$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20034/zqYZbqinBIPL5hAbYXSH1wPJ3Y0.roa File: zqYZbqinBIPL5hAbYXSH1wPJ3Y0.roa (raw, json) Hash identifier: A4CQDy14KOwgAD0L+9IHzy8bHLgOQud1Z4voRBhBXp8= Subject key identifier: CE:A6:19:6E:A8:A7:04:83:CB:E6:10:1B:61:74:87:D7:03:C9:DD:8D Certificate issuer: /CN=8D62A86EAB39FC40E319BE7346F22CC8F5B191A3 Certificate serial: 1D Authority key identifier: 8D:62:A8:6E:AB:39:FC:40:E3:19:BE:73:46:F2:2C:C8:F5:B1:91:A3 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jWKobqs5_EDjGb5zRvIsyPWxkaM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20034/zqYZbqinBIPL5hAbYXSH1wPJ3Y0.roa Signing time: Fri 12 Jan 2024 04:06:18 +0000 ROA not before: Fri 12 Jan 2024 04:06:18 +0000 ROA not after: Sat 14 Dec 2024 01:30:03 +0000 asID: 131923 IP address blocks: 133.88.92.0/23 maxlen: 25 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20034/jWKobqs5_EDjGb5zRvIsyPWxkaM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20034/jWKobqs5_EDjGb5zRvIsyPWxkaM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jWKobqs5_EDjGb5zRvIsyPWxkaM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D62A86EAB39FC40E319BE7346F22CC8F5B191A3 Validity Not Before: Jan 12 04:06:18 2024 GMT Not After : Dec 14 01:30:03 2024 GMT Subject: CN=CEA6196EA8A70483CBE6101B617487D703C9DD8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:03:45:8c:b4:fb:d7:9d:59:7f:fa:f1:6a:5a: 64:01:d8:37:2b:6d:30:d5:6a:13:e0:c8:46:ca:ee: c9:3a:4c:89:1d:88:c7:2b:da:f0:0f:b0:4f:6d:13: 24:a3:2d:39:4f:be:d9:22:da:4f:2e:c6:1c:16:00: e0:ba:d8:a4:db:e1:60:94:f6:8a:65:b3:6e:64:5d: d5:a6:5f:1e:f4:29:a5:0d:4d:4c:a7:c7:50:f2:6a: a7:66:58:be:c0:00:de:f5:e5:b8:90:d3:e2:5b:74: 28:fb:ff:47:99:63:9c:79:70:50:5f:37:e2:ba:63: d4:d5:a4:66:2c:36:e8:b0:9a:0a:f8:3e:08:88:75: 3f:4f:9d:9b:57:23:72:73:29:77:79:36:ce:d9:f4: 85:5f:d3:bc:e9:98:fb:b4:db:92:18:c6:b5:6d:e5: eb:04:28:93:cb:40:70:fc:15:60:ff:3b:20:a6:ae: f3:32:34:6d:02:3a:8f:bc:b0:c3:20:d7:41:e1:11: e8:82:50:a4:86:eb:86:54:10:e2:15:65:da:ee:49: 0c:9a:65:5d:25:70:d0:80:4f:e1:08:c3:6b:77:73: fa:a6:47:cb:8c:b2:87:b5:00:39:ab:0d:48:39:87: c7:fa:86:c3:f7:a2:4d:8f:1e:29:cf:54:31:df:76: 21:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:A6:19:6E:A8:A7:04:83:CB:E6:10:1B:61:74:87:D7:03:C9:DD:8D X509v3 Authority Key Identifier: keyid:8D:62:A8:6E:AB:39:FC:40:E3:19:BE:73:46:F2:2C:C8:F5:B1:91:A3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20034/jWKobqs5_EDjGb5zRvIsyPWxkaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jWKobqs5_EDjGb5zRvIsyPWxkaM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20034/zqYZbqinBIPL5hAbYXSH1wPJ3Y0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 