$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10822/zuhAMxnKnt7ij41__1da_7DPHWI.roa File: zuhAMxnKnt7ij41__1da_7DPHWI.roa (raw, json) Hash identifier: iyANoCgRH2PcNgg53kwAAT2OAKPdsGxi369bx6EJ1lg= Subject key identifier: CE:E8:40:33:19:CA:9E:DE:E2:8F:8D:7F:FF:57:5A:FF:B0:CF:1D:62 Certificate issuer: /CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Certificate serial: 13 Authority key identifier: 33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/zuhAMxnKnt7ij41__1da_7DPHWI.roa Signing time: Mon 18 Mar 2024 02:29:33 +0000 ROA not before: Mon 18 Mar 2024 02:29:33 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 17698 IP address blocks: 202.45.168.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 12:46:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Validity Not Before: Mar 18 02:29:33 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=CEE8403319CA9EDEE28F8D7FFF575AFFB0CF1D62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:87:59:38:20:9c:f5:e8:a5:8e:7d:2a:4c:0d: 9c:be:89:33:f3:04:6e:41:4c:cf:5d:8a:48:6e:c2: 3e:7d:8a:78:e0:36:a6:f3:a7:dc:de:5b:8e:60:04: 90:c3:87:14:49:c2:4e:28:30:31:c9:1f:89:05:8c: f4:71:29:97:3e:71:90:c6:f9:62:49:f0:75:0c:42: 3d:cb:31:26:2f:03:8f:95:a9:96:6c:c7:8e:b1:b5: 70:ad:8d:6d:45:6d:dd:0c:a0:ca:fa:4f:79:2a:ba: 57:ef:d1:fe:78:46:1d:18:69:a8:23:7c:c0:9f:df: aa:ce:61:7b:5e:35:2f:5c:c0:8e:6c:42:e6:73:9b: 03:01:d8:47:8a:6f:1f:5c:a1:af:56:87:02:2f:81: c6:d5:db:88:c4:4c:1f:df:41:c2:6f:cd:5b:04:5a: e6:c0:e3:76:9f:1b:d2:09:f4:be:88:45:6a:3f:53: 2f:b5:1f:9b:08:e1:ec:5b:6c:26:43:8e:b0:0f:3c: 2d:20:1f:1d:46:f2:c3:2e:72:fd:54:5b:f6:16:d8: 68:67:ec:c5:96:16:96:e5:b2:d1:0d:29:6f:16:a1: ae:1b:65:8d:51:ef:51:77:32:b7:26:6a:7e:dc:77: 89:ae:44:96:da:08:bb:81:e0:97:8b:33:b4:5b:c1: 13:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:E8:40:33:19:CA:9E:DE:E2:8F:8D:7F:FF:57:5A:FF:B0:CF:1D:62 X509v3 Authority Key Identifier: keyid:33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/zuhAMxnKnt7ij41__1da_7DPHWI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.45.168.0/21 Signature Algorithm: sha256WithRSAEncryption b5:d1:e0:81:83:a3:78:41:96:22:3e:90:69:0b:49:04:f2:87: 7e:4e:fa:72:c5:61:43:d1:1f:fa:5b:08:8e:86:6a:69:13:55: d0:12:df:ab:1a:0a:05:c8:96:d8:74:f7:cd:13:38:78:e6:48: a8:4a:2f:e1:53:15:44:71:c8:e0:1f:6d:96:7b:48:51:07:e1: 2c:bf:08:1e:02:49:71:ff:72:4d:16:72:7f:60:a6:ad:5d:94: 3f:fc:3a:1b:74:59:20:4a:83:f8:f6:56:d8:c7:39:7b:62:53: f4:fa:e0:91:5d:9d:5b:36:a6:65:fd:10:8d:c5:c5:90:53:41: 61:09:38:e5:e2:8f:16:b5:35:a6:8a:5c:1d:40:58:d3:93:3f: ac:df:5d:a5:86:2c:5f:ee:30:5e:73:68:a2:b3:b9:68:74:21: 9b:64:aa:b7:15:94:61:7a:a1:84:1e:c9:84:3a:3d:26:b8:2b: 16:61:7b:49:b5:f3:cc:0d:af:85:7c:e9:d7:b9:c9:58:28:08: 72:69:81:f6:ee:76:95:2d:b6:11:fa:b6:a3:08:65:8e:59:43: eb:89:58:7d:3c:08:f1:23:46:79:a1:41:91:46:95:de:15:3c: fd:ab:75:2b:05:96:6c:44:37:49:20:3d:ec:e5:12:48:f2:97: 8b:27:91:39 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBEzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzM0RG OUIyNEY1M0JCQ0FDMzQ3QkE1QjVBOEM0OUJGRjQxNjY2QTI2MB4XDTI0MDMxODAy MjkzM1oXDTI1MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoQ0VFODQwMzMxOUNBOUVE RUUyOEY4RDdGRkY1NzVBRkZCMENGMUQ2MjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMyHWTggnPXopY59KkwNnL6JM/MEbkFMz12KSG7CPn2KeOA2pvOn 3N5bjmAEkMOHFEnCTigwMckfiQWM9HEplz5xkMb5YknwdQxCPcsxJi8Dj5WplmzH jrG1cK2NbUVt3QygyvpPeSq6V+/R/nhGHRhpqCN8wJ/fqs5he141L1zAjmxC5nOb AwHYR4pvH1yhr1aHAi+BxtXbiMRMH99Bwm/NWwRa5sDjdp8b0gn0vohFaj9TL7Uf mwjh7FtsJkOOsA88LSAfHUbywy5y/VRb9hbYaGfsxZYWluWy0Q0pbxahrhtljVHv UXcytyZqftx3ia5EltoIu4Hgl4sztFvBEwkCAwEAAaOCAigwggIkMB0GA1UdDgQW BBTO6EAzGcqe3uKPjX//V1r/sM8dYjAfBgNVHSMEGDAWgBQz35sk9Tu8rDR7pbWo xJv/QWZqJjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTA4MjIvTTktYkpQVTd2S3cwZTZXMXFNU2JfMEZtYWlZLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvTTktYkpQVTd2S3cwZTZXMXFNU2Jf MEZtYWlZLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzEwODIyL3p1aEFNeG5LbnQ3aWo0MV9fMWRhXzdEUEhXSS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAPKLagwDQYJKoZIhvcNAQELBQADggEBALXR4IGDo3hBliI+kGkLSQTy h35O+nLFYUPRH/pbCI6GamkTVdAS36saCgXIlth0980TOHjmSKhKL+FTFURxyOAf bZZ7SFEH4Sy/CB4CSXH/ck0Wcn9gpq1dlD/8Oht0WSBKg/j2VtjHOXtiU/T64JFd nVs2pmX9EI3FxZBTQWEJOOXijxa1NaaKXB1AWNOTP6zfXaWGLF/uMF5zaKKzuWh0 IZtkqrcVlGF6oYQeyYQ6PSa4KxZhe0m188wNr4V86de5yVgoCHJpgfbudpUtthH6 tqMIZY5ZQ+uJWH08CPEjRnmhQZFGld4VPP2rdSsFlmxEN0kgPezlEkjyl4snkTk= -----END CERTIFICATE-----Generated at Fri Nov 22 13:33:08 2024 by rpki-client on console-fra.rpki-client.org