$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/1i7pI1yOiNT2ciAAuosbMJ3dmuQ.roa File: 1i7pI1yOiNT2ciAAuosbMJ3dmuQ.roa (raw, json) Hash identifier: Wwy33zfXq0S+fK47sgFDygFo1Apk0H6Mi/Qpz9CksoE= Subject key identifier: D6:2E:E9:23:5C:8E:88:D4:F6:72:20:00:BA:8B:1B:30:9D:DD:9A:E4 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0218 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/1i7pI1yOiNT2ciAAuosbMJ3dmuQ.roa Signing time: Fri 31 May 2024 01:29:18 +0000 ROA not before: Fri 31 May 2024 01:29:18 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 10013 IP address blocks: 153.120.212.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 536 (0x218) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 31 01:29:18 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=D62EE9235C8E88D4F6722000BA8B1B309DDD9AE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:0d:a9:a0:9d:f2:8f:4f:e3:60:b4:b5:ca:25: 08:fc:0b:4d:26:3f:cb:c2:85:1b:db:70:24:38:b2: 11:04:2e:3d:ba:33:6f:eb:26:a5:09:cb:1b:8d:a1: fd:b8:04:e7:92:02:9a:a6:64:af:95:c6:4e:81:93: 68:ae:fa:82:ff:fd:45:ca:1e:58:3d:af:f2:ec:b4: 71:8b:b8:66:0c:80:4d:bf:45:3b:4f:39:6f:ab:90: 32:78:dd:8e:15:7a:33:62:81:06:e0:45:a5:a2:d4: 86:d4:0d:f3:10:69:49:10:59:f8:42:fe:80:1e:e1: e1:99:02:78:31:68:72:5d:3e:b9:fb:9c:67:98:dc: 2b:41:1f:b2:11:67:9d:09:bd:e4:05:99:5a:40:2d: cc:e4:a1:61:cf:80:ca:66:12:02:f6:85:fa:f0:fd: 6f:99:24:17:ca:a2:6f:4e:ea:dc:a1:dd:26:e8:92: 42:44:80:97:94:0f:b5:b6:42:ce:66:35:70:68:e2: 1a:1e:bc:10:e6:cd:c6:c9:09:4e:81:3d:19:42:0a: 4a:9a:48:39:90:6d:08:df:7e:2b:b2:d9:34:ab:3b: 29:60:b9:24:d6:9e:57:92:7f:aa:25:9c:89:4a:9f: c4:f3:08:a6:25:1e:23:1b:71:c9:75:a8:ac:6e:40: 34:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:2E:E9:23:5C:8E:88:D4:F6:72:20:00:BA:8B:1B:30:9D:DD:9A:E4 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/1i7pI1yOiNT2ciAAuosbMJ3dmuQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 153.120.212.0/22 Signature Algorithm: sha256WithRSAEncryption 78:00:73:fb:ab:e4:70:9e:fc:cb:8c:7c:0e:9b:ef:9c:08:67: 52:94:22:39:15:b4:16:f2:2c:28:a2:e7:27:2a:82:38:a0:1b: ba:96:29:41:88:0d:88:a1:2f:d4:a1:49:a2:50:2f:bc:46:74: ac:48:3d:89:3a:18:60:2c:c1:80:ea:eb:8b:75:f4:ff:8b:e4: b8:41:2f:7d:77:e7:1e:d6:8e:97:42:7d:d1:6e:83:dd:89:e1: 26:25:b3:12:b1:8e:79:2b:9f:a3:63:bf:ee:00:0d:a8:f3:14: 4b:a5:d8:b0:be:cd:5f:5e:c6:19:d5:c3:5c:9f:3e:81:e0:29: 09:f0:05:3e:ea:a4:96:3b:a7:7d:47:7b:ac:a8:ae:e6:eb:f4: 07:dc:db:82:37:d3:1a:22:26:20:1e:d8:d5:8b:e5:f0:c3:87: 76:df:6d:09:36:d3:c1:a4:5f:b7:db:4c:b3:69:e7:19:69:1c: 95:53:75:f8:34:c1:3c:82:23:49:b3:ea:7f:b6:00:b1:3c:23: ad:6f:9a:cb:a1:9f:dd:1d:1a:97:7d:96:f5:bd:d7:b1:7d:de: 42:f8:dc:40:cf:a2:e5:7b:2a:93:dd:74:24:e6:a4:a7:a4:f8: 11:a7:e2:74:e7:d8:6a:90:1f:68:a5:51:b2:15:a5:3d:38:f1: a5:c6:9a:c4 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAhgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNDA1MzEw MTI5MThaFw0yNTA1MTUwMTMwMDNaMDMxMTAvBgNVBAMTKEQ2MkVFOTIzNUM4RTg4 RDRGNjcyMjAwMEJBOEIxQjMwOURERDlBRTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpDamgnfKPT+NgtLXKJQj8C00mP8vChRvbcCQ4shEELj26M2/r JqUJyxuNof24BOeSApqmZK+Vxk6Bk2iu+oL//UXKHlg9r/LstHGLuGYMgE2/RTtP OW+rkDJ43Y4VejNigQbgRaWi1IbUDfMQaUkQWfhC/oAe4eGZAngxaHJdPrn7nGeY 3CtBH7IRZ50JveQFmVpALczkoWHPgMpmEgL2hfrw/W+ZJBfKom9O6tyh3SbokkJE gJeUD7W2Qs5mNXBo4hoevBDmzcbJCU6BPRlCCkqaSDmQbQjffiuy2TSrOylguSTW nleSf6olnIlKn8TzCKYlHiMbccl1qKxuQDTJAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU1i7pI1yOiNT2ciAAuosbMJ3dmuQwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0LzFpN3BJMXlPaU5UMmNpQUF1b3NiTUozZG11US5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAKZeNQwDQYJKoZIhvcNAQELBQADggEBAHgAc/ur5HCe/MuMfA6b75wIZ1KU IjkVtBbyLCii5ycqgjigG7qWKUGIDYihL9ShSaJQL7xGdKxIPYk6GGAswYDq64t1 9P+L5LhBL3135x7WjpdCfdFug92J4SYlsxKxjnkrn6Njv+4ADajzFEul2LC+zV9e xhnVw1yfPoHgKQnwBT7qpJY7p31He6yorubr9Afc24I30xoiJiAe2NWL5fDDh3bf bQk208GkX7fbTLNp5xlpHJVTdfg0wTyCI0mz6n+2ALE8I61vmsuhn90dGpd9lvW9 17F93kL43EDPouV7KpPddCTmpKek+BGn4nTn2GqQH2ilUbIVpT048aXGmsQ= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:44 2024 by rpki-client on console-ams.rpki-client.org