$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/840/9ZG0b03xc2OirWCsVXPmIJk8AJg.roa File: 9ZG0b03xc2OirWCsVXPmIJk8AJg.roa (raw, json) Hash identifier: Q6AFyrv7W6O+uwaPADzNEqgEf72a8BMY97dp9+4ayKw= Subject key identifier: F5:91:B4:6F:4D:F1:73:63:A2:AD:60:AC:55:73:E6:20:99:3C:00:98 Certificate issuer: /CN=D79B3890C2DA3795148976B954C2024056797554 Certificate serial: 34 Authority key identifier: D7:9B:38:90:C2:DA:37:95:14:89:76:B9:54:C2:02:40:56:79:75:54 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/15s4kMLaN5UUiXa5VMICQFZ5dVQ.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/9ZG0b03xc2OirWCsVXPmIJk8AJg.roa Signing time: Tue 28 May 2024 01:03:08 +0000 ROA not before: Tue 28 May 2024 01:03:08 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 131934 IP address blocks: 222.229.0.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/15s4kMLaN5UUiXa5VMICQFZ5dVQ.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/15s4kMLaN5UUiXa5VMICQFZ5dVQ.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/15s4kMLaN5UUiXa5VMICQFZ5dVQ.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Sep 2024 01:35:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D79B3890C2DA3795148976B954C2024056797554 Validity Not Before: May 28 01:03:08 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=F591B46F4DF17363A2AD60AC5573E620993C0098 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:aa:a6:a3:6b:ad:c6:1f:ed:d0:03:4a:f4:9d: e7:84:1b:74:92:c7:44:7b:35:ff:62:05:47:e1:09: 63:97:0e:ae:75:5a:16:cb:5a:dc:b3:b1:31:e2:9d: 33:0f:ed:fa:39:25:6b:26:9b:e8:df:7f:9a:df:fd: 94:00:5e:b3:ca:d3:c2:c1:73:0b:09:8b:d6:56:a9: c5:32:ce:22:ca:e7:a8:e0:27:33:71:f9:ee:35:8b: d1:fa:f8:8e:a1:df:1b:a3:8b:c2:e6:ef:df:7b:9e: cb:73:f9:bd:30:8d:7a:02:66:b3:87:32:20:89:28: e9:61:14:3b:0b:02:46:fd:2e:db:b5:2a:82:bd:11: d3:cf:1c:7b:56:3b:e3:ff:4b:bb:d1:fd:8f:17:69: a4:bf:62:aa:19:69:e3:8b:8d:d5:ec:6a:ec:e9:b7: 54:cb:f5:6b:39:f5:5d:2e:89:80:4d:64:29:3f:27: 06:80:db:73:08:57:72:bb:b0:70:11:95:e8:33:55: 42:ef:f0:c3:9f:3d:c0:0a:a3:1d:fa:3f:9b:c0:de: 40:87:33:83:3c:f3:04:04:d2:38:5a:1e:29:f3:a9: da:e2:65:21:d9:cc:dd:4d:48:5e:47:fb:c5:b1:eb: fb:ac:df:9c:c5:cd:cc:3a:9d:33:d8:5b:67:10:9a: d8:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:91:B4:6F:4D:F1:73:63:A2:AD:60:AC:55:73:E6:20:99:3C:00:98 X509v3 Authority Key Identifier: keyid:D7:9B:38:90:C2:DA:37:95:14:89:76:B9:54:C2:02:40:56:79:75:54 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/15s4kMLaN5UUiXa5VMICQFZ5dVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/15s4kMLaN5UUiXa5VMICQFZ5dVQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/9ZG0b03xc2OirWCsVXPmIJk8AJg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 