$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/12/hoES4JdcTcFIj_9jpQ_20eKFfos.roa File: hoES4JdcTcFIj_9jpQ_20eKFfos.roa (raw, json) Hash identifier: Z1MLs7350PZ7ho9fd0iUqg8unbqOcxeuJicqb4c+O6w= Subject key identifier: 86:81:12:E0:97:5C:4D:C1:48:8F:FF:63:A5:0F:F6:D1:E2:85:7E:8B Certificate issuer: /CN=4BDFDC09783493BE1DD0F6F71AB331B61944A1F2 Certificate serial: 07 Authority key identifier: 4B:DF:DC:09:78:34:93:BE:1D:D0:F6:F7:1A:B3:31:B6:19:44:A1:F2 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/S9_cCXg0k74d0Pb3GrMxthlEofI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/12/hoES4JdcTcFIj_9jpQ_20eKFfos.roa Signing time: Thu 26 Sep 2024 06:33:56 +0000 ROA not before: Thu 26 Sep 2024 06:33:56 +0000 ROA not after: Mon 15 Sep 2025 01:30:03 +0000 asID: 2907 IP address blocks: 192.174.128.0/17 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/12/S9_cCXg0k74d0Pb3GrMxthlEofI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/12/S9_cCXg0k74d0Pb3GrMxthlEofI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/S9_cCXg0k74d0Pb3GrMxthlEofI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4BDFDC09783493BE1DD0F6F71AB331B61944A1F2 Validity Not Before: Sep 26 06:33:56 2024 GMT Not After : Sep 15 01:30:03 2025 GMT Subject: CN=868112E0975C4DC1488FFF63A50FF6D1E2857E8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:76:f3:71:b9:b6:fb:73:8f:86:99:74:ce:d1: b3:6b:e9:d9:6c:af:9c:27:26:21:bb:b0:4d:05:5a: 18:c6:ae:64:0b:4a:3d:04:00:78:37:58:4b:4e:42: df:63:b7:5a:e9:8c:7d:10:f4:1f:1c:f6:1c:2e:fa: de:67:f5:7e:f6:7e:59:be:60:c5:39:68:1a:ec:38: da:77:e5:47:05:5c:bf:78:79:55:25:43:b4:19:8a: 67:89:99:e8:df:7a:0a:3c:30:08:80:1f:b8:36:4f: bb:60:f7:df:38:23:08:e8:29:40:f0:41:b2:3d:44: b1:ce:1e:c1:fb:b5:ff:52:0b:22:75:d9:f3:3d:87: 79:d8:cd:cc:c9:58:63:18:ff:ff:e3:ba:0d:0d:fe: 78:50:85:76:51:fd:68:a0:4e:f9:cb:9e:78:f9:58: 4f:b4:8d:3c:ec:0c:1b:a2:75:66:44:32:b0:68:8e: ce:ee:58:9d:31:60:38:67:a3:a5:38:1e:e9:56:8c: 35:95:b0:9b:ab:f2:11:18:b6:03:2e:9c:e7:e2:5f: b0:5e:59:eb:b9:cc:6a:a8:4b:99:07:73:6f:4c:80: 40:b4:08:83:84:fb:18:75:33:22:ee:c8:32:a4:50: 65:52:c1:52:77:c0:b8:23:77:e3:d8:f4:11:5c:64: f8:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:81:12:E0:97:5C:4D:C1:48:8F:FF:63:A5:0F:F6:D1:E2:85:7E:8B X509v3 Authority Key Identifier: keyid:4B:DF:DC:09:78:34:93:BE:1D:D0:F6:F7:1A:B3:31:B6:19:44:A1:F2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/12/S9_cCXg0k74d0Pb3GrMxthlEofI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/S9_cCXg0k74d0Pb3GrMxthlEofI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/12/hoES4JdcTcFIj_9jpQ_20eKFfos.