$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10822/IXOEdZ81U9sOey54kn1no5wkKiE.roa File: IXOEdZ81U9sOey54kn1no5wkKiE.roa (raw, json) Hash identifier: KklZgZugaDnNRpsgX2eiVc2xo1MFY8ESlzV7pRyRGd0= Subject key identifier: 21:73:84:75:9F:35:53:DB:0E:7B:2E:78:92:7D:67:A3:9C:24:2A:21 Certificate issuer: /CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Certificate serial: 1B Authority key identifier: 33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/IXOEdZ81U9sOey54kn1no5wkKiE.roa Signing time: Mon 18 Mar 2024 05:41:47 +0000 ROA not before: Mon 18 Mar 2024 05:41:47 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 17698 IP address blocks: 219.101.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 12:46:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Validity Not Before: Mar 18 05:41:47 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=217384759F3553DB0E7B2E78927D67A39C242A21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:0c:3c:9f:32:da:fe:ca:3f:2e:f9:fd:1c:86: d4:5a:dd:58:ab:c6:4a:fe:2c:f0:55:e1:cd:d6:1b: 17:c3:1e:98:3f:31:cd:57:87:e8:9a:4c:12:c4:54: 02:9e:00:f0:fe:f1:c4:2a:ec:71:d5:5b:b5:95:3b: ce:71:56:4c:67:c5:b3:ca:c0:33:ca:1f:1b:ce:60: 1d:e8:74:88:50:e0:b9:0f:f5:a3:ed:38:b4:f2:0a: 44:f6:52:99:86:f6:b1:2e:25:5a:98:df:f9:36:72: 96:cf:c2:dd:03:e5:08:dd:87:dd:18:2d:43:42:ee: 8c:a4:76:68:b8:fc:be:5f:bd:95:ea:0e:af:76:5a: 89:59:55:69:31:ff:d4:5d:8a:c5:ec:91:24:a1:16: 45:1c:0f:2d:b3:85:0d:23:c2:c3:00:b4:5c:83:cb: a3:35:ee:05:01:34:2e:52:21:84:cf:29:95:35:8a: 90:5f:52:cd:e7:5f:5d:1c:66:46:2e:ca:07:b1:5f: 2a:b6:78:d1:d9:24:ec:a7:dc:04:eb:06:70:e4:7f: 02:9a:63:55:bc:ef:27:3d:4d:d9:c2:af:31:df:0d: 7f:6a:ce:1f:20:7a:c5:0b:f2:37:b3:7a:10:b8:e9: ab:f8:df:51:1c:fa:33:78:00:96:cc:18:36:ce:65: a3:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:73:84:75:9F:35:53:DB:0E:7B:2E:78:92:7D:67:A3:9C:24:2A:21 X509v3 Authority Key Identifier: keyid:33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/IXOEdZ81U9sOey54kn1no5wkKiE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.101.0.0/19 Signature Algorithm: sha256WithRSAEncryption a9:db:64:81:40:76:bb:af:67:14:56:75:bc:64:01:b5:50:cb: 07:65:d6:c6:d3:ab:ab:b0:f1:67:11:9b:9b:0a:be:09:cf:a8: 79:80:80:f6:60:6b:44:43:58:f6:86:1e:89:66:ef:ca:16:03: 2d:9a:4b:60:61:5e:8b:a2:fa:f3:cf:3c:bf:7d:b7:18:19:31: ff:6f:5c:7e:33:65:ab:61:17:8c:02:b1:2c:92:26:2a:bb:b4: 9b:78:a9:df:db:88:9b:d7:e7:59:87:23:ca:74:89:e0:a0:e4: 3a:69:0d:41:11:ad:08:e3:fe:6e:95:28:35:14:2b:36:7b:95: 62:9b:ff:5b:e6:7d:42:02:31:a1:88:4a:e0:22:c2:bb:7a:4f: f3:04:21:9a:4a:90:b3:9d:5c:21:d1:d8:b9:2a:bb:5b:c2:21: 53:8f:72:11:09:20:f5:99:ca:77:7e:1b:d8:57:e0:dc:b8:51: 8e:f2:9d:af:ad:dd:4d:15:6c:56:12:55:55:93:1a:5f:d5:36: fd:e4:fe:34:40:fa:3b:a9:75:f6:54:25:3b:2b:5e:cb:3e:b7: ba:e1:f2:83:6b:27:eb:26:7a:a6:7f:32:63:8b:be:5b:db:43: 00:14:2a:7c:e2:23:28:7c:65:a8:a6:b6:18:28:1d:a7:c6:8e: 4b:95:42:0e -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBGzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzM0RG OUIyNEY1M0JCQ0FDMzQ3QkE1QjVBOEM0OUJGRjQxNjY2QTI2MB4XDTI0MDMxODA1 NDE0N1oXDTI1MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoMjE3Mzg0NzU5RjM1NTNE QjBFN0IyRTc4OTI3RDY3QTM5QzI0MkEyMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMsMPJ8y2v7KPy75/RyG1FrdWKvGSv4s8FXhzdYbF8MemD8xzVeH 6JpMEsRUAp4A8P7xxCrscdVbtZU7znFWTGfFs8rAM8ofG85gHeh0iFDguQ/1o+04 tPIKRPZSmYb2sS4lWpjf+TZyls/C3QPlCN2H3RgtQ0LujKR2aLj8vl+9leoOr3Za iVlVaTH/1F2KxeyRJKEWRRwPLbOFDSPCwwC0XIPLozXuBQE0LlIhhM8plTWKkF9S zedfXRxmRi7KB7FfKrZ40dkk7KfcBOsGcOR/AppjVbzvJz1N2cKvMd8Nf2rOHyB6 xQvyN7N6ELjpq/jfURz6M3gAlswYNs5lowMCAwEAAaOCAigwggIkMB0GA1UdDgQW BBQhc4R1nzVT2w57LniSfWejnCQqITAfBgNVHSMEGDAWgBQz35sk9Tu8rDR7pbWo xJv/QWZqJjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTA4MjIvTTktYkpQVTd2S3cwZTZXMXFNU2JfMEZtYWlZLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvTTktYkpQVTd2S3cwZTZXMXFNU2Jf MEZtYWlZLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzEwODIyL0lYT0VkWjgxVTlzT2V5NTRrbjFubzV3a0tpRS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAXbZQAwDQYJKoZIhvcNAQELBQADggEBAKnbZIFAdruvZxRWdbxkAbVQ ywdl1sbTq6uw8WcRm5sKvgnPqHmAgPZga0RDWPaGHolm78oWAy2aS2BhXoui+vPP PL99txgZMf9vXH4zZathF4wCsSySJiq7tJt4qd/biJvX51mHI8p0ieCg5DppDUER rQjj/m6VKDUUKzZ7lWKb/1vmfUICMaGISuAiwrt6T/MEIZpKkLOdXCHR2Lkqu1vC IVOPchEJIPWZynd+G9hX4Ny4UY7yna+t3U0VbFYSVVWTGl/VNv3k/jRA+jupdfZU JTsrXss+t7rh8oNrJ+smeqZ/MmOLvlvbQwAUKnziIyh8ZaimthgoHafGjkuVQg4= -----END CERTIFICATE-----Generated at Fri Nov 22 13:33:08 2024 by rpki-client on console-fra.rpki-client.org