$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/990/D43ZPZ6tbQvhynfzi6a_7SKgQ5Q.roa File: D43ZPZ6tbQvhynfzi6a_7SKgQ5Q.roa (raw, json) Hash identifier: ApBvpDYz7NGyjgBWDnqHLcN/VaEyEmERTZDxzZfoCa4= Subject key identifier: 0F:8D:D9:3D:9E:AD:6D:0B:E1:CA:77:F3:8B:A6:BF:ED:22:A0:43:94 Certificate issuer: /CN=42E32457C16BA874216A8F5DBB0D335BD148CB31 Certificate serial: 23 Authority key identifier: 42:E3:24:57:C1:6B:A8:74:21:6A:8F:5D:BB:0D:33:5B:D1:48:CB:31 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QuMkV8FrqHQhao9duw0zW9FIyzE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/990/D43ZPZ6tbQvhynfzi6a_7SKgQ5Q.roa Signing time: Sat 01 Jun 2024 06:45:06 +0000 ROA not before: Sat 01 Jun 2024 06:45:06 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 131965 IP address blocks: 202.237.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/990/QuMkV8FrqHQhao9duw0zW9FIyzE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/990/QuMkV8FrqHQhao9duw0zW9FIyzE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QuMkV8FrqHQhao9duw0zW9FIyzE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Jun 2024 14:09:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42E32457C16BA874216A8F5DBB0D335BD148CB31 Validity Not Before: Jun 1 06:45:06 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=0F8DD93D9EAD6D0BE1CA77F38BA6BFED22A04394 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0b:5d:3c:ec:48:86:dd:57:9f:ee:cc:e1:85: 5c:a7:64:18:3d:ca:f3:47:7f:79:43:2f:ae:b8:e0: c9:bf:b1:55:f6:04:80:55:45:79:b9:65:24:51:a3: 7f:a4:f5:24:8c:f8:8d:0b:87:70:86:e4:a9:df:6c: 33:df:6f:b9:87:c0:e1:f7:25:ae:7c:25:cc:c6:45: dc:9b:10:e5:da:eb:65:da:87:d9:df:1c:11:ff:f6: ef:18:1b:60:fb:d7:34:37:b2:cd:7e:64:49:fa:c3: 51:52:05:86:10:8e:fa:21:f1:7f:b0:4b:94:19:1e: 09:6f:4a:e7:16:51:2a:53:13:1c:c9:36:08:3b:a3: 03:59:e1:c0:35:aa:62:40:99:fe:5e:25:fc:d0:ef: ae:5e:97:fb:4b:59:3c:62:1c:0f:22:a8:8e:1f:d8: a3:41:73:3d:b8:0b:a9:c8:c2:4d:06:ee:c9:94:0f: e8:1b:c2:d9:8d:dd:fe:8e:2c:33:3e:00:83:53:1d: 85:ed:26:8f:e4:5a:12:66:c6:30:76:39:71:ac:04: 90:d8:1a:45:48:fb:d9:7b:b5:06:72:c4:08:41:6e: 63:02:a5:09:c1:93:8b:91:0f:4f:b5:3a:f1:01:bc: 2e:ee:05:4f:89:52:eb:1a:07:e0:b2:78:23:37:54: 43:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:8D:D9:3D:9E:AD:6D:0B:E1:CA:77:F3:8B:A6:BF:ED:22:A0:43:94 X509v3 Authority Key Identifier: keyid:42:E3:24:57:C1:6B:A8:74:21:6A:8F:5D:BB:0D:33:5B:D1:48:CB:31 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/990/QuMkV8FrqHQhao9duw0zW9FIyzE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QuMkV8FrqHQhao9duw0zW9FIyzE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/990/D43ZPZ6tbQvhynfzi6a_7SKgQ5Q.