$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/955/8jtGLGjA1TUgBUyjfkiDcArhFIA.roa File: 8jtGLGjA1TUgBUyjfkiDcArhFIA.roa (raw, json) Hash identifier: jveUF8QoauX1jSqWtKr3o8PtJEaFjN5WbwPm0mhlzdg= Subject key identifier: F2:3B:46:2C:68:C0:D5:35:20:05:4C:A3:7E:48:83:70:0A:E1:14:80 Certificate issuer: /CN=0BBCA90DCB80D622B18884EA1E0B3B7D40C61C52 Certificate serial: 20 Authority key identifier: 0B:BC:A9:0D:CB:80:D6:22:B1:88:84:EA:1E:0B:3B:7D:40:C6:1C:52 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/C7ypDcuA1iKxiITqHgs7fUDGHFI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/955/8jtGLGjA1TUgBUyjfkiDcArhFIA.roa Signing time: Fri 01 Dec 2023 06:10:35 +0000 ROA not before: Fri 01 Dec 2023 06:10:35 +0000 ROA not after: Thu 14 Nov 2024 01:30:03 +0000 asID: 55385 IP address blocks: 202.213.64.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/955/C7ypDcuA1iKxiITqHgs7fUDGHFI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/955/C7ypDcuA1iKxiITqHgs7fUDGHFI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/C7ypDcuA1iKxiITqHgs7fUDGHFI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BBCA90DCB80D622B18884EA1E0B3B7D40C61C52 Validity Not Before: Dec 1 06:10:35 2023 GMT Not After : Nov 14 01:30:03 2024 GMT Subject: CN=F23B462C68C0D53520054CA37E4883700AE11480 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:fb:48:33:37:58:82:a4:5b:3d:af:fb:51:bd: 17:8f:d0:d3:f6:74:fd:1d:a4:1e:5e:1e:b9:0b:8f: a9:16:a9:b1:0d:52:1c:a0:e2:49:8b:78:50:16:4e: 35:f6:bf:28:23:ea:a3:93:49:f7:1f:58:47:8c:aa: c9:7c:87:0b:5d:fb:0f:a2:02:07:d8:b7:12:c7:49: 05:90:93:17:3c:d8:8c:bb:07:3b:cf:ea:b8:0a:b2: 49:3c:0d:b1:2c:a1:fd:da:8d:b7:3f:86:bd:42:11: 78:49:f2:94:b1:0e:fe:08:7b:9a:0b:dc:f6:1e:37: c3:54:1d:0c:91:f1:b1:9d:ba:22:b1:b5:55:4e:a9: b3:31:20:e5:55:84:e7:6e:b9:b6:a8:77:0b:a5:03: e8:3e:42:6f:6e:63:57:b1:7d:53:29:7e:d0:f2:fa: 8a:bf:50:e4:6b:bd:7c:f7:de:c5:63:6b:bf:f3:4c: 0d:14:29:2f:84:4b:b4:42:c2:a8:9f:87:26:74:4a: 18:f3:b2:ed:ca:df:41:36:e3:d2:ec:7d:27:ab:4a: 59:98:6f:54:06:f8:d5:25:79:6c:a0:59:9e:67:ea: 6e:4e:3f:2b:60:c2:91:8b:db:84:6b:6d:ed:64:26: ca:cf:09:f4:af:32:4f:68:2c:2a:de:a5:11:77:74: cd:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:3B:46:2C:68:C0:D5:35:20:05:4C:A3:7E:48:83:70:0A:E1:14:80 X509v3 Authority Key Identifier: keyid:0B:BC:A9:0D:CB:80:D6:22:B1:88:84:EA:1E:0B:3B:7D:40:C6:1C:52 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/955/C7ypDcuA1iKxiITqHgs7fUDGHFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/C7ypDcuA1iKxiITqHgs7fUDGHFI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/955/8jtGLGjA1TUgBUyjfkiDcArhFIA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.213.64.0/21 