$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10822/yDee4IxCa46P7WaYVi2Hx-VfmKE.roa File: yDee4IxCa46P7WaYVi2Hx-VfmKE.roa (raw, json) Hash identifier: aN4C9WOgZl6EjrsrXNxsSLqsvC4KjKEF7WlScEgyqe8= Subject key identifier: C8:37:9E:E0:8C:42:6B:8E:8F:ED:66:98:56:2D:87:C7:E5:5F:98:A1 Certificate issuer: /CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Certificate serial: 17 Authority key identifier: 33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/yDee4IxCa46P7WaYVi2Hx-VfmKE.roa Signing time: Mon 18 Mar 2024 05:09:39 +0000 ROA not before: Mon 18 Mar 2024 05:09:39 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 17698 IP address blocks: 202.170.176.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 14:03:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Validity Not Before: Mar 18 05:09:39 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=C8379EE08C426B8E8FED6698562D87C7E55F98A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:16:f1:be:4a:be:7e:42:b8:b7:a0:73:96:cd: 60:43:c1:68:18:6f:98:39:c7:6d:3c:9d:0e:49:6d: 43:fe:bd:77:23:c6:a3:d2:98:09:ce:36:cc:c7:86: a3:20:6e:4b:6a:71:3f:a8:f6:a9:61:94:a7:03:c6: b3:ff:1b:6d:f4:5b:53:20:8c:8c:8f:39:ee:e4:63: 99:d6:4b:52:ed:e2:7c:93:3e:45:31:ab:78:51:9d: 4d:78:4a:d8:15:62:3c:b4:db:d2:1f:0b:e5:3a:4e: 80:50:e2:fd:81:e3:1a:3b:a7:5d:8a:30:fe:b8:bc: cf:9e:3e:8b:c7:5c:d5:74:c4:e1:1c:32:2f:9e:43: 52:35:13:47:00:11:fc:5a:72:22:6e:e1:10:18:9c: aa:cb:ca:7a:98:65:5a:45:ad:c3:75:12:e4:8f:f7: 92:ba:a8:5b:8c:d5:d9:68:54:28:49:43:dc:68:ed: 90:8f:23:af:08:ea:d3:4d:5a:20:a3:0d:17:62:0a: e0:b4:c1:31:cd:b5:f8:45:c8:02:2f:8d:32:9e:07: 0b:35:a4:d2:91:16:f4:5c:09:64:f6:5a:20:e4:86: 05:32:fd:f7:a1:c7:88:64:1f:b6:1a:0f:d8:97:35: 5d:84:8f:a6:d8:55:d5:a0:4d:7b:37:78:b8:6c:48: f8:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:37:9E:E0:8C:42:6B:8E:8F:ED:66:98:56:2D:87:C7:E5:5F:98:A1 X509v3 Authority Key Identifier: keyid:33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/yDee4IxCa46P7WaYVi2Hx-VfmKE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.170.176.0/20 Signature Algorithm: sha256WithRSAEncryption c0:18:5e:64:42:f6:08:6c:78:2b:7a:12:9a:d7:28:f4:68:90: b6:af:5e:d2:fa:d4:1a:e7:12:08:a6:c6:50:95:f5:86:c1:1a: 80:3f:3d:63:48:6c:47:d5:b4:85:31:b8:5f:b0:82:87:4b:06: 99:d0:3b:ff:82:21:8c:a1:ac:c5:37:a2:dd:49:e3:b6:61:ae: 8d:c2:9c:62:25:89:f5:8c:81:46:3d:08:37:2f:a6:d1:22:9d: af:c1:f4:fd:9a:8e:8a:da:c5:87:df:35:61:54:06:a6:4b:cf: 70:66:01:f9:c1:00:08:2c:b0:d0:e8:3b:2f:97:8d:bc:6f:fc: ed:6c:0f:18:57:d0:11:3e:f5:47:be:e4:68:4d:23:92:f4:90: ef:d5:65:77:42:7c:3f:5c:38:95:42:72:6d:74:a0:8f:13:97: 72:ed:cd:ad:ab:93:f7:b0:9b:e2:53:59:45:9e:ef:f8:ef:ef: 81:45:b9:25:e4:a1:b5:ad:eb:99:7c:59:c5:18:ce:15:db:fd: 7e:70:f1:b7:66:62:9d:07:59:82:30:b7:90:11:e2:a1:20:29: 89:8a:88:6c:c0:87:8c:41:05:36:7f:d4:58:a3:7d:2a:02:03: c5:15:3a:a9:22:62:78:67:08:81:c5:9c:2c:df:41:d2:b9:10: 4b:f3:56:5b -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBFzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzM0RG OUIyNEY1M0JCQ0FDMzQ3QkE1QjVBOEM0OUJGRjQxNjY2QTI2MB4XDTI0MDMxODA1 MDkzOVoXDTI1MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoQzgzNzlFRTA4QzQyNkI4 RThGRUQ2Njk4NTYyRDg3QzdFNTVGOThBMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANgW8b5Kvn5CuLegc5bNYEPBaBhvmDnHbTydDkltQ/69dyPGo9KY Cc42zMeGoyBuS2pxP6j2qWGUpwPGs/8bbfRbUyCMjI857uRjmdZLUu3ifJM+RTGr eFGdTXhK2BViPLTb0h8L5TpOgFDi/YHjGjunXYow/ri8z54+i8dc1XTE4RwyL55D UjUTRwAR/FpyIm7hEBicqsvKephlWkWtw3US5I/3krqoW4zV2WhUKElD3GjtkI8j rwjq001aIKMNF2IK4LTBMc21+EXIAi+NMp4HCzWk0pEW9FwJZPZaIOSGBTL996HH iGQfthoP2Jc1XYSPpthV1aBNezd4uGxI+HUCAwEAAaOCAigwggIkMB0GA1UdDgQW BBTIN57gjEJrjo/tZphWLYfH5V+YoTAfBgNVHSMEGDAWgBQz35sk9Tu8rDR7pbWo xJv/QWZqJjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTA4MjIvTTktYkpQVTd2S3cwZTZXMXFNU2JfMEZtYWlZLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvTTktYkpQVTd2S3cwZTZXMXFNU2Jf MEZtYWlZLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzEwODIyL3lEZWU0SXhDYTQ2UDdXYVlWaTJIeC1WZm1LRS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBATKqrAwDQYJKoZIhvcNAQELBQADggEBAMAYXmRC9ghseCt6EprXKPRo kLavXtL61BrnEgimxlCV9YbBGoA/PWNIbEfVtIUxuF+wgodLBpnQO/+CIYyhrMU3 ot1J47Zhro3CnGIlifWMgUY9CDcvptEina/B9P2ajoraxYffNWFUBqZLz3BmAfnB AAgssNDoOy+Xjbxv/O1sDxhX0BE+9Ue+5GhNI5L0kO/VZXdCfD9cOJVCcm10oI8T l3Ltza2rk/ewm+JTWUWe7/jv74FFuSXkobWt65l8WcUYzhXb/X5w8bdmYp0HWYIw t5AR4qEgKYmKiGzAh4xBBTZ/1FijfSoCA8UVOqkiYnhnCIHFnCzfQdK5EEvzVls= -----END CERTIFICATE-----Generated at Thu Jun 6 15:06:27 2024 by rpki-client on console-ams.rpki-client.org