$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20128/TG2esBwlUR181STMNbIHB0095xU.roa File: TG2esBwlUR181STMNbIHB0095xU.roa (raw, json) Hash identifier: R3mqnTmKMBunzgwtKb12woqh7Y+tleKlQBDxHlOXYE0= Subject key identifier: 4C:6D:9E:B0:1C:25:51:1D:7C:D5:24:CC:35:B2:07:07:4D:3D:E7:15 Certificate issuer: /CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Certificate serial: 72 Authority key identifier: 8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/TG2esBwlUR181STMNbIHB0095xU.roa Signing time: Thu 14 Nov 2024 16:02:12 +0000 ROA not before: Thu 14 Nov 2024 16:02:12 +0000 ROA not after: Fri 07 Nov 2025 10:27:51 +0000 asID: 3949 IP address blocks: 153.254.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Validity Not Before: Nov 14 16:02:12 2024 GMT Not After : Nov 7 10:27:51 2025 GMT Subject: CN=4C6D9EB01C25511D7CD524CC35B207074D3DE715 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:92:f7:96:4f:ea:17:a3:b5:79:ed:e2:e7:a1: 16:b5:ff:50:3c:4e:51:1d:17:06:17:b9:4e:b5:18: 0f:8a:9d:6e:5b:ce:42:9c:bb:14:95:c9:02:cb:99: 7c:7e:3d:a1:89:d0:7b:96:13:13:53:5a:0d:5a:52: 63:05:a5:22:51:05:f9:b4:30:dc:ec:51:e1:ef:72: 87:89:0d:49:07:19:3b:c3:00:9c:7b:3b:62:56:ef: 0b:b9:b3:92:10:e9:a8:a9:00:1d:23:48:5e:90:9c: 1f:f9:03:50:c2:ac:57:7e:9f:cd:d2:a6:1e:fc:76: 32:95:83:1a:3d:fa:a6:83:29:61:35:ca:7a:30:42: 1f:48:b5:91:f0:0f:91:c7:5b:99:36:c3:58:7d:71: 12:00:c3:82:77:43:25:0e:b8:2c:dc:28:e8:11:97: 20:5f:ee:b0:66:84:f3:90:2a:4b:e4:f0:50:89:2a: a0:0d:6d:86:90:5a:b2:32:ed:60:35:ae:7f:10:ad: 7b:59:3d:5b:cb:ec:79:f7:9e:12:c3:60:7e:8f:b8: bf:89:29:04:f6:c1:ac:b8:ee:7b:3b:88:21:31:a1: a4:3d:22:d2:4e:0d:fd:a0:5b:fe:58:86:92:a0:b6: f6:17:99:6d:f3:b8:68:16:0c:b0:07:bd:cf:d0:dd: 8d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:6D:9E:B0:1C:25:51:1D:7C:D5:24:CC:35:B2:07:07:4D:3D:E7:15 X509v3 Authority Key Identifier: keyid:8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/TG2esBwlUR181STMNbIHB0095xU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 153.254.143.0/24 Signature Algorithm: sha256WithRSAEncryption 31:a3:7d:3a:d7:19:e5:d5:30:64:a1:d9:07:f9:8e:4a:95:ed: 08:18:fa:b5:eb:2f:d7:c2:db:21:47:a4:6b:a2:4e:52:6b:5e: 59:ff:c9:28:f5:a0:3d:19:26:4e:ae:78:cf:38:68:99:c8:f5: c6:79:76:09:e0:85:70:f5:5a:61:b3:19:6e:ae:c0:05:9d:84: 9a:d1:4c:48:22:b8:28:b5:16:30:6a:a4:ab:0d:4d:5c:f6:b6: 64:77:34:be:d6:8e:35:25:7d:f7:f1:8d:2d:0e:bb:69:e1:44: ab:ba:f4:c5:9b:cc:fe:73:64:00:f2:db:7c:76:cc:db:58:9a: e7:7f:80:e9:bf:27:71:88:85:09:e0:6c:2b:4b:48:79:ff:96: d3:9d:66:73:1e:4c:5b:3a:d2:5a:99:b5:1c:bd:b8:ee:04:d5: dc:16:3d:1a:5c:2b:b6:50:f3:27:0f:d7:60:12:29:a8:25:49: b6:ce:df:76:64:5b:cf:ea:3d:1f:30:75:3a:8b:fe:81:01:66: 3e:13:28:f5:0f:02:db:fb:79:9b:1b:04:aa:3c:aa:29:d8:99: ea:f9:f5:8d:a9:ff:04:13:ec:db:97:7a:42:71:93:d1:f8:08: 99:2a:ea:a1:f3:82:31:4d:0c:77:74:d1:65:da:b9:0b:d3:b0: 65:2e:ec:5f -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBcjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4RDQ2 RERGODhBNDZFNEVDMkQ5QTlCQUI1RkYxMzA1RkQwNTdGMTM4MB4XDTI0MTExNDE2 MDIxMloXDTI1MTEwNzEwMjc1MVowMzExMC8GA1UEAxMoNEM2RDlFQjAxQzI1NTEx RDdDRDUyNENDMzVCMjA3MDc0RDNERTcxNTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAM6S95ZP6hejtXnt4uehFrX/UDxOUR0XBhe5TrUYD4qdblvOQpy7 FJXJAsuZfH49oYnQe5YTE1NaDVpSYwWlIlEF+bQw3OxR4e9yh4kNSQcZO8MAnHs7 YlbvC7mzkhDpqKkAHSNIXpCcH/kDUMKsV36fzdKmHvx2MpWDGj36poMpYTXKejBC H0i1kfAPkcdbmTbDWH1xEgDDgndDJQ64LNwo6BGXIF/usGaE85AqS+TwUIkqoA1t hpBasjLtYDWufxCte1k9W8vsefeeEsNgfo+4v4kpBPbBrLjuezuIITGhpD0i0k4N /aBb/liGkqC29heZbfO4aBYMsAe9z9DdjT0CAwEAAaOCAigwggIkMB0GA1UdDgQW BBRMbZ6wHCVRHXzVJMw1sgcHTT3nFTAfBgNVHSMEGDAWgBSNRt34ikbk7C2am6tf 8TBf0FfxODAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAxMjgvalViZC1JcEc1T3d0bXB1clhfRXdYOUJYOFRnLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvalViZC1JcEc1T3d0bXB1clhfRXdY OUJYOFRnLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMTI4L1RHMmVzQndsVVIxODFTVE1OYklIQjAwOTV4VS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBACZ/o8wDQYJKoZIhvcNAQELBQADggEBADGjfTrXGeXVMGSh2Qf5jkqV 7QgY+rXrL9fC2yFHpGuiTlJrXln/ySj1oD0ZJk6ueM84aJnI9cZ5dgnghXD1WmGz GW6uwAWdhJrRTEgiuCi1FjBqpKsNTVz2tmR3NL7WjjUlfffxjS0Ou2nhRKu69MWb zP5zZADy23x2zNtYmud/gOm/J3GIhQngbCtLSHn/ltOdZnMeTFs60lqZtRy9uO4E 1dwWPRpcK7ZQ8ycP12ASKaglSbbO33ZkW8/qPR8wdTqL/oEBZj4TKPUPAtv7eZsb BKo8qinYmer59Y2p/wQT7NuXekJxk9H4CJkq6qHzgjFNDHd00WXauQvTsGUu7F8= -----END CERTIFICATE-----Generated at Fri Nov 22 08:01:31 2024 by rpki-client on console-ams.rpki-client.org