$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10966/-6BrQrVFzZ5wTmfzWZIQB1F7V5Y.roa File: -6BrQrVFzZ5wTmfzWZIQB1F7V5Y.roa (raw, json) Hash identifier: bLMRAHOOYvZwVj+qVrWAhcuxU93V/FMbvQY8xRmh7nY= Subject key identifier: FB:A0:6B:42:B5:45:CD:9E:70:4E:67:F3:59:92:10:07:51:7B:57:96 Certificate issuer: /CN=FB72FAA523BA6526855D99065E21B4B958C5F016 Certificate serial: 3C Authority key identifier: FB:72:FA:A5:23:BA:65:26:85:5D:99:06:5E:21:B4:B9:58:C5:F0:16 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-3L6pSO6ZSaFXZkGXiG0uVjF8BY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10966/-6BrQrVFzZ5wTmfzWZIQB1F7V5Y.roa Signing time: Sat 31 Aug 2024 01:30:41 +0000 ROA not before: Sat 31 Aug 2024 01:30:41 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 146987 IP address blocks: 157.120.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10966/-3L6pSO6ZSaFXZkGXiG0uVjF8BY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10966/-3L6pSO6ZSaFXZkGXiG0uVjF8BY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-3L6pSO6ZSaFXZkGXiG0uVjF8BY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 12:46:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB72FAA523BA6526855D99065E21B4B958C5F016 Validity Not Before: Aug 31 01:30:41 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=FBA06B42B545CD9E704E67F359921007517B5796 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ce:f4:02:2f:1a:ce:5d:5f:f6:a6:1a:0e:bf: 32:82:f5:74:52:a0:61:4f:9d:46:4c:bc:c0:91:6e: 54:97:0d:3d:dc:65:b7:e1:fc:05:40:68:d6:a5:4f: 96:c6:d8:53:db:3c:19:8f:70:18:2c:96:14:00:81: 8d:90:3a:56:91:18:87:3b:32:b3:a3:5d:db:d6:dc: 5d:ef:cb:9d:60:03:59:a9:55:4a:38:3f:34:04:ca: 42:d8:93:31:22:93:28:e8:4c:ed:d7:f9:54:27:4a: d7:be:f9:9e:8e:d5:fc:4c:5f:d0:81:33:95:ce:d2: 15:b3:a0:1e:45:40:94:81:a7:77:79:b8:d7:f3:71: de:ab:11:f7:24:23:7d:ba:02:56:22:ab:5c:8d:3e: e7:84:74:43:b2:b2:c4:c4:16:4c:ee:34:74:6a:69: b3:8b:25:d5:dc:ac:b6:d2:0f:ec:24:0b:e2:b6:87: 1e:9e:8d:9f:17:3a:47:2d:31:f9:87:84:6c:e0:70: 6c:d6:2b:28:32:4c:35:aa:e8:2b:33:24:5c:a5:76: ab:a5:5f:ea:39:14:6c:92:8a:39:60:9a:1a:a2:4c: 86:c5:e2:4c:57:02:2e:9a:8f:73:11:a8:4d:d2:02: fc:7e:8c:28:b5:b6:d3:66:d5:15:9f:4b:86:63:32: 74:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:A0:6B:42:B5:45:CD:9E:70:4E:67:F3:59:92:10:07:51:7B:57:96 X509v3 Authority Key Identifier: keyid:FB:72:FA:A5:23:BA:65:26:85:5D:99:06:5E:21:B4:B9:58:C5:F0:16 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10966/-3L6pSO6ZSaFXZkGXiG0uVjF8BY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-3L6pSO6ZSaFXZkGXiG0uVjF8BY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10966/-6BrQrVFzZ5wTmfzWZIQB1F7V5Y.