$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/462/LtMk7wBGjwngLam9T2LerCpDMZA.roa File: LtMk7wBGjwngLam9T2LerCpDMZA.roa (raw, json) Hash identifier: cAL5NwEghNbOhVDxjLdGDR0NcgVn1RaRCMGWsCXHokE= Subject key identifier: 2E:D3:24:EF:00:46:8F:09:E0:2D:A9:BD:4F:62:DE:AC:2A:43:31:90 Certificate issuer: /CN=43917B23074524E9E6EA8E40FA4A0672C9620318 Certificate serial: 50 Authority key identifier: 43:91:7B:23:07:45:24:E9:E6:EA:8E:40:FA:4A:06:72:C9:62:03:18 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Q5F7IwdFJOnm6o5A-koGcsliAxg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/LtMk7wBGjwngLam9T2LerCpDMZA.roa Signing time: Sun 31 Mar 2024 01:30:03 +0000 ROA not before: Sun 31 Mar 2024 01:30:03 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 10019 IP address blocks: 175.28.16.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/Q5F7IwdFJOnm6o5A-koGcsliAxg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/Q5F7IwdFJOnm6o5A-koGcsliAxg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Q5F7IwdFJOnm6o5A-koGcsliAxg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43917B23074524E9E6EA8E40FA4A0672C9620318 Validity Not Before: Mar 31 01:30:03 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=2ED324EF00468F09E02DA9BD4F62DEAC2A433190 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ca:cb:5d:e0:b0:26:64:8f:c7:0b:24:55:3c: 32:2a:07:b0:ad:a4:88:0d:91:a3:07:cd:83:47:1b: 4f:e0:cf:c8:e5:85:3e:e5:29:11:ee:00:5d:f8:68: 9a:92:aa:10:d1:f5:6a:25:9a:7f:1d:4f:4b:22:6a: 1c:1b:b1:62:9d:ab:b2:c3:09:91:43:5c:39:2e:39: de:2d:8c:b7:9d:0e:53:da:cf:21:ca:06:55:23:34: cf:82:17:5d:67:7b:2b:10:59:fd:75:5f:80:da:8f: df:30:3c:d6:bd:46:31:c1:f8:fb:ab:f7:d3:7d:c0: e8:63:05:d6:c7:b9:43:11:b6:f4:37:b9:5b:d6:95: eb:93:9e:c0:c7:7a:94:7e:c8:84:48:b4:eb:ef:c6: 49:8c:6b:5d:ed:17:3c:d5:d8:da:8e:26:40:52:eb: c1:85:c0:67:07:dc:37:d7:38:56:71:3a:67:d4:d6: cf:8b:b1:4c:b1:da:d2:33:a1:b6:38:94:49:a8:1d: ae:45:3f:59:51:9b:6d:9c:94:46:76:0c:ab:b6:aa: f7:9c:00:72:9c:72:85:d2:db:24:fa:7e:fd:59:9f: 62:7f:71:d4:ae:16:28:4d:58:b7:8e:e7:df:1d:d8: 43:e9:f3:9b:ab:2a:5f:b8:b7:6e:6e:3f:f6:26:02: 73:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:D3:24:EF:00:46:8F:09:E0:2D:A9:BD:4F:62:DE:AC:2A:43:31:90 X509v3 Authority Key Identifier: keyid:43:91:7B:23:07:45:24:E9:E6:EA:8E:40:FA:4A:06:72:C9:62:03:18 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/Q5F7IwdFJOnm6o5A-koGcsliAxg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Q5F7IwdFJOnm6o5A-koGcsliAxg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/LtMk7wBGjwngLam9T2LerCpDMZA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 