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.174.128.0/17 Signature Algorithm: sha256WithRSAEncryption 3f:d7:04:79:6a:b5:2a:27:23:43:eb:c7:99:87:3e:53:cd:d6: 74:7b:ee:75:f4:0b:4c:46:35:6e:ba:8e:18:22:e6:39:83:35: fc:bc:0c:48:1c:d5:cf:0f:c2:3e:ff:de:71:e8:1b:a9:5c:c3: a8:56:ac:89:7c:47:e7:77:cb:11:10:f2:3b:6b:c6:43:33:6f: a7:cc:48:b6:3b:79:e7:7d:d6:04:db:cc:cd:5c:6a:c3:c7:7c: a4:74:f5:07:7b:4e:80:40:8f:ff:6f:f9:6d:8c:db:a0:6b:40: 8d:16:fb:73:48:90:b9:d8:55:dc:0b:1e:8b:48:63:7b:0a:6c: e9:54:d7:2f:69:16:55:64:71:47:d2:ea:68:b0:cf:b0:f8:f3: dd:a3:90:1d:76:4a:d6:f3:eb:34:bc:e0:2d:ea:c0:17:d9:24: 22:16:47:7b:ee:55:ed:af:76:f8:55:86:0d:21:61:6a:8f:b3: a2:8b:05:79:8e:30:0c:82:19:fe:12:5c:c9:8e:34:5b:3b:cd: ab:54:9d:58:d2:cc:27:52:2d:63:54:e5:e3:2a:ee:81:59:25: d8:92:04:3f:e2:e5:a2:63:a0:96:eb:9f:d6:bb:eb:60:98:93: 3c:b2:59:1f:5f:81:97:d6:67:99:53:7a:c6:b1:10:6a:90:b6: 04:44:f0:da -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBBzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0QkRG REMwOTc4MzQ5M0JFMUREMEY2RjcxQUIzMzFCNjE5NDRBMUYyMB4XDTI0MDkyNjA2 MzM1NloXDTI1MDkxNTAxMzAwM1owMzExMC8GA1UEAxMoODY4MTEyRTA5NzVDNERD MTQ4OEZGRjYzQTUwRkY2RDFFMjg1N0U4QjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMF283G5tvtzj4aZdM7Rs2vp2WyvnCcmIbuwTQVaGMauZAtKPQQA eDdYS05C32O3WumMfRD0Hxz2HC763mf1fvZ+Wb5gxTloGuw42nflRwVcv3h5VSVD tBmKZ4mZ6N96CjwwCIAfuDZPu2D33zgjCOgpQPBBsj1Esc4ewfu1/1ILInXZ8z2H edjNzMlYYxj//+O6DQ3+eFCFdlH9aKBO+cueePlYT7SNPOwMG6J1ZkQysGiOzu5Y nTFgOGejpTge6VaMNZWwm6vyERi2Ay6c5+JfsF5Z67nMaqhLmQdzb0yAQLQIg4T7 GHUzIu7IMqRQZVLBUnfAuCN349j0EVxk+McCAwEAAaOCAiIwggIeMB0GA1UdDgQW BBSGgRLgl1xNwUiP/2OlD/bR4oV+izAfBgNVHSMEGDAWgBRL39wJeDSTvh3Q9vca szG2GUSh8jAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTIvUzlfY0NYZzBrNzRkMFBiM0dyTXh0aGxFb2ZJLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvUzlfY0NYZzBrNzRkMFBiM0dyTXh0aGxF b2ZJLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzEyL2hvRVM0SmRjVGNGSWpfOWpwUV8yMGVLRmZvcy5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAfAroAwDQYJKoZIhvcNAQELBQADggEBAD/XBHlqtSonI0Prx5mHPlPN1nR77nX0 C0xGNW66jhgi5jmDNfy8DEgc1c8Pwj7/3nHoG6lcw6hWrIl8R+d3yxEQ8jtrxkMz b6fMSLY7eed91gTbzM1casPHfKR09Qd7ToBAj/9v+W2M26BrQI0W+3NIkLnYVdwL HotIY3sKbOlU1y9pFlVkcUfS6miwz7D4892jkB12Stbz6zS84C3qwBfZJCIWR3vu Ve2vdvhVhg0hYWqPs6KLBXmOMAyCGf4SXMmONFs7zatUnVjSzCdSLWNU5eMq7oFZ JdiSBD/i5aJjoJbrn9a762CYkzyyWR9fgZfWZ5lTesaxEGqQtgRE8No= -----END CERTIFICATE-----Generated at Mon Nov 25 23:54:26 2024 by rpki-client on console-ams.rpki-client.org