$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/kLXclSTMid7ZfSvz5FZ4ZTqjtaQ.roa File: kLXclSTMid7ZfSvz5FZ4ZTqjtaQ.roa (raw, json) Hash identifier: 14A6fzF1Eu63iqHZWWPmkWxvPHkVE62nxxy6yYJDPzY= Subject key identifier: 90:B5:DC:95:24:CC:89:DE:D9:7D:2B:F3:E4:56:78:65:3A:A3:B5:A4 Certificate issuer: /CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Certificate serial: 61 Authority key identifier: D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/kLXclSTMid7ZfSvz5FZ4ZTqjtaQ.roa Signing time: Thu 31 Oct 2024 01:28:45 +0000 ROA not before: Thu 31 Oct 2024 01:28:45 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 2514 IP address blocks: 128.28.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:32:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1400AB89B6D72F7DB424F4AAA8CCFF6438D3D4A Validity Not Before: Oct 31 01:28:45 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=90B5DC9524CC89DED97D2BF3E45678653AA3B5A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:77:4a:bd:7a:99:18:43:45:63:4f:c9:21:72: 52:c2:8b:44:86:d9:67:14:2f:04:7a:47:41:c4:f0: 2e:1d:4c:90:06:21:85:5a:99:9d:29:8e:0b:47:3e: 9a:f0:5e:0d:57:e9:fd:1c:61:9b:5a:ae:df:e8:12: f4:15:13:22:b7:04:92:64:80:a8:de:ad:60:75:b0: 1a:33:a2:8d:41:29:ca:ee:57:d5:4e:dd:8a:52:9b: c2:4b:e8:51:35:8f:2e:d1:4d:b3:6a:72:74:6c:ee: f4:42:51:3f:bd:42:ee:49:d5:32:59:a2:3d:d3:9a: cf:c2:ef:51:f8:71:0d:71:0f:7d:be:90:38:c8:e6: 58:62:c2:b8:f5:51:7d:b7:94:bd:b2:bf:af:bf:c6: 37:b3:8f:74:c7:3d:80:a5:d2:a1:78:4d:da:cc:f9: ec:b7:75:2c:20:bd:80:d2:7a:1c:19:aa:18:d9:ca: c0:8c:66:65:ff:e8:c7:87:aa:f1:dd:ee:0f:98:fb: bf:45:bd:91:27:3a:19:91:f7:36:cb:8a:f1:d3:04: 7b:23:2e:11:47:9a:19:be:f7:cb:e8:a2:f5:4a:71: ec:57:69:44:2b:b4:5c:ff:fc:c1:80:5a:d7:f2:9e: 89:d3:cd:d6:88:11:6f:9f:07:89:cb:67:e4:51:12: cb:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:B5:DC:95:24:CC:89:DE:D9:7D:2B:F3:E4:56:78:65:3A:A3:B5:A4 X509v3 Authority Key Identifier: keyid:D1:40:0A:B8:9B:6D:72:F7:DB:42:4F:4A:AA:8C:CF:F6:43:8D:3D:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/0UAKuJttcvfbQk9KqozP9kONPUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0UAKuJttcvfbQk9KqozP9kONPUo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/kLXclSTMid7ZfSvz5FZ4ZTqjtaQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 128.28.