$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/884/WnPS2XwN7I2DWl5oP4NuHCTceFk.roa File: WnPS2XwN7I2DWl5oP4NuHCTceFk.roa (raw, json) Hash identifier: lZVj42uXSTIyYrrBKmIaAFxc+oT8dgESu9uFSpL7Q8E= Subject key identifier: 5A:73:D2:D9:7C:0D:EC:8D:83:5A:5E:68:3F:83:6E:1C:24:DC:78:59 Certificate issuer: /CN=8AF420F19200E11BE4AE8D914EBA2ACB42917B6E Certificate serial: 23 Authority key identifier: 8A:F4:20:F1:92:00:E1:1B:E4:AE:8D:91:4E:BA:2A:CB:42:91:7B:6E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ivQg8ZIA4Rvkro2RTroqy0KRe24.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/884/WnPS2XwN7I2DWl5oP4NuHCTceFk.roa Signing time: Fri 31 May 2024 01:29:05 +0000 ROA not before: Fri 31 May 2024 01:29:05 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 23808 IP address blocks: 220.152.96.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/884/ivQg8ZIA4Rvkro2RTroqy0KRe24.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/884/ivQg8ZIA4Rvkro2RTroqy0KRe24.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ivQg8ZIA4Rvkro2RTroqy0KRe24.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Jun 2024 14:09:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AF420F19200E11BE4AE8D914EBA2ACB42917B6E Validity Not Before: May 31 01:29:05 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=5A73D2D97C0DEC8D835A5E683F836E1C24DC7859 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:52:57:f4:ba:f6:b7:73:14:d8:35:ca:d8:a1: 58:93:78:f9:bf:b5:e6:cf:56:e8:2d:f0:a8:cf:9d: 4e:9d:2c:2c:19:2a:d6:3f:fc:84:96:31:56:32:e8: c9:f6:22:a5:a4:31:0a:2d:6b:72:ac:a4:c7:c5:fc: ba:9a:10:f6:3b:a0:48:13:3a:7a:79:22:aa:ad:69: f0:40:da:be:3b:85:f2:d1:75:66:9d:43:ca:42:65: 91:e4:12:64:9e:68:3c:c7:20:4e:91:c8:cb:c2:17: 7c:21:be:a9:4d:3b:a5:e7:bb:60:a5:af:ed:08:d3: bb:3c:71:16:db:f3:b0:cd:a7:a0:5b:0d:86:51:01: 4c:21:a9:8b:d4:c8:90:27:b0:40:25:a7:30:98:85: 3d:9d:23:be:f2:b1:52:d5:8b:dd:4d:df:bd:18:7f: 01:72:84:21:6a:71:83:52:20:e7:95:cf:c7:3a:d4: ab:eb:d8:51:d9:55:23:aa:0c:33:b0:e8:25:a1:00: 46:ed:ae:f0:71:c6:83:a9:d9:5b:c1:80:85:d6:2a: 27:bd:a1:b1:d1:7d:53:19:2d:31:66:ff:7d:e1:db: f1:d6:d6:03:54:b9:81:ea:16:65:94:87:25:c2:5e: e8:ff:15:3c:b8:d8:cb:fc:1d:f0:95:ff:a1:2f:8d: 49:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:73:D2:D9:7C:0D:EC:8D:83:5A:5E:68:3F:83:6E:1C:24:DC:78:59 X509v3 Authority Key Identifier: keyid:8A:F4:20:F1:92:00:E1:1B:E4:AE:8D:91:4E:BA:2A:CB:42:91:7B:6E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/884/ivQg8ZIA4Rvkro2RTroqy0KRe24.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ivQg8ZIA4Rvkro2RTroqy0KRe24.