$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/VBrfnmNCw66WD9Ni0rKrEnJg-yk.roa File: VBrfnmNCw66WD9Ni0rKrEnJg-yk.roa (raw, json) Hash identifier: 3wb7n73ShfaK+2fl530d8/oAP2DN7g4TSh3nJBZTQL8= Subject key identifier: 54:1A:DF:9E:63:42:C3:AE:96:0F:D3:62:D2:B2:AB:12:72:60:FB:29 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 026D Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/VBrfnmNCw66WD9Ni0rKrEnJg-yk.roa Signing time: Fri 31 May 2024 01:37:42 +0000 ROA not before: Fri 31 May 2024 01:37:42 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 10013 IP address blocks: 61.44.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 621 (0x26d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: May 31 01:37:42 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=541ADF9E6342C3AE960FD362D2B2AB127260FB29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:3c:ab:9e:d8:60:49:22:94:b0:af:33:f8:13: 12:74:06:7b:aa:a3:33:e4:c6:f3:12:34:d4:52:f5: b6:99:ce:eb:bf:ec:b0:51:e1:c2:42:01:30:96:e8: e9:44:0f:ad:a6:6f:70:b9:2b:8f:ee:46:3a:0a:3b: 03:f4:63:6c:82:fa:22:59:5c:cc:3e:61:eb:c8:2b: b8:9c:91:d2:c4:ad:4e:38:53:55:91:1b:91:98:ed: 60:19:7a:d8:d1:30:df:82:38:94:4f:c4:63:18:8a: 9a:dc:7e:68:47:29:d9:48:17:76:29:0e:94:c1:a9: 0a:65:9d:1a:cf:56:21:98:0c:71:6d:8a:9a:14:fa: 7f:4c:f3:5d:de:f2:74:3d:38:a5:dc:32:58:7c:2c: 78:b6:ec:a5:31:48:61:80:68:90:7b:0d:c2:46:cf: 78:f3:f3:14:ae:ee:dd:f5:83:0f:41:bf:7b:c9:d2: 7c:8d:02:9e:d8:e6:94:07:2f:5e:c3:20:de:79:e7: e6:9a:c4:be:17:be:dd:bd:41:08:92:7f:49:d5:b9: f9:d4:4d:d5:72:6a:9b:95:3d:4f:2e:84:c0:13:a7: 3a:30:63:3a:cc:52:62:62:cb:05:41:47:42:b2:a1: 83:c2:14:e7:13:0c:1f:43:47:64:2d:cc:8b:5b:4a: b6:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:1A:DF:9E:63:42:C3:AE:96:0F:D3:62:D2:B2:AB:12:72:60:FB:29 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/VBrfnmNCw66WD9Ni0rKrEnJg-yk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.44.208.0/20 Signature Algorithm: sha256WithRSAEncryption 01:9a:1d:f9:f7:71:4a:0a:99:68:f6:5c:ce:67:15:18:fd:2d: 18:af:6a:75:49:57:97:db:02:4d:f4:b4:92:2d:6b:be:0c:c0: 1c:f9:a3:ff:71:fe:6b:a4:45:34:3f:5e:3c:ed:e9:55:74:49: ba:dd:4d:c1:c4:bf:71:04:e8:a4:9f:40:ec:5f:b9:b8:31:02: 75:b9:98:61:aa:4a:37:0b:d8:47:e9:55:a1:ab:a4:80:c2:3a: 1b:10:30:41:9a:3b:bb:b9:f0:1a:ac:eb:aa:72:d7:ab:9a:32: e8:94:9c:d6:6e:c7:b7:ec:19:a6:ba:61:31:0e:c1:2f:c8:61: 55:f1:0f:95:77:14:7e:3a:ae:2d:a5:fa:b1:d3:db:cb:24:7c: a8:01:b2:92:5f:a0:fb:a4:a4:10:26:d3:87:05:11:14:66:35: 1d:21:ba:93:76:3a:10:9d:34:b7:6f:59:be:80:7d:ef:58:09: 6c:ab:45:91:f3:38:11:ff:03:66:ac:f4:09:de:c4:d2:4e:43: 4a:9f:ea:0a:1a:e9:2d:05:94:18:91:f7:51:40:08:ee:94:df: 19:a8:68:19:0f:40:d0:c7:35:3f:45:b9:9b:c0:92:05:26:fd: 17:b9:94:c6:ff:84:34:71:d1:c9:f9:d2:cd:a0:ee:b5:cc:22: 0c:c9:ba:a0 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAm0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNDA1MzEw MTM3NDJaFw0yNTA1MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDU0MUFERjlFNjM0MkMz QUU5NjBGRDM2MkQyQjJBQjEyNzI2MEZCMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyPKue2GBJIpSwrzP4ExJ0BnuqozPkxvMSNNRS9baZzuu/7LBR 4cJCATCW6OlED62mb3C5K4/uRjoKOwP0Y2yC+iJZXMw+YevIK7ickdLErU44U1WR G5GY7WAZetjRMN+COJRPxGMYiprcfmhHKdlIF3YpDpTBqQplnRrPViGYDHFtipoU +n9M813e8nQ9OKXcMlh8LHi27KUxSGGAaJB7DcJGz3jz8xSu7t31gw9Bv3vJ0nyN Ap7Y5pQHL17DIN555+aaxL4Xvt29QQiSf0nVufnUTdVyapuVPU8uhMATpzowYzrM UmJiywVBR0KyoYPCFOcTDB9DR2QtzItbSraVAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUVBrfnmNCw66WD9Ni0rKrEnJg+ykwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L1ZCcmZubU5DdzY2V0Q5TmkwcktyRW5KZy15ay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQ9LNAwDQYJKoZIhvcNAQELBQADggEBAAGaHfn3cUoKmWj2XM5nFRj9LRiv anVJV5fbAk30tJIta74MwBz5o/9x/mukRTQ/Xjzt6VV0SbrdTcHEv3EE6KSfQOxf ubgxAnW5mGGqSjcL2EfpVaGrpIDCOhsQMEGaO7u58Bqs66py16uaMuiUnNZux7fs Gaa6YTEOwS/IYVXxD5V3FH46ri2l+rHT28skfKgBspJfoPukpBAm04cFERRmNR0h upN2OhCdNLdvWb6Afe9YCWyrRZHzOBH/A2as9AnexNJOQ0qf6goa6S0FlBiR91FA CO6U3xmoaBkPQNDHNT9FuZvAkgUm/Re5lMb/hDRx0cn50s2g7rXMIgzJuqA= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:44 2024 by rpki-client on console-ams.rpki-client.org