$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/2166/EsQ7eJomjeqo56Uq8kHcN-_Kc4U.roa File: EsQ7eJomjeqo56Uq8kHcN-_Kc4U.roa (raw, json) Hash identifier: 5orLFqK1XcbjFxL3K+xY0RinLYVH71qlxXa+/mXcbc0= Subject key identifier: 12:C4:3B:78:9A:26:8D:EA:A8:E7:A5:2A:F2:41:DC:37:EF:CA:73:85 Certificate issuer: /CN=36DA30F686577D6576F647B295455535835130C3 Certificate serial: 07 Authority key identifier: 36:DA:30:F6:86:57:7D:65:76:F6:47:B2:95:45:55:35:83:51:30:C3 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ntow9oZXfWV29keylUVVNYNRMMM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/EsQ7eJomjeqo56Uq8kHcN-_Kc4U.roa Signing time: Fri 27 Sep 2024 00:07:55 +0000 ROA not before: Fri 27 Sep 2024 00:07:55 +0000 ROA not after: Fri 26 Sep 2025 07:28:48 +0000 asID: 2907 IP address blocks: 192.58.10.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/Ntow9oZXfWV29keylUVVNYNRMMM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/Ntow9oZXfWV29keylUVVNYNRMMM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ntow9oZXfWV29keylUVVNYNRMMM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36DA30F686577D6576F647B295455535835130C3 Validity Not Before: Sep 27 00:07:55 2024 GMT Not After : Sep 26 07:28:48 2025 GMT Subject: CN=12C43B789A268DEAA8E7A52AF241DC37EFCA7385 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:85:a5:a4:6c:ae:f1:29:1f:68:f8:14:25:e6: c9:91:72:b0:7f:3b:9a:39:06:2d:49:0e:25:16:00: 15:5e:80:4b:d8:8b:53:e2:10:ee:58:3c:e8:3d:2b: e8:ee:51:85:b2:e4:7e:00:9d:f8:f8:f8:30:72:d5: 30:2c:37:16:69:ae:59:81:9b:37:5c:51:fe:bf:a2: 66:78:c1:50:c2:67:b2:aa:9b:bb:47:df:71:10:46: 12:e4:fb:60:38:a7:a9:b8:01:0f:c5:cc:30:f8:6c: 92:b4:52:df:a2:68:5f:73:62:96:63:d9:2a:70:f6: 61:f1:09:e1:42:ce:25:a0:83:95:d6:39:69:7e:39: 19:71:c8:df:c9:10:40:68:ae:df:35:68:62:cb:b2: 62:92:15:c5:fc:40:bc:b4:bb:67:25:13:73:06:2e: 90:a1:7e:2c:7d:41:ef:5f:d0:3f:ec:06:21:46:55: d3:7a:f5:1a:b3:a5:7b:74:28:4a:46:68:2c:bc:26: f3:ef:59:cc:a0:5d:30:ad:96:d4:40:e8:bf:b4:68: 0d:c1:c8:a7:89:63:f3:e8:b3:51:e6:4b:40:ba:31: 74:53:a8:86:66:29:c9:64:59:06:41:72:84:be:d5: bf:c4:77:30:c4:2c:0a:22:8c:9d:61:1c:2e:57:a5: 28:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:C4:3B:78:9A:26:8D:EA:A8:E7:A5:2A:F2:41:DC:37:EF:CA:73:85 X509v3 Authority Key Identifier: keyid:36:DA:30:F6:86:57:7D:65:76:F6:47:B2:95:45:55:35:83:51:30:C3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/Ntow9oZXfWV29keylUVVNYNRMMM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ntow9oZXfWV29keylUVVNYNRMMM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/EsQ7eJomjeqo56Uq8kHcN-_Kc4U.