$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/783/alfrSX_8m_e5CFvtJvY4XR7lrLY.roa File: alfrSX_8m_e5CFvtJvY4XR7lrLY.roa (raw, json) Hash identifier: twVZNOHDnx8rjUNFHeKQwxrf9weGvbsgbzC+zWafvRA= Subject key identifier: 6A:57:EB:49:7F:FC:9B:F7:B9:08:5B:ED:26:F6:38:5D:1E:E5:AC:B6 Certificate issuer: /CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Certificate serial: 60 Authority key identifier: CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/alfrSX_8m_e5CFvtJvY4XR7lrLY.roa Signing time: Sat 31 Aug 2024 01:30:33 +0000 ROA not before: Sat 31 Aug 2024 01:30:33 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 18144 IP address blocks: 223.223.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Oct 2024 13:37:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Validity Not Before: Aug 31 01:30:33 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=6A57EB497FFC9BF7B9085BED26F6385D1EE5ACB6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e9:66:aa:75:a4:b4:d1:85:95:41:f8:ac:e0: 20:55:e0:3d:cf:02:6b:e8:ac:ad:2e:90:78:f1:ca: 30:ba:41:9c:49:28:b3:73:50:69:82:81:22:61:5d: f3:8a:a7:4d:fd:a4:20:73:79:67:fd:af:c2:1a:31: cf:a6:67:75:01:d1:b9:a4:70:6a:8c:5b:25:be:be: 75:d8:dd:3d:90:a1:04:9f:ee:fa:4a:11:40:57:b6: 07:82:a0:bd:31:46:02:35:48:7a:cd:87:5f:8e:35: fa:be:d5:da:24:76:1f:71:3d:33:e3:13:8d:36:f2: 04:05:d2:79:81:19:87:83:40:f8:09:d3:cf:ce:f4: 44:27:b0:90:dd:9c:d5:c6:ea:7d:8a:2d:df:14:d6: ae:b8:6d:10:99:67:f0:4d:70:06:83:f8:3e:d0:9d: 19:39:4b:0d:46:15:a7:4f:19:72:c1:1b:29:61:29: b3:b5:32:9a:55:26:53:26:9c:0d:83:10:88:c8:b6: 3f:a1:08:cd:b3:e3:fc:47:72:83:bd:d5:3f:93:ca: a6:4b:63:84:6b:70:55:e1:1e:2f:11:e2:32:26:85: 16:a5:87:b3:0e:ba:ca:fa:27:ea:be:f0:20:1f:bc: 0c:63:69:29:30:16:90:67:c6:9d:01:a9:ce:e5:64: 9c:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:57:EB:49:7F:FC:9B:F7:B9:08:5B:ED:26:F6:38:5D:1E:E5:AC:B6 X509v3 Authority Key Identifier: keyid:CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/alfrSX_8m_e5CFvtJvY4XR7lrLY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 223.223.0.0/17 Signature Algorithm: sha256WithRSAEncryption 31:63:7d:5e:28:13:df:1f:fe:7b:32:b2:3b:28:6e:e1:fe:03: 49:7b:e5:f3:17:0b:cc:90:56:87:8a:6d:43:b8:56:18:5d:98: 94:15:2b:b0:a1:4f:ff:c9:cf:30:d1:bd:19:ff:f2:01:4c:06: e3:69:38:8d:a9:c4:9e:55:c4:be:90:dc:c3:f9:a4:3e:22:b9: 79:de:75:be:ea:ae:19:23:2d:fb:29:03:63:89:bb:71:1c:5f: 8d:99:29:3f:c7:f9:d0:9e:73:82:0d:45:dd:98:68:72:34:f0: 86:8a:63:7d:ae:fe:4c:64:e4:c7:92:99:00:58:01:9b:39:ab: ef:de:cd:03:11:1b:b7:2c:22:82:83:aa:f5:f7:9a:88:e8:c6: f7:5a:00:bd:15:e7:5f:1f:01:7b:2f:5f:1e:82:6b:de:f1:20: d6:78:d6:e5:d4:39:5e:03:21:01:55:2e:3c:29:ef:9a:63:92: 42:ca:54:63:7a:1c:6d:fb:42:0d:1f:fa:bc:3e:9b:ed:7f:a9: 69:58:d9:3f:33:49:4b:67:fb:64:ac:87:9e:fd:7a:ca:5d:53: 3e:ff:34:d9:9c:d0:a1:fe:c2:87:fc:eb:5f:72:08:50:40:94: 5d:f8:68:fa:ce:bc:70:6c:85:ee:01:56:50:47:f7:6d:2d:da: 7d:4d:54:ab -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBYDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDQjgz MDBCMjA2NTlCQjk1MTA2MEY2MEIxRjRCQzYwOTFBRjI3NjM5MB4XDTI0MDgzMTAx MzAzM1oXDTI1MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoNkE1N0VCNDk3RkZDOUJG N0I5MDg1QkVEMjZGNjM4NUQxRUU1QUNCNjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANXpZqp1pLTRhZVB+KzgIFXgPc8Ca+isrS6QePHKMLpBnEkos3NQ aYKBImFd84qnTf2kIHN5Z/2vwhoxz6ZndQHRuaRwaoxbJb6+ddjdPZChBJ/u+koR QFe2B4KgvTFGAjVIes2HX441+r7V2iR2H3E9M+MTjTbyBAXSeYEZh4NA+AnTz870 RCewkN2c1cbqfYot3xTWrrhtEJln8E1wBoP4PtCdGTlLDUYVp08ZcsEbKWEps7Uy mlUmUyacDYMQiMi2P6EIzbPj/Edyg73VP5PKpktjhGtwVeEeLxHiMiaFFqWHsw66 yvon6r7wIB+8DGNpKTAWkGfGnQGpzuVknAcCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRqV+tJf/yb97kIW+0m9jhdHuWstjAfBgNVHSMEGDAWgBTLgwCyBlm7lRBg9gsf S8YJGvJ2OTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNzgzL3k0TUFzZ1padTVVUVlQWUxIMHZHQ1JyeWRqay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3k0TUFzZ1padTVVUVlQWUxIMHZHQ1Jy eWRqay5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC83ODMvYWxmclNYXzhtX2U1Q0Z2dEp2WTRYUjdsckxZLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEB9/fADANBgkqhkiG9w0BAQsFAAOCAQEAMWN9XigT3x/+ezKyOyhu4f4DSXvl 8xcLzJBWh4ptQ7hWGF2YlBUrsKFP/8nPMNG9Gf/yAUwG42k4janEnlXEvpDcw/mk PiK5ed51vuquGSMt+ykDY4m7cRxfjZkpP8f50J5zgg1F3ZhocjTwhopjfa7+TGTk x5KZAFgBmzmr797NAxEbtywigoOq9feaiOjG91oAvRXnXx8Bey9fHoJr3vEg1njW 5dQ5XgMhAVUuPCnvmmOSQspUY3ocbftCDR/6vD6b7X+paVjZPzNJS2f7ZKyHnv16 yl1TPv802ZzQof7Ch/zrX3IIUECUXfho+s68cGyF7gFWUEf3bS3afU1Uqw== -----END CERTIFICATE-----Generated at Fri Sep 27 05:00:26 2024 by rpki-client on console-fra.rpki-client.org