$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/lYSKYtHsvIlv5txbk8WjLF8PNhc.roa File: lYSKYtHsvIlv5txbk8WjLF8PNhc.roa (raw, json) Hash identifier: JyIRpeQi5F7BAsrQav8k5eKqvXJEzIdZLnDHNB1OxPc= Subject key identifier: 95:84:8A:62:D1:EC:BC:89:6F:E6:DC:5B:93:C5:A3:2C:5F:0F:36:17 Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 01AA Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/lYSKYtHsvIlv5txbk8WjLF8PNhc.roa Signing time: Sun 31 Mar 2024 01:29:05 +0000 ROA not before: Sun 31 Mar 2024 01:29:05 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 4713 IP address blocks: 61.199.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 426 (0x1aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: Mar 31 01:29:05 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=95848A62D1ECBC896FE6DC5B93C5A32C5F0F3617 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e2:92:e6:71:00:a2:e6:c5:e0:c1:00:2c:ec: ac:e7:8f:10:28:20:7a:6f:31:e1:0a:0d:69:5c:a5: 15:d5:be:51:6e:25:b6:18:e6:d6:5f:29:d5:ca:9d: 10:59:69:0e:83:fd:c6:0b:64:34:6e:9a:0c:18:43: 0f:b0:77:0d:01:f0:b1:85:89:90:7d:01:6d:f7:07: 25:30:ae:62:d6:2a:74:c8:7c:a1:06:7e:74:24:ec: d9:29:f5:b5:78:8f:c6:ef:a3:3b:99:7f:e3:83:52: db:fd:03:34:8a:bb:e7:1e:1e:59:52:a3:c3:e2:1b: 78:18:f4:f7:54:75:bc:df:57:02:04:78:9c:71:c2: 11:13:56:6a:2a:f1:96:bb:b4:53:11:05:23:fa:c7: 13:1d:e9:19:35:1a:01:87:ed:3e:43:45:9f:bd:65: 51:3b:48:c1:da:86:3a:a9:64:27:37:63:e3:e3:ea: b7:d3:6b:2c:2f:11:05:92:02:43:c8:c2:2c:71:9a: 6c:36:31:f4:27:f9:06:37:c0:b6:09:00:7b:a1:fc: 49:61:81:37:7c:4f:e8:58:96:1d:e2:98:dd:fc:86: 75:15:b1:78:67:37:f1:64:de:bc:37:e7:8f:77:e3: 37:08:e6:3e:2b:7a:05:5e:63:a7:01:9e:c6:53:f1: 0b:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:84:8A:62:D1:EC:BC:89:6F:E6:DC:5B:93:C5:A3:2C:5F:0F:36:17 X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/lYSKYtHsvIlv5txbk8WjLF8PNhc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.199.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8c:6b:1f:18:56:7b:f4:e6:97:74:51:a4:2e:a0:ee:b4:e3:ad: 27:27:9e:ac:b8:26:af:64:55:16:e3:40:bb:d3:c0:b6:c3:84: e0:6b:ca:3b:fd:fa:61:eb:27:d3:53:11:fd:6f:02:f9:c4:16: 80:c7:a2:d3:de:1e:8b:f4:16:1a:15:1e:24:a3:ac:5e:bb:70: 72:4e:1c:65:eb:ae:66:25:1e:05:5c:16:8c:71:7c:4a:83:f2: 3c:ba:09:16:21:a5:b4:57:32:f2:0d:68:7c:7a:32:4a:81:aa: f8:68:29:9e:38:22:8e:3f:12:c3:9e:5c:c9:37:72:19:88:d4: 27:ba:f4:01:78:b0:21:bc:0e:61:b3:86:55:1e:a5:4b:f4:cd: be:db:67:25:78:d3:51:f7:d3:25:a1:80:5e:c2:09:41:50:6b: 76:d9:32:8e:1b:22:b7:12:ca:e4:db:e0:cd:10:b6:a8:1d:a4: 16:80:0f:88:b7:9e:6d:fa:89:a0:43:b1:35:d4:3d:ea:56:b1: 4b:08:73:c1:48:ab:b0:21:de:44:1b:3b:07:22:da:49:41:4c: b5:87:4d:a1:6b:95:5d:58:fd:73:0b:d7:b5:34:17:3d:eb:35: 3f:ca:88:2c:20:76:c8:97:af:da:ff:2d:38:cd:2c:3d:25:7a: 07:e6:3a:7d -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICAaowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNDAzMzEw MTI5MDVaFw0yNTAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDk1ODQ4QTYyRDFFQ0JD ODk2RkU2REM1QjkzQzVBMzJDNUYwRjM2MTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCy4pLmcQCi5sXgwQAs7KznjxAoIHpvMeEKDWlcpRXVvlFuJbYY 5tZfKdXKnRBZaQ6D/cYLZDRumgwYQw+wdw0B8LGFiZB9AW33ByUwrmLWKnTIfKEG fnQk7Nkp9bV4j8bvozuZf+ODUtv9AzSKu+ceHllSo8PiG3gY9PdUdbzfVwIEeJxx whETVmoq8Za7tFMRBSP6xxMd6Rk1GgGH7T5DRZ+9ZVE7SMHahjqpZCc3Y+Pj6rfT aywvEQWSAkPIwixxmmw2MfQn+QY3wLYJAHuh/ElhgTd8T+hYlh3imN38hnUVsXhn N/Fk3rw354934zcI5j4regVeY6cBnsZT8Qv1AgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUlYSKYtHsvIlv5txbk8WjLF8PNhcwHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTMxL2xZU0tZdEhzdklsdjV0eGJrOFdqTEY4UE5oYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA9xzANBgkqhkiG9w0BAQsFAAOCAQEAjGsfGFZ79OaXdFGkLqDutOOtJyee rLgmr2RVFuNAu9PAtsOE4GvKO/36Yesn01MR/W8C+cQWgMei094ei/QWGhUeJKOs Xrtwck4cZeuuZiUeBVwWjHF8SoPyPLoJFiGltFcy8g1ofHoySoGq+Ggpnjgijj8S w55cyTdyGYjUJ7r0AXiwIbwOYbOGVR6lS/TNvttnJXjTUffTJaGAXsIJQVBrdtky jhsitxLK5NvgzRC2qB2kFoAPiLeebfqJoEOxNdQ96laxSwhzwUirsCHeRBs7ByLa SUFMtYdNoWuVXVj9cwvXtTQXPes1P8qILCB2yJev2v8tOM0sPSV6B+Y6fQ== -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:25 2024 by rpki-client on console-ams.rpki-client.org