$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/958/4HfnvjklblmXvYSyDvpksJctO4Y.roa File: 4HfnvjklblmXvYSyDvpksJctO4Y.roa (raw, json) Hash identifier: N5/ClkjJd/gl4ZLM8IolTySnxg3gJITc8KAuzmnGKow= Subject key identifier: E0:77:E7:BE:39:25:6E:59:97:BD:84:B2:0E:FA:64:B0:97:2D:3B:86 Certificate issuer: /CN=9904ECBCD85F22A2E8AE7E1F991E8345D06A9816 Certificate serial: 89 Authority key identifier: 99:04:EC:BC:D8:5F:22:A2:E8:AE:7E:1F:99:1E:83:45:D0:6A:98:16 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/mQTsvNhfIqLorn4fmR6DRdBqmBY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/958/4HfnvjklblmXvYSyDvpksJctO4Y.roa Signing time: Thu 29 Feb 2024 01:30:36 +0000 ROA not before: Thu 29 Feb 2024 01:30:36 +0000 ROA not after: Fri 14 Feb 2025 01:30:03 +0000 asID: 38631 IP address blocks: 203.104.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/958/mQTsvNhfIqLorn4fmR6DRdBqmBY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/958/mQTsvNhfIqLorn4fmR6DRdBqmBY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/mQTsvNhfIqLorn4fmR6DRdBqmBY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 02:39:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9904ECBCD85F22A2E8AE7E1F991E8345D06A9816 Validity Not Before: Feb 29 01:30:36 2024 GMT Not After : Feb 14 01:30:03 2025 GMT Subject: CN=E077E7BE39256E5997BD84B20EFA64B0972D3B86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:57:e5:7c:78:19:01:3d:6c:1f:eb:f2:69:c4: 21:5c:c9:12:48:61:14:fa:7a:6f:53:28:2f:ec:b1: ff:f3:ed:d1:b2:f5:9b:23:19:71:61:43:7b:2c:4e: f9:54:9c:79:25:b6:dc:08:86:15:06:f2:72:bb:a7: 6b:36:ea:f6:ab:21:af:b3:d4:f7:44:49:16:5d:46: 93:27:a3:f5:aa:ab:7c:f4:b0:e4:21:38:c1:e9:50: a4:39:dc:e9:f3:ff:99:d9:57:83:a8:19:7c:36:a6: a7:7f:41:18:08:f5:ad:4c:27:1f:22:44:3b:e4:7a: 2f:b2:b0:16:24:16:88:3d:54:03:24:97:36:0c:31: 13:4f:2c:b3:fd:90:37:93:0c:ef:7f:ef:e5:bf:67: b9:49:87:bb:ef:ff:7a:ea:d6:ec:1b:a4:62:ae:bd: e7:da:95:15:2b:22:a9:f0:ae:51:9c:b0:39:cb:94: 23:f9:3d:12:21:ef:8a:9d:43:84:7f:ab:81:54:f8: 22:97:18:01:12:b5:8c:7c:0c:66:70:2b:97:3d:fa: ea:e0:6f:3c:58:06:ac:1b:8d:95:d9:10:9a:eb:c4: 20:82:bb:c0:50:a8:4d:da:dc:2e:42:17:7b:25:1c: 7a:d6:ac:0e:09:84:ca:99:48:68:54:75:b2:22:57: 59:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:77:E7:BE:39:25:6E:59:97:BD:84:B2:0E:FA:64:B0:97:2D:3B:86 X509v3 Authority Key Identifier: keyid:99:04:EC:BC:D8:5F:22:A2:E8:AE:7E:1F:99:1E:83:45:D0:6A:98:16 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/958/mQTsvNhfIqLorn4fmR6DRdBqmBY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/mQTsvNhfIqLorn4fmR6DRdBqmBY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/958/4HfnvjklblmXvYSyDvpksJctO4Y.