$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/173/k_3HNC1xHP4bcnLCEl_xB4b9_9c.roa File: k_3HNC1xHP4bcnLCEl_xB4b9_9c.roa (raw, json) Hash identifier: Qfvdsow0ZKsZWAOCC3MJnpjE9nUKRLSiBWnFegEc4Rs= Subject key identifier: 93:FD:C7:34:2D:71:1C:FE:1B:72:72:C2:12:5F:F1:07:86:FD:FF:D7 Certificate issuer: /CN=CD312427F800B8296DA11540C8B86E5CE12FC6C5 Certificate serial: A4 Authority key identifier: CD:31:24:27:F8:00:B8:29:6D:A1:15:40:C8:B8:6E:5C:E1:2F:C6:C5 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/k_3HNC1xHP4bcnLCEl_xB4b9_9c.roa Signing time: Tue 01 Aug 2023 01:30:48 +0000 ROA not before: Tue 01 Aug 2023 01:30:48 +0000 ROA not after: Sun 14 Jul 2024 01:30:03 +0000 asID: 19905 IP address blocks: 14.192.32.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 13:36:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164 (0xa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CD312427F800B8296DA11540C8B86E5CE12FC6C5 Validity Not Before: Aug 1 01:30:48 2023 GMT Not After : Jul 14 01:30:03 2024 GMT Subject: CN=93FDC7342D711CFE1B7272C2125FF10786FDFFD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ce:9f:fa:bb:74:69:40:94:5b:87:de:a8:f0: 0c:5c:9c:15:ae:5f:2d:06:3a:e6:8a:75:c3:db:18: 39:13:88:d6:50:35:26:7f:80:86:d2:8f:3f:59:5a: 01:ed:e4:b1:7f:f5:28:c2:da:da:ed:0f:46:3b:c2: 89:2d:18:72:1e:14:8d:b0:b8:c9:a0:64:a2:6b:ff: 03:44:32:b4:ea:ba:5f:a5:36:6a:6f:b8:03:eb:0f: 21:da:d7:5b:df:85:3e:2c:ed:14:d9:3a:76:97:05: a0:75:5a:bf:2c:6b:21:c5:48:ee:2f:73:c0:29:6b: 29:c5:e5:9e:60:43:20:3f:cd:be:6e:07:74:27:5e: 1f:08:8d:83:a6:f5:a8:be:0e:ca:8e:ea:71:19:69: 81:60:ef:15:5e:0a:78:ab:60:61:89:c0:b9:bc:23: 09:f1:ec:12:87:ea:9b:d3:c5:d3:4f:46:29:11:f8: 64:57:7c:15:77:85:d7:18:6c:e8:d5:55:87:51:90: 49:6e:1e:3d:55:0f:f4:6e:fa:a6:96:b3:82:13:76: e4:ef:ab:81:62:f7:53:4f:0a:3c:21:38:98:d1:9e: f4:84:cc:a7:fc:06:0b:ac:51:48:00:d0:f8:2b:ee: ac:2e:23:8b:0e:1b:52:4b:8c:5f:21:9e:52:e3:bc: 87:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:FD:C7:34:2D:71:1C:FE:1B:72:72:C2:12:5F:F1:07:86:FD:FF:D7 X509v3 Authority Key Identifier: keyid:CD:31:24:27:F8:00:B8:29:6D:A1:15:40:C8:B8:6E:5C:E1:2F:C6:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/k_3HNC1xHP4bcnLCEl_xB4b9_9c.