$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/2370/uh_pxMZ5Fs21LvlnoMl4bbA0a80.roa File: uh_pxMZ5Fs21LvlnoMl4bbA0a80.roa (raw, json) Hash identifier: ftTFkw7hM8ZNooukcwL8vV8iJoCtoy8EAhl3mc2DkDk= Subject key identifier: BA:1F:E9:C4:C6:79:16:CD:B5:2E:F9:67:A0:C9:78:6D:B0:34:6B:CD Certificate issuer: /CN=49D7AAA47057BC50ABDD410A8FA39ABDA1003E10 Certificate serial: 1E Authority key identifier: 49:D7:AA:A4:70:57:BC:50:AB:DD:41:0A:8F:A3:9A:BD:A1:00:3E:10 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/SdeqpHBXvFCr3UEKj6OavaEAPhA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2370/uh_pxMZ5Fs21LvlnoMl4bbA0a80.roa Signing time: Sat 31 Aug 2024 01:30:36 +0000 ROA not before: Sat 31 Aug 2024 01:30:36 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 9357 IP address blocks: 133.250.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2370/SdeqpHBXvFCr3UEKj6OavaEAPhA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2370/SdeqpHBXvFCr3UEKj6OavaEAPhA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/SdeqpHBXvFCr3UEKj6OavaEAPhA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49D7AAA47057BC50ABDD410A8FA39ABDA1003E10 Validity Not Before: Aug 31 01:30:36 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=BA1FE9C4C67916CDB52EF967A0C9786DB0346BCD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:53:65:d2:55:3a:7c:e0:9b:a3:a6:8c:20:b7: d7:77:34:87:93:cb:db:3b:8f:bc:4e:65:c8:2c:ac: 00:e4:d5:4b:99:13:01:ba:25:44:69:a0:b2:8f:f5: 1a:93:60:7b:76:27:59:27:e7:da:92:45:d5:b7:3b: e0:d3:b4:f8:67:37:48:94:0a:62:db:4c:74:f5:5c: b3:cf:23:2f:55:5d:ca:e7:a8:56:eb:0c:fc:7f:eb: 8c:8c:89:56:4c:50:71:c3:f1:68:0a:c4:e1:34:e8: 98:05:39:1f:8a:22:c6:98:4b:a8:dd:26:2c:96:86: eb:05:2e:c2:b6:63:cc:89:1d:8b:1d:22:88:e3:a1: e4:16:06:6f:c4:aa:2a:18:9d:1e:24:5e:49:51:78: 2c:b8:f0:f6:ba:b7:57:c5:bf:f2:17:b2:a6:64:dd: 1f:8a:df:71:ad:40:22:cd:7e:3c:6c:95:da:c0:c2: 3e:b3:8c:b6:64:90:ef:2e:c4:47:e6:43:8b:06:d6: 51:52:6a:07:e3:9a:c3:9c:46:c2:90:b1:cb:17:94: 17:e6:f9:78:d1:55:6d:16:e1:29:b0:e3:37:9f:a8: 94:c3:d9:ce:ee:08:79:e5:67:15:9a:ef:96:ff:b0: e2:15:4d:fd:52:7d:8d:29:c3:32:03:52:96:73:24: 8b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:1F:E9:C4:C6:79:16:CD:B5:2E:F9:67:A0:C9:78:6D:B0:34:6B:CD X509v3 Authority Key Identifier: keyid:49:D7:AA:A4:70:57:BC:50:AB:DD:41:0A:8F:A3:9A:BD:A1:00:3E:10 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2370/SdeqpHBXvFCr3UEKj6OavaEAPhA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/SdeqpHBXvFCr3UEKj6OavaEAPhA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2370/uh_pxMZ5Fs21LvlnoMl4bbA0a80.