$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/21042/dkn1t7nfR6A8OSjWpKgwbL5zGPQ.roa File: dkn1t7nfR6A8OSjWpKgwbL5zGPQ.roa (raw, json) Hash identifier: 6uzme3KFAYNxtRWCl5m3fy/IzkgjFWJ0auu1HTVb4ec= Subject key identifier: 76:49:F5:B7:B9:DF:47:A0:3C:39:28:D6:A4:A8:30:6C:BE:73:18:F4 Certificate issuer: /CN=4F3E6396C9D76CBDF4ED2D5DE7A2A760214C9837 Certificate serial: 47 Authority key identifier: 4F:3E:63:96:C9:D7:6C:BD:F4:ED:2D:5D:E7:A2:A7:60:21:4C:98:37 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tz5jlsnXbL307S1d56KnYCFMmDc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/dkn1t7nfR6A8OSjWpKgwbL5zGPQ.roa Signing time: Sat 31 Aug 2024 01:31:00 +0000 ROA not before: Sat 31 Aug 2024 01:31:00 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 23637 IP address blocks: 14.102.192.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/Tz5jlsnXbL307S1d56KnYCFMmDc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/Tz5jlsnXbL307S1d56KnYCFMmDc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tz5jlsnXbL307S1d56KnYCFMmDc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4F3E6396C9D76CBDF4ED2D5DE7A2A760214C9837 Validity Not Before: Aug 31 01:31:00 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=7649F5B7B9DF47A03C3928D6A4A8306CBE7318F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:7a:e7:19:3b:80:d5:6f:c1:74:80:d9:62:34: 7a:c8:16:40:ab:06:45:36:fb:84:b1:94:25:0e:45: 64:b7:91:2d:bd:e6:46:78:ea:77:4d:74:e7:1a:18: b3:e2:05:60:aa:86:95:12:69:3e:4c:04:f1:5e:ef: 6b:71:69:48:5a:67:28:06:47:0e:7c:aa:37:26:ac: 59:26:ee:70:f7:65:f0:16:9b:dc:61:72:c1:75:e4: e9:38:45:64:b9:11:b8:8b:41:1e:63:6c:3d:26:ed: 53:3f:ac:b7:5f:51:e2:c7:fb:5d:83:e5:f5:dd:5e: a5:cf:52:ea:39:ef:a3:04:85:c0:ac:68:94:e6:74: 33:d6:e1:24:e1:3d:63:0e:ff:d7:65:99:32:c8:18: d4:83:1c:3c:8c:29:68:fc:ab:82:81:92:23:fd:79: 5e:e9:6c:bc:5d:5b:1f:bf:e7:9a:95:15:29:13:9a: 26:31:29:f2:b0:e3:cc:34:60:17:56:86:5a:28:83: 34:39:d0:4b:17:db:e3:c5:d8:52:84:59:67:83:4d: 2d:02:b9:a5:7d:ea:6d:4d:d3:58:3e:3c:c0:28:e8: c7:30:7d:38:8d:76:58:ae:0d:7a:93:9e:89:7d:21: 83:61:f7:91:18:bf:63:6f:18:d7:ff:80:8d:bf:d8: e2:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:49:F5:B7:B9:DF:47:A0:3C:39:28:D6:A4:A8:30:6C:BE:73:18:F4 X509v3 Authority Key Identifier: keyid:4F:3E:63:96:C9:D7:6C:BD:F4:ED:2D:5D:E7:A2:A7:60:21:4C:98:37 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/Tz5jlsnXbL307S1d56KnYCFMmDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tz5jlsnXbL307S1d56KnYCFMmDc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/dkn1t7nfR6A8OSjWpKgwbL5zGPQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.102.192.0/19 