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.192.32.0/20 Signature Algorithm: sha256WithRSAEncryption a8:c9:93:97:4d:2c:b5:e3:67:2a:e1:8f:ec:68:73:54:fe:55: 48:fd:d8:fe:70:0b:18:44:ec:25:02:61:e7:21:91:93:52:7c: 50:68:01:f9:9a:85:85:9f:88:11:03:3f:de:ff:f2:34:df:7b: 47:b6:6c:88:ec:e0:41:4e:d8:58:d0:b0:fc:de:4c:08:ed:e6: 52:6e:6f:85:10:c2:8d:9b:ac:74:99:2b:d6:e9:3b:70:9b:35: 53:21:fb:ac:7a:1e:2c:63:f2:6c:9f:2f:db:0d:84:a3:fb:96: ac:eb:57:54:2a:b4:4d:08:e9:56:26:38:51:a5:83:ff:c8:ce: bb:bc:00:57:ab:34:88:91:de:c6:22:f6:c9:69:8a:08:82:6e: 11:1c:ed:e9:9d:a3:15:61:46:bd:29:aa:4c:74:bd:f1:af:44: 7a:88:04:30:90:dd:51:83:7d:17:d4:cc:62:94:77:ba:84:8e: 30:be:84:70:6f:ba:a7:11:ab:0b:06:cc:04:eb:65:f2:3a:75: 39:ba:f6:4f:ca:df:0d:62:ed:36:4b:ed:af:7e:5f:72:4c:b2: 27:10:03:16:19:ba:af:9a:13:94:88:91:8d:6a:f7:48:b1:c3: f2:34:da:85:b2:6b:92:2e:f5:a5:64:5f:4b:26:49:7e:cd:30: b0:74:47:aa -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0Qz MTI0MjdGODAwQjgyOTZEQTExNTQwQzhCODZFNUNFMTJGQzZDNTAeFw0yMzA4MDEw MTMwNDhaFw0yNDA3MTQwMTMwMDNaMDMxMTAvBgNVBAMTKDkzRkRDNzM0MkQ3MTFD RkUxQjcyNzJDMjEyNUZGMTA3ODZGREZGRDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7zp/6u3RpQJRbh96o8AxcnBWuXy0GOuaKdcPbGDkTiNZQNSZ/ gIbSjz9ZWgHt5LF/9SjC2trtD0Y7woktGHIeFI2wuMmgZKJr/wNEMrTqul+lNmpv uAPrDyHa11vfhT4s7RTZOnaXBaB1Wr8sayHFSO4vc8ApaynF5Z5gQyA/zb5uB3Qn Xh8IjYOm9ai+DsqO6nEZaYFg7xVeCnirYGGJwLm8Iwnx7BKH6pvTxdNPRikR+GRX fBV3hdcYbOjVVYdRkEluHj1VD/Ru+qaWs4ITduTvq4Fi91NPCjwhOJjRnvSEzKf8 BgusUUgA0Pgr7qwuI4sOG1JLjF8hnlLjvIeJAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUk/3HNC1xHP4bcnLCEl/xB4b9/9cwHwYDVR0jBBgwFoAUzTEkJ/gAuCltoRVA yLhuXOEvxsUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE3My96VEVrSl9nQXVDbHRvUlZBeUxodVhPRXZ4c1UuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC96VEVrSl9nQXVDbHRvUlZBeUxodVhP RXZ4c1UuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTczL2tfM0hOQzF4SFA0YmNuTENFbF94QjRiOV85Yy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQOwCAwDQYJKoZIhvcNAQELBQADggEBAKjJk5dNLLXjZyrhj+xoc1T+VUj9 2P5wCxhE7CUCYechkZNSfFBoAfmahYWfiBEDP97/8jTfe0e2bIjs4EFO2FjQsPze TAjt5lJub4UQwo2brHSZK9bpO3CbNVMh+6x6Hixj8myfL9sNhKP7lqzrV1QqtE0I 6VYmOFGlg//Izru8AFerNIiR3sYi9slpigiCbhEc7emdoxVhRr0pqkx0vfGvRHqI BDCQ3VGDfRfUzGKUd7qEjjC+hHBvuqcRqwsGzATrZfI6dTm69k/K3w1i7TZL7a9+ X3JMsicQAxYZuq+aE5SIkY1q90ixw/I02oWya5Iu9aVkX0smSX7NMLB0R6o= -----END CERTIFICATE-----Generated at Thu May 2 14:32:27 2024 by rpki-client on console-fra.rpki-client.org