$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1937/pn7WgPuzmLSboQIa6tLWYGM0UKQ.roa File: pn7WgPuzmLSboQIa6tLWYGM0UKQ.roa (raw, json) Hash identifier: qA+dyERMewN9K1SHUrNO+mDZ1TazjRT7GCIaHwWUGSA= Subject key identifier: A6:7E:D6:80:FB:B3:98:B4:9B:A1:02:1A:EA:D2:D6:60:63:34:50:A4 Certificate issuer: /CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D Certificate serial: 1F Authority key identifier: 71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/pn7WgPuzmLSboQIa6tLWYGM0UKQ.roa Signing time: Tue 02 Apr 2024 00:21:11 +0000 ROA not before: Tue 02 Apr 2024 00:21:11 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 18071 IP address blocks: 137.40.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D Validity Not Before: Apr 2 00:21:11 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=A67ED680FBB398B49BA1021AEAD2D660633450A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a4:6a:9c:eb:e8:af:68:96:ca:d1:fc:d0:2e: 6b:78:b4:a8:fb:05:7d:84:37:4f:e1:ce:2c:a2:c0: 03:26:ef:3c:58:33:1f:dc:5e:3e:93:0f:39:15:d0: b1:38:60:22:a1:82:c2:1b:a5:5a:5f:03:e0:f4:16: 1f:75:87:e8:8d:9d:cf:35:bd:15:20:7e:a0:dc:21: d0:08:4e:f3:0d:56:b8:85:7b:0f:29:da:18:67:05: af:fb:d5:04:31:65:c1:a5:3d:47:47:9e:24:2d:ce: fa:27:a0:5e:ea:8a:2f:6d:d5:5f:84:48:00:8b:86: 8f:44:72:45:e4:f0:1d:6b:47:ac:d5:f7:ec:18:ab: 72:5e:73:42:a2:55:30:3d:2d:f9:b9:c5:d4:d4:81: 1a:88:b1:98:d7:67:24:c4:29:e7:75:93:63:ff:39: 31:f0:92:ba:20:19:f9:a9:7a:50:5c:7e:6a:69:2a: 67:5b:89:95:dd:fb:58:9d:03:52:8d:e8:73:6a:25: da:5e:f6:b4:36:4d:87:32:4b:8f:5c:4d:e0:03:1c: 85:95:89:40:49:be:c3:03:bd:16:71:e9:94:61:c0: 54:c9:ba:33:6f:66:1e:da:ea:1b:35:f6:7c:5b:c1: 29:19:72:36:25:0c:75:3a:0f:73:1e:be:2f:f4:77: d1:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:7E:D6:80:FB:B3:98:B4:9B:A1:02:1A:EA:D2:D6:60:63:34:50:A4 X509v3 Authority Key Identifier: keyid:71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/pn7WgPuzmLSboQIa6tLWYGM0UKQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 137.40.0.0/16 Signature Algorithm: sha256WithRSAEncryption 92:14:bc:02:5b:95:26:19:d1:07:4b:a7:82:c6:76:98:fa:7e: 16:2f:65:28:5a:5f:d5:70:72:90:07:5a:fc:62:1b:0d:b1:6f: 60:c4:d4:d1:54:f3:b2:5b:d3:70:a1:d9:85:2b:c9:98:88:26: f0:75:fc:99:e7:83:26:b0:9a:bc:75:07:90:99:6d:a5:3e:3e: a9:b8:0a:52:20:88:32:61:b2:d5:10:9a:f1:88:62:0b:e8:be: 84:cf:a1:c6:eb:7b:a1:b0:f2:7e:f1:d5:b2:99:3c:1c:90:d7: a7:98:40:2b:1d:ea:f3:75:ae:5c:48:88:a1:78:aa:c7:74:d7: bf:b2:d2:25:4f:17:7b:ab:b2:9d:38:3a:07:48:ff:bf:d5:1a: 1d:d7:2c:6e:10:59:90:79:da:40:09:26:09:41:9d:db:4d:6b: 17:0e:ec:6f:20:30:93:25:86:03:20:85:77:52:e7:91:85:55: 69:b7:a3:62:1d:74:7c:c4:7c:ce:d7:8e:c9:23:78:21:a7:b7: 8e:76:42:96:d9:a7:4e:8f:9b:29:fe:e7:a1:7b:39:7a:33:c5: 85:c8:e0:a3:7d:02:76:7d:49:94:22:86:5c:86:ab:2f:a7:7d: 9a:8f:24:1a:3e:e4:f7:86:f7:3a:cd:a1:65:ea:41:bf:59:ec: 7d:50:82:d7 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgIBHzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3MTkx Q0I5RjRDNDIyRDNCM0Q2NzUzNzFCMThBOERBRERBRTg3OThEMB4XDTI0MDQwMjAw MjExMVoXDTI1MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoQTY3RUQ2ODBGQkIzOThC NDlCQTEwMjFBRUFEMkQ2NjA2MzM0NTBBNDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMWkapzr6K9olsrR/NAua3i0qPsFfYQ3T+HOLKLAAybvPFgzH9xe PpMPORXQsThgIqGCwhulWl8D4PQWH3WH6I2dzzW9FSB+oNwh0AhO8w1WuIV7Dyna GGcFr/vVBDFlwaU9R0eeJC3O+iegXuqKL23VX4RIAIuGj0RyReTwHWtHrNX37Bir cl5zQqJVMD0t+bnF1NSBGoixmNdnJMQp53WTY/85MfCSuiAZ+al6UFx+amkqZ1uJ ld37WJ0DUo3oc2ol2l72tDZNhzJLj1xN4AMchZWJQEm+wwO9FnHplGHAVMm6M29m HtrqGzX2fFvBKRlyNiUMdToPcx6+L/R30aUCAwEAAaOCAiUwggIhMB0GA1UdDgQW BBSmftaA+7OYtJuhAhrq0tZgYzRQpDAfBgNVHSMEGDAWgBRxkcufTEItOz1nU3Gx io2t2uh5jTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTkzNy9jWkhMbjB4Q0xUczlaMU54c1lxTnJkcm9lWTAuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9jWkhMbjB4Q0xUczlaMU54c1lxTnJk cm9lWTAuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTkzNy9wbjdXZ1B1em1MU2JvUUlhNnRMV1lHTTBVS1Eucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIA ATAFAwMAiSgwDQYJKoZIhvcNAQELBQADggEBAJIUvAJblSYZ0QdLp4LGdpj6fhYv ZShaX9VwcpAHWvxiGw2xb2DE1NFU87Jb03Ch2YUryZiIJvB1/Jnngyawmrx1B5CZ baU+Pqm4ClIgiDJhstUQmvGIYgvovoTPocbre6Gw8n7x1bKZPByQ16eYQCsd6vN1 rlxIiKF4qsd017+y0iVPF3ursp04OgdI/7/VGh3XLG4QWZB52kAJJglBndtNaxcO 7G8gMJMlhgMghXdS55GFVWm3o2IddHzEfM7XjskjeCGnt452QpbZp06Pmyn+56F7 OXozxYXI4KN9AnZ9SZQihlyGqy+nfZqPJBo+5PeG9zrNoWXqQb9Z7H1Qgtc= -----END CERTIFICATE-----Generated at Sat Jun 1 15:54:17 2024 by rpki-client on console-ams.rpki-client.org