$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/393/CK4ESxRHN5ZNhVisApHcAXq1Z8A.roa File: CK4ESxRHN5ZNhVisApHcAXq1Z8A.roa (raw, json) Hash identifier: GHFik6STSHrPyhSh6q2TavNM1hrF3f3ZcKafWrUQfp4= Subject key identifier: 08:AE:04:4B:14:47:37:96:4D:85:58:AC:02:91:DC:01:7A:B5:67:C0 Certificate issuer: /CN=5D055B2DAAC48878CC9B1127A29CF11666920A23 Certificate serial: 59 Authority key identifier: 5D:05:5B:2D:AA:C4:88:78:CC:9B:11:27:A2:9C:F1:16:66:92:0A:23 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XQVbLarEiHjMmxEnopzxFmaSCiM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/CK4ESxRHN5ZNhVisApHcAXq1Z8A.roa Signing time: Thu 29 Feb 2024 01:31:37 +0000 ROA not before: Thu 29 Feb 2024 01:31:37 +0000 ROA not after: Fri 14 Feb 2025 01:30:03 +0000 asID: 9622 IP address blocks: 103.235.124.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/XQVbLarEiHjMmxEnopzxFmaSCiM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/XQVbLarEiHjMmxEnopzxFmaSCiM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XQVbLarEiHjMmxEnopzxFmaSCiM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D055B2DAAC48878CC9B1127A29CF11666920A23 Validity Not Before: Feb 29 01:31:37 2024 GMT Not After : Feb 14 01:30:03 2025 GMT Subject: CN=08AE044B144737964D8558AC0291DC017AB567C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0c:fe:70:63:e8:bb:71:29:b4:7f:73:f6:f2: c9:0c:9e:de:4e:33:b6:bc:6c:f4:3f:9c:e6:38:30: 42:5b:c3:9b:00:f0:a2:82:7b:2b:57:37:0a:65:c0: d3:8d:17:ee:4b:8f:53:42:55:84:d6:77:a4:4c:66: c1:06:07:a5:0f:fa:90:d4:3c:e0:e2:a0:e2:c4:e8: 6f:ad:00:8f:7f:9c:f3:56:fb:22:db:4c:24:38:8c: 3a:02:5e:87:e0:10:de:c4:62:20:45:53:b2:a0:28: 35:97:0a:27:60:cb:9f:4e:62:87:2b:3b:3b:59:8a: 06:bc:81:3d:7e:04:cb:21:6a:65:a5:86:de:da:34: 29:de:72:13:4e:b6:f7:69:0b:5d:44:82:b1:42:0d: 84:9e:bb:ca:17:e1:33:d8:99:dd:19:af:66:5b:52: af:f8:24:c8:23:45:c1:3e:fc:d5:c8:1a:e0:09:e4: 21:01:b6:b9:32:f5:ef:5a:da:c4:75:79:43:b3:88: d4:37:7f:4e:ee:9c:81:b9:bb:51:a1:cb:5a:5c:46: 04:ae:3b:d3:11:6c:c0:25:ed:e0:11:be:ee:a2:f9: bd:6a:22:f1:0a:7e:a5:36:33:e6:e1:a7:83:d4:63: dc:c6:a3:a5:9a:79:e3:37:a4:73:45:e3:1e:0e:63: fa:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:AE:04:4B:14:47:37:96:4D:85:58:AC:02:91:DC:01:7A:B5:67:C0 X509v3 Authority Key Identifier: keyid:5D:05:5B:2D:AA:C4:88:78:CC:9B:11:27:A2:9C:F1:16:66:92:0A:23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/XQVbLarEiHjMmxEnopzxFmaSCiM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XQVbLarEiHjMmxEnopzxFmaSCiM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/CK4ESxRHN5ZNhVisApHcAXq1Z8A.