$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/469/3Lss12lhwhkKYWEg8RWrSMx_HrA.roa File: 3Lss12lhwhkKYWEg8RWrSMx_HrA.roa (raw, json) Hash identifier: +V9ea9yVp6oB7oZZwGzrUBZae6fLNtp93PiHTauwAaY= Subject key identifier: DC:BB:2C:D7:69:61:C2:19:0A:61:61:20:F1:15:AB:48:CC:7F:1E:B0 Certificate issuer: /CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Certificate serial: DD Authority key identifier: 40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/3Lss12lhwhkKYWEg8RWrSMx_HrA.roa Signing time: Sun 01 Oct 2023 01:28:52 +0000 ROA not before: Sun 01 Oct 2023 01:28:52 +0000 ROA not after: Sat 14 Sep 2024 01:30:03 +0000 asID: 10021 IP address blocks: 110.50.76.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Validity Not Before: Oct 1 01:28:52 2023 GMT Not After : Sep 14 01:30:03 2024 GMT Subject: CN=DCBB2CD76961C2190A616120F115AB48CC7F1EB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d9:d8:f1:a1:74:5e:57:10:10:ca:d0:d9:f5: 14:d3:64:ff:88:6a:9b:cb:64:eb:92:c9:5e:64:d3: 42:63:b5:06:e5:43:48:7b:c5:4f:74:3f:5b:a3:25: 15:3a:71:30:82:a3:ce:8b:76:71:f7:f0:03:4d:42: 7f:65:cc:f0:e7:7f:f6:02:90:29:66:f6:e0:c4:9b: 05:e6:10:e7:0d:1b:a9:6c:f4:9d:02:ed:41:ce:c2: 28:eb:7a:dd:13:ea:c0:66:e0:7c:54:5a:76:03:c2: 7f:2c:71:82:20:09:95:30:60:e8:38:36:70:96:f8: 79:93:cf:90:bf:49:63:1f:d5:9b:32:c5:33:ef:6f: 18:15:61:b9:e4:d6:b9:8c:a5:e2:8c:6f:87:90:9c: 48:6b:75:a3:3f:29:2d:4a:8b:fb:e2:52:35:cf:97: 66:ec:36:83:cc:28:b0:5f:36:fa:98:b6:a6:9a:ad: 8f:f7:a8:d6:d0:8b:f4:4d:4a:99:34:60:63:b3:b8: 35:3c:38:76:59:18:82:cc:36:92:20:ee:f8:6e:74: e5:da:28:2a:6d:86:2e:8c:95:d3:b4:13:17:48:21: 40:53:60:16:95:73:c3:57:0e:15:04:c6:5d:e1:77: 3c:03:34:2c:92:16:3e:41:0e:53:ea:3a:c9:f0:d1: 9f:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:BB:2C:D7:69:61:C2:19:0A:61:61:20:F1:15:AB:48:CC:7F:1E:B0 X509v3 Authority Key Identifier: keyid:40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/3Lss12lhwhkKYWEg8RWrSMx_HrA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.50.76.0/23 Signature Algorithm: sha256WithRSAEncryption a6:5b:63:fc:bc:b6:c5:21:88:c2:77:15:b5:58:39:85:3b:2d: b7:e4:08:89:86:a2:22:27:36:9a:7f:44:d4:f2:11:36:65:95: fc:d6:12:f9:0e:0e:12:9f:07:49:ba:a8:a5:02:5e:d5:a0:48: 99:f5:49:d5:cb:e7:0e:3f:a5:70:2d:37:19:f9:1b:a3:fe:7d: 0c:96:c9:cc:d4:01:7e:74:12:b3:4f:26:f6:98:b0:ff:44:0b: 74:55:8d:af:ad:25:6d:00:c5:f4:b5:c1:cd:4b:fe:4a:b7:e2: 35:2a:ed:fe:78:9c:88:a0:6d:38:36:bc:7b:a1:eb:3f:25:d3: 0d:26:27:88:d8:09:cf:ae:0d:f5:5d:7d:66:61:39:00:e2:35: e5:09:dd:f5:2b:77:f1:c7:ee:85:ba:a3:3c:84:19:dc:b4:0c: 64:b9:12:bb:c8:c0:d4:6f:86:1a:55:5c:9b:1a:ef:bf:72:5c: bc:0a:c2:f1:1d:19:33:dd:a5:01:f6:5e:2c:42:d5:5c:d0:c9: 8d:1a:44:c0:c3:6d:7a:4c:4b:30:57:96:0b:0f:ab:f6:67:14: 5d:c4:53:76:96:85:4c:a1:82:3d:ed:9a:c5:21:a2:73:16:4c: fe:ae:ed:c0:31:85:c5:d2:85:60:d1:35:42:c1:b7:11:62:2d: c4:ce:1d:a5 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDA2 MTBEQTY4RTkzRUQ1MzhBNDhBNDZDNTIxNDAyNEVENTREMDdGNjAeFw0yMzEwMDEw MTI4NTJaFw0yNDA5MTQwMTMwMDNaMDMxMTAvBgNVBAMTKERDQkIyQ0Q3Njk2MUMy MTkwQTYxNjEyMEYxMTVBQjQ4Q0M3RjFFQjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDG2djxoXReVxAQytDZ9RTTZP+IapvLZOuSyV5k00JjtQblQ0h7 xU90P1ujJRU6cTCCo86LdnH38ANNQn9lzPDnf/YCkClm9uDEmwXmEOcNG6ls9J0C 7UHOwijret0T6sBm4HxUWnYDwn8scYIgCZUwYOg4NnCW+HmTz5C/SWMf1ZsyxTPv bxgVYbnk1rmMpeKMb4eQnEhrdaM/KS1Ki/viUjXPl2bsNoPMKLBfNvqYtqaarY/3 qNbQi/RNSpk0YGOzuDU8OHZZGILMNpIg7vhudOXaKCpthi6MldO0ExdIIUBTYBaV c8NXDhUExl3hdzwDNCySFj5BDlPqOsnw0Z/jAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU3Lss12lhwhkKYWEg8RWrSMx/HrAwHwYDVR0jBBgwFoAUQGENpo6T7VOKSKRs UhQCTtVNB/YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQ2OS9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0Vk5CX1kuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0 Vk5CX1kuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNDY5LzNMc3MxMmxod2hrS1lXRWc4UldyU014X0hyQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFuMkwwDQYJKoZIhvcNAQELBQADggEBAKZbY/y8tsUhiMJ3FbVYOYU7Lbfk CImGoiInNpp/RNTyETZllfzWEvkODhKfB0m6qKUCXtWgSJn1SdXL5w4/pXAtNxn5 G6P+fQyWyczUAX50ErNPJvaYsP9EC3RVja+tJW0AxfS1wc1L/kq34jUq7f54nIig bTg2vHuh6z8l0w0mJ4jYCc+uDfVdfWZhOQDiNeUJ3fUrd/HH7oW6ozyEGdy0DGS5 ErvIwNRvhhpVXJsa779yXLwKwvEdGTPdpQH2XixC1VzQyY0aRMDDbXpMSzBXlgsP q/ZnFF3EU3aWhUyhgj3tmsUhonMWTP6u7cAxhcXShWDRNULBtxFiLcTOHaU= -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:50 2024 by rpki-client on console-fra.rpki-client.org