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.104.152.0/22 Signature Algorithm: sha256WithRSAEncryption 5c:26:75:db:a2:56:fa:04:24:a3:f9:47:c4:a6:1e:51:d1:5d: 6d:7b:22:67:79:4f:17:bd:1f:41:69:ab:74:4a:f4:95:1d:1c: 2e:1c:49:23:0d:34:e4:c2:36:cb:72:fb:e6:7c:54:9b:6e:51: 38:75:be:5f:b2:f7:4a:c2:73:a3:f2:96:ce:88:a5:d8:50:57: 1d:c9:47:5b:24:54:cd:8c:10:45:77:f7:c7:98:a9:b3:f9:c4: f2:4c:77:f2:45:40:7b:08:2d:0b:e9:33:7b:df:30:f2:cf:e4: 14:7a:b9:73:79:34:f7:dc:e6:8c:bf:e6:93:7f:4b:33:7b:ec: e4:e3:fd:a6:c3:ad:64:b9:18:21:78:a2:a1:ee:08:b1:91:a8: 79:7b:50:8a:be:b6:91:af:6b:14:a4:b3:02:44:a0:b1:7f:af: dc:fc:5f:3b:f2:3d:57:33:51:34:bd:29:4f:67:60:dc:81:e5: 08:eb:18:35:01:ad:17:0b:c1:5f:a4:1f:46:32:eb:5e:e4:1e: e0:ee:6c:85:d7:0c:2c:89:a2:76:77:89:ca:df:ce:5a:07:1d: cb:08:4a:57:f4:6e:a5:88:0a:10:8c:33:40:53:de:c4:9f:d2: 55:14:2b:f0:cc:d3:3e:6c:b9:1f:c8:23:13:85:37:60:bd:99: a5:34:8a:44 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTkw NEVDQkNEODVGMjJBMkU4QUU3RTFGOTkxRTgzNDVEMDZBOTgxNjAeFw0yNDAyMjkw MTMwMzZaFw0yNTAyMTQwMTMwMDNaMDMxMTAvBgNVBAMTKEUwNzdFN0JFMzkyNTZF NTk5N0JEODRCMjBFRkE2NEIwOTcyRDNCODYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAV+V8eBkBPWwf6/JpxCFcyRJIYRT6em9TKC/ssf/z7dGy9Zsj GXFhQ3ssTvlUnHklttwIhhUG8nK7p2s26varIa+z1PdESRZdRpMno/Wqq3z0sOQh OMHpUKQ53Onz/5nZV4OoGXw2pqd/QRgI9a1MJx8iRDvkei+ysBYkFog9VAMklzYM MRNPLLP9kDeTDO9/7+W/Z7lJh7vv/3rq1uwbpGKuvefalRUrIqnwrlGcsDnLlCP5 PRIh74qdQ4R/q4FU+CKXGAEStYx8DGZwK5c9+urgbzxYBqwbjZXZEJrrxCCCu8BQ qE3a3C5CF3slHHrWrA4JhMqZSGhUdbIiV1mfAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU4HfnvjklblmXvYSyDvpksJctO4YwHwYDVR0jBBgwFoAUmQTsvNhfIqLorn4f mR6DRdBqmBYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzk1OC9tUVRzdk5oZklxTG9ybjRmbVI2RFJkQnFtQlkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9tUVRzdk5oZklxTG9ybjRmbVI2RFJk QnFtQlkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvOTU4LzRIZm52amtsYmxtWHZZU3lEdnBrc0pjdE80WS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALLaJgwDQYJKoZIhvcNAQELBQADggEBAFwmdduiVvoEJKP5R8SmHlHRXW17 Imd5Txe9H0Fpq3RK9JUdHC4cSSMNNOTCNsty++Z8VJtuUTh1vl+y90rCc6Pyls6I pdhQVx3JR1skVM2MEEV398eYqbP5xPJMd/JFQHsILQvpM3vfMPLP5BR6uXN5NPfc 5oy/5pN/SzN77OTj/abDrWS5GCF4oqHuCLGRqHl7UIq+tpGvaxSkswJEoLF/r9z8 XzvyPVczUTS9KU9nYNyB5QjrGDUBrRcLwV+kH0Yy617kHuDubIXXDCyJonZ3icrf zloHHcsISlf0bqWIChCMM0BT3sSf0lUUK/DM0z5suR/IIxOFN2C9maU0ikQ= -----END CERTIFICATE-----Generated at Thu May 30 03:08:56 2024 by rpki-client on console-fra.rpki-client.org