$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1085/CiSV22mYxiCfRaOdHjHc-B7F37E.roa File: CiSV22mYxiCfRaOdHjHc-B7F37E.roa (raw, json) Hash identifier: k+MlMkNu/amZsOsA2Wci9ydipYTMG3fh++dff2PsIk0= Subject key identifier: 0A:24:95:DB:69:98:C6:20:9F:45:A3:9D:1E:31:DC:F8:1E:C5:DF:B1 Certificate issuer: /CN=0A86E6C0DD4733C142F01DD532FB3EAEE423B320 Certificate serial: 1C Authority key identifier: 0A:86:E6:C0:DD:47:33:C1:42:F0:1D:D5:32:FB:3E:AE:E4:23:B3:20 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CobmwN1HM8FC8B3VMvs-ruQjsyA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1085/CiSV22mYxiCfRaOdHjHc-B7F37E.roa Signing time: Sat 31 Aug 2024 01:33:51 +0000 ROA not before: Sat 31 Aug 2024 01:33:51 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 0 IP address blocks: 202.255.204.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1085/CobmwN1HM8FC8B3VMvs-ruQjsyA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1085/CobmwN1HM8FC8B3VMvs-ruQjsyA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CobmwN1HM8FC8B3VMvs-ruQjsyA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 20:13:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A86E6C0DD4733C142F01DD532FB3EAEE423B320 Validity Not Before: Aug 31 01:33:51 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=0A2495DB6998C6209F45A39D1E31DCF81EC5DFB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d8:9f:50:aa:10:bf:cb:63:72:43:4d:76:ed: ec:f2:08:e6:b5:19:ec:8c:be:3d:66:85:7a:53:ea: 94:a2:80:3c:08:72:4d:53:1d:26:66:79:6f:ba:9d: 0a:a2:b0:5c:50:9a:79:ba:01:bf:29:92:6d:3d:b1: d3:e1:c4:f2:5f:2e:e3:5a:2f:32:cf:3a:7e:ec:8b: df:e3:ab:eb:f4:9f:a5:d5:aa:57:10:ed:d5:bb:5c: 17:84:94:66:59:73:ea:2f:6b:94:db:1b:15:b5:cd: 60:a2:d7:d3:5b:4c:ce:95:23:6b:77:f0:a9:da:da: 39:86:dd:3f:db:4c:34:f1:14:52:6b:54:5c:33:f4: fc:4e:2c:ea:27:54:c7:df:cf:cd:a4:56:da:74:db: e2:21:93:c8:64:18:9f:7f:cb:2f:20:0d:a7:5a:be: f8:99:e3:b3:e5:91:4c:a7:2e:ae:ac:b2:61:03:2a: af:28:c2:97:84:db:82:35:30:49:6c:77:26:86:19: c1:44:70:6a:6b:5c:bb:07:ff:c0:94:77:c9:7f:35: 63:8b:23:49:ac:43:ef:58:3f:c5:c6:fb:30:91:6a: ae:3a:48:38:6e:d6:07:df:cc:a9:2e:5c:89:27:04: 81:46:0d:60:bf:15:c0:45:23:a2:6c:d5:8f:a3:26: ae:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:24:95:DB:69:98:C6:20:9F:45:A3:9D:1E:31:DC:F8:1E:C5:DF:B1 X509v3 Authority Key Identifier: keyid:0A:86:E6:C0:DD:47:33:C1:42:F0:1D:D5:32:FB:3E:AE:E4:23:B3:20 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1085/CobmwN1HM8FC8B3VMvs-ruQjsyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CobmwN1HM8FC8B3VMvs-ruQjsyA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1085/CiSV22mYxiCfRaOdHjHc-B7F37E.