$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1203/9IaapMnwr8M7BXuzN2ojLZn33XA.roa File: 9IaapMnwr8M7BXuzN2ojLZn33XA.roa (raw, json) Hash identifier: TT8dq7TWAjWuFF50QxixB5kLWHcDQlfxdiKnUuT+84U= Subject key identifier: F4:86:9A:A4:C9:F0:AF:C3:3B:05:7B:B3:37:6A:23:2D:99:F7:DD:70 Certificate issuer: /CN=85A6C369C1A9C7A52C3E3805727A5FD31185A773 Certificate serial: 03 Authority key identifier: 85:A6:C3:69:C1:A9:C7:A5:2C:3E:38:05:72:7A:5F:D3:11:85:A7:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/habDacGpx6UsPjgFcnpf0xGFp3M.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1203/9IaapMnwr8M7BXuzN2ojLZn33XA.roa Signing time: Tue 29 Oct 2024 02:58:30 +0000 ROA not before: Tue 29 Oct 2024 02:58:30 +0000 ROA not after: Wed 29 Oct 2025 02:46:37 +0000 asID: 4694 IP address blocks: 154.34.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1203/habDacGpx6UsPjgFcnpf0xGFp3M.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1203/habDacGpx6UsPjgFcnpf0xGFp3M.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/habDacGpx6UsPjgFcnpf0xGFp3M.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/yMD7hwR0w-hMq4NZfEaoYsR_iII.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/yMD7hwR0w-hMq4NZfEaoYsR_iII.mft rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/yMD7hwR0w-hMq4NZfEaoYsR_iII.cer rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85A6C369C1A9C7A52C3E3805727A5FD31185A773 Validity Not Before: Oct 29 02:58:30 2024 GMT Not After : Oct 29 02:46:37 2025 GMT Subject: CN=F4869AA4C9F0AFC33B057BB3376A232D99F7DD70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:25:31:fe:6b:ff:92:87:b5:e1:bd:ee:0d:a4: b4:4e:41:a7:7b:22:5b:ec:83:13:4e:6d:a8:70:17: 00:a9:2a:c2:94:31:32:79:e8:c9:bc:a2:da:82:e2: 25:61:a1:f5:96:8f:e7:30:c3:78:e0:d1:a9:40:6a: 63:eb:e5:a4:f5:5c:7f:97:8e:2c:ed:dc:35:a5:68: f0:3e:22:7b:a1:c4:30:17:2d:8e:4f:e0:85:0f:d5: b7:70:cc:27:01:62:80:21:fd:cd:d8:61:d8:01:b7: 1b:ed:d8:6f:ff:ca:35:9c:75:0d:fb:dd:b0:d6:e1: fd:69:91:86:2b:63:d8:58:93:b5:eb:d1:49:25:0c: b0:42:09:97:f3:d3:40:31:ea:72:f9:98:ad:ec:95: 98:a0:0e:85:06:42:66:90:f9:68:6c:a1:60:98:67: f7:93:a2:9f:72:e2:b9:a6:f6:bf:13:4e:9d:5d:0a: 3d:9c:bc:be:d8:3e:1c:3b:47:59:78:b9:2f:00:52: 7e:1c:d1:7c:dd:40:94:fe:e6:b9:d0:fc:be:a1:92: a6:d3:02:a8:06:45:e8:65:82:ab:6c:5b:30:65:94: c5:d6:e1:62:5b:28:3d:3e:dc:9d:33:12:59:bd:31: 30:b5:a2:89:c5:c4:c4:a6:9a:0c:1f:61:85:91:65: 78:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:86:9A:A4:C9:F0:AF:C3:3B:05:7B:B3:37:6A:23:2D:99:F7:DD:70 X509v3 Authority Key Identifier: keyid:85:A6:C3:69:C1:A9:C7:A5:2C:3E:38:05:72:7A:5F:D3:11:85:A7:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1203/habDacGpx6UsPjgFcnpf0xGFp3M.