$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/958/Ce_EYb1bZZgqPEwF0U-EAGKaCq0.roa File: Ce_EYb1bZZgqPEwF0U-EAGKaCq0.roa (raw, json) Hash identifier: MhSSRIpqSVo+siJPXjjnmSOyRlusougad4ISRSlsISc= Subject key identifier: 09:EF:C4:61:BD:5B:65:98:2A:3C:4C:05:D1:4F:84:00:62:9A:0A:AD Certificate issuer: /CN=9904ECBCD85F22A2E8AE7E1F991E8345D06A9816 Certificate serial: 8B Authority key identifier: 99:04:EC:BC:D8:5F:22:A2:E8:AE:7E:1F:99:1E:83:45:D0:6A:98:16 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/mQTsvNhfIqLorn4fmR6DRdBqmBY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/958/Ce_EYb1bZZgqPEwF0U-EAGKaCq0.roa Signing time: Thu 29 Feb 2024 01:30:36 +0000 ROA not before: Thu 29 Feb 2024 01:30:36 +0000 ROA not after: Fri 14 Feb 2025 01:30:03 +0000 asID: 38631 IP address blocks: 203.104.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/958/mQTsvNhfIqLorn4fmR6DRdBqmBY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/958/mQTsvNhfIqLorn4fmR6DRdBqmBY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/mQTsvNhfIqLorn4fmR6DRdBqmBY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 02:39:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9904ECBCD85F22A2E8AE7E1F991E8345D06A9816 Validity Not Before: Feb 29 01:30:36 2024 GMT Not After : Feb 14 01:30:03 2025 GMT Subject: CN=09EFC461BD5B65982A3C4C05D14F8400629A0AAD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:b7:0d:53:59:d3:bc:f0:e4:8f:8a:32:55:b9: eb:1d:c1:f9:90:2b:c9:26:08:ac:9d:dc:c9:4b:39: 81:f5:8f:fe:67:66:0f:3a:c2:0f:0f:c4:02:ed:d3: b6:1f:da:51:88:7c:a4:83:2f:4c:4a:c5:c4:a3:9b: 94:2a:87:c9:6f:84:0c:94:94:4c:4d:99:0b:4d:23: 3f:11:4b:c2:76:3d:6b:0e:87:8a:8f:d6:7a:51:e5: 4d:33:1b:92:ec:7d:aa:e5:e6:db:4b:83:2a:e9:01: 32:24:24:be:31:55:ca:fa:ec:a7:14:4f:ec:ef:9a: 33:ba:e9:ab:de:83:4c:f2:27:9a:29:27:90:20:d6: 10:8e:7f:44:2d:51:bd:d0:da:ae:f2:6d:3b:d5:19: 51:05:f2:59:91:69:18:66:52:f7:dd:ba:22:0d:88: ef:04:1a:f5:a0:24:5b:6c:d3:cf:14:c4:17:ce:0a: 51:31:bb:e3:39:db:e7:51:7a:62:09:b7:d7:df:2a: 36:5b:2b:07:35:e5:09:a8:2f:78:63:2e:43:47:f8: 17:79:75:f3:b0:f2:f9:ba:c5:01:9c:2b:78:f9:c4: 26:78:da:07:92:42:f8:21:9e:74:a1:e3:8a:9f:8d: 2e:bf:84:55:73:ec:42:41:58:f9:76:9e:a4:da:2a: 40:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:EF:C4:61:BD:5B:65:98:2A:3C:4C:05:D1:4F:84:00:62:9A:0A:AD X509v3 Authority Key Identifier: keyid:99:04:EC:BC:D8:5F:22:A2:E8:AE:7E:1F:99:1E:83:45:D0:6A:98:16 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/958/mQTsvNhfIqLorn4fmR6DRdBqmBY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/mQTsvNhfIqLorn4fmR6DRdBqmBY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/958/Ce_EYb1bZZgqPEwF0U-EAGKaCq0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.104.158.