$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/234/NBh7_g195KY1Oeao7digHpUom7k.roa File: NBh7_g195KY1Oeao7digHpUom7k.roa (raw, json) Hash identifier: STaqUn/PZ5S+DPQ1gWAegFjGCk5bjxolTjy/3O6cKDw= Subject key identifier: 34:18:7B:FE:0D:7D:E4:A6:35:39:E6:A8:ED:D8:A0:1E:95:28:9B:B9 Certificate issuer: /CN=500EF358BCBE14A358CA4EEE41B4E90DC923E9D2 Certificate serial: 79 Authority key identifier: 50:0E:F3:58:BC:BE:14:A3:58:CA:4E:EE:41:B4:E9:0D:C9:23:E9:D2 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/UA7zWLy-FKNYyk7uQbTpDckj6dI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/NBh7_g195KY1Oeao7digHpUom7k.roa Signing time: Mon 01 Jan 2024 01:28:19 +0000 ROA not before: Mon 01 Jan 2024 01:28:19 +0000 ROA not after: Sat 14 Dec 2024 01:30:03 +0000 asID: 9351 IP address blocks: 219.103.64.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/UA7zWLy-FKNYyk7uQbTpDckj6dI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/UA7zWLy-FKNYyk7uQbTpDckj6dI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/UA7zWLy-FKNYyk7uQbTpDckj6dI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 121 (0x79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=500EF358BCBE14A358CA4EEE41B4E90DC923E9D2 Validity Not Before: Jan 1 01:28:19 2024 GMT Not After : Dec 14 01:30:03 2024 GMT Subject: CN=34187BFE0D7DE4A63539E6A8EDD8A01E95289BB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:48:16:eb:fe:7d:58:01:b9:86:ce:d4:fb:06: 3a:80:83:b0:fd:3e:fe:ba:72:49:f8:98:9b:2c:7a: 38:a6:90:1f:91:25:4e:b0:19:29:58:56:bc:52:32: e0:65:17:1a:1a:52:3e:ff:89:ac:2f:5b:4a:f3:62: 83:00:fb:64:e9:fc:83:87:85:f3:1b:9f:d0:7e:89: 73:d9:56:12:ae:5b:e3:23:9d:fe:b8:0f:92:c0:1c: ad:9e:c6:a9:f1:e3:8c:45:21:e8:c0:f0:bb:8c:34: b1:b2:e1:e9:e6:63:da:97:db:6d:57:02:2f:ec:fc: b3:bf:7c:ab:c6:4e:dc:4c:f4:39:90:48:96:a8:c4: 90:86:b8:f5:5d:d2:d4:8c:27:c6:64:a6:97:68:dd: 42:5a:80:68:83:4e:29:c3:17:df:97:31:18:d2:1b: 8c:52:88:88:90:1d:a4:c1:76:13:e0:08:02:0a:6c: 22:90:31:72:f1:bd:67:c7:6f:3e:5d:8a:2e:00:fd: 26:4a:a4:d2:cd:00:90:88:3d:49:82:98:77:69:5d: 0f:09:3b:c9:1a:96:c5:66:81:cf:7b:6b:8d:44:a9: 79:68:64:6c:5c:41:c3:13:d2:f2:1f:b1:00:19:c6: 2f:13:71:a8:db:f0:e7:34:71:40:8b:d3:9d:8f:f7: 22:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:18:7B:FE:0D:7D:E4:A6:35:39:E6:A8:ED:D8:A0:1E:95:28:9B:B9 X509v3 Authority Key Identifier: keyid:50:0E:F3:58:BC:BE:14:A3:58:CA:4E:EE:41:B4:E9:0D:C9:23:E9:D2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/UA7zWLy-FKNYyk7uQbTpDckj6dI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/UA7zWLy-FKNYyk7uQbTpDckj6dI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/NBh7_g195KY1Oeao7digHpUom7k.