$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/2432/tZj-YN0nSfrbxK5G1VT5EB2AM7M.roa File: tZj-YN0nSfrbxK5G1VT5EB2AM7M.roa (raw, json) Hash identifier: nnbCEHYauawyAAfxIkRnBvbCQUGFzMVgY219VN0T+T0= Subject key identifier: B5:98:FE:60:DD:27:49:FA:DB:C4:AE:46:D5:54:F9:10:1D:80:33:B3 Certificate issuer: /CN=E62F69C95A098F8073F5F3C3C1A98B76CBF8502A Certificate serial: 4C Authority key identifier: E6:2F:69:C9:5A:09:8F:80:73:F5:F3:C3:C1:A9:8B:76:CB:F8:50:2A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5i9pyVoJj4Bz9fPDwamLdsv4UCo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2432/tZj-YN0nSfrbxK5G1VT5EB2AM7M.roa Signing time: Thu 29 Feb 2024 01:29:49 +0000 ROA not before: Thu 29 Feb 2024 01:29:49 +0000 ROA not after: Fri 14 Feb 2025 01:30:03 +0000 asID: 7671 IP address blocks: 157.3.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2432/5i9pyVoJj4Bz9fPDwamLdsv4UCo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2432/5i9pyVoJj4Bz9fPDwamLdsv4UCo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5i9pyVoJj4Bz9fPDwamLdsv4UCo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:24:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E62F69C95A098F8073F5F3C3C1A98B76CBF8502A Validity Not Before: Feb 29 01:29:49 2024 GMT Not After : Feb 14 01:30:03 2025 GMT Subject: CN=B598FE60DD2749FADBC4AE46D554F9101D8033B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c3:d0:7d:c6:71:d4:8f:2c:70:50:5f:87:9b: 6b:49:21:a9:1c:b0:ef:13:84:c4:b7:c8:31:7c:ab: e4:e7:f5:a8:58:4d:ae:47:68:b9:b6:64:ed:57:c8: b5:1f:99:dd:31:3b:ec:d1:bb:2b:aa:e5:7d:0d:c9: 51:0d:d5:ed:9e:6f:ef:66:85:b5:34:7a:ac:f3:6f: b6:dd:87:ff:e3:92:e0:63:e9:42:e1:a7:77:e6:34: 95:f7:ce:f1:56:a7:e8:56:24:ac:a2:58:8a:e9:83: 6c:18:77:db:ba:a7:ac:ba:4c:f4:3a:d3:79:a0:e5: 61:b5:2d:26:4b:cf:99:86:93:80:44:c3:3b:95:9d: 38:27:ef:f7:9d:89:b1:5b:93:a1:5a:28:01:a7:4f: c8:73:8f:85:e1:6d:1c:64:af:e2:07:2f:09:c5:12: ca:fc:13:6b:e2:83:1b:a1:a4:17:9a:53:ec:d8:17: 4e:48:b3:d6:a0:2b:34:f4:b9:b7:8e:e5:b7:39:f0: 17:ab:75:c9:78:f2:a3:5a:a8:b7:a2:5e:cd:e2:b5: 58:82:eb:d4:d8:cc:23:42:96:e9:8a:04:18:ef:18: 14:50:11:91:81:52:be:cd:08:2c:35:39:10:3c:5a: 9d:43:61:9d:59:34:8b:47:ee:4c:9a:a7:69:d9:25: 51:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:98:FE:60:DD:27:49:FA:DB:C4:AE:46:D5:54:F9:10:1D:80:33:B3 X509v3 Authority Key Identifier: keyid:E6:2F:69:C9:5A:09:8F:80:73:F5:F3:C3:C1:A9:8B:76:CB:F8:50:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2432/5i9pyVoJj4Bz9fPDwamLdsv4UCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5i9pyVoJj4Bz9fPDwamLdsv4UCo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2432/tZj-YN0nSfrbxK5G1VT5EB2AM7M.