$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/3ZryFhNACXtp1BXzdgjWgfQFHwo.roa File: 3ZryFhNACXtp1BXzdgjWgfQFHwo.roa (raw, json) Hash identifier: 3f98xWOpknNzT+oatd5MRt77wQYxZP9XKzO6BsR0Zm4= Subject key identifier: DD:9A:F2:16:13:40:09:7B:69:D4:15:F3:76:08:D6:81:F4:05:1F:0A Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 1F Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/3ZryFhNACXtp1BXzdgjWgfQFHwo.roa Signing time: Wed 10 Jan 2024 01:03:00 +0000 ROA not before: Wed 10 Jan 2024 01:03:00 +0000 ROA not after: Sat 14 Dec 2024 01:30:03 +0000 asID: 2514 IP address blocks: 157.65.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Oct 2024 13:36:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Jan 10 01:03:00 2024 GMT Not After : Dec 14 01:30:03 2024 GMT Subject: CN=DD9AF2161340097B69D415F37608D681F4051F0A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ba:39:d7:58:88:3b:21:4d:42:05:8c:07:c9: 53:c7:5b:f1:fc:bb:1f:c4:6c:97:c0:e4:22:a3:30: e6:56:10:55:12:97:f0:ce:ef:fa:9c:f3:39:e8:80: f2:53:ed:f1:cb:57:c7:b5:08:24:f6:13:00:51:9c: 4b:c4:72:94:14:b2:22:22:d5:a8:75:39:78:13:ea: 79:8a:06:89:fa:8f:d5:39:0a:22:10:4e:33:49:2b: d6:6b:65:b3:59:04:e2:30:0d:8e:05:11:64:5e:2b: 41:b7:5b:0a:de:88:7b:52:c2:cf:73:c3:ec:a0:f4: 28:eb:80:40:ce:bb:26:77:74:7d:aa:49:db:77:7c: d1:98:6a:8b:5f:69:33:77:fc:6a:ff:aa:9d:0c:ec: ae:9a:14:42:c9:88:f5:43:ad:24:1f:94:54:ef:be: d5:34:f6:1e:b3:a6:9d:e0:0a:8b:48:df:06:83:d0: 13:af:43:eb:5c:44:e8:44:71:9c:9a:b4:9e:2b:2f: 6a:de:b9:9b:c4:7e:95:bb:dc:5d:30:31:b8:1c:6c: af:be:13:a7:9d:9b:65:c3:93:10:4b:56:df:11:30: ec:0a:a2:3e:9a:4e:42:83:16:18:f0:51:95:42:7a: 7d:f5:b2:3a:06:70:7b:1c:24:dd:f8:5d:2d:59:98: 4d:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:9A:F2:16:13:40:09:7B:69:D4:15:F3:76:08:D6:81:F4:05:1F:0A X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/3ZryFhNACXtp1BXzdgjWgfQFHwo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.65.64.0/18 Signature Algorithm: sha256WithRSAEncryption 4f:1a:b5:66:e8:d4:49:56:19:54:5a:7e:2a:2c:1c:f7:e4:a8: 77:98:f8:47:a0:d2:84:7a:d8:80:f9:2c:34:7a:cd:75:f4:71: fc:d9:31:26:78:c9:cf:9c:8c:8c:4e:bb:83:a1:25:69:7d:97: ed:de:c9:f8:ef:fe:46:db:5d:f6:62:6d:3d:a8:c4:88:92:35: a0:2d:1e:7f:e1:5e:c6:77:f3:df:d6:71:72:7e:1d:8a:f9:a5: 3d:99:79:62:15:6b:28:db:35:52:bf:34:44:b2:1d:f1:15:43: 7b:25:b3:cf:4c:9c:90:22:3e:5a:38:1f:ad:00:40:59:a2:47: f9:ef:3e:4e:f6:03:6f:62:99:74:1a:35:af:c7:e1:31:12:d2: 9f:a9:b9:da:58:2d:bc:db:06:34:d6:b4:cb:a3:3d:06:82:4a: 82:83:5a:2b:02:37:94:e8:f8:c3:b7:19:2c:f9:ad:cb:ff:1e: 7b:cd:b2:4b:8b:f9:3c:45:d4:2f:90:0b:bd:49:57:a2:06:63: 0e:b2:02:91:8a:89:1d:b9:b5:c4:81:86:f2:9a:77:56:8d:43: f2:77:71:74:6c:98:b1:b3:58:c4:76:9e:d1:fc:6e:d2:d8:3d: 8f:de:45:ce:67:6c:75:69:68:2b:48:0e:6a:54:9e:a8:d0:87: 5d:4f:10:59 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBHzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMTQw MEFCODlCNkQ3MkY3REI0MjRGNEFBQThDQ0ZGNjQzOEQzRDRBMB4XDTI0MDExMDAx MDMwMFoXDTI0MTIxNDAxMzAwM1owMzExMC8GA1UEAxMoREQ5QUYyMTYxMzQwMDk3 QjY5RDQxNUYzNzYwOEQ2ODFGNDA1MUYwQTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALC6OddYiDshTUIFjAfJU8db8fy7H8Rsl8DkIqMw5lYQVRKX8M7v +pzzOeiA8lPt8ctXx7UIJPYTAFGcS8RylBSyIiLVqHU5eBPqeYoGifqP1TkKIhBO M0kr1mtls1kE4jANjgURZF4rQbdbCt6Ie1LCz3PD7KD0KOuAQM67Jnd0fapJ23d8 0Zhqi19pM3f8av+qnQzsrpoUQsmI9UOtJB+UVO++1TT2HrOmneAKi0jfBoPQE69D 61xE6ERxnJq0nisvat65m8R+lbvcXTAxuBxsr74Tp52bZcOTEEtW3xEw7AqiPppO QoMWGPBRlUJ6ffWyOgZwexwk3fhdLVmYTaMCAwEAAaOCAiIwggIeMB0GA1UdDgQW BBTdmvIWE0AJe2nUFfN2CNaB9AUfCjAfBgNVHSMEGDAWgBTRQAq4m21y99tCT0qq jM/2Q409SjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjkvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09OUFVvLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09O UFVvLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzI5LzNacnlGaE5BQ1h0cDFCWHpkZ2pXZ2ZRRkh3by5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAadQUAwDQYJKoZIhvcNAQELBQADggEBAE8atWbo1ElWGVRafiosHPfkqHeY+Eeg 0oR62ID5LDR6zXX0cfzZMSZ4yc+cjIxOu4OhJWl9l+3eyfjv/kbbXfZibT2oxIiS NaAtHn/hXsZ389/WcXJ+HYr5pT2ZeWIVayjbNVK/NESyHfEVQ3sls89MnJAiPlo4 H60AQFmiR/nvPk72A29imXQaNa/H4TES0p+pudpYLbzbBjTWtMujPQaCSoKDWisC N5To+MO3GSz5rcv/HnvNskuL+TxF1C+QC71JV6IGYw6yApGKiR25tcSBhvKad1aN Q/J3cXRsmLGzWMR2ntH8btLYPY/eRc5nbHVpaCtIDmpUnqjQh11PEFk= -----END CERTIFICATE-----Generated at Fri Sep 27 06:21:53 2024 by rpki-client on console-ams.rpki-client.org