$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1175/XuBisb2e6Txmtlhwk-eGYox3Vg4.roa File: XuBisb2e6Txmtlhwk-eGYox3Vg4.roa (raw, json) Hash identifier: u21jgzTgTC3z4V5YZehgF9S3g3dNXZTzeNK7vanDkAc= Subject key identifier: 5E:E0:62:B1:BD:9E:E9:3C:66:B6:58:70:93:E7:86:62:8C:77:56:0E Certificate issuer: /CN=8A57051C84A2BF078749E7BB34BE19678E131119 Certificate serial: 39 Authority key identifier: 8A:57:05:1C:84:A2:BF:07:87:49:E7:BB:34:BE:19:67:8E:13:11:19 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ilcFHISivweHSee7NL4ZZ44TERk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1175/XuBisb2e6Txmtlhwk-eGYox3Vg4.roa Signing time: Thu 29 Feb 2024 01:31:47 +0000 ROA not before: Thu 29 Feb 2024 01:31:47 +0000 ROA not after: Fri 14 Feb 2025 01:30:03 +0000 asID: 16509 IP address blocks: 150.35.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1175/ilcFHISivweHSee7NL4ZZ44TERk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1175/ilcFHISivweHSee7NL4ZZ44TERk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ilcFHISivweHSee7NL4ZZ44TERk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 10:14:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8A57051C84A2BF078749E7BB34BE19678E131119 Validity Not Before: Feb 29 01:31:47 2024 GMT Not After : Feb 14 01:30:03 2025 GMT Subject: CN=5EE062B1BD9EE93C66B6587093E786628C77560E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:69:ff:f8:52:fe:7a:8f:91:21:b7:35:de:fe: c8:06:2a:46:6a:da:4b:30:37:cf:9f:aa:28:46:8a: 70:da:88:1b:3b:e0:28:73:d0:fd:23:f4:0d:e1:70: 94:fd:b5:c5:bc:7d:dc:af:a0:59:da:4a:db:41:26: c4:a9:a9:c8:92:89:f4:af:1c:bd:41:e5:df:1a:d5: 22:7a:3e:ca:3e:9e:08:4b:0d:58:ca:a7:a9:8c:57: fd:4a:f3:77:ca:12:71:16:61:b0:c5:04:f0:ea:ce: 87:fa:02:4d:c9:33:40:ed:af:57:27:e4:e2:41:2a: 27:ef:32:7a:4d:de:3a:bf:15:fa:2b:c9:7b:ec:31: b6:0d:0b:af:b5:d9:61:e3:dc:b9:d3:53:79:9e:33: bb:64:21:1f:2e:ba:cb:7b:1e:0a:25:30:4d:53:92: 33:d5:be:ed:73:67:7d:a0:b6:ed:19:f6:05:ee:56: a3:0a:ef:7e:6a:14:5f:80:ba:70:b6:73:37:65:6e: 72:1d:e2:80:45:7e:71:bd:39:8d:62:99:4a:c6:22: d9:17:b7:e1:e8:ab:38:f7:da:cf:a9:2b:e7:79:5f: 22:37:9d:8e:06:20:88:23:b3:22:77:c6:46:93:2b: 0d:76:6b:da:c9:ea:f6:ac:c3:2f:f7:28:2a:2c:73: 20:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:E0:62:B1:BD:9E:E9:3C:66:B6:58:70:93:E7:86:62:8C:77:56:0E X509v3 Authority Key Identifier: keyid:8A:57:05:1C:84:A2:BF:07:87:49:E7:BB:34:BE:19:67:8E:13:11:19 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1175/ilcFHISivweHSee7NL4ZZ44TERk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ilcFHISivweHSee7NL4ZZ44TERk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1175/XuBisb2e6Txmtlhwk-eGYox3Vg4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 150.35.240.