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8a:4d:c6:3d:64:3d:26:9e:c1:f6:bd:76:7a:28:25:c4:66:9c: 29:ee:0f:92:8b:34:f6:50:9c:01:58:bf:f2:c4:58:d1:d7:b7: e2:10:d2:cd:73:95:25:78:2a:0a:dc:b5:68:bd:a9:91:28:ac: bb:4a:9f:2c:66:47:08:d5:aa:30:b8:dd:3b:0a:69:72:2d:b5: 7f:70:c9:73:94:12:a3:d8:cf:1f:fd:fa:ec:5f:dc:4d:ff:64: 07:54:9b:6b:0c:17:c8:6d:80:89:16:17:32:47:61:a9:a3:4e: 18:fc:62:f8:24:2a:0a:60:f3:e4:cb:3a:bd:a6:45:19:f6:ea: b3:7a:45:f0:2a:76:25:39:17:0d:a7:39:2a:e1:b2:bb:1d:94: 43:3f:aa:3e:72:f9:90:30:fd:51:ba:08:e6:3e:98:e1:2b:05: c3:70:0e:d8:13:ae:cc:30:ea:9a:f3:48:f5:4b:d7:75:64:8b: 31:1b:3c:2c:35:1b:0a:b4:79:43:ab:d6:4b:10:08:08:e5:34: e1:59:12:78:89:49:3c:f7:5e:fb:35:99:94:78:57:9b:04:85: 89:99:87:66:33:61:29:b4:36:69:60:6d:c7:7b:8b:26:b1:07: 9f:e7:3e:cf:69:6c:0b:76:ed:dc:cc:55:1b:6d:82:31:f2:68: ee:6d:b5:81 -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgIBYTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMTQw MEFCODlCNkQ3MkY3REI0MjRGNEFBQThDQ0ZGNjQzOEQzRDRBMB4XDTI0MTAzMTAx Mjg0NVoXDTI1MTAxNTAxMzAwMlowMzExMC8GA1UEAxMoOTBCNURDOTUyNENDODlE RUQ5N0QyQkYzRTQ1Njc4NjUzQUEzQjVBNDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANd3Sr16mRhDRWNPySFyUsKLRIbZZxQvBHpHQcTwLh1MkAYhhVqZ nSmOC0c+mvBeDVfp/Rxhm1qu3+gS9BUTIrcEkmSAqN6tYHWwGjOijUEpyu5X1U7d ilKbwkvoUTWPLtFNs2pydGzu9EJRP71C7knVMlmiPdOaz8LvUfhxDXEPfb6QOMjm WGLCuPVRfbeUvbK/r7/GN7OPdMc9gKXSoXhN2sz57Ld1LCC9gNJ6HBmqGNnKwIxm Zf/ox4eq8d3uD5j7v0W9kSc6GZH3NsuK8dMEeyMuEUeaGb73y+ii9Upx7FdpRCu0 XP/8wYBa1/KeidPN1ogRb58Hictn5FESy6cCAwEAAaOCAiEwggIdMB0GA1UdDgQW BBSQtdyVJMyJ3tl9K/PkVnhlOqO1pDAfBgNVHSMEGDAWgBTRQAq4m21y99tCT0qq jM/2Q409SjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjkvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09OUFVvLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMFVBS3VKdHRjdmZiUWs5S3FvelA5a09O UFVvLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzI5L2tMWGNsU1RNaWQ3WmZTdno1Rlo0WlRxanRhUS5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD AwCAHDANBgkqhkiG9w0BAQsFAAOCAQEAik3GPWQ9Jp7B9r12eiglxGacKe4Pkos0 9lCcAVi/8sRY0de34hDSzXOVJXgqCty1aL2pkSisu0qfLGZHCNWqMLjdOwppci21 f3DJc5QSo9jPH/367F/cTf9kB1SbawwXyG2AiRYXMkdhqaNOGPxi+CQqCmDz5Ms6 vaZFGfbqs3pF8Cp2JTkXDac5KuGyux2UQz+qPnL5kDD9UboI5j6Y4SsFw3AO2BOu zDDqmvNI9UvXdWSLMRs8LDUbCrR5Q6vWSxAICOU04VkSeIlJPPde+zWZlHhXmwSF iZmHZjNhKbQ2aWBtx3uLJrEHn+c+z2lsC3bt3MxVG22CMfJo7m21gQ== -----END CERTIFICATE-----Generated at Fri Nov 22 15:23:57 2024 by rpki-client on console-fra.rpki-client.org