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/habDacGpx6UsPjgFcnpf0xGFp3M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1203/9IaapMnwr8M7BXuzN2ojLZn33XA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 154.34.64.0/18 Signature Algorithm: sha256WithRSAEncryption 07:0e:79:c8:c8:9c:4e:14:e2:8c:57:f6:0e:44:ef:b9:ab:c9: 27:ef:71:d6:f3:fb:67:af:69:66:29:5a:a2:4c:9f:36:b9:02: 40:e4:bb:07:a8:81:d4:f8:6a:38:f0:c8:0d:3f:1c:67:2b:22: 9b:34:28:ed:2e:ff:d6:1d:16:d3:c3:94:ab:b1:0d:1d:28:e9: 26:4f:a8:06:09:ed:2a:48:2b:4c:73:2f:d3:52:8c:0b:d4:62: eb:b9:fb:06:30:08:cb:b3:8b:d5:83:8a:63:a7:ce:a3:27:4b: 84:4f:9f:e7:02:60:11:ad:d9:6e:64:28:e9:6d:43:da:f0:94: 54:32:4d:f0:6e:1d:2c:fd:98:1a:ba:51:36:7f:79:af:7d:a9: d9:58:33:48:75:e7:ec:28:75:61:7c:d0:a6:fc:08:7e:52:63: 37:a4:e2:68:0b:36:80:cd:70:ee:2f:1b:c2:53:36:43:29:e3: ea:b1:e2:95:b4:f2:98:f9:ff:18:e2:21:8d:2b:fc:54:3b:24: 71:6b:84:78:ca:65:8e:c6:08:3e:a1:a7:9a:97:ac:77:11:32: d8:8a:0c:df:b9:41:2c:6e:03:d2:11:77:a1:cf:e9:59:b4:a5: 8d:0e:8f:af:e7:85:47:e7:ec:82:aa:bf:3a:98:5e:6c:45:14: cb:2b:3f:45 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBAzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4NUE2 QzM2OUMxQTlDN0E1MkMzRTM4MDU3MjdBNUZEMzExODVBNzczMB4XDTI0MTAyOTAy NTgzMFoXDTI1MTAyOTAyNDYzN1owMzExMC8GA1UEAxMoRjQ4NjlBQTRDOUYwQUZD MzNCMDU3QkIzMzc2QTIzMkQ5OUY3REQ3MDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMAlMf5r/5KHteG97g2ktE5Bp3siW+yDE05tqHAXAKkqwpQxMnno ybyi2oLiJWGh9ZaP5zDDeODRqUBqY+vlpPVcf5eOLO3cNaVo8D4ie6HEMBctjk/g hQ/Vt3DMJwFigCH9zdhh2AG3G+3Yb//KNZx1DfvdsNbh/WmRhitj2FiTtevRSSUM sEIJl/PTQDHqcvmYreyVmKAOhQZCZpD5aGyhYJhn95Oin3Liuab2vxNOnV0KPZy8 vtg+HDtHWXi5LwBSfhzRfN1AlP7mudD8vqGSptMCqAZF6GWCq2xbMGWUxdbhYlso PT7cnTMSWb0xMLWiicXExKaaDB9hhZFlePsCAwEAAaOCAiYwggIiMB0GA1UdDgQW BBT0hpqkyfCvwzsFe7M3aiMtmffdcDAfBgNVHSMEGDAWgBSFpsNpwanHpSw+OAVy el/TEYWnczAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTIwMy9oYWJEYWNHcHg2VXNQamdGY25wZjB4R0ZwM00uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9oYWJEYWNHcHg2VXNQamdGY25wZjB4 R0ZwM00uY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTIwMy85SWFhcE1ud3I4TTdCWHV6TjJvakxabjMzWEEucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQGmiJAMA0GCSqGSIb3DQEBCwUAA4IBAQAHDnnIyJxOFOKMV/YORO+5q8kn 73HW8/tnr2lmKVqiTJ82uQJA5LsHqIHU+Go48MgNPxxnKyKbNCjtLv/WHRbTw5Sr sQ0dKOkmT6gGCe0qSCtMcy/TUowL1GLrufsGMAjLs4vVg4pjp86jJ0uET5/nAmAR rdluZCjpbUPa8JRUMk3wbh0s/ZgaulE2f3mvfanZWDNIdefsKHVhfNCm/Ah+UmM3 pOJoCzaAzXDuLxvCUzZDKePqseKVtPKY+f8Y4iGNK/xUOyRxa4R4ymWOxgg+oaea l6x3ETLYigzfuUEsbgPSEXehz+lZtKWNDo+v54VH5+yCqr86mF5sRRTLKz9F -----END CERTIFICATE-----Generated at Mon Nov 25 23:54:26 2024 by rpki-client on console-ams.rpki-client.org