$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10247/qoTEss3od62dRM6IifsLe5IOlIQ.roa File: qoTEss3od62dRM6IifsLe5IOlIQ.roa (raw, json) Hash identifier: 4bAOvRccfsfWbJKC2ro7Kzmb7CFyNTR8XlakTxKUaNM= Subject key identifier: AA:84:C4:B2:CD:E8:77:AD:9D:44:CE:88:89:FB:0B:7B:92:0E:94:84 Certificate issuer: /CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A Certificate serial: 0216 Authority key identifier: 20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/qoTEss3od62dRM6IifsLe5IOlIQ.roa Signing time: Mon 30 Sep 2024 01:30:08 +0000 ROA not before: Mon 30 Sep 2024 01:30:08 +0000 ROA not after: Mon 15 Sep 2025 01:30:03 +0000 asID: 9371 IP address blocks: 210.224.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 534 (0x216) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A Validity Not Before: Sep 30 01:30:08 2024 GMT Not After : Sep 15 01:30:03 2025 GMT Subject: CN=AA84C4B2CDE877AD9D44CE8889FB0B7B920E9484 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:7c:d2:05:3c:55:a4:59:87:17:19:ca:7d:dc: 00:1c:f4:eb:81:ea:5c:5d:4e:8c:1c:07:fe:58:1d: 40:43:2e:09:44:ed:54:2f:8f:f5:f0:8b:22:cf:ce: 18:5d:71:d1:f7:4d:48:c0:55:5f:3a:16:c0:1c:e2: b0:69:fc:24:8c:8d:24:ae:41:f1:2e:b9:5a:a2:c8: cf:95:a3:a5:ec:b3:9f:3e:1f:2b:7a:19:20:b4:2f: 91:c2:6f:c7:9a:5e:f6:5b:16:cf:9a:75:b2:e9:f4: e7:55:27:43:28:37:af:ef:93:9a:83:87:32:fd:7a: 5a:3a:f0:c4:ed:9e:91:c2:d6:4b:bd:5d:31:53:9e: ce:8b:a0:ec:95:dd:36:84:71:92:4e:79:da:59:be: 2e:f8:66:df:79:7e:4d:66:92:7d:5f:5b:7d:4a:09: 44:2d:e0:8d:66:da:66:ab:5b:ca:65:d0:cc:c7:72: b5:ee:21:90:ae:ff:32:d4:78:33:70:6a:4b:64:17: f7:e7:cf:45:ad:64:dd:46:d0:a9:05:13:e4:46:c0: c7:30:fc:f1:86:31:4f:d7:38:a2:e8:31:71:dc:d2: ca:14:8a:ec:e2:9f:b2:28:00:64:7a:76:d7:4f:9d: 0e:b9:51:04:97:d5:f6:f5:59:dd:ac:68:34:a3:a2: d9:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:84:C4:B2:CD:E8:77:AD:9D:44:CE:88:89:FB:0B:7B:92:0E:94:84 X509v3 Authority Key Identifier: keyid:20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/qoTEss3od62dRM6IifsLe5IOlIQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.224.176.0/22 Signature Algorithm: sha256WithRSAEncryption 58:7c:4f:38:af:97:67:6e:0b:94:93:0a:3d:69:ed:f4:6a:e4: f5:75:92:43:fe:30:c8:ec:30:f1:6e:82:9e:50:12:8b:74:2b: 76:2f:06:1d:d8:02:4e:1a:b4:2c:3b:a8:68:78:c6:5b:98:43: 32:eb:6f:7b:82:d3:ba:d7:46:1a:13:92:6c:dd:42:5a:19:5c: c0:44:27:3e:61:5c:5b:6d:f5:2e:c6:39:ac:55:cb:a3:36:63: 56:7c:33:5e:93:1e:62:b5:17:b7:5a:86:7b:38:fa:3f:08:1e: 0d:7d:61:c8:7a:9a:5e:41:62:ce:e0:d3:2e:85:4d:95:af:42: 1a:e0:ef:4f:a1:95:70:4e:61:16:c9:6a:cd:46:97:a4:71:a5: 64:0a:9b:bc:ae:9b:5c:e8:42:37:db:e5:7e:69:b4:e5:da:eb: 73:31:0b:1a:44:14:01:d6:d7:a5:80:a3:7b:be:8f:65:d4:bc: aa:bb:f6:72:fc:da:45:5d:29:7b:75:3d:03:55:be:10:fa:4a: 90:09:65:33:a7:72:d5:56:ad:cc:9e:92:a0:5c:dc:de:27:1c: e9:34:c4:a8:f7:ed:82:9e:17:28:0f:f9:52:19:b3:5b:e8:51: 91:23:0d:aa:7e:c0:2b:08:05:93:8c:a8:e6:c5:ab:d6:4c:72: 5e:f3:0f:76 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAhYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjAz MjBGNkQwOURCMThDMEY3MEIzNTRBM0Q4NzQ1MEY3MEU2RDcxQTAeFw0yNDA5MzAw MTMwMDhaFw0yNTA5MTUwMTMwMDNaMDMxMTAvBgNVBAMTKEFBODRDNEIyQ0RFODc3 QUQ5RDQ0Q0U4ODg5RkIwQjdCOTIwRTk0ODQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpfNIFPFWkWYcXGcp93AAc9OuB6lxdTowcB/5YHUBDLglE7VQv j/XwiyLPzhhdcdH3TUjAVV86FsAc4rBp/CSMjSSuQfEuuVqiyM+Vo6Xss58+Hyt6 GSC0L5HCb8eaXvZbFs+adbLp9OdVJ0MoN6/vk5qDhzL9elo68MTtnpHC1ku9XTFT ns6LoOyV3TaEcZJOedpZvi74Zt95fk1mkn1fW31KCUQt4I1m2marW8pl0MzHcrXu IZCu/zLUeDNwaktkF/fnz0WtZN1G0KkFE+RGwMcw/PGGMU/XOKLoMXHc0soUiuzi n7IoAGR6dtdPnQ65UQSX1fb1Wd2saDSjotlvAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUqoTEss3od62dRM6IifsLe5IOlIQwHwYDVR0jBBgwFoAUIDIPbQnbGMD3CzVK PYdFD3Dm1xowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEwMjQ3L0lESVBiUW5iR01EM0N6VktQWWRGRDNEbTF4by5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0lESVBiUW5iR01EM0N6VktQWWRG RDNEbTF4by5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8xMDI0Ny9xb1RFc3Mzb2Q2MmRSTTZJaWZzTGU1SU9sSVEu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQC0uCwMA0GCSqGSIb3DQEBCwUAA4IBAQBYfE84r5dnbguUkwo9ae30 auT1dZJD/jDI7DDxboKeUBKLdCt2LwYd2AJOGrQsO6hoeMZbmEMy6297gtO610Ya E5Js3UJaGVzARCc+YVxbbfUuxjmsVcujNmNWfDNekx5itRe3WoZ7OPo/CB4NfWHI eppeQWLO4NMuhU2Vr0Ia4O9PoZVwTmEWyWrNRpekcaVkCpu8rptc6EI32+V+abTl 2utzMQsaRBQB1telgKN7vo9l1Lyqu/Zy/NpFXSl7dT0DVb4Q+kqQCWUzp3LVVq3M npKgXNzeJxzpNMSo9+2CnhcoD/lSGbNb6FGRIw2qfsArCAWTjKjmxavWTHJe8w92 -----END CERTIFICATE-----Generated at Mon Nov 25 23:59:01 2024 by rpki-client on console-fra.rpki-client.org