133.88.92.0/23 Signature Algorithm: sha256WithRSAEncryption 4e:2d:30:0b:ac:21:d2:4a:32:96:8b:74:eb:67:c9:bf:06:33: 94:86:82:da:1f:44:f4:95:bd:db:2a:a3:30:9d:e2:28:9b:39: dd:74:3e:99:70:a1:8f:4a:05:6d:66:c4:bb:48:e2:af:a7:44: 50:c2:a5:48:0a:1f:c9:ef:76:5a:e7:d5:c0:4c:9e:02:d8:5d: 3e:83:e3:90:23:30:01:46:27:46:c5:0f:e0:27:ed:c4:ea:55: f0:74:66:ea:99:f9:c4:df:ad:3c:b6:d9:e6:60:c1:d0:ed:fc: 1c:9c:1b:71:58:d7:36:6d:fa:98:86:14:34:72:49:f4:41:d4: 18:4f:23:ac:67:af:10:ae:22:2c:eb:8f:8c:ad:fd:87:97:52: 31:80:ad:01:2c:bc:29:8a:3c:10:69:ff:ca:d7:d5:32:2b:1b: 81:9b:e8:fd:be:be:4e:1f:35:b1:3a:dc:4f:1c:be:0a:ac:23: d6:6a:81:82:8b:92:bd:92:71:b3:09:54:bc:e3:ad:20:6f:94: 85:30:b8:63:9d:33:08:fc:fe:2c:fd:d9:98:f1:a3:a8:b3:a6: 92:42:b1:eb:e4:63:0c:52:98:51:88:d3:0b:f8:c5:50:6e:dd: 1a:60:d2:e6:a6:f1:f8:62:c3:fe:4a:35:58:0a:88:3b:11:8e: 0d:93:e1:c7 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBHTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4RDYy QTg2RUFCMzlGQzQwRTMxOUJFNzM0NkYyMkNDOEY1QjE5MUEzMB4XDTI0MDExMjA0 MDYxOFoXDTI0MTIxNDAxMzAwM1owMzExMC8GA1UEAxMoQ0VBNjE5NkVBOEE3MDQ4 M0NCRTYxMDFCNjE3NDg3RDcwM0M5REQ4RDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAK0DRYy0+9edWX/68WpaZAHYNyttMNVqE+DIRsruyTpMiR2Ixyva 8A+wT20TJKMtOU++2SLaTy7GHBYA4LrYpNvhYJT2imWzbmRd1aZfHvQppQ1NTKfH UPJqp2ZYvsAA3vXluJDT4lt0KPv/R5ljnHlwUF834rpj1NWkZiw26LCaCvg+CIh1 P0+dm1cjcnMpd3k2ztn0hV/TvOmY+7TbkhjGtW3l6wQok8tAcPwVYP87IKau8zI0 bQI6j7ywwyDXQeER6IJQpIbrhlQQ4hVl2u5JDJplXSVw0IBP4QjDa3dz+qZHy4yy h7UAOasNSDmHx/qGw/eiTY8eKc9UMd92IdsCAwEAAaOCAigwggIkMB0GA1UdDgQW BBTOphluqKcEg8vmEBthdIfXA8ndjTAfBgNVHSMEGDAWgBSNYqhuqzn8QOMZvnNG 8izI9bGRozAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwMzQvaldLb2JxczVfRURqR2I1elJ2SXN5UFd4a2FNLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvaldLb2JxczVfRURqR2I1elJ2SXN5 UFd4a2FNLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMDM0L3pxWVpicWluQklQTDVoQWJZWFNIMXdQSjNZMC5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGFWFwwDQYJKoZIhvcNAQELBQADggEBAE4tMAusIdJKMpaLdOtnyb8G M5SGgtofRPSVvdsqozCd4iibOd10PplwoY9KBW1mxLtI4q+nRFDCpUgKH8nvdlrn 1cBMngLYXT6D45AjMAFGJ0bFD+An7cTqVfB0ZuqZ+cTfrTy22eZgwdDt/BycG3FY 1zZt+piGFDRySfRB1BhPI6xnrxCuIizrj4yt/YeXUjGArQEsvCmKPBBp/8rX1TIr G4Gb6P2+vk4fNbE63E8cvgqsI9ZqgYKLkr2ScbMJVLzjrSBvlIUwuGOdMwj8/iz9 2Zjxo6izppJCsevkYwxSmFGI0wv4xVBu3Rpg0uam8fhiw/5KNVgKiDsRjg2T4cc= -----END CERTIFICATE-----Generated at Mon Nov 25 23:54:28 2024 by rpki-client on console-ams.rpki-client.org