$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/12/fxnmp8Tl3RX7bwn7Cq7rVDlGvw0.roa File: fxnmp8Tl3RX7bwn7Cq7rVDlGvw0.roa (raw, json) Hash identifier: /Chvj0JSClgLoh6GomdVp/trXwDNviwULuD/WeWcQFk= Subject key identifier: 7F:19:E6:A7:C4:E5:DD:15:FB:6F:09:FB:0A:AE:EB:54:39:46:BF:0D Certificate issuer: /CN=1589EECCC6718C652638CF4E92C60003C56FB697 Certificate serial: 47 Authority key identifier: 15:89:EE:CC:C6:71:8C:65:26:38:CF:4E:92:C6:00:03:C5:6F:B6:97 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/FYnuzMZxjGUmOM9OksYAA8Vvtpc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/12/fxnmp8Tl3RX7bwn7Cq7rVDlGvw0.roa Signing time: Thu 26 Sep 2024 06:36:04 +0000 ROA not before: Thu 26 Sep 2024 06:36:04 +0000 ROA not after: Mon 15 Sep 2025 01:30:03 +0000 asID: 2907 IP address blocks: 202.145.24.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/12/FYnuzMZxjGUmOM9OksYAA8Vvtpc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/12/FYnuzMZxjGUmOM9OksYAA8Vvtpc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/FYnuzMZxjGUmOM9OksYAA8Vvtpc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1589EECCC6718C652638CF4E92C60003C56FB697 Validity Not Before: Sep 26 06:36:04 2024 GMT Not After : Sep 15 01:30:03 2025 GMT Subject: CN=7F19E6A7C4E5DD15FB6F09FB0AAEEB543946BF0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ab:53:d0:2a:2e:d6:79:5c:a8:cc:ff:bc:a0: 2f:61:1c:27:1e:b4:93:2b:ca:f6:d3:58:c3:af:6b: d3:47:23:fe:8d:1b:a3:cc:ec:3a:c3:51:cf:bf:0d: 8c:34:50:7b:ac:2f:46:27:aa:fe:69:10:32:e5:65: d7:10:a1:08:38:11:af:29:7c:38:2f:17:b8:c5:d3: d3:0b:3b:58:f6:17:18:2b:83:fd:e7:f2:e9:e6:b3: 54:ae:0c:a3:06:fd:29:84:f1:65:3b:6e:d7:f8:67: ff:89:c3:32:93:37:fa:2d:7d:c9:a1:4a:d8:aa:7f: 8a:a8:fb:f1:aa:12:e0:5b:25:4a:b6:dc:f7:90:5f: 89:a0:a7:3a:5e:25:d8:f0:4c:fc:96:99:fc:1a:2f: 0e:66:52:36:10:4c:d6:d7:ba:05:d7:48:35:93:0d: 61:e4:cb:a5:b4:c8:d1:24:13:a7:f2:17:73:05:81: 08:db:e7:53:a7:fb:34:77:74:54:92:eb:66:75:57: 14:60:bf:7f:77:35:fa:19:d6:c0:8e:43:52:2c:0c: fb:ef:7f:8a:ac:00:c1:73:23:a3:15:cb:58:86:3a: ae:22:92:da:4e:10:2a:09:cb:0e:5f:57:66:fe:fc: 2d:1e:76:99:9a:6f:0c:26:cb:aa:e8:5c:59:96:c0: 38:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:19:E6:A7:C4:E5:DD:15:FB:6F:09:FB:0A:AE:EB:54:39:46:BF:0D X509v3 Authority Key Identifier: keyid:15:89:EE:CC:C6:71:8C:65:26:38:CF:4E:92:C6:00:03:C5:6F:B6:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/12/FYnuzMZxjGUmOM9OksYAA8Vvtpc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/FYnuzMZxjGUmOM9OksYAA8Vvtpc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/12/fxnmp8Tl3RX7bwn7Cq7rVDlGvw0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.145.24.0/23 