca:a7:c3:bc:b5:18: ff:06:67:69:9d:30:71:d0:1d:19:e5:37:54:30:f5: 1f:c5:a5:8d:61:af:38:fb:77:ed:91:e9:bf:75:ba: 2d:34:bf:1e:fb:d0:11:35:77:15:34:84:7e:b4:ed: aa:63:52:85:f5:7a:25:6d:4d:f7:1d:62:4e:9e:a1: 75:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:BA:89:0F:F6:01:F1:3C:4A:DD:86:03:D5:98:CA:63:D8:47:F6:F7 X509v3 Authority Key Identifier: keyid:10:1A:90:E4:E7:4C:40:3A:BE:8E:5E:0A:1F:E8:E4:15:7A:BD:2A:E7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10173/EBqQ5OdMQDq-jl4KH-jkFXq9Kuc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/EBqQ5OdMQDq-jl4KH-jkFXq9Kuc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10173/U7qJD_YB8TxK3YYD1ZjKY9hH9vc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.117.32.0/20 Signature Algorithm: sha256WithRSAEncryption 18:40:39:95:6d:d4:3d:3a:db:7a:b8:f4:49:a4:3f:34:26:4d: ee:3b:a4:17:b5:52:ca:3a:98:1f:72:1e:fb:a9:29:7b:e0:ec: fc:30:cc:60:69:c0:31:ff:b7:50:c7:5f:66:b7:40:01:99:92: 29:84:1c:a8:96:06:90:09:39:7b:84:35:95:56:5c:b0:09:46: f4:53:a4:e4:c3:ad:7c:1b:a6:70:e1:f0:0b:ae:d9:ac:21:08: 5e:45:80:6a:ad:9d:00:49:df:28:2f:72:e1:c4:2c:bd:46:26: 60:30:96:8b:3d:c7:d9:9e:3f:ba:e1:9c:72:39:be:bf:8a:eb: 1b:82:33:b7:15:84:00:c6:7e:d6:3b:22:c0:3d:24:68:f8:59: aa:59:3e:6f:34:38:89:a8:81:3c:ef:b6:93:cd:73:6a:c7:ab: d2:bf:e8:44:38:fa:49:77:f4:ac:ec:88:f7:91:b1:70:32:ae: 95:ec:00:a0:27:be:79:dc:07:d3:52:15:a5:99:09:2b:05:11: 80:9b:e3:86:b2:5b:84:f4:ba:f9:c0:f8:e0:2a:5a:9c:f0:8a: 9b:a8:54:f2:b3:54:3e:30:2f:a6:09:4d:70:e2:86:c9:1c:01: 97:01:cc:eb:05:97:bf:87:be:71:fc:66:6e:cd:6a:f2:4c:dd: a5:5f:0c:b8 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAKEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTAx QTkwRTRFNzRDNDAzQUJFOEU1RTBBMUZFOEU0MTU3QUJEMkFFNzAeFw0yNDAyMjkw MTMwMDdaFw0yNTAyMTQwMTMwMDNaMDMxMTAvBgNVBAMTKDUzQkE4OTBGRjYwMUYx M0M0QUREODYwM0Q1OThDQTYzRDg0N0Y2RjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3BpT786PnSpn6JkKPH6QzvlY2RHDU2r540roVUYzzYHsPvdqR RcAjcG+FTPm10Pc7d5vjXTxaFK7Ohr9/tLUc4IJ+i/Src+5Icl43bRp7mFxBE9iD odzgN3YSagSlcED45BbUX9c90Pm3fZNk4W5LT0mW5QhxntEbHqWfWoEfa6Abx/7A EqSvAfU1sYiv3w4ROZ84zvSZPvpHd8xC+sBmFs+gyAtY2rCOYMFGBQNe5eeXWErz 9EJboCZWdsqnw7y1GP8GZ2mdMHHQHRnlN1Qw9R/FpY1hrzj7d+2R6b91ui00vx77 0BE1dxU0hH607apjUoX1eiVtTfcdYk6eoXVDAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUU7qJD/YB8TxK3YYD1ZjKY9hH9vcwHwYDVR0jBBgwFoAUEBqQ5OdMQDq+jl4K H+jkFXq9KucwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEwMTczL0VCcVE1T2RNUURxLWpsNEtILWprRlhxOUt1Yy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0VCcVE1T2RNUURxLWpsNEtILWpr RlhxOUt1Yy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8xMDE3My9VN3FKRF9ZQjhUeEszWVlEMVpqS1k5aEg5dmMu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQE23UgMA0GCSqGSIb3DQEBCwUAA4IBAQAYQDmVbdQ9Ott6uPRJpD80 Jk3uO6QXtVLKOpgfch77qSl74Oz8MMxgacAx/7dQx19mt0ABmZIphByolgaQCTl7 hDWVVlywCUb0U6Tkw618G6Zw4fALrtmsIQheRYBqrZ0ASd8oL3LhxCy9RiZgMJaL PcfZnj+64ZxyOb6/iusbgjO3FYQAxn7WOyLAPSRo+FmqWT5vNDiJqIE877aTzXNq x6vSv+hEOPpJd/Ss7Ij3kbFwMq6V7ACgJ7553AfTUhWlmQkrBRGAm+OGsluE9Lr5 wPjgKlqc8IqbqFTys1Q+MC+mCU1w4obJHAGXAczrBZe/h75x/GZuzWryTN2lXwy4 -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:24 2024 by rpki-client on console-ams.rpki-client.org