$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/OjkSvhvbLr7uHiQn6_nT1MQ3rAs.roa File: OjkSvhvbLr7uHiQn6_nT1MQ3rAs.roa (raw, json) Hash identifier: ZkIj4MOf4W8rBSqxOqGDC+nAgnyVh3KMK4nXRNVgo1k= Subject key identifier: 3A:39:12:BE:1B:DB:2E:BE:EE:1E:24:27:EB:F9:D3:D4:C4:37:AC:0B Certificate issuer: /CN=095A182FA18D458233284AA8DC88BD075E5D702D Certificate serial: 015E Authority key identifier: 09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/OjkSvhvbLr7uHiQn6_nT1MQ3rAs.roa Signing time: Thu 31 Oct 2024 01:30:56 +0000 ROA not before: Thu 31 Oct 2024 01:30:56 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 2527 IP address blocks: 202.223.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 350 (0x15e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=095A182FA18D458233284AA8DC88BD075E5D702D Validity Not Before: Oct 31 01:30:56 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=3A3912BE1BDB2EBEEE1E2427EBF9D3D4C437AC0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:46:a5:28:fd:f0:cb:f2:0b:d2:c3:44:71:f5: 48:bd:49:79:e3:a9:cb:78:a1:44:42:2d:37:57:dc: 0c:1b:5c:a8:14:5e:3a:07:06:88:11:f2:ad:d8:cf: be:03:e2:f6:43:f1:c0:57:9f:6c:15:19:e1:10:80: bf:16:45:df:0b:76:8c:c2:c8:ca:e9:71:e2:d4:f1: 88:2a:3d:10:9e:b6:12:63:45:99:45:9e:86:03:bd: f1:20:90:ac:47:e2:cd:81:13:90:be:fb:0a:bb:40: a1:b2:e3:4b:c4:65:58:d7:58:18:ad:0c:4a:b2:91: f9:65:67:fd:1f:d8:4a:4e:64:d4:1e:a1:7e:c0:47: c0:7f:37:bb:05:5d:6c:66:ff:a7:89:b3:d7:e6:2e: a0:4d:a6:63:9f:d6:0b:5c:4d:bf:66:3f:0c:cd:54: 65:5d:e5:41:4e:de:71:1e:6a:bc:42:e6:fb:f1:7b: 92:67:b5:40:f9:ae:54:7c:06:7a:43:70:03:4c:fc: 93:25:29:99:b6:48:aa:72:43:9d:75:05:aa:f1:76: dc:81:ce:3d:e6:09:4b:3d:1f:80:76:8b:ca:3e:9e: 23:64:4a:46:d8:a5:da:e6:c2:e3:1b:51:a9:f5:59: f1:e4:af:2e:8d:34:cc:dd:24:16:26:8e:52:bc:e4: 04:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:39:12:BE:1B:DB:2E:BE:EE:1E:24:27:EB:F9:D3:D4:C4:37:AC:0B X509v3 Authority Key Identifier: keyid:09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/OjkSvhvbLr7uHiQn6_nT1MQ3rAs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.223.64.0/18 Signature Algorithm: sha256WithRSAEncryption 54:07:2c:64:56:c1:02:74:93:31:9c:35:6d:04:e1:34:e3:f4: 53:72:8a:5a:4b:48:70:f8:4f:b4:01:2f:5f:22:9a:3e:0c:1b: da:d2:5f:d3:c7:cb:3a:73:db:cf:a4:d5:a5:6a:a1:94:5b:a1: a7:27:51:69:2e:24:62:d1:53:50:95:f1:c5:69:78:f3:46:34: f7:db:c6:f8:58:68:c6:ad:e6:30:ae:81:59:c5:0c:78:5a:fd: f7:89:cb:a8:19:f4:c7:47:3b:40:ab:0b:22:1d:03:cf:c8:b4: 78:56:f6:e4:86:78:56:a4:2f:7e:84:c6:3a:36:87:74:fb:d6: 6e:51:b5:c9:a0:e1:fb:4d:4b:1d:b7:e1:31:f5:38:9d:eb:b2: c5:55:7d:8d:d1:64:13:a4:14:6d:82:f7:65:23:c6:a4:1e:56: 1c:46:2a:cd:46:86:13:3e:3d:13:b4:ac:95:a0:a3:98:be:9a: 5f:7d:cf:75:af:ca:b5:86:f5:a8:29:c5:d5:59:d5:f4:28:ca: d3:91:d0:c7:44:f5:04:3f:2e:4d:fa:6c:3a:2f:97:21:86:97: c3:6f:c2:9a:58:93:0a:47:dd:a9:ac:9b:75:c2:2d:a1:43:0d: 14:52:87:95:5d:77:2a:44:29:ef:03:ad:77:90:91:86:a3:ff: a1:fb:df:65 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAV4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDk1 QTE4MkZBMThENDU4MjMzMjg0QUE4REM4OEJEMDc1RTVENzAyRDAeFw0yNDEwMzEw MTMwNTZaFw0yNTEwMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDNBMzkxMkJFMUJEQjJF QkVFRTFFMjQyN0VCRjlEM0Q0QzQzN0FDMEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8RqUo/fDL8gvSw0Rx9Ui9SXnjqct4oURCLTdX3AwbXKgUXjoH BogR8q3Yz74D4vZD8cBXn2wVGeEQgL8WRd8LdozCyMrpceLU8YgqPRCethJjRZlF noYDvfEgkKxH4s2BE5C++wq7QKGy40vEZVjXWBitDEqykfllZ/0f2EpOZNQeoX7A R8B/N7sFXWxm/6eJs9fmLqBNpmOf1gtcTb9mPwzNVGVd5UFO3nEearxC5vvxe5Jn tUD5rlR8BnpDcANM/JMlKZm2SKpyQ511BarxdtyBzj3mCUs9H4B2i8o+niNkSkbY pdrmwuMbUan1WfHkry6NNMzdJBYmjlK85AR7AgMBAAGjggIiMIICHjAdBgNVHQ4E FgQUOjkSvhvbLr7uHiQn6/nT1MQ3rAswHwYDVR0jBBgwFoAUCVoYL6GNRYIzKEqo 3Ii9B15dcC0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQzL0NWb1lMNkdOUllJektFcW8zSWk5QjE1ZGNDMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0NWb1lMNkdOUllJektFcW8zSWk5QjE1 ZGNDMC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80My9PamtTdmh2YkxyN3VIaVFuNl9uVDFNUTNyQXMucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQGyt9AMA0GCSqGSIb3DQEBCwUAA4IBAQBUByxkVsECdJMxnDVtBOE04/RTcopa S0hw+E+0AS9fIpo+DBva0l/Tx8s6c9vPpNWlaqGUW6GnJ1FpLiRi0VNQlfHFaXjz RjT328b4WGjGreYwroFZxQx4Wv33icuoGfTHRztAqwsiHQPPyLR4VvbkhnhWpC9+ hMY6Nod0+9ZuUbXJoOH7TUsdt+Ex9Tid67LFVX2N0WQTpBRtgvdlI8akHlYcRirN RoYTPj0TtKyVoKOYvppffc91r8q1hvWoKcXVWdX0KMrTkdDHRPUEPy5N+mw6L5ch hpfDb8KaWJMKR92prJt1wi2hQw0UUoeVXXcqRCnvA613kJGGo/+h+99l -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:04 2024 by rpki-client on console-fra.rpki-client.org