$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/440/KdNJET6BUoK5ebZ655kes3MHbno.roa File: KdNJET6BUoK5ebZ655kes3MHbno.roa (raw, json) Hash identifier: ish0lInHFyfL0E71Me49I8tKvL52PqAAP3hlJ12sdd0= Subject key identifier: 29:D3:49:11:3E:81:52:82:B9:79:B6:7A:E7:99:1E:B3:73:07:6E:7A Certificate issuer: /CN=E62338DE332C6F4B9E2596EE5DC379A25EFE58CF Certificate serial: 4F Authority key identifier: E6:23:38:DE:33:2C:6F:4B:9E:25:96:EE:5D:C3:79:A2:5E:FE:58:CF Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5iM43jMsb0ueJZbuXcN5ol7-WM8.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/KdNJET6BUoK5ebZ655kes3MHbno.roa Signing time: Mon 01 Jan 2024 01:30:56 +0000 ROA not before: Mon 01 Jan 2024 01:30:56 +0000 ROA not after: Sat 14 Dec 2024 01:30:03 +0000 asID: 17676 IP address blocks: 126.249.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/5iM43jMsb0ueJZbuXcN5ol7-WM8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/5iM43jMsb0ueJZbuXcN5ol7-WM8.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5iM43jMsb0ueJZbuXcN5ol7-WM8.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E62338DE332C6F4B9E2596EE5DC379A25EFE58CF Validity Not Before: Jan 1 01:30:56 2024 GMT Not After : Dec 14 01:30:03 2024 GMT Subject: CN=29D349113E815282B979B67AE7991EB373076E7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:46:52:62:d7:4e:fe:be:3e:d5:ef:65:f8:2c: 4e:31:1a:b6:de:79:f8:eb:ab:57:01:85:eb:c1:7a: 55:bf:f2:a9:bd:bc:e5:6a:e7:b0:78:25:66:2f:75: d9:c4:0c:c5:ed:61:7f:82:71:d0:7f:1f:ac:3f:41: d7:88:8c:1f:d6:37:94:90:93:b3:9b:3b:ad:86:99: be:a9:3a:5b:9b:f1:5e:24:d7:8f:92:5a:58:84:f4: 0d:be:30:b5:3a:3a:07:b6:e9:72:89:bb:db:64:26: 65:55:76:06:f8:a5:3d:71:dc:58:32:72:8a:d6:af: 79:77:7d:b5:1d:17:ea:ae:18:b2:1c:76:6b:67:a6: c0:18:55:f4:e8:e3:8e:a3:64:ce:89:a3:77:5f:4a: 1c:7b:0c:57:6c:d3:a7:d6:6b:cb:90:dc:b1:d5:b5: 06:1f:82:f5:e5:29:e1:45:b4:d8:ec:3d:83:a4:3f: 16:a2:db:76:d0:20:fe:22:b0:df:8c:47:28:21:36: cc:ac:f2:b7:77:c2:5d:f8:00:d8:bb:cf:80:5c:53: fc:40:a5:ce:7b:e7:6c:ab:75:90:50:68:3d:88:1c: 30:f3:5d:92:6a:1e:9e:a4:8d:6b:5f:b8:31:c5:23: 39:0a:c9:4b:a5:ff:9f:c7:80:19:21:8d:90:e3:bb: b5:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:D3:49:11:3E:81:52:82:B9:79:B6:7A:E7:99:1E:B3:73:07:6E:7A X509v3 Authority Key Identifier: keyid:E6:23:38:DE:33:2C:6F:4B:9E:25:96:EE:5D:C3:79:A2:5E:FE:58:CF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/5iM43jMsb0ueJZbuXcN5ol7-WM8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5iM43jMsb0ueJZbuXcN5ol7-WM8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/KdNJET6BUoK5ebZ655kes3MHbno.