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 133.250.128.0/17 Signature Algorithm: sha256WithRSAEncryption 5c:cb:ba:6d:04:4b:a1:45:e2:f7:9a:70:18:d9:48:61:0c:b3: c0:f6:ef:ef:6c:d8:35:42:b9:d6:68:ec:44:1c:68:05:95:3e: e3:a9:57:42:58:90:27:1f:a8:92:79:48:73:ea:6e:2d:32:1d: 39:80:e5:fc:8e:98:cc:29:18:b4:41:c8:28:9a:78:21:f5:b1: 68:8d:34:cf:76:73:61:db:03:dd:0f:11:62:8c:e2:51:82:79: 63:88:19:eb:36:32:06:2a:ef:42:86:47:7d:40:59:12:f1:88: 91:c1:9f:99:25:f2:3b:ef:15:7a:f9:42:4b:c3:fe:00:7b:86: 2a:65:a2:7f:f9:37:43:cf:de:4b:41:4e:59:da:b5:0e:b9:28: 2d:5a:7d:3b:97:4c:59:69:85:cb:35:32:1b:01:ae:0f:05:10: 08:6a:fd:2a:60:2e:27:89:e1:fc:ca:52:2d:b0:8b:aa:c5:b6: a9:11:4f:18:96:16:b2:c3:43:df:49:0e:2f:1f:51:e0:76:b9: 00:9d:e5:25:9b:ae:cb:a3:56:5d:57:b2:69:46:02:7a:a2:c1: 17:5f:da:43:65:ce:5b:de:3e:91:a1:0c:9d:06:e5:a2:11:86: dc:98:ed:5b:7f:58:83:fb:bc:45:2a:81:0c:71:44:1d:34:01: 60:4b:87:9a -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBHjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0OUQ3 QUFBNDcwNTdCQzUwQUJERDQxMEE4RkEzOUFCREExMDAzRTEwMB4XDTI0MDgzMTAx MzAzNloXDTI1MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoQkExRkU5QzRDNjc5MTZD REI1MkVGOTY3QTBDOTc4NkRCMDM0NkJDRDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAN5TZdJVOnzgm6OmjCC313c0h5PL2zuPvE5lyCysAOTVS5kTAbol RGmgso/1GpNge3YnWSfn2pJF1bc74NO0+Gc3SJQKYttMdPVcs88jL1VdyueoVusM /H/rjIyJVkxQccPxaArE4TTomAU5H4oixphLqN0mLJaG6wUuwrZjzIkdix0iiOOh 5BYGb8SqKhidHiReSVF4LLjw9rq3V8W/8heypmTdH4rfca1AIs1+PGyV2sDCPrOM tmSQ7y7ER+ZDiwbWUVJqB+Oaw5xGwpCxyxeUF+b5eNFVbRbhKbDjN5+olMPZzu4I eeVnFZrvlv+w4hVN/VJ9jSnDMgNSlnMki6kCAwEAAaOCAiYwggIiMB0GA1UdDgQW BBS6H+nExnkWzbUu+WegyXhtsDRrzTAfBgNVHSMEGDAWgBRJ16qkcFe8UKvdQQqP o5q9oQA+EDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjM3MC9TZGVxcEhCWHZGQ3IzVUVLajZPYXZhRUFQaEEuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9TZGVxcEhCWHZGQ3IzVUVLajZPYXZh RUFQaEEuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMjM3MC91aF9weE1aNUZzMjFMdmxub01sNGJiQTBhODAucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQHhfqAMA0GCSqGSIb3DQEBCwUAA4IBAQBcy7ptBEuhReL3mnAY2UhhDLPA 9u/vbNg1QrnWaOxEHGgFlT7jqVdCWJAnH6iSeUhz6m4tMh05gOX8jpjMKRi0Qcgo mngh9bFojTTPdnNh2wPdDxFijOJRgnljiBnrNjIGKu9Chkd9QFkS8YiRwZ+ZJfI7 7xV6+UJLw/4Ae4YqZaJ/+TdDz95LQU5Z2rUOuSgtWn07l0xZaYXLNTIbAa4PBRAI av0qYC4nieH8ylItsIuqxbapEU8Ylhayw0PfSQ4vH1HgdrkAneUlm67Lo1ZdV7Jp RgJ6osEXX9pDZc5b3j6RoQydBuWiEYbcmO1bf1iD+7xFKoEMcUQdNAFgS4ea -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:29 2024 by rpki-client on console-ams.rpki-client.org