$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/CrbKbhSv-dcmDtY0Ko-yV431H04.roa File: CrbKbhSv-dcmDtY0Ko-yV431H04.roa (raw, json) Hash identifier: pz4yYNbX9yE3TGqUZwDY6wj4uvIHX9vUkbE1BxrStRY= Subject key identifier: 0A:B6:CA:6E:14:AF:F9:D7:26:0E:D6:34:2A:8F:B2:57:8D:F5:1F:4E Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 01EC Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/CrbKbhSv-dcmDtY0Ko-yV431H04.roa Signing time: Tue 09 Jul 2024 06:06:30 +0000 ROA not before: Tue 09 Jul 2024 06:06:30 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 4713 IP address blocks: 36.52.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Oct 2024 13:34:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 492 (0x1ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: Jul 9 06:06:30 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=0AB6CA6E14AFF9D7260ED6342A8FB2578DF51F4E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:36:04:dc:a6:67:5f:19:ea:b1:d5:5a:27:39: a9:f5:bf:45:c2:4b:8c:c8:31:d3:fc:af:90:c3:95: 50:9c:3f:23:d0:6f:e2:1b:cb:76:92:7f:75:41:ae: 0f:86:61:97:05:48:9e:02:22:59:0c:e9:d8:05:70: f8:1c:54:97:6e:65:23:a6:86:15:5b:40:20:71:3c: a0:08:b2:ec:4b:52:cc:ed:75:7a:b6:d2:f7:cd:c8: 13:db:72:54:06:b2:be:36:ea:93:b8:9e:75:6f:be: ca:2f:7a:f1:3f:1b:3c:4a:98:e9:cd:11:0c:0b:81: 6a:4b:0c:ca:e3:d3:81:b1:14:54:dd:76:45:c9:06: 0c:4e:f9:7e:26:3b:59:8b:e8:ab:ee:d0:9d:ef:cc: cb:bb:05:8a:95:d4:e4:e5:af:3e:72:27:87:f9:48: fc:09:ee:59:4e:56:4d:4f:18:5d:26:d1:c3:11:ee: 25:3f:3e:14:c6:cb:6e:bb:25:b7:46:e0:05:ee:8f: 63:cf:fb:ac:61:b8:d3:22:66:71:dd:e7:02:c4:cc: fa:76:5d:f3:64:ca:d2:65:75:ac:ae:2e:75:13:9a: 71:2e:df:01:e4:a9:95:4a:b7:44:85:5a:5d:17:5c: 14:a7:f7:6e:b0:8a:36:d6:b7:58:c5:4c:38:fa:64: b3:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:B6:CA:6E:14:AF:F9:D7:26:0E:D6:34:2A:8F:B2:57:8D:F5:1F:4E X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/CrbKbhSv-dcmDtY0Ko-yV431H04.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.52.223.0/24 Signature Algorithm: sha256WithRSAEncryption 14:4c:5e:34:ad:c6:b9:bf:f7:10:88:92:c4:a3:c0:2a:a8:22: 47:cc:24:4c:4f:d7:f9:ec:ea:b7:e8:f9:3b:06:27:a0:fb:8b: 87:92:b4:41:4a:c8:ac:6b:f5:e5:94:f8:c7:2c:f0:54:15:e5: 9e:40:15:1c:73:3f:fc:71:34:35:24:c2:9d:85:08:99:be:eb: 84:da:19:ab:f3:b0:bb:bd:2e:83:df:25:70:e6:51:05:27:d6: 93:bf:54:db:7d:37:f2:e0:47:7f:06:dc:40:3f:16:63:f0:63: e2:20:aa:80:c8:1d:55:f3:e8:71:7b:2a:50:5e:79:1a:1f:bf: c8:7b:b5:0f:b6:1e:d0:29:5c:ce:c8:50:1d:76:aa:3b:16:f8: 48:db:17:d2:16:09:14:0f:21:dd:73:0d:43:0f:52:f8:61:46: cb:9a:da:86:2b:1c:0e:92:cd:85:ea:b7:1c:a0:f9:1b:35:6d: 23:f7:37:e8:ee:a4:44:fa:93:64:61:31:4a:1c:17:72:51:14: 18:5a:88:af:7a:85:52:db:35:3a:72:bc:69:1a:84:f1:31:57: 29:66:b9:d4:1a:11:3c:b4:b9:85:94:61:3e:0e:66:5b:6e:c6: 28:e1:2c:58:0c:44:f3:2b:49:db:55:e2:67:ff:3a:1f:12:78: f0:08:9f:49 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAewwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNDA3MDkw NjA2MzBaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDBBQjZDQTZFMTRBRkY5 RDcyNjBFRDYzNDJBOEZCMjU3OERGNTFGNEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDeNgTcpmdfGeqx1VonOan1v0XCS4zIMdP8r5DDlVCcPyPQb+Ib y3aSf3VBrg+GYZcFSJ4CIlkM6dgFcPgcVJduZSOmhhVbQCBxPKAIsuxLUsztdXq2 0vfNyBPbclQGsr426pO4nnVvvsovevE/GzxKmOnNEQwLgWpLDMrj04GxFFTddkXJ BgxO+X4mO1mL6Kvu0J3vzMu7BYqV1OTlrz5yJ4f5SPwJ7llOVk1PGF0m0cMR7iU/ PhTGy267JbdG4AXuj2PP+6xhuNMiZnHd5wLEzPp2XfNkytJldayuLnUTmnEu3wHk qZVKt0SFWl0XXBSn926wijbWt1jFTDj6ZLPPAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUCrbKbhSv+dcmDtY0Ko+yV431H04wHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTMxL0NyYktiaFN2LWRjbUR0WTBLby15VjQzMUgwNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAkNN8wDQYJKoZIhvcNAQELBQADggEBABRMXjStxrm/9xCIksSjwCqoIkfM JExP1/ns6rfo+TsGJ6D7i4eStEFKyKxr9eWU+Mcs8FQV5Z5AFRxzP/xxNDUkwp2F CJm+64TaGavzsLu9LoPfJXDmUQUn1pO/VNt9N/LgR38G3EA/FmPwY+IgqoDIHVXz 6HF7KlBeeRofv8h7tQ+2HtApXM7IUB12qjsW+EjbF9IWCRQPId1zDUMPUvhhRsua 2oYrHA6SzYXqtxyg+Rs1bSP3N+jupET6k2RhMUocF3JRFBhaiK96hVLbNTpyvGka hPExVylmudQaETy0uYWUYT4OZltuxijhLFgMRPMrSdtV4mf/Oh8SePAIn0k= -----END CERTIFICATE-----Generated at Fri Sep 27 06:21:47 2024 by rpki-client on console-ams.rpki-client.org