$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/954/PM1C9uHJ9Gwuu2-O9yq4lXjkQ9E.roa File: PM1C9uHJ9Gwuu2-O9yq4lXjkQ9E.roa (raw, json) Hash identifier: fj72L8Qe34G4EFG/Aw5nco64Ksv6k+1NW2dkuck/LMc= Subject key identifier: 3C:CD:42:F6:E1:C9:F4:6C:2E:BB:6F:8E:F7:2A:B8:95:78:E4:43:D1 Certificate issuer: /CN=1678DD6B61CB673BA4423C81BF63A61DD724E840 Certificate serial: 25 Authority key identifier: 16:78:DD:6B:61:CB:67:3B:A4:42:3C:81:BF:63:A6:1D:D7:24:E8:40 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fnjda2HLZzukQjyBv2OmHdck6EA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/954/PM1C9uHJ9Gwuu2-O9yq4lXjkQ9E.roa Signing time: Sun 31 Mar 2024 01:32:28 +0000 ROA not before: Sun 31 Mar 2024 01:32:28 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 131954 IP address blocks: 113.59.228.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/954/Fnjda2HLZzukQjyBv2OmHdck6EA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/954/Fnjda2HLZzukQjyBv2OmHdck6EA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fnjda2HLZzukQjyBv2OmHdck6EA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1678DD6B61CB673BA4423C81BF63A61DD724E840 Validity Not Before: Mar 31 01:32:28 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=3CCD42F6E1C9F46C2EBB6F8EF72AB89578E443D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:4b:0f:6b:53:0d:36:1f:c6:f3:fc:ca:54:7a: 6c:c4:cb:4f:60:98:35:4f:3c:07:b2:bb:23:aa:a5: 42:4e:0f:8e:15:69:f8:7f:ed:ad:f6:52:d9:b9:7f: fd:b5:5e:89:75:ff:d5:41:f7:f1:2e:c9:42:44:21: 16:fb:20:6f:41:6a:6f:ed:b0:ae:9d:6d:21:50:cc: 14:99:25:71:0a:04:25:82:da:68:25:8e:62:26:78: 0c:45:4a:21:24:48:f8:5e:09:e5:20:19:44:b2:f7: 95:11:98:55:85:6b:db:98:d5:c3:18:e0:dc:63:86: dc:c1:25:12:8d:5e:83:35:02:94:1d:f4:12:08:e5: 90:82:d7:a1:ab:b3:fc:99:ec:f2:cf:2a:36:83:1f: 61:64:83:30:59:97:88:90:5c:ad:1f:dc:a4:e1:98: e9:11:aa:89:c7:ed:b1:4e:b6:25:40:d4:d0:29:53: c5:99:1b:f7:26:c8:8a:a0:1b:91:22:38:94:84:14: 09:74:de:9c:04:23:d9:25:e3:1b:5b:ba:2c:3a:eb: 71:c9:c8:59:68:3e:87:c8:79:45:21:4d:f5:42:ee: 12:75:0a:87:ad:92:c8:3a:f8:7d:b5:06:98:e7:4b: af:0b:89:06:9d:06:bb:ce:be:58:7e:f2:c2:97:96: b0:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:CD:42:F6:E1:C9:F4:6C:2E:BB:6F:8E:F7:2A:B8:95:78:E4:43:D1 X509v3 Authority Key Identifier: keyid:16:78:DD:6B:61:CB:67:3B:A4:42:3C:81:BF:63:A6:1D:D7:24:E8:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/954/Fnjda2HLZzukQjyBv2OmHdck6EA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fnjda2HLZzukQjyBv2OmHdck6EA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/954/PM1C9uHJ9Gwuu2-O9yq4lXjkQ9E.