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.58.10.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:3f:e2:d0:3d:12:b6:8f:2a:fc:6e:fc:36:23:f6:b4:65:a0: ed:49:96:c6:bc:51:26:71:76:a2:f6:06:6f:71:cd:58:39:62: 3c:98:f9:9a:f0:58:eb:4f:26:b6:d1:9b:f9:ae:e4:e6:ca:27: 5d:e3:0e:61:11:02:80:23:45:38:38:4d:28:85:72:cd:26:31: 7a:71:32:6c:fe:f1:43:00:b1:e4:bd:b4:58:1a:93:46:a5:a6: eb:40:4f:53:66:1a:ee:04:8a:21:0a:20:14:15:08:85:fa:9a: 50:0a:9a:45:24:55:e9:07:ff:2b:70:c4:54:67:52:a2:28:a5: 94:47:4b:f7:f5:59:7e:30:81:8f:f3:56:23:bd:14:c5:43:40: 8a:b0:d0:72:fc:02:af:bf:71:d3:cf:6c:66:3f:34:46:92:ff: f1:b2:b4:2e:d9:e0:e3:c1:f8:95:d8:7d:b5:39:55:ec:3e:97: f3:43:8b:54:47:cc:88:1c:6b:e0:b7:b6:61:ca:f3:7e:30:4a: 42:ef:45:6f:36:5b:00:2e:1a:7a:86:02:43:72:c9:31:3a:4b: bd:38:df:9c:cd:94:98:56:c7:14:a5:e4:dc:62:aa:c7:97:26: 4c:96:68:bc:55:86:01:56:25:13:eb:d8:37:d0:ca:d1:d7:5c: 8a:91:90:b4 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBBzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzNkRB MzBGNjg2NTc3RDY1NzZGNjQ3QjI5NTQ1NTUzNTgzNTEzMEMzMB4XDTI0MDkyNzAw MDc1NVoXDTI1MDkyNjA3Mjg0OFowMzExMC8GA1UEAxMoMTJDNDNCNzg5QTI2OERF QUE4RTdBNTJBRjI0MURDMzdFRkNBNzM4NTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAM2FpaRsrvEpH2j4FCXmyZFysH87mjkGLUkOJRYAFV6AS9iLU+IQ 7lg86D0r6O5RhbLkfgCd+Pj4MHLVMCw3FmmuWYGbN1xR/r+iZnjBUMJnsqqbu0ff cRBGEuT7YDinqbgBD8XMMPhskrRS36JoX3NilmPZKnD2YfEJ4ULOJaCDldY5aX45 GXHI38kQQGiu3zVoYsuyYpIVxfxAvLS7ZyUTcwYukKF+LH1B71/QP+wGIUZV03r1 GrOle3QoSkZoLLwm8+9ZzKBdMK2W1EDov7RoDcHIp4lj8+izUeZLQLoxdFOohmYp yWRZBkFyhL7Vv8R3MMQsCiKMnWEcLlelKIkCAwEAAaOCAiYwggIiMB0GA1UdDgQW BBQSxDt4miaN6qjnpSryQdw378pzhTAfBgNVHSMEGDAWgBQ22jD2hld9ZXb2R7KV RVU1g1EwwzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjE2Ni9OdG93OW9aWGZXVjI5a2V5bFVWVk5ZTlJNTU0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9OdG93OW9aWGZXVjI5a2V5bFVWVk5Z TlJNTU0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMjE2Ni9Fc1E3ZUpvbWplcW81NlVxOGtIY04tX0tjNFUucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBwDoKMA0GCSqGSIb3DQEBCwUAA4IBAQBfP+LQPRK2jyr8bvw2I/a0ZaDt SZbGvFEmcXai9gZvcc1YOWI8mPma8FjrTya20Zv5ruTmyidd4w5hEQKAI0U4OE0o hXLNJjF6cTJs/vFDALHkvbRYGpNGpabrQE9TZhruBIohCiAUFQiF+ppQCppFJFXp B/8rcMRUZ1KiKKWUR0v39Vl+MIGP81YjvRTFQ0CKsNBy/AKvv3HTz2xmPzRGkv/x srQu2eDjwfiV2H21OVXsPpfzQ4tUR8yIHGvgt7ZhyvN+MEpC70VvNlsALhp6hgJD cskxOku9ON+czZSYVscUpeTcYqrHlyZMlmi8VYYBViUT69g30MrR11yKkZC0 -----END CERTIFICATE-----Generated at Mon Nov 25 23:54:31 2024 by rpki-client on console-ams.rpki-client.org