175.28.16.0/20 Signature Algorithm: sha256WithRSAEncryption 6f:b5:b2:73:81:33:eb:b0:e2:68:c4:4e:e1:96:50:af:e3:c0: fa:02:3b:e0:74:21:96:dc:2b:16:a0:dc:5c:87:bd:41:9e:72: 36:5c:72:c1:9c:2c:5d:07:86:42:58:4c:53:56:19:87:6a:bd: 6c:35:56:76:d5:fe:1d:b3:4b:35:df:9c:33:18:be:07:19:d4: d0:e9:d6:8b:8a:87:42:dc:e9:9a:a2:69:d1:3c:23:fd:ac:68: e1:29:70:6d:10:2f:d9:0e:6d:a6:2b:31:db:b7:f4:ae:48:f8: 32:61:9a:0e:a3:59:67:3e:90:a8:48:eb:15:f3:88:c8:5c:d0: 89:52:dd:5e:05:9d:ed:ba:79:c0:a7:78:70:c4:d9:d8:f7:16: 2d:d4:4e:b2:12:89:d9:2e:c6:20:d2:5b:2e:96:2a:c1:33:05: e7:8b:3a:45:84:1f:77:76:d8:38:e4:c8:be:51:d9:68:02:83: 57:16:55:b7:da:0c:f9:a5:cc:2f:21:5c:b4:11:47:0b:e1:a7: 4a:8e:c4:ea:d7:6a:3d:18:c0:42:07:ed:3e:0c:40:2d:bb:f3: 32:df:6d:32:22:42:fe:08:35:b1:7e:ee:fb:cc:2e:81:06:4d: 38:2f:98:1a:02:6f:d0:68:5a:7e:21:1d:6e:3d:4e:43:1d:0a: e8:cb:8a:7a -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBUDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0Mzkx N0IyMzA3NDUyNEU5RTZFQThFNDBGQTRBMDY3MkM5NjIwMzE4MB4XDTI0MDMzMTAx MzAwM1oXDTI1MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoMkVEMzI0RUYwMDQ2OEYw OUUwMkRBOUJENEY2MkRFQUMyQTQzMzE5MDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALfKy13gsCZkj8cLJFU8MioHsK2kiA2RowfNg0cbT+DPyOWFPuUp Ee4AXfhompKqENH1aiWafx1PSyJqHBuxYp2rssMJkUNcOS453i2Mt50OU9rPIcoG VSM0z4IXXWd7KxBZ/XVfgNqP3zA81r1GMcH4+6v3033A6GMF1se5QxG29De5W9aV 65OewMd6lH7IhEi06+/GSYxrXe0XPNXY2o4mQFLrwYXAZwfcN9c4VnE6Z9TWz4ux TLHa0jOhtjiUSagdrkU/WVGbbZyURnYMq7aq95wAcpxyhdLbJPp+/VmfYn9x1K4W KE1Yt47n3x3YQ+nzm6sqX7i3bm4/9iYCcyUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQu0yTvAEaPCeAtqb1PYt6sKkMxkDAfBgNVHSMEGDAWgBRDkXsjB0Uk6ebqjkD6 SgZyyWIDGDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDYyL1E1RjdJd2RGSk9ubTZvNUEta29HY3NsaUF4Zy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1E1RjdJd2RGSk9ubTZvNUEta29HY3Ns aUF4Zy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80NjIvTHRNazd3Qkdqd25nTGFtOVQyTGVyQ3BETVpBLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBK8cEDANBgkqhkiG9w0BAQsFAAOCAQEAb7Wyc4Ez67DiaMRO4ZZQr+PA+gI7 4HQhltwrFqDcXIe9QZ5yNlxywZwsXQeGQlhMU1YZh2q9bDVWdtX+HbNLNd+cMxi+ BxnU0OnWi4qHQtzpmqJp0Twj/axo4SlwbRAv2Q5tpisx27f0rkj4MmGaDqNZZz6Q qEjrFfOIyFzQiVLdXgWd7bp5wKd4cMTZ2PcWLdROshKJ2S7GINJbLpYqwTMF54s6 RYQfd3bYOOTIvlHZaAKDVxZVt9oM+aXMLyFctBFHC+GnSo7E6tdqPRjAQgftPgxA LbvzMt9tMiJC/gg1sX7u+8wugQZNOC+YGgJv0GhafiEdbj1OQx0K6MuKeg== -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:50 2024 by rpki-client on console-fra.rpki-client.org