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:5d:a5:4e:fa:a1:a3:c5:b8:19:a2:29:d2:35:1d:88:0c:46: ac:a4:c0:1d:3a:fa:60:75:c4:39:67:83:5d:9e:98:b3:a3:b8: 05:11:f0:f2:6b:fe:8a:c4:9e:7f:3e:c5:f8:d5:9d:db:9d:65: bc:44:23:73:63:66:b6:35:1d:a4:2e:fa:99:20:6e:8b:1b:8b: d5:38:e5:83:52:1b:ae:ca:30:9c:49:56:28:1a:cc:7d:05:5e: b3:ec:8c:af:76:22:02:42:3c:0e:3c:69:c1:93:8e:78:d8:49: aa:3a:fe:0b:98:bf:08:0e:f8:eb:b7:cf:ca:19:3e:c1:58:87: fe:73:0e:24:51:fb:18:7d:2e:a9:79:83:1b:7a:07:1d:6c:76: bb:33:b7:e2:09:07:a5:96:9d:4d:49:f1:80:54:52:63:ef:bb: 91:20:ac:cf:d0:fe:c9:14:de:03:a7:ee:ca:dc:a8:4a:7e:c8: 9b:19:f0:61:f4:ec:56:e4:08:8a:ae:8b:c0:75:a4:3e:ac:a5: 79:0d:31:2a:60:47:7f:03:58:d8:22:81:19:21:e2:0f:d6:66: 5e:60:65:4d:00:29:67:09:d6:e3:2a:3f:92:be:0a:50:06:55: 48:4d:69:4d:b6:0d:a7:a7:bc:ee:a8:2a:aa:99:58:a7:ad:9c: d0:7a:1b:77 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBOTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4QTU3 MDUxQzg0QTJCRjA3ODc0OUU3QkIzNEJFMTk2NzhFMTMxMTE5MB4XDTI0MDIyOTAx MzE0N1oXDTI1MDIxNDAxMzAwM1owMzExMC8GA1UEAxMoNUVFMDYyQjFCRDlFRTkz QzY2QjY1ODcwOTNFNzg2NjI4Qzc3NTYwRTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALtp//hS/nqPkSG3Nd7+yAYqRmraSzA3z5+qKEaKcNqIGzvgKHPQ /SP0DeFwlP21xbx93K+gWdpK20EmxKmpyJKJ9K8cvUHl3xrVIno+yj6eCEsNWMqn qYxX/Urzd8oScRZhsMUE8OrOh/oCTckzQO2vVyfk4kEqJ+8yek3eOr8V+ivJe+wx tg0Lr7XZYePcudNTeZ4zu2QhHy66y3seCiUwTVOSM9W+7XNnfaC27Rn2Be5Wowrv fmoUX4C6cLZzN2Vuch3igEV+cb05jWKZSsYi2Re34eirOPfaz6kr53lfIjedjgYg iCOzInfGRpMrDXZr2snq9qzDL/coKixzIC8CAwEAAaOCAiYwggIiMB0GA1UdDgQW BBRe4GKxvZ7pPGa2WHCT54ZijHdWDjAfBgNVHSMEGDAWgBSKVwUchKK/B4dJ57s0 vhlnjhMRGTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTE3NS9pbGNGSElTaXZ3ZUhTZWU3Tkw0Wlo0NFRFUmsuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9pbGNGSElTaXZ3ZUhTZWU3Tkw0Wlo0 NFRFUmsuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTE3NS9YdUJpc2IyZTZUeG10bGh3ay1lR1lveDNWZzQucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAliPwMA0GCSqGSIb3DQEBCwUAA4IBAQA6XaVO+qGjxbgZoinSNR2IDEas pMAdOvpgdcQ5Z4Ndnpizo7gFEfDya/6KxJ5/PsX41Z3bnWW8RCNzY2a2NR2kLvqZ IG6LG4vVOOWDUhuuyjCcSVYoGsx9BV6z7IyvdiICQjwOPGnBk4542EmqOv4LmL8I Dvjrt8/KGT7BWIf+cw4kUfsYfS6peYMbegcdbHa7M7fiCQellp1NSfGAVFJj77uR IKzP0P7JFN4Dp+7K3KhKfsibGfBh9OxW5AiKrovAdaQ+rKV5DTEqYEd/A1jYIoEZ IeIP1mZeYGVNAClnCdbjKj+SvgpQBlVITWlNtg2np7zuqCqqmVinrZzQeht3 -----END CERTIFICATE-----Generated at Thu May 2 12:22:38 2024 by rpki-client on console-ams.rpki-client.org