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/884/WnPS2XwN7I2DWl5oP4NuHCTceFk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.152.96.0/20 Signature Algorithm: sha256WithRSAEncryption 67:a0:b1:8e:78:a5:5e:bd:81:4c:ea:b4:4d:43:b2:2b:b4:96: 73:c0:69:2c:ab:06:b3:f9:6a:07:92:43:0a:e4:15:7e:74:b9: 80:43:68:58:16:6d:31:05:61:46:dd:46:b0:91:35:68:58:7c: e2:35:2a:33:83:7f:af:7c:9b:8d:ee:4c:b9:40:c5:f4:76:8b: 1f:78:75:97:24:5b:1e:67:bb:f5:07:b6:38:c7:75:98:db:f1: 02:4c:d5:58:2d:bc:b7:4d:17:51:3f:d5:29:e0:06:a5:e6:51: 7a:3d:80:f4:14:4e:bf:2f:d2:89:b3:06:92:f9:3f:38:ec:93: 4a:4d:e0:2c:56:49:0d:d7:be:d1:91:14:9d:3e:e3:97:3b:13: 39:dc:a2:6d:83:5b:e5:94:51:16:f3:2c:5a:59:f9:95:eb:f9: 5d:1d:c5:c2:5b:a4:4c:80:12:4b:9e:8b:bf:4a:b4:4d:c0:3f: dc:e6:8b:cb:7f:74:e4:2a:6a:b0:d9:97:ff:21:29:e8:48:82: 4d:f6:a7:8b:84:c3:66:4a:80:79:7b:30:b0:96:68:da:5b:7c: 13:c3:c1:1f:43:a9:43:be:7f:40:7e:99:76:78:3f:13:5a:5d: f6:d9:2d:bc:19:f6:48:17:cc:84:77:aa:6d:79:5a:7a:af:db: 53:7b:7a:ef -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBIzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4QUY0 MjBGMTkyMDBFMTFCRTRBRThEOTE0RUJBMkFDQjQyOTE3QjZFMB4XDTI0MDUzMTAx MjkwNVoXDTI1MDUxNTAxMzAwM1owMzExMC8GA1UEAxMoNUE3M0QyRDk3QzBERUM4 RDgzNUE1RTY4M0Y4MzZFMUMyNERDNzg1OTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMJSV/S69rdzFNg1ytihWJN4+b+15s9W6C3wqM+dTp0sLBkq1j/8 hJYxVjLoyfYipaQxCi1rcqykx8X8upoQ9jugSBM6enkiqq1p8EDavjuF8tF1Zp1D ykJlkeQSZJ5oPMcgTpHIy8IXfCG+qU07pee7YKWv7QjTuzxxFtvzsM2noFsNhlEB TCGpi9TIkCewQCWnMJiFPZ0jvvKxUtWL3U3fvRh/AXKEIWpxg1Ig55XPxzrUq+vY UdlVI6oMM7DoJaEARu2u8HHGg6nZW8GAhdYqJ72hsdF9UxktMWb/feHb8dbWA1S5 geoWZZSHJcJe6P8VPLjYy/wd8JX/oS+NSWECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRac9LZfA3sjYNaXmg/g24cJNx4WTAfBgNVHSMEGDAWgBSK9CDxkgDhG+SujZFO uirLQpF7bjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODg0L2l2UWc4WklBNFJ2a3JvMlJUcm9xeTBLUmUyNC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2l2UWc4WklBNFJ2a3JvMlJUcm9xeTBL UmUyNC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84ODQvV25QUzJYd043STJEV2w1b1A0TnVIQ1RjZUZrLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNyYYDANBgkqhkiG9w0BAQsFAAOCAQEAZ6CxjnilXr2BTOq0TUOyK7SWc8Bp LKsGs/lqB5JDCuQVfnS5gENoWBZtMQVhRt1GsJE1aFh84jUqM4N/r3ybje5MuUDF 9HaLH3h1lyRbHme79Qe2OMd1mNvxAkzVWC28t00XUT/VKeAGpeZRej2A9BROvy/S ibMGkvk/OOyTSk3gLFZJDde+0ZEUnT7jlzsTOdyibYNb5ZRRFvMsWln5lev5XR3F wlukTIASS56Lv0q0TcA/3OaLy3905CpqsNmX/yEp6EiCTfani4TDZkqAeXswsJZo 2lt8E8PBH0OpQ75/QH6Zdng/E1pd9tktvBn2SBfMhHeqbXlaeq/bU3t67w== -----END CERTIFICATE-----Generated at Mon Jun 17 14:52:21 2024 by rpki-client on console-ams.rpki-client.org