Signature Algorithm: sha256WithRSAEncryption 0f:31:8f:e1:cc:7b:2b:9e:41:dd:c6:c3:d2:22:53:3e:97:2c: 8a:cc:03:33:34:4a:a0:98:74:85:39:4e:fa:50:ad:69:b7:22: 1d:73:6b:9f:a3:66:27:be:54:4f:5f:ef:61:1a:81:a6:8a:40: 57:c8:f0:9f:d4:0e:49:c1:64:bb:2a:17:25:95:55:e4:d8:95: e1:a7:76:d1:d9:05:61:12:05:26:49:f8:c4:46:32:d2:2e:8d: df:e4:75:d9:73:d2:e4:db:86:2a:ab:2e:c4:23:f3:70:1d:5e: 4a:9a:85:b4:4c:3f:1f:b9:0d:8a:c3:d5:cb:51:dd:f6:61:56: 87:73:6e:85:79:b0:4c:f2:1f:4f:ac:d2:b0:fb:7e:2b:51:83: b8:b2:a7:f2:b2:a8:dd:b7:c3:84:7a:48:96:9c:3f:f5:f9:1e: ad:15:24:d1:01:18:2e:bd:25:5b:66:ff:15:ab:06:6b:23:f5: df:ad:52:9b:86:22:56:fd:27:b4:b6:89:41:1b:20:98:e1:46: 08:d3:57:04:75:93:1e:bc:8a:d0:b8:a5:a4:05:bc:d6:b3:ad: 8c:10:c9:cf:2a:9a:4e:d3:b1:29:bb:62:2a:e8:4a:6a:01:82: a1:2d:7f:00:9a:70:61:68:7c:90:b8:51:84:63:c4:f4:9d:05: 65:a6:7a:16 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBIDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwQkJD QTkwRENCODBENjIyQjE4ODg0RUExRTBCM0I3RDQwQzYxQzUyMB4XDTIzMTIwMTA2 MTAzNVoXDTI0MTExNDAxMzAwM1owMzExMC8GA1UEAxMoRjIzQjQ2MkM2OEMwRDUz NTIwMDU0Q0EzN0U0ODgzNzAwQUUxMTQ4MDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJf7SDM3WIKkWz2v+1G9F4/Q0/Z0/R2kHl4euQuPqRapsQ1SHKDi SYt4UBZONfa/KCPqo5NJ9x9YR4yqyXyHC137D6ICB9i3EsdJBZCTFzzYjLsHO8/q uAqySTwNsSyh/dqNtz+GvUIReEnylLEO/gh7mgvc9h43w1QdDJHxsZ26IrG1VU6p szEg5VWE5265tqh3C6UD6D5Cb25jV7F9Uyl+0PL6ir9Q5Gu9fPfexWNrv/NMDRQp L4RLtELCqJ+HJnRKGPOy7crfQTbj0ux9J6tKWZhvVAb41SV5bKBZnmfqbk4/K2DC kYvbhGtt7WQmys8J9K8yT2gsKt6lEXd0zVUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTyO0YsaMDVNSAFTKN+SINwCuEUgDAfBgNVHSMEGDAWgBQLvKkNy4DWIrGIhOoe Czt9QMYcUjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTU1L0M3eXBEY3VBMWlLeGlJVHFIZ3M3ZlVER0hGSS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0M3eXBEY3VBMWlLeGlJVHFIZ3M3ZlVE R0hGSS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85NTUvOGp0R0xHakExVFVnQlV5amZraURjQXJoRklBLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA8rVQDANBgkqhkiG9w0BAQsFAAOCAQEADzGP4cx7K55B3cbD0iJTPpcsiswD MzRKoJh0hTlO+lCtabciHXNrn6NmJ75UT1/vYRqBpopAV8jwn9QOScFkuyoXJZVV 5NiV4ad20dkFYRIFJkn4xEYy0i6N3+R12XPS5NuGKqsuxCPzcB1eSpqFtEw/H7kN isPVy1Hd9mFWh3NuhXmwTPIfT6zSsPt+K1GDuLKn8rKo3bfDhHpIlpw/9fkerRUk 0QEYLr0lW2b/FasGayP1361Sm4YiVv0ntLaJQRsgmOFGCNNXBHWTHryK0LilpAW8 1rOtjBDJzyqaTtOxKbtiKuhKagGCoS1/AJpwYWh8kLhRhGPE9J0FZaZ6Fg== -----END CERTIFICATE-----Generated at Sat Jun 1 15:54:44 2024 by rpki-client on console-ams.rpki-client.org