$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/jodCNRCxLDL4Ffc1-CUiZWhRlSI.roa File: jodCNRCxLDL4Ffc1-CUiZWhRlSI.roa (raw, json) Hash identifier: WduSGCf3D6gtbMA7IpdprZ3JpkyPWuacob1t89ri+tc= Subject key identifier: 8E:87:42:35:10:B1:2C:32:F8:15:F7:35:F8:25:22:65:68:51:95:22 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 15 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/jodCNRCxLDL4Ffc1-CUiZWhRlSI.roa Signing time: Wed 06 Dec 2023 01:48:31 +0000 ROA not before: Wed 06 Dec 2023 01:48:31 +0000 ROA not after: Thu 14 Nov 2024 01:30:03 +0000 asID: 2514 IP address blocks: 128.28.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Dec 6 01:48:31 2023 GMT Not After : Nov 14 01:30:03 2024 GMT Subject: CN=8E87423510B12C32F815F735F825226568519522 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:4b:55:39:2e:29:48:52:5d:cf:2c:95:6c:3b: e5:81:fd:40:d0:01:0a:7c:c3:b7:12:90:c0:64:54: 78:8f:b3:9c:90:0d:9d:26:f9:10:eb:df:e2:38:8b: 08:f8:0e:53:15:a1:93:b8:5f:cd:f6:41:89:c3:cf: 62:b2:b7:f3:37:95:66:4b:88:b7:10:47:18:1a:12: 50:77:30:c4:aa:d0:8b:b4:b8:8d:26:ab:9c:b7:c7: 24:d0:10:95:41:7f:9e:23:59:af:06:90:d0:80:a8: 8f:8c:96:b4:c4:45:0a:1b:4e:42:ba:7f:5e:4a:e2: ab:44:39:8f:b5:59:4b:3c:3d:4e:94:a6:c9:c1:83: bb:3f:8a:4c:30:07:39:e5:ae:93:ae:45:f9:a1:13: d7:22:2e:55:1b:88:c5:08:72:43:8a:d7:00:64:6f: f7:cb:bc:cd:09:0c:fd:ff:f2:5e:a5:29:6a:98:fb: 00:b3:26:a4:19:7a:6c:93:05:eb:37:82:05:07:a3: e9:ea:f7:20:04:d5:11:ae:35:7e:5c:35:2b:c8:8f: a0:ea:af:43:c0:7f:70:09:03:d0:f4:87:3c:8a:ae: e9:40:3f:cf:2f:89:8a:6b:3a:44:3b:e5:52:b7:d9: 20:b7:9e:ee:75:b3:58:40:22:a9:84:8e:77:38:61: 47:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:87:42:35:10:B1:2C:32:F8:15:F7:35:F8:25:22:65:68:51:95:22 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/jodCNRCxLDL4Ffc1-CUiZWhRlSI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 128.28.0.0/16 Signature Algorithm: sha256WithRSAEncryption a6:5f:59:71:84:a2:f6:1a:0b:17:d7:3b:c0:5b:30:85:3b:3e: 01:e7:04:77:a3:fd:00:f8:60:6f:77:53:61:30:2f:03:38:e1: 04:2c:09:f5:80:e0:fd:c3:c9:81:e3:a0:1a:7c:3e:85:56:dc: 12:bb:0e:fe:ca:a3:ef:32:c8:00:71:a0:45:6b:eb:4a:96:fe: af:73:47:16:f6:1f:63:e3:df:11:96:0a:b0:0b:3a:73:83:91: 9c:65:ad:62:4d:2c:c7:ba:f0:7a:c1:9b:f6:e1:fc:e8:35:97: df:7f:1a:17:6b:3a:47:ef:6c:d7:6a:33:58:df:89:57:51:ef: bd:00:63:8d:c0:11:9a:1b:5d:e2:17:45:bc:24:30:e1:ef:c5: 71:8b:84:2b:be:d1:2c:c0:f7:b3:02:c0:51:e8:13:6b:0d:9f: 75:fb:e2:70:51:32:c3:33:7c:70:07:2d:ee:eb:2f:9f:75:c3: e5:5c:f1:fb:71:1e:56:54:54:57:a0:86:2d:a9:00:5c:54:67: be:78:dd:89:21:fc:ed:4e:6e:76:d1:fc:b5:37:12:fb:34:89: 98:37:b7:b7:22:48:3a:a7:d7:48:b4:9f:d2:d5:4a:56:84:72: 2f:ed:b9:3a:2c:78:af:a4:58:7b:31:fd:ff:0f:dd:fd:f1:4e: e9:81:99:bf -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgIBFTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMTQw MEFCODlCNkQ3MkY3REI0MjRGNEFBQThDQ0ZGNjQzOEQzRDRBMB4XDTIzMTIwNjAx NDgzMVoXDTI0MTExNDAxMzAwM1owMzExMC8GA1UEAxMoOEU4NzQyMzUxMEIxMkMz MkY4MTVGNzM1RjgyNTIyNjU2ODUxOTUyMjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJhLVTkuKUhSXc8slWw75YH9QNABCnzDtxKQwGRUeI+znJANnSb5 EOvf4jiLCPgOUxWhk7hfzfZBicPPYrK38zeVZkuItxBHGBoSUHcwxKrQi7S4jSar nLfHJNAQlUF/niNZrwaQ0ICoj4yWtMRFChtOQrp/Xkriq0Q5j7VZSzw9TpSmycGD uz+KTDAHOeWuk65F+aET1yIuVRuIxQhyQ4rXAGRv98u8zQkM/f/yXqUpapj7ALMm pBl6bJMF6zeCBQej6er3IATVEa41flw1K8iPoOqvQ8B/cAkD0PSHPIqu6UA/zy+J ims6RDvlUrfZILee7nWzWEAiqYSOdzhhR2MCAwEAAaOCAiEwggIdMB0GA1UdDgQW BBSOh0I1ELEsMvgV9zX4JSJlaFGVIjAfBgNVHSMEGDAWgBTRQAq4m21y99tCT0qq jM/2Q409SjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjkvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09OUFVvLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09O UFVvLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzI5L2pvZENOUkN4TERMNEZmYzEtQ1VpWldoUmxTSS5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD AwCAHDANBgkqhkiG9w0BAQsFAAOCAQEApl9ZcYSi9hoLF9c7wFswhTs+AecEd6P9 APhgb3dTYTAvAzjhBCwJ9YDg/cPJgeOgGnw+hVbcErsO/sqj7zLIAHGgRWvrSpb+ r3NHFvYfY+PfEZYKsAs6c4ORnGWtYk0sx7rwesGb9uH86DWX338aF2s6R+9s12oz WN+JV1HvvQBjjcARmhtd4hdFvCQw4e/FcYuEK77RLMD3swLAUegTaw2fdfvicFEy wzN8cAct7usvn3XD5Vzx+3EeVlRUV6CGLakAXFRnvnjdiSH87U5udtH8tTcS+zSJ mDe3tyJIOqfXSLSf0tVKVoRyL+25Oix4r6RYezH9/w/d/fFO6YGZvw== -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:44 2024 by rpki-client on console-fra.rpki-client.org