$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/965/QK4S3RxvDkeAvvRNzxPab0riCVc.roa File: QK4S3RxvDkeAvvRNzxPab0riCVc.roa (raw, json) Hash identifier: /T1wnifkk1XmMWyXRKR7NEuopBr/F/xm4wFkfWrWD8A= Subject key identifier: 40:AE:12:DD:1C:6F:0E:47:80:BE:F4:4D:CF:13:DA:6F:4A:E2:09:57 Certificate issuer: /CN=989E82672C98A627120ABA72DEBEBE22015849A0 Certificate serial: 08 Authority key identifier: 98:9E:82:67:2C:98:A6:27:12:0A:BA:72:DE:BE:BE:22:01:58:49:A0 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/mJ6CZyyYpicSCrpy3r6-IgFYSaA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/965/QK4S3RxvDkeAvvRNzxPab0riCVc.roa Signing time: Fri 05 Apr 2024 02:54:23 +0000 ROA not before: Fri 05 Apr 2024 02:54:23 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 59127 IP address blocks: 113.197.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/965/mJ6CZyyYpicSCrpy3r6-IgFYSaA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/965/mJ6CZyyYpicSCrpy3r6-IgFYSaA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/mJ6CZyyYpicSCrpy3r6-IgFYSaA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Sep 2024 01:30:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=989E82672C98A627120ABA72DEBEBE22015849A0 Validity Not Before: Apr 5 02:54:23 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=40AE12DD1C6F0E4780BEF44DCF13DA6F4AE20957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:cb:d4:10:ff:88:54:1c:08:16:22:82:6e:8f: 47:ae:cc:f0:3e:61:87:1d:8a:48:94:30:3e:f9:3d: 79:7d:bf:e5:24:70:e4:64:63:2b:0e:b6:b4:16:99: 67:ac:ea:6d:2d:11:71:64:e0:48:7a:97:68:db:48: 12:7c:93:4d:30:dc:49:3c:a7:92:39:d0:5c:be:1b: da:93:cd:38:44:99:98:11:e4:eb:7a:e0:b8:ed:72: 90:b9:5f:30:dc:1b:89:de:4a:6a:c3:66:52:cf:db: 7a:a4:10:c0:c2:c6:97:c2:15:8d:2e:48:11:6f:35: 02:3d:8d:ca:77:69:ee:01:43:a0:c4:7d:45:79:20: 17:ee:df:2d:23:44:13:de:1c:21:7f:5a:fe:fe:34: a2:94:a9:38:84:71:e4:64:ff:ec:45:36:b1:e1:9d: 68:91:c0:98:d5:b3:ff:9d:0e:c5:1b:d9:cc:fe:4c: 7a:2c:8f:98:d0:0a:e5:ff:67:be:22:96:b7:9b:2e: 12:ae:09:94:2c:ea:46:99:a0:17:91:c2:77:ae:98: 9c:9d:58:f6:3e:c0:d7:5b:e2:64:66:0f:c6:0e:4e: 75:03:cf:a9:fb:99:88:8c:af:bf:e8:cc:95:69:be: 30:63:8a:48:9d:e5:75:d2:37:6c:29:32:aa:b4:ff: 75:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:AE:12:DD:1C:6F:0E:47:80:BE:F4:4D:CF:13:DA:6F:4A:E2:09:57 X509v3 Authority Key Identifier: keyid:98:9E:82:67:2C:98:A6:27:12:0A:BA:72:DE:BE:BE:22:01:58:49:A0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/965/mJ6CZyyYpicSCrpy3r6-IgFYSaA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/mJ6CZyyYpicSCrpy3r6-IgFYSaA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/965/QK4S3RxvDkeAvvRNzxPab0riCVc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.197.40.0/21 