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.255.204.0/22 Signature Algorithm: sha256WithRSAEncryption 09:3e:35:70:f5:70:2f:7f:23:99:3e:c7:b6:1a:d5:7d:a0:c9: 45:16:7e:3c:b4:39:03:b8:ef:26:01:32:20:9b:b2:68:00:c7: 55:fc:c4:a0:00:67:12:24:6b:02:e0:b6:29:2c:d0:12:a2:fb: 2a:e7:c5:cb:b7:a2:d7:b1:f6:c5:b3:8d:60:34:61:31:6d:0b: dd:4c:0c:0e:e0:f7:42:13:0d:cd:51:e1:69:05:8f:db:57:c3: a0:27:27:e0:a8:d7:2f:7a:1d:ed:b4:43:b1:d9:c5:e5:04:f1: 81:67:b5:a7:bf:ff:be:97:c1:73:2f:a4:1b:56:ac:4a:c4:71: aa:da:10:6f:d2:ce:0b:31:b3:86:b5:e7:a2:89:bb:a6:74:e7: 4a:c6:13:ed:34:3d:03:cc:c6:90:b3:17:8e:6c:de:74:67:db: d3:6f:5b:49:39:3b:68:09:4e:51:d2:e2:f4:ae:a7:6f:1b:6b: 67:13:68:7e:e6:14:d8:94:4b:98:0a:0c:58:97:db:dd:25:1d: 42:53:29:f8:a0:59:62:64:e8:bd:80:1e:fc:b0:d1:20:ba:cc: 0d:82:da:46:1e:ff:e4:50:92:4d:d2:18:bd:97:41:34:29:93: 07:7d:17:43:e9:0a:24:b5:7f:ec:00:ba:a4:92:65:04:1d:88: 1a:05:89:ef -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBHDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwQTg2 RTZDMERENDczM0MxNDJGMDFERDUzMkZCM0VBRUU0MjNCMzIwMB4XDTI0MDgzMTAx MzM1MVoXDTI1MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoMEEyNDk1REI2OTk4QzYy MDlGNDVBMzlEMUUzMURDRjgxRUM1REZCMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMrYn1CqEL/LY3JDTXbt7PII5rUZ7Iy+PWaFelPqlKKAPAhyTVMd JmZ5b7qdCqKwXFCaeboBvymSbT2x0+HE8l8u41ovMs86fuyL3+Or6/SfpdWqVxDt 1btcF4SUZllz6i9rlNsbFbXNYKLX01tMzpUja3fwqdraOYbdP9tMNPEUUmtUXDP0 /E4s6idUx9/PzaRW2nTb4iGTyGQYn3/LLyANp1q++Jnjs+WRTKcurqyyYQMqryjC l4TbgjUwSWx3JoYZwURwamtcuwf/wJR3yX81Y4sjSaxD71g/xcb7MJFqrjpIOG7W B9/MqS5ciScEgUYNYL8VwEUjomzVj6Mmrh8CAwEAAaOCAiYwggIiMB0GA1UdDgQW BBQKJJXbaZjGIJ9Fo50eMdz4HsXfsTAfBgNVHSMEGDAWgBQKhubA3UczwULwHdUy +z6u5COzIDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTA4NS9Db2Jtd04xSE04RkM4QjNWTXZzLXJ1UWpzeUEuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9Db2Jtd04xSE04RkM4QjNWTXZzLXJ1 UWpzeUEuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTA4NS9DaVNWMjJtWXhpQ2ZSYU9kSGpIYy1CN0YzN0Uucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQCyv/MMA0GCSqGSIb3DQEBCwUAA4IBAQAJPjVw9XAvfyOZPse2GtV9oMlF Fn48tDkDuO8mATIgm7JoAMdV/MSgAGcSJGsC4LYpLNASovsq58XLt6LXsfbFs41g NGExbQvdTAwO4PdCEw3NUeFpBY/bV8OgJyfgqNcveh3ttEOx2cXlBPGBZ7Wnv/++ l8FzL6QbVqxKxHGq2hBv0s4LMbOGteeiibumdOdKxhPtND0DzMaQsxeObN50Z9vT b1tJOTtoCU5R0uL0rqdvG2tnE2h+5hTYlEuYCgxYl9vdJR1CUyn4oFliZOi9gB78 sNEguswNgtpGHv/kUJJN0hi9l0E0KZMHfRdD6QoktX/sALqkkmUEHYgaBYnv -----END CERTIFICATE-----Generated at Fri Nov 22 00:23:09 2024 by rpki-client on console-fra.rpki-client.org