222.229.0.0/20 Signature Algorithm: sha256WithRSAEncryption aa:d4:db:7c:f0:4c:85:b3:fa:85:f6:d4:97:e6:c6:d2:1b:5c: 54:a9:d2:7c:37:b6:ee:f5:63:91:96:39:65:bd:11:e6:41:68: 74:da:84:b1:e8:d4:ff:47:ca:5c:2b:04:fd:41:bb:4c:7c:e9: f4:ad:31:1a:0c:72:6d:ac:8f:1e:d2:31:0a:fe:73:c4:7e:24: 90:b6:c9:a4:38:47:ec:4f:66:06:17:50:8a:18:0b:d3:18:8d: 32:6f:9e:7b:9b:5a:6f:54:7b:c4:c0:04:90:67:3f:2b:f7:cc: 32:6a:66:e0:bf:ed:ff:c5:bf:49:43:b8:dd:10:71:85:40:4b: 5f:05:cd:cd:65:ee:2c:03:2d:94:7a:88:49:bf:80:46:cc:05: 1f:6a:63:d2:9d:b0:20:e8:be:5b:f2:b4:7c:6e:1f:4b:b5:3f: 64:93:56:be:ff:93:74:04:8c:fa:44:b8:f5:11:b2:18:f6:73: 27:c6:b9:e0:de:c3:00:6e:a7:80:d3:cb:ae:27:7c:7a:3a:06: 90:25:89:8a:2d:4f:47:6e:c6:db:ab:f8:de:cc:22:b2:27:c0: 35:86:16:be:73:a5:d0:95:6d:d0:8b:12:58:7e:74:1c:11:bc: 76:f0:0a:a9:94:43:7c:ba:c1:fd:01:27:9b:7d:f9:48:9c:9b: e9:78:cb:89 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBNDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhENzlC Mzg5MEMyREEzNzk1MTQ4OTc2Qjk1NEMyMDI0MDU2Nzk3NTU0MB4XDTI0MDUyODAx MDMwOFoXDTI1MDUxNTAxMzAwM1owMzExMC8GA1UEAxMoRjU5MUI0NkY0REYxNzM2 M0EyQUQ2MEFDNTU3M0U2MjA5OTNDMDA5ODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKSqpqNrrcYf7dADSvSd54QbdJLHRHs1/2IFR+EJY5cOrnVaFsta 3LOxMeKdMw/t+jklayab6N9/mt/9lABes8rTwsFzCwmL1lapxTLOIsrnqOAnM3H5 7jWL0fr4jqHfG6OLwubv33uey3P5vTCNegJms4cyIIko6WEUOwsCRv0u27Uqgr0R 088ce1Y74/9Lu9H9jxdppL9iqhlp44uN1exq7Om3VMv1azn1XS6JgE1kKT8nBoDb cwhXcruwcBGV6DNVQu/ww589wAqjHfo/m8DeQIczgzzzBATSOFoeKfOp2uJlIdnM 3U1IXkf7xbHr+6zfnMXNzDqdM9hbZxCa2GUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBT1kbRvTfFzY6KtYKxVc+YgmTwAmDAfBgNVHSMEGDAWgBTXmziQwto3lRSJdrlU wgJAVnl1VDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODQwLzE1czRrTUxhTjVVVWlYYTVWTUlDUUZaNWRWUS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzE1czRrTUxhTjVVVWlYYTVWTUlDUUZa NWRWUS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84NDAvOVpHMGIwM3hjMk9pcldDc1ZYUG1JSms4QUpnLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBN7lADANBgkqhkiG9w0BAQsFAAOCAQEAqtTbfPBMhbP6hfbUl+bG0htcVKnS fDe27vVjkZY5Zb0R5kFodNqEsejU/0fKXCsE/UG7THzp9K0xGgxybayPHtIxCv5z xH4kkLbJpDhH7E9mBhdQihgL0xiNMm+ee5tab1R7xMAEkGc/K/fMMmpm4L/t/8W/ SUO43RBxhUBLXwXNzWXuLAMtlHqISb+ARswFH2pj0p2wIOi+W/K0fG4fS7U/ZJNW vv+TdASM+kS49RGyGPZzJ8a54N7DAG6ngNPLrid8ejoGkCWJii1PR27G26v43swi sifANYYWvnOl0JVt0IsSWH50HBG8dvAKqZRDfLrB/QEnm335SJyb6XjLiQ== -----END CERTIFICATE-----Generated at Fri Sep 20 10:52:09 2024 by rpki-client on console-fra.rpki-client.org