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.237.154.0/24 Signature Algorithm: sha256WithRSAEncryption 38:3e:b6:57:e4:c6:49:fe:0b:9a:a6:0c:f5:43:47:ce:70:23: 16:09:c9:e5:8f:5b:9f:45:04:bb:07:fd:41:66:86:eb:9c:7e: 14:b0:61:3c:75:ba:64:f9:0c:c0:2d:92:ca:0f:7f:91:1d:a8: 96:78:89:a4:74:c1:2b:f7:cf:82:94:2f:53:89:e7:e9:58:f8: 51:36:60:dc:d6:0f:ce:77:91:df:e5:a1:62:11:6c:80:1d:17: db:a3:4d:28:85:ab:91:6b:c9:9d:d7:f5:df:a1:6b:42:4a:48: 0d:26:9c:2f:0c:e2:61:c0:e5:c6:78:4d:cd:a7:b8:f0:01:24: 16:60:0e:74:15:42:a8:74:97:c1:ae:19:4e:29:d3:bd:aa:c7: db:87:43:a0:92:a0:3b:8c:ea:87:99:fe:2c:49:41:fd:72:41: 37:a5:7c:95:d6:b4:a7:7f:8f:32:fb:a4:76:f4:09:c9:98:9b: c4:f7:27:57:61:fd:09:2e:8f:43:7b:03:e4:32:16:14:97:2d: e4:08:86:90:d5:53:cc:ab:be:02:52:cb:3e:a9:0c:05:40:d8: ac:b5:de:11:94:98:21:80:72:04:d9:76:6a:6f:58:08:b2:b2: 70:6e:6e:78:fe:ef:c0:8e:92:1f:5b:c2:63:22:b7:bb:79:9a: d4:7d:66:dd -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBIzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0MkUz MjQ1N0MxNkJBODc0MjE2QThGNURCQjBEMzM1QkQxNDhDQjMxMB4XDTI0MDYwMTA2 NDUwNloXDTI1MDUxNTAxMzAwM1owMzExMC8GA1UEAxMoMEY4REQ5M0Q5RUFENkQw QkUxQ0E3N0YzOEJBNkJGRUQyMkEwNDM5NDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALMLXTzsSIbdV5/uzOGFXKdkGD3K80d/eUMvrrjgyb+xVfYEgFVF ebllJFGjf6T1JIz4jQuHcIbkqd9sM99vuYfA4fclrnwlzMZF3JsQ5drrZdqH2d8c Ef/27xgbYPvXNDeyzX5kSfrDUVIFhhCO+iHxf7BLlBkeCW9K5xZRKlMTHMk2CDuj A1nhwDWqYkCZ/l4l/NDvrl6X+0tZPGIcDyKojh/Yo0FzPbgLqcjCTQbuyZQP6BvC 2Y3d/o4sMz4Ag1Mdhe0mj+RaEmbGMHY5cawEkNgaRUj72Xu1BnLECEFuYwKlCcGT i5EPT7U68QG8Lu4FT4lS6xoH4LJ4IzdUQ3ECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQPjdk9nq1tC+HKd/OLpr/tIqBDlDAfBgNVHSMEGDAWgBRC4yRXwWuodCFqj127 DTNb0UjLMTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTkwL1F1TWtWOEZycUhRaGFvOWR1dzB6VzlGSXl6RS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1F1TWtWOEZycUhRaGFvOWR1dzB6VzlG SXl6RS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85OTAvRDQzWlBaNnRiUXZoeW5memk2YV83U0tnUTVRLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAMrtmjANBgkqhkiG9w0BAQsFAAOCAQEAOD62V+TGSf4LmqYM9UNHznAjFgnJ 5Y9bn0UEuwf9QWaG65x+FLBhPHW6ZPkMwC2Syg9/kR2olniJpHTBK/fPgpQvU4nn 6Vj4UTZg3NYPzneR3+WhYhFsgB0X26NNKIWrkWvJndf136FrQkpIDSacLwziYcDl xnhNzae48AEkFmAOdBVCqHSXwa4ZTinTvarH24dDoJKgO4zqh5n+LElB/XJBN6V8 lda0p3+PMvukdvQJyZibxPcnV2H9CS6PQ3sD5DIWFJct5AiGkNVTzKu+AlLLPqkM BUDYrLXeEZSYIYByBNl2am9YCLKycG5ueP7vwI6SH1vCYyK3u3ma1H1m3Q== -----END CERTIFICATE-----Generated at Mon Jun 17 14:52:22 2024 by rpki-client on console-ams.rpki-client.org