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 126.249.0.0/16 Signature Algorithm: sha256WithRSAEncryption 38:d7:fe:f0:c2:ef:6c:b5:62:f8:4d:23:90:8a:52:63:79:c4: e9:cd:a6:fe:ab:1a:c2:6e:16:58:b6:0a:a3:e7:8d:65:e5:97: 6a:35:cb:b3:94:8f:f3:23:f1:5c:72:a3:db:8b:67:03:55:91: 9f:8e:28:5f:65:60:39:47:26:04:44:b5:92:b6:71:98:c7:16: f6:90:91:38:7a:ad:c1:8f:a3:9b:35:0c:ea:5a:36:73:2b:56: 60:1c:01:d6:47:33:1e:d3:3f:6c:ac:56:f5:a4:40:2a:f9:72: f8:5c:20:10:a4:9c:90:a5:31:76:13:49:da:19:2b:74:d0:8a: f5:16:80:89:fe:d4:03:ce:dd:a6:ef:31:0b:9e:52:bd:8f:94: 50:8d:40:f1:9f:4c:b3:37:3d:e1:4d:5e:b2:c6:c0:23:c3:7b: 6a:90:9d:77:b4:24:ad:d1:70:da:55:29:07:26:8f:9f:a9:65: 17:51:19:ad:35:ca:50:4f:2e:4f:3a:ed:43:fd:c7:f6:00:d6: 4d:c1:e3:e1:26:bb:ba:1c:29:e1:7c:f5:cb:80:15:92:fe:82: 3f:73:2d:dd:19:21:47:07:fa:e8:40:15:6f:71:18:14:fd:f5: 3e:c4:17:eb:a1:db:ee:9b:ce:0c:3f:78:e6:b9:24:c6:44:52: 7d:26:03:69 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIBTzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhFNjIz MzhERTMzMkM2RjRCOUUyNTk2RUU1REMzNzlBMjVFRkU1OENGMB4XDTI0MDEwMTAx MzA1NloXDTI0MTIxNDAxMzAwM1owMzExMC8GA1UEAxMoMjlEMzQ5MTEzRTgxNTI4 MkI5NzlCNjdBRTc5OTFFQjM3MzA3NkU3QTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANtGUmLXTv6+PtXvZfgsTjEatt55+OurVwGF68F6Vb/yqb285Wrn sHglZi912cQMxe1hf4Jx0H8frD9B14iMH9Y3lJCTs5s7rYaZvqk6W5vxXiTXj5Ja WIT0Db4wtTo6B7bpcom722QmZVV2BvilPXHcWDJyitaveXd9tR0X6q4Yshx2a2em wBhV9OjjjqNkzomjd19KHHsMV2zTp9Zry5DcsdW1Bh+C9eUp4UW02Ow9g6Q/FqLb dtAg/iKw34xHKCE2zKzyt3fCXfgA2LvPgFxT/EClznvnbKt1kFBoPYgcMPNdkmoe nqSNa1+4McUjOQrJS6X/n8eAGSGNkOO7tRUCAwEAAaOCAiMwggIfMB0GA1UdDgQW BBQp00kRPoFSgrl5tnrnmR6zcwduejAfBgNVHSMEGDAWgBTmIzjeMyxvS54llu5d w3miXv5YzzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDQwLzVpTTQzak1zYjB1ZUpaYnVYY041b2w3LVdNOC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzVpTTQzak1zYjB1ZUpaYnVYY041b2w3 LVdNOC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80NDAvS2ROSkVUNkJVb0s1ZWJaNjU1a2VzM01IYm5vLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEw BQMDAH75MA0GCSqGSIb3DQEBCwUAA4IBAQA41/7wwu9stWL4TSOQilJjecTpzab+ qxrCbhZYtgqj541l5ZdqNcuzlI/zI/FccqPbi2cDVZGfjihfZWA5RyYERLWStnGY xxb2kJE4eq3Bj6ObNQzqWjZzK1ZgHAHWRzMe0z9srFb1pEAq+XL4XCAQpJyQpTF2 E0naGSt00Ir1FoCJ/tQDzt2m7zELnlK9j5RQjUDxn0yzNz3hTV6yxsAjw3tqkJ13 tCSt0XDaVSkHJo+fqWUXURmtNcpQTy5POu1D/cf2ANZNwePhJru6HCnhfPXLgBWS /oI/cy3dGSFHB/roQBVvcRgU/fU+xBfrodvum84MP3jmuSTGRFJ9JgNp -----END CERTIFICATE-----Generated at Sat Jun 1 15:54:39 2024 by rpki-client on console-ams.rpki-client.org