$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/VCryIJZmqLin_AmJcoQ0cZ2d6wQ.roa File: VCryIJZmqLin_AmJcoQ0cZ2d6wQ.roa (raw, json) Hash identifier: saeZqOyj5N6D878/Pqfk4IJNSy+upEhtuzL8l7cPYwo= Subject key identifier: 54:2A:F2:20:96:66:A8:B8:A7:FC:09:89:72:84:34:71:9D:9D:EB:04 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0312 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/VCryIJZmqLin_AmJcoQ0cZ2d6wQ.roa Signing time: Mon 21 Oct 2024 01:12:49 +0000 ROA not before: Mon 21 Oct 2024 01:12:49 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 10013 IP address blocks: 153.120.218.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 786 (0x312) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Oct 21 01:12:49 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=542AF2209666A8B8A7FC0989728434719D9DEB04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c3:af:7d:2f:f2:fc:2f:37:c5:43:40:ff:b0: 29:4f:7b:41:34:83:c3:74:f1:04:32:3a:7e:1d:d3: 4f:04:29:52:e0:70:34:28:26:a1:f7:f4:88:f6:1b: d1:2f:ea:1e:90:d1:e7:14:f3:42:d2:64:e4:a1:50: 2f:df:13:53:4f:7d:47:f7:8a:df:5d:e4:ec:f4:fe: 17:67:92:f3:61:35:77:52:6d:dd:9c:65:cc:8b:92: 16:db:21:bc:f7:e9:f7:e1:b2:e1:db:1a:f3:64:29: 06:1f:9d:5f:44:8e:ef:2d:45:d5:45:4f:f6:6b:aa: 86:cd:da:93:27:a5:95:eb:cd:2a:76:af:eb:57:0d: 05:22:13:de:bf:89:60:15:ae:28:af:73:7a:00:b9: bb:ce:8b:7f:b7:d7:1e:6a:ad:bb:8f:44:ee:8c:96: 2b:fd:c9:5c:66:0a:d8:c0:36:64:09:31:77:d3:ab: 8d:a1:9b:3f:fb:8b:63:d7:03:4a:b9:9f:2d:08:99: 2e:3e:f1:96:a2:de:d9:56:4e:cc:d2:f5:3f:f6:f0: 5e:f8:f1:ba:30:5f:2d:84:e9:df:21:e1:c3:2f:8d: fa:f7:1a:95:88:ea:f9:e6:d1:73:ba:21:43:8a:33: 61:5c:9b:ab:fc:bc:44:55:5e:89:d7:d9:b8:f1:c6: 81:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:2A:F2:20:96:66:A8:B8:A7:FC:09:89:72:84:34:71:9D:9D:EB:04 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/VCryIJZmqLin_AmJcoQ0cZ2d6wQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 153.120.218.0/23 Signature Algorithm: sha256WithRSAEncryption 04:8c:33:d4:62:04:31:66:75:87:1c:10:92:30:57:f5:a4:34: 79:c5:b6:03:72:dd:cc:9c:19:03:c7:fb:28:38:be:a9:09:69: c2:32:b2:de:4e:ad:c1:d6:4f:fb:86:e4:9f:54:8e:4b:c3:4b: fa:5f:17:a2:26:d0:5c:e1:e6:8a:f1:d8:19:41:31:1d:3c:1e: ff:e5:57:25:60:a1:1e:fc:67:1e:c2:65:08:13:6a:0f:3b:47: 30:6d:fc:d7:cf:e3:57:ea:0d:ef:22:69:99:2f:50:99:33:e2: 5c:fa:77:24:a3:74:fd:9b:61:78:52:97:92:4c:d8:fd:d2:ae: 8e:c9:17:14:eb:42:50:2b:12:91:4d:32:4b:c3:3e:fe:71:20: 09:a7:e0:e6:58:b7:70:28:d5:b8:74:0c:a6:3d:9b:d2:be:74: 01:a0:8d:95:3d:48:2f:36:f2:f3:0e:d8:af:79:31:82:fc:a7: f4:5e:d6:ab:6b:d3:95:d8:61:4b:1e:d8:e2:d4:44:62:7d:20: 08:23:b5:09:5d:38:26:df:3a:18:d6:f1:c7:15:fd:9a:2e:8a: 66:b2:3c:81:25:e6:d2:4d:53:6e:b2:95:d0:a7:83:e4:8d:b1: df:8c:c9:e6:88:36:e8:72:84:75:4d:c1:f6:a1:d8:2c:a6:50: 9d:56:e3:bd -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAxIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNDEwMjEw MTEyNDlaFw0yNTEwMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDU0MkFGMjIwOTY2NkE4 QjhBN0ZDMDk4OTcyODQzNDcxOUQ5REVCMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWw699L/L8LzfFQ0D/sClPe0E0g8N08QQyOn4d008EKVLgcDQo JqH39Ij2G9Ev6h6Q0ecU80LSZOShUC/fE1NPfUf3it9d5Oz0/hdnkvNhNXdSbd2c ZcyLkhbbIbz36ffhsuHbGvNkKQYfnV9Eju8tRdVFT/ZrqobN2pMnpZXrzSp2r+tX DQUiE96/iWAVriivc3oAubvOi3+31x5qrbuPRO6Mliv9yVxmCtjANmQJMXfTq42h mz/7i2PXA0q5ny0ImS4+8Zai3tlWTszS9T/28F748bowXy2E6d8h4cMvjfr3GpWI 6vnm0XO6IUOKM2Fcm6v8vERVXonX2bjxxoG/AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUVCryIJZmqLin/AmJcoQ0cZ2d6wQwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L1ZDcnlJSlptcUxpbl9BbUpjb1EwY1oyZDZ3US5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAGZeNowDQYJKoZIhvcNAQELBQADggEBAASMM9RiBDFmdYccEJIwV/WkNHnF tgNy3cycGQPH+yg4vqkJacIyst5OrcHWT/uG5J9UjkvDS/pfF6Im0Fzh5orx2BlB MR08Hv/lVyVgoR78Zx7CZQgTag87RzBt/NfP41fqDe8iaZkvUJkz4lz6dySjdP2b YXhSl5JM2P3Sro7JFxTrQlArEpFNMkvDPv5xIAmn4OZYt3Ao1bh0DKY9m9K+dAGg jZU9SC828vMO2K95MYL8p/Re1qtr05XYYUse2OLURGJ9IAgjtQldOCbfOhjW8ccV /ZouimayPIEl5tJNU26yldCng+SNsd+MyeaINuhyhHVNwfah2CymUJ1W470= -----END CERTIFICATE-----Generated at Mon Nov 25 23:54:44 2024 by rpki-client on console-ams.rpki-client.org