$ rpki-client -vvf oto.wakuwaku.ne.jp/pki/simple/2/3130332e3234342e3136332e302f32342d3234203d3e203230343733.roa File: 3130332e3234342e3136332e302f32342d3234203d3e203230343733.roa (raw, json) Hash identifier: wZ0LAMToyajnk8K1wcrcFMPbvkkgy3krVL/403IsyPQ= Subject key identifier: FF:A3:9D:58:41:87:02:80:02:10:60:11:69:44:EC:11:20:71:24:31 Certificate issuer: /CN=A91E8DF50000/serialNumber=BF62B39ECAEDB0C4EF1BAB327D1A9A5451FB8808 Certificate serial: 7712EB8DF1FAF4B917961E1F4D512BE0AF77B769 Authority key identifier: BF:62:B3:9E:CA:ED:B0:C4:EF:1B:AB:32:7D:1A:9A:54:51:FB:88:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v2KznsrtsMTvG6syfRqaVFH7iAg.cer Subject info access: rsync://oto.wakuwaku.ne.jp/pki/simple/2/3130332e3234342e3136332e302f32342d3234203d3e203230343733.roa Signing time: Mon 25 Nov 2024 21:30:35 +0000 ROA not before: Mon 25 Nov 2024 21:25:35 +0000 ROA not after: Mon 24 Nov 2025 21:30:35 +0000 asID: 20473 IP address blocks: 103.244.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://oto.wakuwaku.ne.jp/pki/simple/2/BF62B39ECAEDB0C4EF1BAB327D1A9A5451FB8808.crl rsync://oto.wakuwaku.ne.jp/pki/simple/2/BF62B39ECAEDB0C4EF1BAB327D1A9A5451FB8808.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v2KznsrtsMTvG6syfRqaVFH7iAg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Dec 2024 13:48:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:12:eb:8d:f1:fa:f4:b9:17:96:1e:1f:4d:51:2b:e0:af:77:b7:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8DF50000/serialNumber=BF62B39ECAEDB0C4EF1BAB327D1A9A5451FB8808 Validity Not Before: Nov 25 21:25:35 2024 GMT Not After : Nov 24 21:30:35 2025 GMT Subject: CN=FFA39D5841870280021060116944EC1120712431 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:9f:8f:54:b1:54:d4:a6:53:70:5c:55:d0:3f: 8b:21:f3:09:55:5a:02:11:2b:56:c1:c1:14:5a:0e: 0b:49:28:a5:dd:45:d3:d6:1b:10:a8:fa:e6:56:a8: 2e:bf:86:ba:50:d6:e3:ed:a4:47:00:03:3c:45:71: 47:fb:b0:0a:44:7a:a8:6c:00:56:cb:b6:13:7a:18: 8a:7f:13:31:0a:d4:40:3f:3c:01:ef:21:c5:03:ef: 25:a6:1b:a9:40:a6:0d:4d:1e:f8:ea:0b:51:b0:3f: f6:08:1c:66:62:41:b8:2f:77:79:c6:e7:81:62:ea: 6c:35:36:91:dd:23:aa:56:c9:0d:ea:2d:f3:39:34: cb:91:33:4d:b3:c0:0a:e9:50:87:bf:93:f0:62:c1: d9:41:41:d0:1a:37:c9:dd:2f:c3:6f:f7:5d:db:43: 9e:01:94:2d:b1:69:52:19:d8:9e:ad:b9:08:e4:45: 4a:c0:04:67:37:0f:6c:13:80:32:83:d3:d8:aa:2e: 59:9f:ea:a9:19:c5:3b:7e:81:b6:e2:72:38:c1:35: 5f:11:c9:a7:3d:75:30:b9:bc:11:4e:1f:45:bf:8c: 14:43:eb:fd:74:ba:fb:24:eb:cc:1f:57:a6:b4:e2: 52:36:b2:ff:8d:e5:fd:b8:a6:3a:26:ab:ff:fb:08: fc:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:A3:9D:58:41:87:02:80:02:10:60:11:69:44:EC:11:20:71:24:31 X509v3 Authority Key Identifier: keyid:BF:62:B3:9E:CA:ED:B0:C4:EF:1B:AB:32:7D:1A:9A:54:51:FB:88:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://oto.wakuwaku.ne.jp/pki/simple/2/BF62B39ECAEDB0C4EF1BAB327D1A9A5451FB8808.