Signature Algorithm: sha256WithRSAEncryption d1:67:f7:5a:24:1e:ae:74:5f:f4:9a:08:63:ab:77:11:c0:4c: d3:fc:c9:05:d2:9d:13:c7:c6:67:b0:13:28:e8:51:fd:58:03: 38:a9:11:e4:b1:c6:77:b9:c9:fa:f5:6b:c2:8a:73:4a:8f:3e: 49:c0:68:6e:c7:17:48:9c:6e:ab:4a:93:0c:58:49:aa:56:e6: 29:f1:4a:7c:55:df:e4:8d:b9:28:15:f4:9d:57:a8:1a:48:31: 63:d2:c3:e1:57:93:6b:1f:f1:3d:db:e4:b5:f9:27:94:e2:b1: 3f:11:82:c6:0b:3d:3b:0c:24:c1:d0:7d:27:2d:75:66:9a:4c: 3f:57:13:b9:dd:af:63:e4:37:ee:88:32:d0:cd:de:24:cf:13: 47:b3:2f:28:99:23:8d:fd:bb:bd:0d:9b:0d:cd:7f:82:24:20: 67:f8:43:f3:ee:20:69:4d:52:ec:d4:1c:e4:12:0a:99:02:1a: 20:fd:09:e8:18:06:18:c9:25:76:37:3b:71:dc:fe:ba:ce:76: 9a:02:7e:f2:35:54:f4:a3:d8:e2:3f:07:4b:7e:89:13:6c:51: 58:0b:2a:f0:41:a3:98:65:93:af:81:1b:3b:cb:00:de:6a:43: 80:1d:c4:6b:92:ed:ec:b3:95:e4:b7:60:78:77:c7:cf:9f:30: a2:04:a9:c7 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBCDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5ODlF ODI2NzJDOThBNjI3MTIwQUJBNzJERUJFQkUyMjAxNTg0OUEwMB4XDTI0MDQwNTAy NTQyM1oXDTI1MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoNDBBRTEyREQxQzZGMEU0 NzgwQkVGNDREQ0YxM0RBNkY0QUUyMDk1NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALDL1BD/iFQcCBYigm6PR67M8D5hhx2KSJQwPvk9eX2/5SRw5GRj Kw62tBaZZ6zqbS0RcWTgSHqXaNtIEnyTTTDcSTynkjnQXL4b2pPNOESZmBHk63rg uO1ykLlfMNwbid5KasNmUs/beqQQwMLGl8IVjS5IEW81Aj2Nyndp7gFDoMR9RXkg F+7fLSNEE94cIX9a/v40opSpOIRx5GT/7EU2seGdaJHAmNWz/50OxRvZzP5MeiyP mNAK5f9nviKWt5suEq4JlCzqRpmgF5HCd66YnJ1Y9j7A11viZGYPxg5OdQPPqfuZ iIyvv+jMlWm+MGOKSJ3lddI3bCkyqrT/dbMCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRArhLdHG8OR4C+9E3PE9pvSuIJVzAfBgNVHSMEGDAWgBSYnoJnLJimJxIKunLe vr4iAVhJoDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTY1L21KNkNaeXlZcGljU0NycHkzcjYtSWdGWVNhQS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL21KNkNaeXlZcGljU0NycHkzcjYtSWdG WVNhQS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85NjUvUUs0UzNSeHZEa2VBdnZSTnp4UGFiMHJpQ1ZjLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA3HFKDANBgkqhkiG9w0BAQsFAAOCAQEA0Wf3WiQernRf9JoIY6t3EcBM0/zJ BdKdE8fGZ7ATKOhR/VgDOKkR5LHGd7nJ+vVrwopzSo8+ScBobscXSJxuq0qTDFhJ qlbmKfFKfFXf5I25KBX0nVeoGkgxY9LD4VeTax/xPdvktfknlOKxPxGCxgs9Owwk wdB9Jy11ZppMP1cTud2vY+Q37ogy0M3eJM8TR7MvKJkjjf27vQ2bDc1/giQgZ/hD 8+4gaU1S7NQc5BIKmQIaIP0J6BgGGMkldjc7cdz+us52mgJ+8jVU9KPY4j8HS36J E2xRWAsq8EGjmGWTr4EbO8sA3mpDgB3Ea5Lt7LOV5LdgeHfHz58wogSpxw== -----END CERTIFICATE-----Generated at Fri Sep 20 10:52:09 2024 by rpki-client on console-fra.rpki-client.org