$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/554/Acs91KcWDVIOXjMbsYRIt8pr2q8.roa File: Acs91KcWDVIOXjMbsYRIt8pr2q8.roa (raw, json) Hash identifier: XnMitfK1OQ8MhuPhlg1pZJ8wbXTpfmhH0sIzb1MkkIA= Subject key identifier: 01:CB:3D:D4:A7:16:0D:52:0E:5E:33:1B:B1:84:48:B7:CA:6B:DA:AF Certificate issuer: /CN=96D92CE24CF3FCC753285CEBAF3FEC1D72581A81 Certificate serial: 3C Authority key identifier: 96:D9:2C:E2:4C:F3:FC:C7:53:28:5C:EB:AF:3F:EC:1D:72:58:1A:81 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ltks4kzz_MdTKFzrrz_sHXJYGoE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/554/Acs91KcWDVIOXjMbsYRIt8pr2q8.roa Signing time: Wed 31 Jul 2024 01:28:44 +0000 ROA not before: Wed 31 Jul 2024 01:28:44 +0000 ROA not after: Tue 15 Jul 2025 01:30:02 +0000 asID: 131921 IP address blocks: 153.123.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/554/ltks4kzz_MdTKFzrrz_sHXJYGoE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/554/ltks4kzz_MdTKFzrrz_sHXJYGoE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ltks4kzz_MdTKFzrrz_sHXJYGoE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96D92CE24CF3FCC753285CEBAF3FEC1D72581A81 Validity Not Before: Jul 31 01:28:44 2024 GMT Not After : Jul 15 01:30:02 2025 GMT Subject: CN=01CB3DD4A7160D520E5E331BB18448B7CA6BDAAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:2e:2f:e2:cd:d3:95:61:72:4e:8b:3a:1e:f1: 2e:1d:32:2d:14:56:04:24:04:c9:29:75:8b:78:ca: 57:57:93:8c:22:fe:3a:63:d8:55:53:f1:22:8c:de: 2c:0c:3a:00:0c:b8:ae:8a:3c:36:f8:95:45:95:99: 3a:78:45:60:4f:00:ee:3b:53:a1:04:90:61:46:07: 27:c5:77:c5:45:1f:8b:6b:36:d3:dd:2b:22:aa:a0: f0:a3:89:60:08:58:0b:eb:15:bd:05:b7:17:c6:95: 71:35:27:98:b5:a3:db:fd:2d:77:cc:d0:42:37:6f: d7:c1:7d:b9:91:bd:41:1d:4f:14:19:b0:79:09:65: 62:0a:3b:f2:5d:67:2a:b0:ad:21:62:64:b7:62:1c: 79:a7:61:fb:fa:c9:86:b5:54:26:f7:46:72:8d:ce: 1f:2b:02:81:1c:c5:9a:2f:32:94:a6:75:c5:0c:80: d9:49:d8:d7:c0:47:84:19:fc:60:2c:f0:8a:f5:19: 59:72:05:8c:de:10:db:64:1d:a9:0b:84:ab:1e:b8: 9f:2c:43:96:59:d0:fe:e5:1b:e2:8f:03:cf:c6:70: 90:a1:87:cd:39:25:44:b9:c3:2d:99:75:09:83:a3: db:93:f0:df:88:3e:af:59:25:ad:e2:4b:55:c8:72: f4:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:CB:3D:D4:A7:16:0D:52:0E:5E:33:1B:B1:84:48:B7:CA:6B:DA:AF X509v3 Authority Key Identifier: keyid:96:D9:2C:E2:4C:F3:FC:C7:53:28:5C:EB:AF:3F:EC:1D:72:58:1A:81 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/554/ltks4kzz_MdTKFzrrz_sHXJYGoE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ltks4kzz_MdTKFzrrz_sHXJYGoE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/554/Acs91KcWDVIOXjMbsYRIt8pr2q8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 