$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/2490/KiHs6LiIS5G4AFnUWKhPf9_Rl1o.roa File: KiHs6LiIS5G4AFnUWKhPf9_Rl1o.roa (raw, json) Hash identifier: lGpuQIjeab9ekIi0PLmy/+1HbKKCsu4JhweS9XLl1K4= Subject key identifier: 2A:21:EC:E8:B8:88:4B:91:B8:00:59:D4:58:A8:4F:7F:DF:D1:97:5A Certificate issuer: /CN=B8E53C5244B7F9A76D5F9DF9FBAF61E57B2EA93B Certificate serial: 4A Authority key identifier: B8:E5:3C:52:44:B7:F9:A7:6D:5F:9D:F9:FB:AF:61:E5:7B:2E:A9:3B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uOU8UkS3-adtX535-69h5XsuqTs.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2490/KiHs6LiIS5G4AFnUWKhPf9_Rl1o.roa Signing time: Tue 14 May 2024 10:14:39 +0000 ROA not before: Tue 14 May 2024 10:14:39 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 7687 IP address blocks: 160.246.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2490/uOU8UkS3-adtX535-69h5XsuqTs.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2490/uOU8UkS3-adtX535-69h5XsuqTs.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uOU8UkS3-adtX535-69h5XsuqTs.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:32:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8E53C5244B7F9A76D5F9DF9FBAF61E57B2EA93B Validity Not Before: May 14 10:14:39 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=2A21ECE8B8884B91B80059D458A84F7FDFD1975A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d8:26:47:10:51:52:7d:d4:2f:56:2d:7e:9d: 75:e4:de:a4:9c:5e:43:0a:36:c0:f9:74:b1:b4:f4: e4:e2:e6:0b:c5:89:e8:5a:19:24:9a:35:a4:f1:50: a6:27:f1:38:12:67:bd:a1:4f:6a:0e:43:14:cd:c7: 59:dd:47:38:b6:20:4c:80:e6:91:94:8b:1b:fd:b2: 6f:4a:a0:3a:e0:0b:a9:69:7f:e2:a0:9b:6a:f6:9b: 63:9f:98:ca:0f:e5:ee:2c:04:47:60:af:d6:92:dc: 41:f9:9d:9a:ec:53:0d:68:4e:69:3a:be:aa:86:14: 4e:f8:8b:42:0b:fe:44:13:34:e1:05:bb:5d:f3:94: ba:67:8c:47:61:d2:78:5f:31:42:9f:8a:9d:70:8a: 3b:00:cf:29:a0:2f:cf:15:a0:62:1e:b9:27:b8:d1: 4d:95:75:80:18:cb:15:d0:8d:3e:da:f3:6e:7e:53: ba:e2:82:34:2d:72:70:e1:6b:72:77:26:05:df:c3: 10:76:92:88:96:fe:12:43:39:3d:87:40:06:16:82: 6b:32:79:e7:9e:23:e7:68:d6:19:2d:d1:2b:44:9f: 08:f2:82:89:13:b8:03:24:a6:85:85:9e:c2:65:69: f4:fe:cc:a1:c8:71:0b:b1:b6:f8:d5:ea:25:88:aa: b8:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:21:EC:E8:B8:88:4B:91:B8:00:59:D4:58:A8:4F:7F:DF:D1:97:5A X509v3 Authority Key Identifier: keyid:B8:E5:3C:52:44:B7:F9:A7:6D:5F:9D:F9:FB:AF:61:E5:7B:2E:A9:3B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2490/uOU8UkS3-adtX535-69h5XsuqTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uOU8UkS3-adtX535-69h5XsuqTs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2490/KiHs6LiIS5G4AFnUWKhPf9_Rl1o.