$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/990/Nn5eM7Ol2cDC1mTfftTwMeWppG0.roa File: Nn5eM7Ol2cDC1mTfftTwMeWppG0.roa (raw, json) Hash identifier: Ps4sJL8VL4TVYtIC8fxUA4FZ8cyzopALtaE0x44fRrY= Subject key identifier: 36:7E:5E:33:B3:A5:D9:C0:C2:D6:64:DF:7E:D4:F0:31:E5:A9:A4:6D Certificate issuer: /CN=42E32457C16BA874216A8F5DBB0D335BD148CB31 Certificate serial: 22 Authority key identifier: 42:E3:24:57:C1:6B:A8:74:21:6A:8F:5D:BB:0D:33:5B:D1:48:CB:31 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QuMkV8FrqHQhao9duw0zW9FIyzE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/990/Nn5eM7Ol2cDC1mTfftTwMeWppG0.roa Signing time: Mon 20 May 2024 03:25:47 +0000 ROA not before: Mon 20 May 2024 03:25:47 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 131965 IP address blocks: 222.228.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/990/QuMkV8FrqHQhao9duw0zW9FIyzE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/990/QuMkV8FrqHQhao9duw0zW9FIyzE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QuMkV8FrqHQhao9duw0zW9FIyzE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42E32457C16BA874216A8F5DBB0D335BD148CB31 Validity Not Before: May 20 03:25:47 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=367E5E33B3A5D9C0C2D664DF7ED4F031E5A9A46D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:5f:5f:41:07:e1:5e:91:7e:fd:9c:10:87:54: c9:66:1d:b5:78:20:47:13:99:fd:41:7a:c9:85:62: bf:40:1f:14:50:93:3f:3c:ec:a6:ba:14:b8:13:46: 3c:90:b1:97:25:70:3c:87:55:e5:d7:01:d5:ba:70: 0c:ee:8d:45:99:83:db:17:e0:db:7c:47:eb:d3:ac: f1:be:52:cd:36:82:23:4c:8f:1d:66:d6:83:3b:28: 7b:08:88:18:29:e4:cd:7b:9c:d9:57:e6:c6:be:ff: 55:27:25:66:e7:0a:5f:81:6f:24:af:78:59:70:da: c6:77:c8:42:1e:b5:0e:f9:b9:13:30:64:48:0d:55: dc:22:d7:62:0f:d0:bf:f6:8d:2a:43:88:03:54:1d: 3b:64:e6:47:6a:36:a1:2a:3a:23:29:af:01:4e:1e: 77:86:f4:3a:2c:a9:06:15:85:d7:bd:36:8a:99:c5: 9f:48:bd:b2:11:da:b2:c6:10:57:f3:ad:73:e9:cc: e3:a3:c1:53:d9:5f:c0:79:72:3b:1a:6e:22:03:1f: 34:3a:a8:7d:5a:dc:1c:77:6e:2c:ca:37:ee:78:dd: 49:45:84:a7:16:7d:fe:38:d6:78:e7:c6:db:9e:50: 9a:db:b4:03:67:4c:0b:18:5d:98:3a:c2:f7:7e:9e: d4:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:7E:5E:33:B3:A5:D9:C0:C2:D6:64:DF:7E:D4:F0:31:E5:A9:A4:6D X509v3 Authority Key Identifier: keyid:42:E3:24:57:C1:6B:A8:74:21:6A:8F:5D:BB:0D:33:5B:D1:48:CB:31 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/990/QuMkV8FrqHQhao9duw0zW9FIyzE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QuMkV8FrqHQhao9duw0zW9FIyzE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/990/Nn5eM7Ol2cDC1mTfftTwMeWppG0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 