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.235.124.0/22 Signature Algorithm: sha256WithRSAEncryption a3:9f:7d:0d:7f:3d:44:90:74:95:dc:fe:9a:95:2f:a7:6a:bd: 32:5a:d8:6f:36:06:52:89:65:df:a0:20:cd:7b:73:9c:a5:27: a2:0a:15:b0:c4:ac:18:2a:96:fb:b0:01:4f:25:6d:74:7c:db: 88:9a:56:3f:ed:df:9a:7f:ee:2e:9c:ec:1f:e8:8b:fe:03:7e: 31:c2:d1:66:11:7e:7a:be:ec:bd:6d:3c:6f:f3:97:f3:5f:0c: f1:5a:4f:5e:3c:86:fb:fe:cc:d6:1f:a0:66:ce:ca:f9:3d:ce: a1:16:af:e3:43:4e:18:e4:5c:72:d6:5e:62:dc:d2:b4:88:72: 9f:e6:56:c3:08:ba:95:55:b6:d7:21:61:1f:ff:3d:ae:4e:7a: ad:66:e4:97:e4:e7:2b:70:d2:dd:c4:e8:2f:0b:2c:e3:5c:ba: 43:27:97:56:68:0b:6e:6c:a2:e5:8f:4b:8c:d5:81:0f:58:94: c3:5f:5d:9e:38:b0:80:5f:b9:98:fc:76:b0:8d:48:6a:52:4a: db:00:a9:c6:10:17:0e:4a:38:70:0c:22:e9:3e:78:26:d9:61: 05:0f:18:1c:23:3d:82:30:fa:be:37:0e:a0:73:50:6f:74:82: 1a:1c:7d:ad:5a:da:2b:23:86:18:17:f3:27:20:81:b7:34:48: dd:ce:0c:f3 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBWTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1RDA1 NUIyREFBQzQ4ODc4Q0M5QjExMjdBMjlDRjExNjY2OTIwQTIzMB4XDTI0MDIyOTAx MzEzN1oXDTI1MDIxNDAxMzAwM1owMzExMC8GA1UEAxMoMDhBRTA0NEIxNDQ3Mzc5 NjREODU1OEFDMDI5MURDMDE3QUI1NjdDMDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALsM/nBj6LtxKbR/c/byyQye3k4ztrxs9D+c5jgwQlvDmwDwooJ7 K1c3CmXA040X7kuPU0JVhNZ3pExmwQYHpQ/6kNQ84OKg4sTob60Aj3+c81b7IttM JDiMOgJeh+AQ3sRiIEVTsqAoNZcKJ2DLn05ihys7O1mKBryBPX4EyyFqZaWG3to0 Kd5yE06292kLXUSCsUINhJ67yhfhM9iZ3RmvZltSr/gkyCNFwT781cga4AnkIQG2 uTL171raxHV5Q7OI1Dd/Tu6cgbm7UaHLWlxGBK470xFswCXt4BG+7qL5vWoi8Qp+ pTYz5uGng9Rj3MajpZp54zekc0XjHg5j+qcCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQIrgRLFEc3lk2FWKwCkdwBerVnwDAfBgNVHSMEGDAWgBRdBVstqsSIeMybESei nPEWZpIKIzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzkzL1hRVmJMYXJFaUhqTW14RW5vcHp4Rm1hU0NpTS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1hRVmJMYXJFaUhqTW14RW5vcHp4Rm1h U0NpTS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8zOTMvQ0s0RVN4UkhONVpOaFZpc0FwSGNBWHExWjhBLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmfrfDANBgkqhkiG9w0BAQsFAAOCAQEAo599DX89RJB0ldz+mpUvp2q9MlrY bzYGUoll36AgzXtznKUnogoVsMSsGCqW+7ABTyVtdHzbiJpWP+3fmn/uLpzsH+iL /gN+McLRZhF+er7svW08b/OX818M8VpPXjyG+/7M1h+gZs7K+T3OoRav40NOGORc ctZeYtzStIhyn+ZWwwi6lVW21yFhH/89rk56rWbkl+TnK3DS3cToLwss41y6QyeX VmgLbmyi5Y9LjNWBD1iUw19dnjiwgF+5mPx2sI1IalJK2wCpxhAXDko4cAwi6T54 JtlhBQ8YHCM9gjD6vjcOoHNQb3SCGhx9rVraKyOGGBfzJyCBtzRI3c4M8w== -----END CERTIFICATE-----Generated at Mon Nov 25 23:54:43 2024 by rpki-client on console-ams.rpki-client.org