$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20128/UsCKH6M3lbHB9Sgyzz-wA-o8ZUY.roa File: UsCKH6M3lbHB9Sgyzz-wA-o8ZUY.roa (raw, json) Hash identifier: STr/ckB5P5IxKoVgacyOpnlycgaBsdlq24gEATiSRIg= Subject key identifier: 52:C0:8A:1F:A3:37:95:B1:C1:F5:28:32:CF:3F:B0:03:EA:3C:65:46 Certificate issuer: /CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Certificate serial: 6C Authority key identifier: 8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/UsCKH6M3lbHB9Sgyzz-wA-o8ZUY.roa Signing time: Thu 14 Nov 2024 15:58:10 +0000 ROA not before: Thu 14 Nov 2024 15:58:10 +0000 ROA not after: Fri 07 Nov 2025 10:27:51 +0000 asID: 399077 IP address blocks: 153.254.103.0/25 maxlen: 25 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Validity Not Before: Nov 14 15:58:10 2024 GMT Not After : Nov 7 10:27:51 2025 GMT Subject: CN=52C08A1FA33795B1C1F52832CF3FB003EA3C6546 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:a8:a2:6e:4d:7c:ce:d5:a7:4e:ed:84:44:52: 26:13:28:e5:24:e2:64:4d:cb:57:5e:8f:8c:23:b1: b2:26:6a:b6:46:19:3a:3d:1c:ed:a8:d7:38:eb:dc: bd:00:94:b5:cc:4d:cb:ed:61:61:bc:ca:2c:5d:70: 0f:03:7e:87:62:07:43:12:22:83:71:4c:dd:64:f4: 23:1c:79:64:cb:e2:9d:e7:77:0c:c4:eb:43:72:9c: 69:dd:7b:6e:de:bd:e9:7e:7e:79:f4:92:c1:b7:df: 7a:93:21:24:e8:8c:bb:4c:0b:9d:4d:87:5f:c2:56: 63:18:f0:44:11:4f:cd:36:f3:25:4f:02:ce:ae:36: 76:48:9b:47:c8:b7:1c:9d:0f:fb:b3:a7:42:00:28: c6:43:b3:de:bf:d5:ec:73:97:fc:6b:e5:9c:37:87: 70:01:59:ed:fa:07:9a:66:47:37:da:db:6c:92:6b: 07:1a:f4:e3:e5:8b:69:05:67:99:8d:4d:69:2f:c7: e0:76:7e:14:d9:14:91:fa:65:bf:47:1e:f4:e1:16: 45:d1:a2:dc:6f:48:f1:65:e1:0e:da:f0:c1:f1:0c: 35:bd:a7:ce:10:e8:ed:64:1b:07:50:f0:6d:da:2b: 32:bd:cf:97:90:07:e7:bb:6c:0c:b6:26:a8:52:95: b7:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:C0:8A:1F:A3:37:95:B1:C1:F5:28:32:CF:3F:B0:03:EA:3C:65:46 X509v3 Authority Key Identifier: keyid:8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/UsCKH6M3lbHB9Sgyzz-wA-o8ZUY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 153.254.103.0/25 Signature Algorithm: sha256WithRSAEncryption 30:77:0d:57:3a:43:c4:f4:2a:96:10:44:84:cb:71:cb:d2:a7: 66:85:c7:35:41:1e:ca:d3:d4:6f:15:d0:a1:35:c0:25:17:69: 87:ae:73:bf:fc:03:b4:8b:df:a3:7e:78:41:9c:06:5a:42:0a: 85:fa:c5:a5:eb:57:3c:6a:75:b4:c4:56:00:82:89:73:3a:67: dc:4b:76:11:72:d4:87:90:76:75:d8:95:d9:2e:51:c2:c1:8a: 6a:bf:89:64:21:fd:61:19:5e:9c:12:2d:d8:2f:f5:e9:21:04: bb:b8:b2:1c:55:06:50:f9:f6:87:4f:0a:50:9d:2d:88:70:07: ed:92:27:4b:47:7e:98:58:bb:96:a8:79:22:99:34:b6:a3:29: cd:c5:22:76:ee:9f:7d:c1:89:95:6a:8e:9c:ec:e8:d7:86:6c: 8a:ff:c0:6e:c8:29:93:8b:47:75:89:5d:81:53:93:a4:43:11: 04:32:45:4f:27:be:9c:67:87:a0:ce:86:aa:89:30:24:3b:a8: cc:9f:b1:40:78:f7:a2:16:03:4d:04:26:46:80:f4:dc:fc:07: 74:d2:75:1e:2c:7b:4d:97:56:d7:fc:55:7c:59:91:7f:7e:52: 38:b9:7d:a4:73:3e:1c:d9:ee:eb:5d:f6:4b:ca:3f:1f:e3:5a: 8c:c9:54:b7 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgIBbDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4RDQ2 RERGODhBNDZFNEVDMkQ5QTlCQUI1RkYxMzA1RkQwNTdGMTM4MB4XDTI0MTExNDE1 NTgxMFoXDTI1MTEwNzEwMjc1MVowMzExMC8GA1UEAxMoNTJDMDhBMUZBMzM3OTVC MUMxRjUyODMyQ0YzRkIwMDNFQTNDNjU0NjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOKoom5NfM7Vp07thERSJhMo5STiZE3LV16PjCOxsiZqtkYZOj0c 7ajXOOvcvQCUtcxNy+1hYbzKLF1wDwN+h2IHQxIig3FM3WT0Ixx5ZMvined3DMTr Q3Kcad17bt696X5+efSSwbffepMhJOiMu0wLnU2HX8JWYxjwRBFPzTbzJU8Czq42 dkibR8i3HJ0P+7OnQgAoxkOz3r/V7HOX/GvlnDeHcAFZ7foHmmZHN9rbbJJrBxr0 4+WLaQVnmY1NaS/H4HZ+FNkUkfplv0ce9OEWRdGi3G9I8WXhDtrwwfEMNb2nzhDo 7WQbB1DwbdorMr3Pl5AH57tsDLYmqFKVt7MCAwEAAaOCAikwggIlMB0GA1UdDgQW BBRSwIofozeVscH1KDLPP7AD6jxlRjAfBgNVHSMEGDAWgBSNRt34ikbk7C2am6tf 8TBf0FfxODAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAxMjgvalViZC1JcEc1T3d0bXB1clhfRXdYOUJYOFRnLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvalViZC1JcEc1T3d0bXB1clhfRXdY OUJYOFRnLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMTI4L1VzQ0tINk0zbGJIQjlTZ3l6ei13QS1vOFpVWS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgABMAcDBQeZ/mcAMA0GCSqGSIb3DQEBCwUAA4IBAQAwdw1XOkPE9CqWEESEy3HL 0qdmhcc1QR7K09RvFdChNcAlF2mHrnO//AO0i9+jfnhBnAZaQgqF+sWl61c8anW0 xFYAgolzOmfcS3YRctSHkHZ12JXZLlHCwYpqv4lkIf1hGV6cEi3YL/XpIQS7uLIc VQZQ+faHTwpQnS2IcAftkidLR36YWLuWqHkimTS2oynNxSJ27p99wYmVao6c7OjX hmyK/8BuyCmTi0d1iV2BU5OkQxEEMkVPJ76cZ4egzoaqiTAkO6jMn7FAePeiFgNN BCZGgPTc/Ad00nUeLHtNl1bX/FV8WZF/flI4uX2kcz4c2e7rXfZLyj8f41qMyVS3 -----END CERTIFICATE-----Generated at Fri Nov 22 08:13:18 2024 by rpki-client on console-fra.rpki-client.org