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.59.228.0/22 Signature Algorithm: sha256WithRSAEncryption 35:f0:bc:22:88:ee:dc:14:ac:20:74:ec:7c:15:51:ac:40:b9: be:b1:15:fd:3f:64:45:02:bb:86:db:84:99:8e:a6:47:08:32: f2:01:95:3c:fb:2c:fc:47:c2:34:9d:38:63:b0:41:fa:6f:62: 31:74:3d:81:61:4d:b4:b5:5d:f2:ca:04:d4:4b:bc:bb:30:28: c6:c6:11:38:e6:13:9c:fa:f1:ec:28:7e:21:88:01:60:74:e0: 95:81:6a:38:66:4b:d8:bb:a3:b9:5a:a6:bc:fa:f8:4d:97:9a: 5f:5f:42:8a:a6:ce:2b:68:df:80:0a:67:42:4e:9b:07:75:d3: bc:3d:87:73:62:56:57:4f:14:d2:e6:63:c6:16:4d:c5:e6:f3: f7:91:63:0d:f8:8a:7b:50:bc:48:c8:a0:c5:a1:15:31:1b:bd: 1e:96:a5:32:6b:59:c0:a4:49:9a:78:bc:a8:a3:9f:b5:8f:32: 7c:c5:7f:a8:e3:67:a5:f2:e5:b7:49:24:53:1a:05:44:d5:60: a1:11:f4:50:9d:13:30:12:4e:4b:7d:d0:8f:a7:63:f6:c3:29: 3a:91:ce:aa:d1:de:ff:bf:6f:35:6b:d3:50:48:3d:99:2c:41: 82:52:6f:a4:4e:67:71:61:7b:c2:55:9c:71:e5:93:a8:db:e8: 32:a5:dc:29 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBJTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxNjc4 REQ2QjYxQ0I2NzNCQTQ0MjNDODFCRjYzQTYxREQ3MjRFODQwMB4XDTI0MDMzMTAx MzIyOFoXDTI1MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoM0NDRDQyRjZFMUM5RjQ2 QzJFQkI2RjhFRjcyQUI4OTU3OEU0NDNEMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANpLD2tTDTYfxvP8ylR6bMTLT2CYNU88B7K7I6qlQk4PjhVp+H/t rfZS2bl//bVeiXX/1UH38S7JQkQhFvsgb0Fqb+2wrp1tIVDMFJklcQoEJYLaaCWO YiZ4DEVKISRI+F4J5SAZRLL3lRGYVYVr25jVwxjg3GOG3MElEo1egzUClB30Egjl kILXoauz/Jns8s8qNoMfYWSDMFmXiJBcrR/cpOGY6RGqicftsU62JUDU0ClTxZkb 9ybIiqAbkSI4lIQUCXTenAQj2SXjG1u6LDrrccnIWWg+h8h5RSFN9ULuEnUKh62S yDr4fbUGmOdLrwuJBp0Gu86+WH7ywpeWsHUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQ8zUL24cn0bC67b473KriVeORD0TAfBgNVHSMEGDAWgBQWeN1rYctnO6RCPIG/ Y6Yd1yToQDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTU0L0ZuamRhMkhMWnp1a1FqeUJ2Mk9tSGRjazZFQS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0ZuamRhMkhMWnp1a1FqeUJ2Mk9tSGRj azZFQS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85NTQvUE0xQzl1SEo5R3d1dTItTzl5cTRsWGprUTlFLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAnE75DANBgkqhkiG9w0BAQsFAAOCAQEANfC8Ioju3BSsIHTsfBVRrEC5vrEV /T9kRQK7htuEmY6mRwgy8gGVPPss/EfCNJ04Y7BB+m9iMXQ9gWFNtLVd8soE1Eu8 uzAoxsYROOYTnPrx7Ch+IYgBYHTglYFqOGZL2LujuVqmvPr4TZeaX19CiqbOK2jf gApnQk6bB3XTvD2Hc2JWV08U0uZjxhZNxebz95FjDfiKe1C8SMigxaEVMRu9Hpal MmtZwKRJmni8qKOftY8yfMV/qONnpfLlt0kkUxoFRNVgoRH0UJ0TMBJOS33Qj6dj 9sMpOpHOqtHe/79vNWvTUEg9mSxBglJvpE5ncWF7wlWcceWTqNvoMqXcKQ== -----END CERTIFICATE-----Generated at Sat Jun 1 15:54:44 2024 by rpki-client on console-ams.rpki-client.org