$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/JGwxD7qMQlWmzmtrDl_HsS0OWMY.roa File: JGwxD7qMQlWmzmtrDl_HsS0OWMY.roa (raw, json) Hash identifier: cRDIr0H2xC68QHQG/KE/tNPOqxbB7QLEFsaf/Mo8O8M= Subject key identifier: 24:6C:31:0F:BA:8C:42:55:A6:CE:6B:6B:0E:5F:C7:B1:2D:0E:58:C6 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 23 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/JGwxD7qMQlWmzmtrDl_HsS0OWMY.roa Signing time: Wed 10 Jan 2024 01:07:02 +0000 ROA not before: Wed 10 Jan 2024 01:07:02 +0000 ROA not after: Sat 14 Dec 2024 01:30:03 +0000 asID: 2514 IP address blocks: 160.248.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 05:56:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Jan 10 01:07:02 2024 GMT Not After : Dec 14 01:30:03 2024 GMT Subject: CN=246C310FBA8C4255A6CE6B6B0E5FC7B12D0E58C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:35:9c:8f:29:73:e8:4d:b1:66:99:e8:e0:f1: b2:d4:df:94:3b:56:6d:9e:a7:99:b7:b9:06:af:e6: 86:6c:40:39:29:8f:ac:2b:16:af:34:7c:87:4e:72: c9:96:d4:30:03:68:4d:d1:6c:ab:15:32:39:12:b4: 68:e7:65:a4:ef:04:6d:4b:83:9e:0b:ca:8f:47:e9: b3:c8:c0:a5:ea:b7:75:0f:a2:6c:1e:4e:c3:dc:18: a8:4b:f9:1d:fa:e5:ce:db:87:67:ed:b1:66:0c:b0: bd:3c:8a:de:d5:b8:b5:de:e9:5f:ea:ae:e7:a7:a3: 34:d7:3e:a6:83:d3:32:3d:80:43:96:c3:5b:85:5f: 41:b9:d6:7c:d8:32:09:9d:5c:4b:b6:5b:00:2c:4d: 37:c7:d6:3c:85:6d:c1:15:94:7f:cf:40:3c:55:14: 95:47:71:10:3d:b2:6e:ec:82:bf:e7:49:48:89:d9: 71:1d:c5:bf:e6:a0:4f:e0:89:36:1c:91:ba:ad:b4: 1f:d8:f7:15:47:59:b0:e5:db:27:7b:ae:e9:e4:b5: 79:c5:9c:26:b7:52:cf:d9:01:69:43:a8:b5:5a:9f: 7b:ca:0e:30:28:09:30:89:6b:25:86:b0:eb:73:45: 49:d8:f1:10:44:fe:b8:4b:67:b8:19:e1:d8:b9:c1: 2c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:6C:31:0F:BA:8C:42:55:A6:CE:6B:6B:0E:5F:C7:B1:2D:0E:58:C6 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/JGwxD7qMQlWmzmtrDl_HsS0OWMY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.248.0.0/21 Signature Algorithm: sha256WithRSAEncryption 79:fb:84:26:ad:57:8f:d2:97:88:94:69:31:9c:4c:08:3f:1e: a3:4a:5e:5c:a6:a4:43:75:6f:44:c2:94:06:19:e1:01:2e:ac: 7a:26:63:3e:5b:df:48:39:d1:d5:1b:c5:8a:2b:78:2a:2c:86: 21:72:a4:84:73:89:4a:13:1f:5b:43:86:ed:5c:8d:2a:e3:ec: 12:d2:5d:e4:20:0f:51:77:61:f9:f5:a4:0f:ea:5b:09:7e:4e: 7f:05:1c:87:62:c6:c0:e8:45:01:36:93:2b:11:30:b9:46:51: 18:e9:b2:36:39:87:01:f2:e9:31:7b:17:15:01:99:94:6c:04: 65:b7:c9:b2:db:6c:8b:37:b3:4b:21:95:24:84:c9:92:5d:e4: 0d:ed:6a:b4:c6:53:52:dc:bb:e3:a0:d9:73:70:52:8e:97:be: 60:a5:8b:fa:91:38:bd:b3:3d:3e:bd:c4:0a:0d:8a:7f:34:c1: b4:d5:78:90:b1:13:76:04:7f:55:d3:0f:c1:e1:61:68:64:3d: 87:f2:74:d3:58:b9:fe:4f:c0:80:30:7f:a9:70:91:a9:16:1d: 6c:77:e0:c7:68:cf:a3:04:c4:2d:a1:d1:27:a8:26:33:c3:65: cf:56:c5:4c:85:21:a9:32:16:5a:ea:8e:12:b5:75:0d:f5:e0: eb:fe:6f:82 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBIzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMTQw MEFCODlCNkQ3MkY3REI0MjRGNEFBQThDQ0ZGNjQzOEQzRDRBMB4XDTI0MDExMDAx MDcwMloXDTI0MTIxNDAxMzAwM1owMzExMC8GA1UEAxMoMjQ2QzMxMEZCQThDNDI1 NUE2Q0U2QjZCMEU1RkM3QjEyRDBFNThDNjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALI1nI8pc+hNsWaZ6ODxstTflDtWbZ6nmbe5Bq/mhmxAOSmPrCsW rzR8h05yyZbUMANoTdFsqxUyORK0aOdlpO8EbUuDngvKj0fps8jApeq3dQ+ibB5O w9wYqEv5HfrlztuHZ+2xZgywvTyK3tW4td7pX+qu56ejNNc+poPTMj2AQ5bDW4Vf QbnWfNgyCZ1cS7ZbACxNN8fWPIVtwRWUf89APFUUlUdxED2ybuyCv+dJSInZcR3F v+agT+CJNhyRuq20H9j3FUdZsOXbJ3uu6eS1ecWcJrdSz9kBaUOotVqfe8oOMCgJ MIlrJYaw63NFSdjxEET+uEtnuBnh2LnBLBECAwEAAaOCAiIwggIeMB0GA1UdDgQW BBQkbDEPuoxCVabOa2sOX8exLQ5YxjAfBgNVHSMEGDAWgBTRQAq4m21y99tCT0qq jM/2Q409SjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjkvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09OUFVvLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09O UFVvLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzI5L0pHd3hEN3FNUWxXbXptdHJEbF9Ic1MwT1dNWS5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAOg+AAwDQYJKoZIhvcNAQELBQADggEBAHn7hCatV4/Sl4iUaTGcTAg/HqNKXlym pEN1b0TClAYZ4QEurHomYz5b30g50dUbxYoreCoshiFypIRziUoTH1tDhu1cjSrj 7BLSXeQgD1F3Yfn1pA/qWwl+Tn8FHIdixsDoRQE2kysRMLlGURjpsjY5hwHy6TF7 FxUBmZRsBGW3ybLbbIs3s0shlSSEyZJd5A3tarTGU1Lcu+Og2XNwUo6XvmCli/qR OL2zPT69xAoNin80wbTVeJCxE3YEf1XTD8HhYWhkPYfydNNYuf5PwIAwf6lwkakW HWx34Mdoz6MExC2h0SeoJjPDZc9WxUyFIakyFlrqjhK1dQ314Ov+b4I= -----END CERTIFICATE-----Generated at Thu Jun 6 15:06:33 2024 by rpki-client on console-ams.rpki-client.org