$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/11247/3XNgk9D8niEZun3P5MDcRa-L9Sg.roa File: 3XNgk9D8niEZun3P5MDcRa-L9Sg.roa (raw, json) Hash identifier: 0mG9TmAEGhR7CH5TtWCkV1tZrZG17+5UG8gRTkiMgxM= Subject key identifier: DD:73:60:93:D0:FC:9E:21:19:BA:7D:CF:E4:C0:DC:45:AF:8B:F5:28 Certificate issuer: /CN=EFC15649A8257F64FC942167E310AD38AD02CDBC Certificate serial: 70 Authority key identifier: EF:C1:56:49:A8:25:7F:64:FC:94:21:67:E3:10:AD:38:AD:02:CD:BC Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/78FWSaglf2T8lCFn4xCtOK0Czbw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/3XNgk9D8niEZun3P5MDcRa-L9Sg.roa Signing time: Sat 31 Aug 2024 01:29:07 +0000 ROA not before: Sat 31 Aug 2024 01:29:07 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 7684 IP address blocks: 133.125.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/78FWSaglf2T8lCFn4xCtOK0Czbw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/78FWSaglf2T8lCFn4xCtOK0Czbw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/78FWSaglf2T8lCFn4xCtOK0Czbw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 18:36:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EFC15649A8257F64FC942167E310AD38AD02CDBC Validity Not Before: Aug 31 01:29:07 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=DD736093D0FC9E2119BA7DCFE4C0DC45AF8BF528 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b3:e1:ed:84:2f:ab:68:bc:8f:66:bb:de:8e: a3:ff:fd:c5:41:a3:6e:49:12:c9:f6:b9:1d:a5:9a: 6f:88:df:ca:0e:a8:af:8b:0a:fe:2a:33:c6:7b:63: ee:cf:02:25:7a:1b:98:0d:86:52:ca:90:b0:44:96: b2:26:e6:03:cd:8f:5f:06:53:4f:7a:4b:8c:e4:27: 04:65:91:7b:ef:60:58:c6:7b:e7:0d:9f:df:d3:57: 9b:7c:33:7f:e5:90:53:70:b1:21:b4:d0:78:08:ee: b1:4f:4a:f1:9f:8f:90:e3:d0:14:13:ae:14:88:7b: 94:ee:4a:1d:0f:8d:9b:8f:b8:70:d5:ee:0e:fd:1e: 1e:61:01:6b:b5:7b:4b:6c:d6:8b:00:c9:b5:9c:ed: e3:6f:45:2b:07:3d:3e:d3:49:a1:3a:45:55:6d:62: 37:da:74:e2:ae:15:d8:ab:c6:69:e1:86:6d:50:56: c0:08:f9:fb:31:0f:54:85:52:c4:df:90:ec:ff:07: a7:4d:ec:75:8e:47:2f:99:24:c4:78:52:a5:9a:2f: 62:e8:ab:06:ea:50:05:5f:29:ba:b3:1e:84:ef:8b: ac:df:33:37:b0:1b:c6:67:b4:5f:bf:63:5b:79:fd: fe:b0:be:bf:b2:26:c7:d6:27:dd:33:b2:c4:ba:3e: 02:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:73:60:93:D0:FC:9E:21:19:BA:7D:CF:E4:C0:DC:45:AF:8B:F5:28 X509v3 Authority Key Identifier: keyid:EF:C1:56:49:A8:25:7F:64:FC:94:21:67:E3:10:AD:38:AD:02:CD:BC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/78FWSaglf2T8lCFn4xCtOK0Czbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/78FWSaglf2T8lCFn4xCtOK0Czbw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/3XNgk9D8niEZun3P5MDcRa-L9Sg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 