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v2KznsrtsMTvG6syfRqaVFH7iAg.cer Subject Information Access: Signed Object - URI:rsync://oto.wakuwaku.ne.jp/pki/simple/2/3130332e3234342e3136332e302f32342d3234203d3e203230343733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.244.163.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:85:84:43:2f:e1:20:01:92:a9:38:cb:c9:4f:9e:34:31:9c: ff:e0:0a:ba:bc:b3:27:44:b6:a0:69:6a:c3:50:a7:f4:b1:04: c2:10:07:fe:ff:5d:68:ea:58:27:05:e0:7d:de:12:e9:c3:8f: e3:7f:f3:19:bd:7d:05:4f:bd:5f:23:98:21:66:88:da:18:03: 43:8f:c7:9e:65:f7:d6:73:bc:f3:df:05:92:c4:24:2f:f9:e0: c6:6c:67:7e:01:30:7c:63:26:6c:5d:2d:29:5a:f9:c2:fc:7e: 34:ef:f0:22:1b:04:7c:f1:64:da:3d:2a:e7:21:bb:f4:92:55: 7b:be:fd:c9:42:28:c2:b9:27:cc:6b:25:3c:fd:15:61:23:05: f4:c3:ff:f3:50:35:fe:27:9f:09:79:ab:c7:e0:36:86:cc:c7: 95:c5:31:36:ef:84:d7:31:d4:d5:78:b0:24:9c:07:57:d6:db: 01:cc:73:50:e9:07:4d:e1:e8:ff:dd:e3:75:e2:d0:e1:79:1e: a6:cf:7d:9a:7a:a8:f4:39:7a:02:73:f4:dc:53:19:83:e6:0c: c5:18:7e:57:9d:81:d6:a9:02:a1:dc:d9:88:18:d2:9f:04:8e: c6:b2:eb:a8:6b:ff:a3:31:b5:59:06:0b:f0:09:0f:1d:97:dc: cd:e9:6b:da -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIUdxLrjfH69LkXlh4fTVEr4K93t2kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRThERjUwMDAwMTEwLwYDVQQFEyhCRjYyQjM5RUNB RURCMEM0RUYxQkFCMzI3RDFBOUE1NDUxRkI4ODA4MB4XDTI0MTEyNTIxMjUzNVoX DTI1MTEyNDIxMzAzNVowMzExMC8GA1UEAxMoRkZBMzlENTg0MTg3MDI4MDAyMTA2 MDExNjk0NEVDMTEyMDcxMjQzMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMWfj1SxVNSmU3BcVdA/iyHzCVVaAhErVsHBFFoOC0kopd1F09YbEKj65lao Lr+GulDW4+2kRwADPEVxR/uwCkR6qGwAVsu2E3oYin8TMQrUQD88Ae8hxQPvJaYb qUCmDU0e+OoLUbA/9ggcZmJBuC93ecbngWLqbDU2kd0jqlbJDeot8zk0y5EzTbPA CulQh7+T8GLB2UFB0Bo3yd0vw2/3XdtDngGULbFpUhnYnq25CORFSsAEZzcPbBOA MoPT2KouWZ/qqRnFO36BtuJyOME1XxHJpz11MLm8EU4fRb+MFEPr/XS6+yTrzB9X prTiUjay/43l/bimOiar//sI/NECAwEAAaOCAfkwggH1MB0GA1UdDgQWBBT/o51Y QYcCgAIQYBFpROwRIHEkMTAfBgNVHSMEGDAWgBS/YrOeyu2wxO8bqzJ9GppUUfuI CDAOBgNVHQ8BAf8EBAMCB4AwZQYDVR0fBF4wXDBaoFigVoZUcnN5bmM6Ly9vdG8u d2FrdXdha3UubmUuanAvcGtpL3NpbXBsZS8yL0JGNjJCMzlFQ0FFREIwQzRFRjFC QUIzMjdEMUE5QTU0NTFGQjg4MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEF BQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4 MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3YyS3puc3J0c01Udkc2c3lmUnFhVkZI N2lBZy5jZXIwgYAGCCsGAQUFBwELBHQwcjBwBggrBgEFBQcwC4ZkcnN5bmM6Ly9v dG8ud2FrdXdha3UubmUuanAvcGtpL3NpbXBsZS8yLzMxMzAzMzJlMzIzNDM0MmUz MTM2MzMyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMwMzQzNzMzLnJvYTAYBgNV HSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ/SjMA0GCSqGSIb3DQEBCwUAA4IBAQCKhYRDL+EgAZKpOMvJT540MZz/4Aq6 vLMnRLagaWrDUKf0sQTCEAf+/11o6lgnBeB93hLpw4/jf/MZvX0FT71fI5ghZoja GANDj8eeZffWc7zz3wWSxCQv+eDGbGd+ATB8YyZsXS0pWvnC/H407/AiGwR88WTa PSrnIbv0klV7vv3JQijCuSfMayU8/RVhIwX0w//zUDX+J58JeavH4DaGzMeVxTE2 74TXMdTVeLAknAdX1tsBzHNQ6QdN4ej/3eN14tDheR6mz32aeqj0OXoCc/TcUxmD 5gzFGH5XnYHWqQKh3NmIGNKfBI7Gsuuoa/+jMbVZBgvwCQ8dl9zN6Wva -----END CERTIFICATE-----Generated at Fri Dec 27 15:26:13 2024 by rpki-client on console-ams.rpki-client.org