222.228.64.0/20 Signature Algorithm: sha256WithRSAEncryption a9:07:de:22:eb:d1:aa:cd:bc:2b:b9:5e:99:8a:84:4d:d0:7d: c5:67:ff:d4:53:cd:95:f0:65:de:6f:03:5e:34:6d:92:ef:95: f4:20:b5:e0:80:0c:a6:2e:6f:20:8a:42:3d:34:84:c1:ef:13: 03:c1:6a:07:a0:f6:f2:6a:29:af:b6:24:b9:a3:95:99:a3:42: d7:14:91:c6:aa:c8:84:33:f7:57:f4:4e:2d:a8:cd:8e:b2:95: 65:26:75:19:f1:ff:bd:9a:da:31:8f:6e:46:ca:03:f1:90:ba: 58:b4:a2:84:bf:fa:23:85:42:b6:09:bc:24:30:e5:c2:94:dd: d5:d5:cd:68:05:e5:2c:5a:df:a5:fd:e0:b1:0c:71:7e:08:d7: 84:61:f8:1e:6a:4b:3a:ec:d5:c6:80:26:f4:14:50:84:f3:fe: 3b:a2:44:1f:65:60:bd:90:40:1a:78:f8:83:1f:93:2a:98:41: 1c:b6:6f:99:4d:ca:b7:66:d2:49:67:32:c0:47:fa:a4:79:5e: 43:bd:f3:41:74:07:fd:99:7a:7e:c5:7a:58:91:a5:10:83:d8: c2:00:fc:3b:95:25:f5:b4:98:b8:72:b6:70:14:01:e9:ce:7b: 82:37:fd:9a:d9:7a:d5:d2:1a:ef:8b:f8:e6:df:90:2f:a4:a2: 1e:6c:d4:b1 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBIjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0MkUz MjQ1N0MxNkJBODc0MjE2QThGNURCQjBEMzM1QkQxNDhDQjMxMB4XDTI0MDUyMDAz MjU0N1oXDTI1MDUxNTAxMzAwM1owMzExMC8GA1UEAxMoMzY3RTVFMzNCM0E1RDlD MEMyRDY2NERGN0VENEYwMzFFNUE5QTQ2RDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAN5fX0EH4V6Rfv2cEIdUyWYdtXggRxOZ/UF6yYViv0AfFFCTPzzs proUuBNGPJCxlyVwPIdV5dcB1bpwDO6NRZmD2xfg23xH69Os8b5SzTaCI0yPHWbW gzsoewiIGCnkzXuc2Vfmxr7/VSclZucKX4FvJK94WXDaxnfIQh61Dvm5EzBkSA1V 3CLXYg/Qv/aNKkOIA1QdO2TmR2o2oSo6IymvAU4ed4b0OiypBhWF1702ipnFn0i9 shHassYQV/Otc+nM46PBU9lfwHlyOxpuIgMfNDqofVrcHHduLMo37njdSUWEpxZ9 /jjWeOfG255Qmtu0A2dMCxhdmDrC936e1DkCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQ2fl4zs6XZwMLWZN9+1PAx5amkbTAfBgNVHSMEGDAWgBRC4yRXwWuodCFqj127 DTNb0UjLMTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTkwL1F1TWtWOEZycUhRaGFvOWR1dzB6VzlGSXl6RS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1F1TWtWOEZycUhRaGFvOWR1dzB6VzlG SXl6RS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85OTAvTm41ZU03T2wyY0RDMW1UZmZ0VHdNZVdwcEcwLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBN7kQDANBgkqhkiG9w0BAQsFAAOCAQEAqQfeIuvRqs28K7lemYqETdB9xWf/ 1FPNlfBl3m8DXjRtku+V9CC14IAMpi5vIIpCPTSEwe8TA8FqB6D28mopr7YkuaOV maNC1xSRxqrIhDP3V/ROLajNjrKVZSZ1GfH/vZraMY9uRsoD8ZC6WLSihL/6I4VC tgm8JDDlwpTd1dXNaAXlLFrfpf3gsQxxfgjXhGH4HmpLOuzVxoAm9BRQhPP+O6JE H2VgvZBAGnj4gx+TKphBHLZvmU3Kt2bSSWcywEf6pHleQ73zQXQH/Zl6fsV6WJGl EIPYwgD8O5Ul9bSYuHK2cBQB6c57gjf9mtl61dIa74v45t+QL6SiHmzUsQ== -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:07 2024 by rpki-client on console-fra.rpki-client.org