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.120.114.0/24 Signature Algorithm: sha256WithRSAEncryption 78:c6:af:d0:ad:37:a4:11:94:26:ac:18:f9:a4:68:92:cd:72: 0d:b7:e6:65:0f:38:5d:18:8f:6e:79:5f:75:c2:91:5f:5f:33: ae:de:08:c3:a4:fd:94:8c:02:93:8f:d3:d8:f2:78:f7:66:85: 65:c7:a4:57:e5:3b:a0:47:87:11:88:ed:56:65:02:55:0b:0c: 34:7e:bc:f9:8e:3f:c0:5a:cc:a0:a1:64:e9:ab:a0:9f:1c:e3: f1:eb:e1:71:91:83:ee:94:4d:84:62:8d:26:48:18:cb:b5:2f: 88:3a:ca:f5:f5:5e:1c:d9:dd:ef:0a:97:d0:14:ec:6a:03:32: c5:86:2d:e5:12:05:db:49:ae:4d:db:11:0c:69:dd:f5:61:b8: 3b:17:3c:6e:95:24:06:10:12:a4:d4:0c:58:68:33:63:b8:58: a4:f4:2b:29:a6:1b:29:0a:17:40:25:06:28:66:59:02:93:67: 23:a4:76:71:8a:a2:4e:37:e7:ee:12:c6:39:f4:37:c5:a0:15: 7d:3c:24:80:f2:8c:05:7c:14:63:4d:7a:da:4f:06:38:cc:ba: 66:68:d9:06:40:a3:cc:2f:d9:8c:bf:96:98:52:ee:e8:68:4b: 74:c2:3a:fd:3a:d2:40:72:72:2c:58:32:ec:47:8b:10:74:3b: 48:fa:b2:05 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBPDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGQjcy RkFBNTIzQkE2NTI2ODU1RDk5MDY1RTIxQjRCOTU4QzVGMDE2MB4XDTI0MDgzMTAx MzA0MVoXDTI1MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoRkJBMDZCNDJCNTQ1Q0Q5 RTcwNEU2N0YzNTk5MjEwMDc1MTdCNTc5NjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKXO9AIvGs5dX/amGg6/MoL1dFKgYU+dRky8wJFuVJcNPdxlt+H8 BUBo1qVPlsbYU9s8GY9wGCyWFACBjZA6VpEYhzsys6Nd29bcXe/LnWADWalVSjg/ NATKQtiTMSKTKOhM7df5VCdK1775no7V/Exf0IEzlc7SFbOgHkVAlIGnd3m41/Nx 3qsR9yQjfboCViKrXI0+54R0Q7KyxMQWTO40dGpps4sl1dysttIP7CQL4raHHp6N nxc6Ry0x+YeEbOBwbNYrKDJMNaroKzMkXKV2q6Vf6jkUbJKKOWCaGqJMhsXiTFcC LpqPcxGoTdIC/H6MKLW202bVFZ9LhmMydN0CAwEAAaOCAigwggIkMB0GA1UdDgQW BBT7oGtCtUXNnnBOZ/NZkhAHUXtXljAfBgNVHSMEGDAWgBT7cvqlI7plJoVdmQZe IbS5WMXwFjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTA5NjYvLTNMNnBTTzZaU2FGWFprR1hpRzB1VmpGOEJZLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvLTNMNnBTTzZaU2FGWFprR1hpRzB1 VmpGOEJZLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzEwOTY2Ly02QnJRclZGelo1d1RtZnpXWklRQjFGN1Y1WS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBACdeHIwDQYJKoZIhvcNAQELBQADggEBAHjGr9CtN6QRlCasGPmkaJLN cg235mUPOF0Yj255X3XCkV9fM67eCMOk/ZSMApOP09jyePdmhWXHpFflO6BHhxGI 7VZlAlULDDR+vPmOP8BazKChZOmroJ8c4/Hr4XGRg+6UTYRijSZIGMu1L4g6yvX1 XhzZ3e8Kl9AU7GoDMsWGLeUSBdtJrk3bEQxp3fVhuDsXPG6VJAYQEqTUDFhoM2O4 WKT0KymmGykKF0AlBihmWQKTZyOkdnGKok435+4Sxjn0N8WgFX08JIDyjAV8FGNN etpPBjjMumZo2QZAo8wv2Yy/lphS7uhoS3TCOv060kBycixYMuxHixB0O0j6sgU= -----END CERTIFICATE-----Generated at Fri Nov 22 13:33:08 2024 by rpki-client on console-fra.rpki-client.org