Signature Algorithm: sha256WithRSAEncryption 25:f4:9f:6c:ba:3c:a9:58:4d:31:bc:48:f0:ab:73:08:4c:89: 3c:17:95:75:63:4a:51:fc:f3:60:f2:b4:b0:16:24:29:18:51: 46:28:ec:32:2f:74:b2:f5:ca:83:1b:c9:ea:a7:06:d9:f8:53: ed:e4:a7:82:d7:17:aa:83:a2:19:82:1d:2e:ca:d1:3a:6e:d5: 5c:c1:e9:93:09:4f:4b:f3:37:0e:bd:2f:6e:6b:dc:42:dc:35: 59:e0:67:53:23:c1:5e:d1:32:ad:d8:51:c1:96:a2:34:02:3f: 85:b1:c3:60:ac:53:50:69:c8:28:c2:df:ca:c2:66:e2:fb:13: 96:3b:f3:d9:a5:f9:95:ee:ce:b4:0b:75:ff:7a:7d:28:70:b8: e5:2b:d1:71:e9:90:16:3c:fc:98:d2:12:1a:1c:90:a8:83:3b: f9:c9:1f:09:30:1e:4e:a7:e8:64:96:39:18:cb:93:9f:e1:7e: d0:f6:91:f6:fe:8c:03:19:0a:90:e3:13:47:45:d0:f4:52:04: 73:ec:2c:bd:22:27:f2:cf:0a:a9:07:b4:23:8c:44:18:25:3b: 94:fc:35:e9:ce:4c:cb:a4:dd:e0:40:61:85:53:4f:5c:e7:82: 1d:0b:26:4e:4a:19:ad:38:0a:4f:d8:d4:75:22:c5:80:56:d5: da:49:5d:08 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBRzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxNTg5 RUVDQ0M2NzE4QzY1MjYzOENGNEU5MkM2MDAwM0M1NkZCNjk3MB4XDTI0MDkyNjA2 MzYwNFoXDTI1MDkxNTAxMzAwM1owMzExMC8GA1UEAxMoN0YxOUU2QTdDNEU1REQx NUZCNkYwOUZCMEFBRUVCNTQzOTQ2QkYwRDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMyrU9AqLtZ5XKjM/7ygL2EcJx60kyvK9tNYw69r00cj/o0bo8zs OsNRz78NjDRQe6wvRieq/mkQMuVl1xChCDgRryl8OC8XuMXT0ws7WPYXGCuD/efy 6eazVK4Mowb9KYTxZTtu1/hn/4nDMpM3+i19yaFK2Kp/iqj78aoS4FslSrbc95Bf iaCnOl4l2PBM/JaZ/BovDmZSNhBM1te6BddINZMNYeTLpbTI0SQTp/IXcwWBCNvn U6f7NHd0VJLrZnVXFGC/f3c1+hnWwI5DUiwM++9/iqwAwXMjoxXLWIY6riKS2k4Q KgnLDl9XZv78LR52mZpvDCbLquhcWZbAOI8CAwEAAaOCAiIwggIeMB0GA1UdDgQW BBR/GeanxOXdFftvCfsKrutUOUa/DTAfBgNVHSMEGDAWgBQVie7MxnGMZSY4z06S xgADxW+2lzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTIvRlludXpNWnhqR1VtT005T2tzWUFBOFZ2dHBjLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvRlludXpNWnhqR1VtT005T2tzWUFBOFZ2 dHBjLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzEyL2Z4bm1wOFRsM1JYN2J3bjdDcTdyVkRsR3Z3MC5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAHKkRgwDQYJKoZIhvcNAQELBQADggEBACX0n2y6PKlYTTG8SPCrcwhMiTwXlXVj SlH882DytLAWJCkYUUYo7DIvdLL1yoMbyeqnBtn4U+3kp4LXF6qDohmCHS7K0Tpu 1VzB6ZMJT0vzNw69L25r3ELcNVngZ1MjwV7RMq3YUcGWojQCP4Wxw2CsU1BpyCjC 38rCZuL7E5Y789ml+ZXuzrQLdf96fShwuOUr0XHpkBY8/JjSEhockKiDO/nJHwkw Hk6n6GSWORjLk5/hftD2kfb+jAMZCpDjE0dF0PRSBHPsLL0iJ/LPCqkHtCOMRBgl O5T8NenOTMuk3eBAYYVTT1zngh0LJk5KGa04Ck/Y1HUixYBW1dpJXQg= -----END CERTIFICATE-----Generated at Sun Feb 16 22:28:48 2025 by rpki-client