Signature Algorithm: sha256WithRSAEncryption 04:70:31:7d:81:b0:a3:ed:ca:1b:42:7a:3a:97:2e:3b:3e:85: cd:0a:33:cd:96:14:5d:b1:3d:b0:19:bc:bf:23:7a:d4:59:63: 52:f2:4a:bc:fb:d3:5a:38:65:53:ec:69:c9:1f:60:f0:5b:00: 59:d3:da:3d:28:50:64:a3:9c:50:34:c8:46:11:d1:18:b9:ed: 8f:83:d0:b0:12:13:69:19:cd:ee:c7:d5:8e:28:db:b9:61:40: e2:8d:90:39:68:c9:7d:d8:ce:55:8a:7c:50:7f:b2:ae:9d:c9: 48:f1:90:91:8d:c0:84:24:81:11:8a:f5:b1:cc:ac:56:9e:27: 6f:62:cd:79:a2:9b:11:a9:dc:e3:70:1d:e6:28:41:88:df:6e: 20:23:b5:89:97:a2:7c:d3:e7:86:eb:a3:b1:a0:22:6a:a2:5c: 0c:cc:d3:47:b3:8f:88:2b:22:8c:60:c5:57:66:52:bc:aa:c7: 82:20:8d:31:60:67:aa:f8:21:a2:33:0b:3c:d9:5e:03:23:12: 40:c1:96:51:99:c8:67:02:ad:60:9f:e7:89:bc:9e:53:da:06: cb:9d:46:b8:4b:9e:2f:f2:d8:8c:bb:2c:34:4a:56:1c:2e:c7: 1b:ea:c3:58:d0:ef:c3:5f:32:49:a1:69:7d:61:c2:92:a7:dd: 33:cb:ac:ec -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBRzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0RjNF NjM5NkM5RDc2Q0JERjRFRDJENURFN0EyQTc2MDIxNEM5ODM3MB4XDTI0MDgzMTAx MzEwMFoXDTI1MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoNzY0OUY1QjdCOURGNDdB MDNDMzkyOEQ2QTRBODMwNkNCRTczMThGNDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANJ65xk7gNVvwXSA2WI0esgWQKsGRTb7hLGUJQ5FZLeRLb3mRnjq d0105xoYs+IFYKqGlRJpPkwE8V7va3FpSFpnKAZHDnyqNyasWSbucPdl8Bab3GFy wXXk6ThFZLkRuItBHmNsPSbtUz+st19R4sf7XYPl9d1epc9S6jnvowSFwKxolOZ0 M9bhJOE9Yw7/12WZMsgY1IMcPIwpaPyrgoGSI/15XulsvF1bH7/nmpUVKROaJjEp 8rDjzDRgF1aGWiiDNDnQSxfb48XYUoRZZ4NNLQK5pX3qbU3TWD48wCjoxzB9OI12 WK4NepOeiX0hg2H3kRi/Y28Y1/+Ajb/Y4tMCAwEAAaOCAigwggIkMB0GA1UdDgQW BBR2SfW3ud9HoDw5KNakqDBsvnMY9DAfBgNVHSMEGDAWgBRPPmOWyddsvfTtLV3n oqdgIUyYNzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjEwNDIvVHo1amxzblhiTDMwN1MxZDU2S25ZQ0ZNbURjLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvVHo1amxzblhiTDMwN1MxZDU2S25Z Q0ZNbURjLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIxMDQyL2RrbjF0N25mUjZBOE9TaldwS2d3Ykw1ekdQUS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAUOZsAwDQYJKoZIhvcNAQELBQADggEBAARwMX2BsKPtyhtCejqXLjs+ hc0KM82WFF2xPbAZvL8jetRZY1LySrz701o4ZVPsackfYPBbAFnT2j0oUGSjnFA0 yEYR0Ri57Y+D0LASE2kZze7H1Y4o27lhQOKNkDloyX3YzlWKfFB/sq6dyUjxkJGN wIQkgRGK9bHMrFaeJ29izXmimxGp3ONwHeYoQYjfbiAjtYmXonzT54bro7GgImqi XAzM00ezj4grIoxgxVdmUryqx4IgjTFgZ6r4IaIzCzzZXgMjEkDBllGZyGcCrWCf 54m8nlPaBsudRrhLni/y2Iy7LDRKVhwuxxvqw1jQ78NfMkmhaX1hwpKn3TPLrOw= -----END CERTIFICATE-----Generated at Fri Nov 22 11:45:33 2024 by rpki-client on console-ams.rpki-client.org