153.123.0.0/20 Signature Algorithm: sha256WithRSAEncryption 7d:d2:17:b8:72:b4:51:af:e8:2c:5e:df:08:f3:ac:17:b9:56: 55:83:22:e4:4f:ff:e3:e5:24:a8:a5:58:21:84:1f:59:8b:51: 22:88:a3:5e:d6:ce:13:7f:14:10:00:5e:9e:9d:ed:8b:a7:78: 8a:9d:a4:df:e3:87:39:fe:b7:24:e7:c2:6a:df:a4:8d:d5:e7: bc:34:fb:d3:ab:e0:71:43:7b:92:da:8d:0b:d4:03:6a:b4:d8: 66:ae:74:89:cb:8a:5c:e3:de:ac:09:ff:ab:a6:ad:c7:19:19: ed:c8:f6:e2:6c:21:30:b4:ee:4f:61:a1:54:4b:dd:55:c8:90: 93:51:de:90:22:ba:44:f3:ed:42:4a:31:d2:5c:29:24:93:b4: 53:38:cc:56:0a:da:2a:0c:1d:44:9c:33:9d:d3:d9:85:10:9c: 43:d2:15:e6:77:7b:f5:36:82:be:a9:d6:11:c1:8d:4b:69:70: 77:8f:f3:f0:07:c1:17:37:f5:aa:7f:5b:a1:fb:33:53:76:c4: a4:6b:33:23:e8:52:3d:aa:99:12:37:ef:e3:00:e7:0c:28:ce: 8b:67:fb:4d:c2:12:70:de:af:fd:08:fd:ad:7f:eb:d8:74:db: 0c:30:1c:bf:2a:fe:da:23:b0:58:7c:9f:ea:29:48:5f:e8:61: 84:9b:4f:25 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBPDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5NkQ5 MkNFMjRDRjNGQ0M3NTMyODVDRUJBRjNGRUMxRDcyNTgxQTgxMB4XDTI0MDczMTAx Mjg0NFoXDTI1MDcxNTAxMzAwMlowMzExMC8GA1UEAxMoMDFDQjNERDRBNzE2MEQ1 MjBFNUUzMzFCQjE4NDQ4QjdDQTZCREFBRjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKwuL+LN05Vhck6LOh7xLh0yLRRWBCQEySl1i3jKV1eTjCL+OmPY VVPxIozeLAw6AAy4roo8NviVRZWZOnhFYE8A7jtToQSQYUYHJ8V3xUUfi2s2090r Iqqg8KOJYAhYC+sVvQW3F8aVcTUnmLWj2/0td8zQQjdv18F9uZG9QR1PFBmweQll Ygo78l1nKrCtIWJkt2Iceadh+/rJhrVUJvdGco3OHysCgRzFmi8ylKZ1xQyA2UnY 18BHhBn8YCzwivUZWXIFjN4Q22QdqQuEqx64nyxDllnQ/uUb4o8Dz8ZwkKGHzTkl RLnDLZl1CYOj25Pw34g+r1klreJLVchy9IkCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQByz3UpxYNUg5eMxuxhEi3ymvarzAfBgNVHSMEGDAWgBSW2SziTPP8x1MoXOuv P+wdclgagTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTU0L2x0a3M0a3p6X01kVEtGenJyel9zSFhKWUdvRS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2x0a3M0a3p6X01kVEtGenJyel9zSFhK WUdvRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81NTQvQWNzOTFLY1dEVklPWGpNYnNZUkl0OHByMnE4LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBJl7ADANBgkqhkiG9w0BAQsFAAOCAQEAfdIXuHK0Ua/oLF7fCPOsF7lWVYMi 5E//4+UkqKVYIYQfWYtRIoijXtbOE38UEABenp3ti6d4ip2k3+OHOf63JOfCat+k jdXnvDT706vgcUN7ktqNC9QDarTYZq50icuKXOPerAn/q6atxxkZ7cj24mwhMLTu T2GhVEvdVciQk1HekCK6RPPtQkox0lwpJJO0UzjMVgraKgwdRJwzndPZhRCcQ9IV 5nd79TaCvqnWEcGNS2lwd4/z8AfBFzf1qn9bofszU3bEpGszI+hSPaqZEjfv4wDn DCjOi2f7TcIScN6v/Qj9rX/r2HTbDDAcvyr+2iOwWHyf6ilIX+hhhJtPJQ== -----END CERTIFICATE-----Generated at Mon Nov 25 23:59:16 2024 by rpki-client on console-fra.rpki-client.org