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:05:11:89:6a:33:d8:9a:66:90:f8:4c:f5:af:89:13:ea:e9: 1d:d2:a5:82:23:f4:fc:51:65:32:94:1d:d5:d1:a5:10:0c:79: 87:09:53:66:29:e9:4f:13:a9:0b:79:30:2e:d7:5e:f9:12:0b: be:fd:31:73:0d:b4:c9:ef:91:49:5c:ef:f2:84:ca:d0:c9:c7: 4b:b6:b9:22:53:57:11:4d:49:dd:88:b7:53:ba:19:66:77:85: ba:f9:1f:79:d1:9f:64:18:e1:0f:62:a0:6f:e1:e6:f0:c1:1e: e4:89:45:b9:e7:39:c4:2a:ee:48:a0:c7:18:6f:f0:ad:cc:c9: 8b:29:40:fe:0c:22:cc:c3:c6:b6:1a:04:c8:eb:25:10:30:9a: b7:73:44:05:22:de:5d:8a:62:4e:fc:95:64:38:7b:5f:d3:85: 64:71:f3:6b:b7:05:6a:b9:69:f3:bf:6d:38:5e:bc:62:35:3b: 2f:3b:fb:ee:c1:61:1c:99:4d:0f:c5:48:97:07:00:d9:b0:41: 1f:fb:6f:2f:15:a9:96:6d:0b:5b:6e:9b:98:79:25:ce:72:40: fe:54:28:e9:e9:2b:9a:d8:3d:61:81:be:d8:43:87:83:93:88: 5c:d9:9f:61:0b:a5:28:12:b1:ac:ac:18:46:5f:f2:88:9e:b8: 9a:53:40:1c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAIswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTkw NEVDQkNEODVGMjJBMkU4QUU3RTFGOTkxRTgzNDVEMDZBOTgxNjAeFw0yNDAyMjkw MTMwMzZaFw0yNTAyMTQwMTMwMDNaMDMxMTAvBgNVBAMTKDA5RUZDNDYxQkQ1QjY1 OTgyQTNDNEMwNUQxNEY4NDAwNjI5QTBBQUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCitw1TWdO88OSPijJVuesdwfmQK8kmCKyd3MlLOYH1j/5nZg86 wg8PxALt07Yf2lGIfKSDL0xKxcSjm5Qqh8lvhAyUlExNmQtNIz8RS8J2PWsOh4qP 1npR5U0zG5Lsfarl5ttLgyrpATIkJL4xVcr67KcUT+zvmjO66aveg0zyJ5opJ5Ag 1hCOf0QtUb3Q2q7ybTvVGVEF8lmRaRhmUvfduiINiO8EGvWgJFts088UxBfOClEx u+M52+dRemIJt9ffKjZbKwc15QmoL3hjLkNH+Bd5dfOw8vm6xQGcK3j5xCZ42geS QvghnnSh44qfjS6/hFVz7EJBWPl2nqTaKkDnAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUCe/EYb1bZZgqPEwF0U+EAGKaCq0wHwYDVR0jBBgwFoAUmQTsvNhfIqLorn4f mR6DRdBqmBYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzk1OC9tUVRzdk5oZklxTG9ybjRmbVI2RFJkQnFtQlkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9tUVRzdk5oZklxTG9ybjRmbVI2RFJk QnFtQlkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvOTU4L0NlX0VZYjFiWlpncVBFd0YwVS1FQUdLYUNxMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADLaJ4wDQYJKoZIhvcNAQELBQADggEBABwFEYlqM9iaZpD4TPWviRPq6R3S pYIj9PxRZTKUHdXRpRAMeYcJU2Yp6U8TqQt5MC7XXvkSC779MXMNtMnvkUlc7/KE ytDJx0u2uSJTVxFNSd2It1O6GWZ3hbr5H3nRn2QY4Q9ioG/h5vDBHuSJRbnnOcQq 7kigxxhv8K3MyYspQP4MIszDxrYaBMjrJRAwmrdzRAUi3l2KYk78lWQ4e1/ThWRx 82u3BWq5afO/bThevGI1Oy87++7BYRyZTQ/FSJcHANmwQR/7by8VqZZtC1tum5h5 Jc5yQP5UKOnpK5rYPWGBvthDh4OTiFzZn2ELpSgSsaysGEZf8oieuJpTQBw= -----END CERTIFICATE-----Generated at Thu May 30 03:08:56 2024 by rpki-client on console-fra.rpki-client.org