$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10247/iKq47QqBq-DKN_KsbHUvLmcsrnY.roa File: iKq47QqBq-DKN_KsbHUvLmcsrnY.roa (raw, json) Hash identifier: u/DAN/Gjb35HyOn7iVEQGOyYtTjyMvhYeJKohKbITsE= Subject key identifier: 88:AA:B8:ED:0A:81:AB:E0:CA:37:F2:AC:6C:75:2F:2E:67:2C:AE:76 Certificate issuer: /CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A Certificate serial: 0218 Authority key identifier: 20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/iKq47QqBq-DKN_KsbHUvLmcsrnY.roa Signing time: Mon 30 Sep 2024 01:33:39 +0000 ROA not before: Mon 30 Sep 2024 01:33:39 +0000 ROA not after: Mon 15 Sep 2025 01:30:03 +0000 asID: 7684 IP address blocks: 49.212.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 536 (0x218) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A Validity Not Before: Sep 30 01:33:39 2024 GMT Not After : Sep 15 01:30:03 2025 GMT Subject: CN=88AAB8ED0A81ABE0CA37F2AC6C752F2E672CAE76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:16:ff:20:44:5a:79:c2:5b:98:5c:10:23:f8: bb:72:bb:fd:80:e9:eb:a6:78:46:50:b5:64:39:3c: 31:90:95:37:cb:fb:cc:fe:d7:97:e5:e0:48:c4:21: 4c:c7:07:5d:13:1a:79:13:f3:a2:d5:08:ed:f5:c8: 5c:93:b1:5b:73:69:00:c8:b0:d6:8d:b7:56:8b:26: 0e:51:f7:62:7d:95:e5:58:01:27:34:c2:43:8c:c9: 21:b4:a7:58:40:7c:b1:06:ba:35:80:0b:7c:4d:fb: 0b:c0:40:ac:fe:b4:a7:65:ae:c4:19:01:65:0e:83: 20:c9:fe:84:71:cf:34:4c:e1:12:1d:6b:9e:16:fe: b7:88:a6:82:4d:4e:f2:0a:54:e1:72:60:02:3a:83: dc:08:32:f3:ad:93:fa:5b:bd:46:0e:6b:09:be:3b: 60:af:cc:0e:d5:19:9e:d8:21:b3:84:fe:0f:7b:e8: b1:d3:83:b2:41:d4:e2:93:f0:7c:a1:93:3f:40:59: 29:71:8e:9f:42:5b:37:77:bf:0e:93:f4:ff:5c:0b: 8c:cf:28:ee:c0:87:37:67:e0:44:21:36:56:bf:23: 40:f5:cc:91:0a:e5:1e:b0:d6:38:63:1a:c8:f1:87: da:92:d5:e5:8b:ed:27:bc:b6:df:da:26:5a:e4:aa: 98:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:AA:B8:ED:0A:81:AB:E0:CA:37:F2:AC:6C:75:2F:2E:67:2C:AE:76 X509v3 Authority Key Identifier: keyid:20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/iKq47QqBq-DKN_KsbHUvLmcsrnY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.212.73.0/24 Signature Algorithm: sha256WithRSAEncryption 53:05:b7:ec:ba:54:27:62:a8:77:f9:a1:eb:55:fb:0c:6e:b3: f6:96:4d:2e:78:31:43:17:a4:27:07:87:22:0f:64:66:54:a1: c3:e7:71:c0:70:f2:2d:82:9c:6e:6a:f7:78:a2:ec:27:63:53: 8c:9d:2d:63:4b:87:07:82:1f:ea:02:d3:cb:5e:2b:1d:5e:bc: 76:a1:bf:07:d6:b8:34:ef:6a:ab:87:06:5c:bd:08:98:c1:08: 4c:2f:88:4c:f0:b4:87:44:5a:16:3d:0a:db:56:d1:a9:c1:ab: 4f:ff:e1:ea:f6:30:f3:b2:1e:42:ec:37:c6:5a:79:a5:f3:c8: 17:1e:7a:1c:61:c4:71:5f:40:0c:1a:c9:e2:ca:23:c3:c8:fc: 74:b3:96:30:e8:78:63:fa:ea:65:71:a6:55:31:3f:67:5e:14: 63:e7:cd:2e:39:3e:14:8b:95:16:b8:2a:59:f0:a7:b7:e9:ef: 0f:b1:03:44:d3:b1:1f:fc:da:a6:76:5d:20:6e:15:4b:ad:b5: e9:f1:1c:f0:30:4b:70:33:21:78:62:94:2d:77:17:9e:4a:f0: 9a:0d:a4:de:21:4d:05:a3:0e:20:b5:40:8c:53:8d:40:fb:fc: 64:ac:c9:ad:07:6c:fa:3a:01:86:c1:7a:9a:ad:7c:d5:38:60: 94:17:6a:b7 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAhgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjAz MjBGNkQwOURCMThDMEY3MEIzNTRBM0Q4NzQ1MEY3MEU2RDcxQTAeFw0yNDA5MzAw MTMzMzlaFw0yNTA5MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDg4QUFCOEVEMEE4MUFC RTBDQTM3RjJBQzZDNzUyRjJFNjcyQ0FFNzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqFv8gRFp5wluYXBAj+Ltyu/2A6eumeEZQtWQ5PDGQlTfL+8z+ 15fl4EjEIUzHB10TGnkT86LVCO31yFyTsVtzaQDIsNaNt1aLJg5R92J9leVYASc0 wkOMySG0p1hAfLEGujWAC3xN+wvAQKz+tKdlrsQZAWUOgyDJ/oRxzzRM4RIda54W /reIpoJNTvIKVOFyYAI6g9wIMvOtk/pbvUYOawm+O2CvzA7VGZ7YIbOE/g976LHT g7JB1OKT8Hyhkz9AWSlxjp9CWzd3vw6T9P9cC4zPKO7Ahzdn4EQhNla/I0D1zJEK 5R6w1jhjGsjxh9qS1eWL7Se8tt/aJlrkqpjVAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUiKq47QqBq+DKN/KsbHUvLmcsrnYwHwYDVR0jBBgwFoAUIDIPbQnbGMD3CzVK PYdFD3Dm1xowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEwMjQ3L0lESVBiUW5iR01EM0N6VktQWWRGRDNEbTF4by5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0lESVBiUW5iR01EM0N6VktQWWRG RDNEbTF4by5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8xMDI0Ny9pS3E0N1FxQnEtREtOX0tzYkhVdkxtY3Nyblku cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAMdRJMA0GCSqGSIb3DQEBCwUAA4IBAQBTBbfsulQnYqh3+aHrVfsM brP2lk0ueDFDF6QnB4ciD2RmVKHD53HAcPItgpxuavd4ouwnY1OMnS1jS4cHgh/q AtPLXisdXrx2ob8H1rg072qrhwZcvQiYwQhML4hM8LSHRFoWPQrbVtGpwatP/+Hq 9jDzsh5C7DfGWnml88gXHnocYcRxX0AMGsniyiPDyPx0s5Yw6Hhj+uplcaZVMT9n XhRj580uOT4Ui5UWuCpZ8Ke36e8PsQNE07Ef/Nqmdl0gbhVLrbXp8RzwMEtwMyF4 YpQtdxeeSvCaDaTeIU0Fow4gtUCMU41A+/xkrMmtB2z6OgGGwXqarXzVOGCUF2q3 -----END CERTIFICATE-----Generated at Fri Nov 22 15:23:54 2024 by rpki-client on console-fra.rpki-client.org