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.103.64.0/20 Signature Algorithm: sha256WithRSAEncryption 09:58:da:c5:f2:d5:3d:17:9c:3c:c3:39:48:e2:c6:d6:62:d2: 36:08:b1:45:6e:42:ad:e1:06:a2:dc:4d:5c:45:e9:f8:df:f7: 63:14:fb:d8:bd:ec:43:d0:29:da:6e:b8:dc:37:29:c5:ad:8d: f6:f5:08:9a:76:6e:22:2f:99:72:7c:d5:ce:ce:91:64:cf:6d: 1a:c1:ac:8d:d1:0b:ca:66:c0:d1:7d:aa:72:b8:a6:60:73:e7: 74:ac:c0:14:30:ad:28:3f:2c:fe:52:f5:23:81:30:33:71:4c: 37:6f:e2:c4:b2:b9:3a:c4:19:7e:e9:b7:f6:b5:b2:50:c7:c9: 46:0d:10:31:89:8f:99:78:02:29:95:ce:0a:3a:3e:6a:d3:0d: 60:03:99:1a:95:38:2a:e0:2e:0d:c5:21:74:8e:e5:60:e0:c2: dc:43:e1:a1:c8:2c:f9:e4:de:59:5e:c9:ed:a3:09:bd:c9:33: c1:07:5f:6d:38:9c:38:2e:7d:55:22:b6:5f:2b:6a:b6:f2:b3: 30:5f:7e:69:a6:fb:38:5f:9b:44:ae:87:03:6c:1a:fc:bd:44: 1d:1f:c0:19:a2:a0:12:16:a9:97:69:f3:85:86:72:5e:a2:d2: 64:16:04:42:da:34:6c:74:cb:a2:23:ee:96:f5:1b:1d:d3:4a: ed:b3:f7:0a -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBeTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1MDBF RjM1OEJDQkUxNEEzNThDQTRFRUU0MUI0RTkwREM5MjNFOUQyMB4XDTI0MDEwMTAx MjgxOVoXDTI0MTIxNDAxMzAwM1owMzExMC8GA1UEAxMoMzQxODdCRkUwRDdERTRB NjM1MzlFNkE4RUREOEEwMUU5NTI4OUJCOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAONIFuv+fVgBuYbO1PsGOoCDsP0+/rpySfiYmyx6OKaQH5ElTrAZ KVhWvFIy4GUXGhpSPv+JrC9bSvNigwD7ZOn8g4eF8xuf0H6Jc9lWEq5b4yOd/rgP ksAcrZ7GqfHjjEUh6MDwu4w0sbLh6eZj2pfbbVcCL+z8s798q8ZO3Ez0OZBIlqjE kIa49V3S1IwnxmSml2jdQlqAaINOKcMX35cxGNIbjFKIiJAdpMF2E+AIAgpsIpAx cvG9Z8dvPl2KLgD9Jkqk0s0AkIg9SYKYd2ldDwk7yRqWxWaBz3trjUSpeWhkbFxB wxPS8h+xABnGLxNxqNvw5zRxQIvTnY/3IocCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQ0GHv+DX3kpjU55qjt2KAelSibuTAfBgNVHSMEGDAWgBRQDvNYvL4Uo1jKTu5B tOkNySPp0jAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjM0L1VBN3pXTHktRktOWXlrN3VRYlRwRGNrajZkSS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VBN3pXTHktRktOWXlrN3VRYlRwRGNr ajZkSS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMzQvTkJoN19nMTk1S1kxT2VhbzdkaWdIcFVvbTdrLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNtnQDANBgkqhkiG9w0BAQsFAAOCAQEACVjaxfLVPRecPMM5SOLG1mLSNgix RW5CreEGotxNXEXp+N/3YxT72L3sQ9Ap2m643Dcpxa2N9vUImnZuIi+ZcnzVzs6R ZM9tGsGsjdELymbA0X2qcrimYHPndKzAFDCtKD8s/lL1I4EwM3FMN2/ixLK5OsQZ fum39rWyUMfJRg0QMYmPmXgCKZXOCjo+atMNYAOZGpU4KuAuDcUhdI7lYODC3EPh ocgs+eTeWV7J7aMJvckzwQdfbTicOC59VSK2XytqtvKzMF9+aab7OF+bRK6HA2wa /L1EHR/AGaKgEhapl2nzhYZyXqLSZBYEQto0bHTLoiPulvUbHdNK7bP3Cg== -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:28 2024 by rpki-client on console-ams.rpki-client.org