$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/CW-RwtEWp1vn78a6DB3hmcp3FYc.roa File: CW-RwtEWp1vn78a6DB3hmcp3FYc.roa (raw, json) Hash identifier: 8odJ5q/qCRHlu+HfU5D21NgKV0AZTQPYkhVZxxLBHz8= Subject key identifier: 09:6F:91:C2:D1:16:A7:5B:E7:EF:C6:BA:0C:1D:E1:99:CA:77:15:87 Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 01A1 Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/CW-RwtEWp1vn78a6DB3hmcp3FYc.roa Signing time: Sun 31 Mar 2024 01:29:00 +0000 ROA not before: Sun 31 Mar 2024 01:29:00 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 4713 IP address blocks: 211.130.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jul 2024 07:52:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 417 (0x1a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: Mar 31 01:29:00 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=096F91C2D116A75BE7EFC6BA0C1DE199CA771587 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:16:3c:4c:d9:f8:88:48:a7:14:42:7b:5a:41: 63:91:b9:f2:88:3c:32:52:e7:47:92:b9:5e:7b:fb: ea:a1:28:21:51:af:96:f3:54:6e:5d:79:c9:10:3e: af:2f:6c:81:ab:92:53:3a:33:63:49:88:5e:94:f4: 7b:b1:8a:5b:b1:37:3b:45:09:ac:de:43:90:95:64: 41:11:28:06:86:f2:15:eb:64:c5:df:66:80:af:0d: fd:3c:09:7b:8b:cc:84:27:a8:8a:35:ad:ea:c6:2d: e7:ef:7b:62:cc:e2:a1:8a:40:d0:d6:54:78:13:aa: f5:ba:e2:f5:7a:58:86:68:5e:e8:8b:26:5a:c1:95: 39:89:22:10:49:bd:31:62:5b:a5:3e:3f:c2:3e:be: 31:5e:5d:57:5e:46:01:7c:5c:07:2a:3a:71:0e:ec: 7f:57:c2:4c:27:c0:ec:15:ee:4d:9e:b2:fd:3e:1e: 17:2b:eb:e8:cd:4b:9e:99:dc:b6:85:e6:c0:11:6b: 18:42:9c:65:ab:80:80:cb:35:48:be:f0:94:89:ac: 4e:11:15:f7:6a:c0:a1:0a:05:c0:69:43:73:74:7c: f3:c2:8d:fa:04:fb:c4:ac:14:08:ae:ff:68:ac:68: 59:fc:0e:e4:8c:02:79:dc:2a:89:e8:3b:42:fb:88: 5b:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:6F:91:C2:D1:16:A7:5B:E7:EF:C6:BA:0C:1D:E1:99:CA:77:15:87 X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/CW-RwtEWp1vn78a6DB3hmcp3FYc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.130.0.0/18 Signature Algorithm: sha256WithRSAEncryption bd:1b:8b:7a:e1:57:41:79:02:ba:20:38:ee:45:0f:c7:02:c4: 60:c9:99:8e:38:31:26:37:0c:05:fe:b4:4b:77:ba:ec:f2:06: 1b:dc:f5:0d:f0:14:c7:bb:79:ae:c0:06:1f:d3:f1:2c:50:48: ec:1f:70:8d:aa:db:ea:a3:91:15:02:4f:65:92:ac:d9:ab:d9: ab:f7:55:41:fc:27:60:b0:8d:36:f7:4e:3e:7f:70:39:96:4d: 6c:7a:99:f8:c3:88:43:10:1a:60:77:67:f2:fe:81:b3:63:de: 53:ff:a6:72:f9:e2:ca:ec:0f:db:97:29:51:e8:c2:19:8c:91: 93:16:05:32:4c:02:a2:6d:3e:7e:db:99:61:c6:8f:dc:31:0e: 58:29:22:d3:53:f7:7b:69:f5:16:2c:fc:de:08:cb:d7:c9:23: 5f:22:4f:0c:6a:c7:34:98:b6:e7:cb:9d:3e:9f:42:28:61:63: ff:ac:a4:61:44:5f:27:ba:49:55:10:d6:75:60:dc:b2:83:b4: b0:c9:99:30:c7:4f:51:72:6b:88:a2:b2:fd:5e:5d:07:66:e1: f8:9a:f0:4e:c9:9c:b8:63:0c:3e:69:88:ca:2c:f9:03:56:fa: be:82:2e:0c:a1:9c:65:1d:fc:0a:70:f7:6f:44:27:31:4e:b0: 7e:4e:4c:59 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAaEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNDAzMzEw MTI5MDBaFw0yNTAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDA5NkY5MUMyRDExNkE3 NUJFN0VGQzZCQTBDMURFMTk5Q0E3NzE1ODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqFjxM2fiISKcUQntaQWORufKIPDJS50eSuV57++qhKCFRr5bz VG5deckQPq8vbIGrklM6M2NJiF6U9HuxiluxNztFCazeQ5CVZEERKAaG8hXrZMXf ZoCvDf08CXuLzIQnqIo1rerGLefve2LM4qGKQNDWVHgTqvW64vV6WIZoXuiLJlrB lTmJIhBJvTFiW6U+P8I+vjFeXVdeRgF8XAcqOnEO7H9XwkwnwOwV7k2esv0+Hhcr 6+jNS56Z3LaF5sARaxhCnGWrgIDLNUi+8JSJrE4RFfdqwKEKBcBpQ3N0fPPCjfoE +8SsFAiu/2isaFn8DuSMAnncKonoO0L7iFvFAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUCW+RwtEWp1vn78a6DB3hmcp3FYcwHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTMxL0NXLVJ3dEVXcDF2bjc4YTZEQjNobWNwM0ZZYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAbTggAwDQYJKoZIhvcNAQELBQADggEBAL0bi3rhV0F5ArogOO5FD8cCxGDJ mY44MSY3DAX+tEt3uuzyBhvc9Q3wFMe7ea7ABh/T8SxQSOwfcI2q2+qjkRUCT2WS rNmr2av3VUH8J2CwjTb3Tj5/cDmWTWx6mfjDiEMQGmB3Z/L+gbNj3lP/pnL54srs D9uXKVHowhmMkZMWBTJMAqJtPn7bmWHGj9wxDlgpItNT93tp9RYs/N4Iy9fJI18i TwxqxzSYtufLnT6fQihhY/+spGFEXye6SVUQ1nVg3LKDtLDJmTDHT1Fya4iisv1e XQdm4fia8E7JnLhjDD5piMos+QNW+r6CLgyhnGUd/Apw929EJzFOsH5OTFk= -----END CERTIFICATE-----Generated at Wed Jun 26 09:28:33 2024 by rpki-client on console-fra.rpki-client.org