$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/CnesrT-kWEfuc25RUlLoK_vEQ0Q.roa File: CnesrT-kWEfuc25RUlLoK_vEQ0Q.roa (raw, json) Hash identifier: 7RzhUljCJWSgGkPk4a/TsGr0Brj5qJV2HpyDjhZCf+Q= Subject key identifier: 0A:77:AC:AD:3F:A4:58:47:EE:73:6E:51:52:52:E8:2B:FB:C4:43:44 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 01CA Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/CnesrT-kWEfuc25RUlLoK_vEQ0Q.roa Signing time: Sun 01 Oct 2023 01:38:21 +0000 ROA not before: Sun 01 Oct 2023 01:38:21 +0000 ROA not after: Sat 14 Sep 2024 01:30:03 +0000 asID: 9824 IP address blocks: 119.24.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 01:34:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 458 (0x1ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Oct 1 01:38:21 2023 GMT Not After : Sep 14 01:30:03 2024 GMT Subject: CN=0A77ACAD3FA45847EE736E515252E82BFBC44344 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:eb:00:ba:02:70:2e:67:bb:ca:61:79:99:e0: b2:99:d7:6d:ba:e5:29:a7:af:4b:c4:91:df:01:68: 5c:41:b0:02:46:af:ee:0b:06:5c:4c:56:68:63:a3: 67:80:8e:ed:d4:ae:37:4c:09:7c:1c:df:cf:73:b3: 07:f4:4b:d6:1b:fa:8d:66:0a:a4:ec:7b:5f:7f:c9: 3b:c1:64:eb:2a:72:c5:ed:9a:5d:20:71:3c:d0:b2: b7:c7:24:02:4a:31:0e:8e:d6:0f:cc:b7:27:a5:c4: ec:44:77:39:b3:c0:30:82:28:03:80:1b:c6:87:4b: ac:8a:df:dd:8a:31:20:79:30:3b:8b:89:85:fc:16: 4f:ae:32:30:55:92:cf:af:93:5d:da:38:a1:50:5c: 1c:73:b0:9a:3c:ef:54:21:60:a1:b6:d6:04:bc:4b: 38:ff:3b:1b:a0:72:7f:4b:3b:32:2c:4c:1a:b4:53: 33:b4:5d:d9:95:7d:a9:49:3a:45:ba:25:6f:6d:b0: 3e:34:e7:21:08:03:06:76:97:4b:5e:16:e5:75:d9: ce:a1:c0:d4:f1:f9:5e:04:bf:c1:ba:e2:ae:bd:7b: dc:70:8a:26:a4:64:91:9d:e3:f1:d5:91:bd:70:6e: 9c:35:bc:59:4d:43:e3:9e:0d:f7:2f:72:16:13:d2: 80:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:77:AC:AD:3F:A4:58:47:EE:73:6E:51:52:52:E8:2B:FB:C4:43:44 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/CnesrT-kWEfuc25RUlLoK_vEQ0Q.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.24.0.0/15 Signature Algorithm: sha256WithRSAEncryption a8:00:66:76:d1:2d:21:c7:96:74:dd:6c:16:76:13:90:0a:5b: 30:86:8b:57:49:80:b2:7e:88:8e:f6:4e:bc:74:1a:9d:66:8c: 3b:8c:1e:90:67:d8:a9:92:12:2f:8a:7d:73:01:92:66:c1:c7: b3:7f:eb:2a:65:fe:00:4f:31:7a:f0:79:9f:e0:b4:72:8e:10: 8c:7a:23:4d:43:60:17:af:74:93:ac:98:e1:4e:da:81:15:2d: eb:36:68:bc:3b:4d:0b:5a:ef:10:ff:8c:2f:38:ce:99:2f:19: c9:2f:3d:e9:28:12:4f:0f:78:a0:ad:65:3e:c4:b6:82:0f:75: 40:29:e7:fd:a1:70:f2:b4:1c:3e:88:fa:b2:67:65:c8:e2:7c: 57:bf:ee:fd:48:ba:91:77:b9:69:bd:d2:2e:59:c1:3c:bb:38: aa:12:9a:b6:59:d1:75:2d:8d:75:15:8c:7f:7a:ce:90:51:fb: d0:70:6c:54:6f:cd:8b:eb:4f:76:92:16:ac:4a:03:3e:6c:8e: 79:57:24:16:d0:81:b6:00:cd:ce:d8:b1:6d:fa:3d:07:37:15: 2f:e4:9a:30:75:fd:3d:a6:95:4c:9e:4a:85:9e:48:41:3a:17: ba:7c:7b:1a:0e:cb:02:e4:52:9e:b9:d1:4a:bc:c7:67:8c:3f: 8e:62:92:80 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICAcowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yMzEwMDEw MTM4MjFaFw0yNDA5MTQwMTMwMDNaMDMxMTAvBgNVBAMTKDBBNzdBQ0FEM0ZBNDU4 NDdFRTczNkU1MTUyNTJFODJCRkJDNDQzNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCh6wC6AnAuZ7vKYXmZ4LKZ12265Smnr0vEkd8BaFxBsAJGr+4L BlxMVmhjo2eAju3UrjdMCXwc389zswf0S9Yb+o1mCqTse19/yTvBZOsqcsXtml0g cTzQsrfHJAJKMQ6O1g/MtyelxOxEdzmzwDCCKAOAG8aHS6yK392KMSB5MDuLiYX8 Fk+uMjBVks+vk13aOKFQXBxzsJo871QhYKG21gS8Szj/Oxugcn9LOzIsTBq0UzO0 XdmVfalJOkW6JW9tsD405yEIAwZ2l0teFuV12c6hwNTx+V4Ev8G64q69e9xwiiak ZJGd4/HVkb1wbpw1vFlNQ+OeDfcvchYT0oAdAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUCnesrT+kWEfuc25RUlLoK/vEQ0QwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxL0NuZXNyVC1rV0VmdWMyNVJVbExvS192RVEwUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwF3GDANBgkqhkiG9w0BAQsFAAOCAQEAqABmdtEtIceWdN1sFnYTkApbMIaL V0mAsn6IjvZOvHQanWaMO4wekGfYqZISL4p9cwGSZsHHs3/rKmX+AE8xevB5n+C0 co4QjHojTUNgF690k6yY4U7agRUt6zZovDtNC1rvEP+MLzjOmS8ZyS896SgSTw94 oK1lPsS2gg91QCnn/aFw8rQcPoj6smdlyOJ8V7/u/Ui6kXe5ab3SLlnBPLs4qhKa tlnRdS2NdRWMf3rOkFH70HBsVG/Ni+tPdpIWrEoDPmyOeVckFtCBtgDNztixbfo9 BzcVL+SaMHX9PaaVTJ5KhZ5IQToXunx7Gg7LAuRSnrnRSrzHZ4w/jmKSgA== -----END CERTIFICATE-----Generated at Sat May 18 11:39:42 2024 by rpki-client on console-fra.rpki-client.org