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.3.0.0/16 Signature Algorithm: sha256WithRSAEncryption 53:8e:68:13:77:24:00:5a:3a:79:9d:39:7d:8c:a6:14:19:8e: 93:ac:4e:04:d7:0e:f9:be:db:74:f6:45:49:25:fc:c7:3c:da: 41:61:48:24:07:17:f8:6a:71:b8:c2:c4:12:d6:e0:8c:90:2f: eb:71:48:8b:b3:26:b2:fa:10:f4:6e:63:15:14:36:c8:0d:fe: 3a:a6:b9:99:43:27:60:1c:84:21:81:92:f4:5b:e1:8b:74:fe: 26:92:76:fa:e1:14:d8:3f:68:dc:7f:3a:38:e6:a3:61:f1:9e: 2a:8a:dc:4b:bf:a7:85:6b:cd:06:87:30:79:db:dc:b2:8b:c4: c2:39:a5:ef:7a:61:c0:5d:a9:93:28:1e:9f:5f:a6:27:0b:a9: 9e:ef:91:8f:10:39:8f:b4:e1:f0:0b:34:0f:25:69:a1:ae:1e: ae:a6:9e:1a:1b:9d:38:73:e5:65:58:69:ff:82:04:de:ae:83: f9:8a:38:8d:ff:dc:4a:a7:a2:77:c5:41:fe:16:c2:e0:fc:bd: b0:ea:1f:c1:d7:35:1e:97:65:41:4e:ce:1a:7f:13:de:6c:2d: bd:a8:81:d2:de:13:aa:23:20:e0:7e:26:61:90:bc:5a:e9:34: ee:93:97:bb:bb:42:a8:41:29:08:a1:b8:60:6f:db:86:39:d1: 30:64:dd:09 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgIBTDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhFNjJG NjlDOTVBMDk4RjgwNzNGNUYzQzNDMUE5OEI3NkNCRjg1MDJBMB4XDTI0MDIyOTAx Mjk0OVoXDTI1MDIxNDAxMzAwM1owMzExMC8GA1UEAxMoQjU5OEZFNjBERDI3NDlG QURCQzRBRTQ2RDU1NEY5MTAxRDgwMzNCMzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAK3D0H3GcdSPLHBQX4eba0khqRyw7xOExLfIMXyr5Of1qFhNrkdo ubZk7VfItR+Z3TE77NG7K6rlfQ3JUQ3V7Z5v72aFtTR6rPNvtt2H/+OS4GPpQuGn d+Y0lffO8Van6FYkrKJYiumDbBh327qnrLpM9DrTeaDlYbUtJkvPmYaTgETDO5Wd OCfv952JsVuToVooAadPyHOPheFtHGSv4gcvCcUSyvwTa+KDG6GkF5pT7NgXTkiz 1qArNPS5t47ltznwF6t1yXjyo1qot6JezeK1WILr1NjMI0KW6YoEGO8YFFARkYFS vs0ILDU5EDxanUNhnVk0i0fuTJqnadklUVsCAwEAAaOCAiUwggIhMB0GA1UdDgQW BBS1mP5g3SdJ+tvErkbVVPkQHYAzszAfBgNVHSMEGDAWgBTmL2nJWgmPgHP188PB qYt2y/hQKjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjQzMi81aTlweVZvSmo0Qno5ZlBEd2FtTGRzdjRVQ28uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC81aTlweVZvSmo0Qno5ZlBEd2FtTGRz djRVQ28uY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMjQzMi90WmotWU4wblNmcmJ4SzVHMVZUNUVCMkFNN00ucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIA ATAFAwMAnQMwDQYJKoZIhvcNAQELBQADggEBAFOOaBN3JABaOnmdOX2MphQZjpOs TgTXDvm+23T2RUkl/Mc82kFhSCQHF/hqcbjCxBLW4IyQL+txSIuzJrL6EPRuYxUU NsgN/jqmuZlDJ2AchCGBkvRb4Yt0/iaSdvrhFNg/aNx/Ojjmo2HxniqK3Eu/p4Vr zQaHMHnb3LKLxMI5pe96YcBdqZMoHp9fpicLqZ7vkY8QOY+04fALNA8laaGuHq6m nhobnThz5WVYaf+CBN6ug/mKOI3/3EqnonfFQf4WwuD8vbDqH8HXNR6XZUFOzhp/ E95sLb2ogdLeE6ojIOB+JmGQvFrpNO6Tl7u7QqhBKQihuGBv24Y50TBk3Qk= -----END CERTIFICATE-----Generated at Fri Nov 22 17:51:40 2024 by rpki-client on console-fra.rpki-client.org