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.246.64.0/18 Signature Algorithm: sha256WithRSAEncryption 75:e9:74:f9:bd:47:e1:b9:87:bd:b5:df:00:36:35:2e:1e:ac: 11:63:8e:2d:41:22:dc:21:e6:db:21:a7:f0:cb:a6:8d:bb:50: 72:07:1b:10:d2:e5:fc:58:bc:30:d9:4c:c0:7c:18:24:b2:af: 2f:c2:7f:00:d5:91:fe:b9:3a:e7:ca:20:8e:39:4b:24:13:6b: ce:14:54:fa:08:d5:a8:e3:f8:a8:d4:bc:fe:72:c9:6d:33:3b: 3e:a5:b3:d9:4d:1c:28:05:53:d3:23:9a:b7:8c:d0:5e:a9:84: a3:3d:72:55:71:37:f6:8f:aa:d6:2a:33:97:df:0f:44:49:0c: 03:da:0a:f9:dc:b6:e2:6a:aa:87:3a:eb:b0:0a:22:8e:7c:c0: ae:88:e4:cf:37:81:32:0c:12:7c:a7:7f:81:f3:63:80:15:c2: 09:a6:7f:b9:5d:b2:1b:ff:81:bc:7a:66:e5:34:49:b0:8d:ac: d7:94:b2:5d:13:83:de:cd:45:13:2d:c2:d4:ef:7f:dc:7a:88: 70:99:85:b3:02:3d:a1:6f:58:af:4b:0e:5f:73:2c:37:9d:f5: 10:6a:31:c0:0b:ee:ee:60:31:5b:bc:85:4a:37:bc:30:0c:0f: f6:fb:8c:97:a5:ef:7b:45:46:2e:aa:68:d4:1b:93:1b:ca:f4: c8:eb:e2:b2 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBSjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCOEU1 M0M1MjQ0QjdGOUE3NkQ1RjlERjlGQkFGNjFFNTdCMkVBOTNCMB4XDTI0MDUxNDEw MTQzOVoXDTI1MDQxNTAxMzAwMlowMzExMC8GA1UEAxMoMkEyMUVDRThCODg4NEI5 MUI4MDA1OUQ0NThBODRGN0ZERkQxOTc1QTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL3YJkcQUVJ91C9WLX6ddeTepJxeQwo2wPl0sbT05OLmC8WJ6FoZ JJo1pPFQpifxOBJnvaFPag5DFM3HWd1HOLYgTIDmkZSLG/2yb0qgOuALqWl/4qCb avabY5+Yyg/l7iwER2Cv1pLcQfmdmuxTDWhOaTq+qoYUTviLQgv+RBM04QW7XfOU umeMR2HSeF8xQp+KnXCKOwDPKaAvzxWgYh65J7jRTZV1gBjLFdCNPtrzbn5TuuKC NC1ycOFrcncmBd/DEHaSiJb+EkM5PYdABhaCazJ5554j52jWGS3RK0SfCPKCiRO4 AySmhYWewmVp9P7MochxC7G2+NXqJYiquM0CAwEAAaOCAiYwggIiMB0GA1UdDgQW BBQqIezouIhLkbgAWdRYqE9/39GXWjAfBgNVHSMEGDAWgBS45TxSRLf5p21fnfn7 r2Hley6pOzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjQ5MC91T1U4VWtTMy1hZHRYNTM1LTY5aDVYc3VxVHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC91T1U4VWtTMy1hZHRYNTM1LTY5aDVY c3VxVHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMjQ5MC9LaUhzNkxpSVM1RzRBRm5VV0toUGY5X1JsMW8ucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQGoPZAMA0GCSqGSIb3DQEBCwUAA4IBAQB16XT5vUfhuYe9td8ANjUuHqwR Y44tQSLcIebbIafwy6aNu1ByBxsQ0uX8WLww2UzAfBgksq8vwn8A1ZH+uTrnyiCO OUskE2vOFFT6CNWo4/io1Lz+csltMzs+pbPZTRwoBVPTI5q3jNBeqYSjPXJVcTf2 j6rWKjOX3w9ESQwD2gr53LbiaqqHOuuwCiKOfMCuiOTPN4EyDBJ8p3+B82OAFcIJ pn+5XbIb/4G8emblNEmwjazXlLJdE4PezUUTLcLU73/ceohwmYWzAj2hb1ivSw5f cyw3nfUQajHAC+7uYDFbvIVKN7wwDA/2+4yXpe97RUYuqmjUG5MbyvTI6+Ky -----END CERTIFICATE-----Generated at Fri Nov 22 15:23:57 2024 by rpki-client on console-fra.rpki-client.org