133.125.0.0/16 Signature Algorithm: sha256WithRSAEncryption 90:af:31:4e:bb:66:1a:a5:b7:c5:fb:6b:58:bf:99:30:f2:af: da:12:8d:dd:5c:9b:9c:ab:26:78:5d:08:05:24:69:04:3e:44: ee:e8:fb:61:fb:98:92:66:71:90:f2:ce:b6:de:56:1f:d6:34: 2c:f7:34:05:31:3b:19:99:d3:53:51:2c:6e:ca:97:84:ef:bc: 82:ee:36:3f:11:43:d6:6b:a3:81:31:f9:c2:e0:60:a1:36:e9: 13:a5:df:4c:16:ec:ff:48:15:9a:56:01:b1:1f:72:e8:88:bd: a7:97:05:4e:c6:32:75:c4:6a:4a:72:1a:be:c2:58:b0:f0:0c: ca:4c:1d:21:92:92:7a:a6:0e:19:47:8e:a6:0c:5f:16:00:85: bb:f3:a4:df:16:a1:90:ac:ff:ba:3d:31:35:4f:df:ff:ce:43: fa:41:38:1d:a3:8e:55:91:41:cf:17:2d:43:06:03:29:39:18: 77:a8:f7:f1:47:4b:92:99:1b:19:08:8c:cf:61:40:36:98:4b: 54:e8:af:f5:81:2e:d3:bc:bc:fe:1e:5f:04:65:13:a6:0a:30: 8a:80:e3:1f:74:ca:67:97:b6:1b:9a:e3:9f:ae:08:d0:55:c3: 33:29:c4:1a:8e:bb:f5:37:f8:6e:cc:f2:e7:b3:06:74:de:fe: 38:7e:1c:05 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIBcDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhFRkMx NTY0OUE4MjU3RjY0RkM5NDIxNjdFMzEwQUQzOEFEMDJDREJDMB4XDTI0MDgzMTAx MjkwN1oXDTI1MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoREQ3MzYwOTNEMEZDOUUy MTE5QkE3RENGRTRDMERDNDVBRjhCRjUyODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMyz4e2EL6tovI9mu96Oo//9xUGjbkkSyfa5HaWab4jfyg6or4sK /iozxntj7s8CJXobmA2GUsqQsESWsibmA82PXwZTT3pLjOQnBGWRe+9gWMZ75w2f 39NXm3wzf+WQU3CxIbTQeAjusU9K8Z+PkOPQFBOuFIh7lO5KHQ+Nm4+4cNXuDv0e HmEBa7V7S2zWiwDJtZzt429FKwc9PtNJoTpFVW1iN9p04q4V2KvGaeGGbVBWwAj5 +zEPVIVSxN+Q7P8Hp03sdY5HL5kkxHhSpZovYuirBupQBV8purMehO+LrN8zN7Ab xme0X79jW3n9/rC+v7Imx9Yn3TOyxLo+AvkCAwEAAaOCAicwggIjMB0GA1UdDgQW BBTdc2CT0PyeIRm6fc/kwNxFr4v1KDAfBgNVHSMEGDAWgBTvwVZJqCV/ZPyUIWfj EK04rQLNvDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTEyNDcvNzhGV1NhZ2xmMlQ4bENGbjR4Q3RPSzBDemJ3LmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvNzhGV1NhZ2xmMlQ4bENGbjR4Q3RP SzBDemJ3LmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzExMjQ3LzNYTmdrOUQ4bmlFWnVuM1A1TURjUmEtTDlTZy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsE AgABMAUDAwCFfTANBgkqhkiG9w0BAQsFAAOCAQEAkK8xTrtmGqW3xftrWL+ZMPKv 2hKN3VybnKsmeF0IBSRpBD5E7uj7YfuYkmZxkPLOtt5WH9Y0LPc0BTE7GZnTU1Es bsqXhO+8gu42PxFD1mujgTH5wuBgoTbpE6XfTBbs/0gVmlYBsR9y6Ii9p5cFTsYy dcRqSnIavsJYsPAMykwdIZKSeqYOGUeOpgxfFgCFu/Ok3xahkKz/uj0xNU/f/85D +kE4HaOOVZFBzxctQwYDKTkYd6j38UdLkpkbGQiMz2FANphLVOiv9YEu07y8/h5f BGUTpgowioDjH3TKZ5e2G5rjn64I0FXDMynEGo679Tf4bszy57MGdN7+OH4cBQ== -----END CERTIFICATE-----Generated at Mon Nov 25 19:47:47 2024 by rpki-client on console-fra.rpki-client.org