$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/2b0jnJ_ZyK8dQh-QNe6uRpy-5pw.roa File: 2b0jnJ_ZyK8dQh-QNe6uRpy-5pw.roa (raw, json) Hash identifier: No7H961J9XFA9C54nfJ9pMwHxAP60u69WuQ9fTati2Q= Subject key identifier: D9:BD:23:9C:9F:D9:C8:AF:1D:42:1F:90:35:EE:AE:46:9C:BE:E6:9C Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 01E3 Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/2b0jnJ_ZyK8dQh-QNe6uRpy-5pw.roa Signing time: Fri 31 May 2024 01:34:46 +0000 ROA not before: Fri 31 May 2024 01:34:46 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 4713 IP address blocks: 220.104.0.0/13 maxlen: 13 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 483 (0x1e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: May 31 01:34:46 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=D9BD239C9FD9C8AF1D421F9035EEAE469CBEE69C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:16:5b:95:9c:4b:71:bc:ae:87:8a:9c:1e:fa: 0a:61:d7:c0:e0:15:e6:a4:95:6d:37:2d:7c:40:b8: a3:7d:db:f3:3b:3a:08:c4:89:10:0c:9e:f4:f5:d9: 45:98:76:b3:80:ff:87:16:c2:0e:1c:b4:17:75:21: 49:06:db:df:cd:b7:f8:6f:ee:c0:bf:39:1d:44:9e: ef:34:5b:4d:30:8c:89:10:33:da:8e:f7:83:b1:5a: b0:61:83:f6:71:2a:c1:cb:db:f8:07:0c:79:85:14: 9f:d6:64:01:86:b8:96:63:2f:77:e7:96:b8:56:4c: 63:5b:d8:23:a7:c3:d9:a0:74:79:cd:3b:f5:3d:b8: 17:26:6a:20:52:8c:fa:fe:0a:47:af:db:00:34:6f: ef:70:47:80:2c:d0:9f:ab:eb:19:30:42:1b:0a:4d: 8d:f5:91:41:ec:45:32:3e:11:c2:a1:18:ba:fd:c5: c2:8b:d3:c4:78:ba:c2:97:0a:fc:71:1c:27:55:3b: f0:ca:b1:5c:98:b7:3f:e0:03:7c:18:a4:c0:75:39: d9:f7:3f:ed:d7:d7:36:a5:48:9b:f6:57:d3:7e:30: 25:2d:cf:79:57:59:89:8d:df:b0:a2:45:4c:9f:fc: ac:cb:10:c8:63:6b:f5:be:92:60:f0:38:e7:d7:d8: 17:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:BD:23:9C:9F:D9:C8:AF:1D:42:1F:90:35:EE:AE:46:9C:BE:E6:9C X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/2b0jnJ_ZyK8dQh-QNe6uRpy-5pw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.104.0.0/13 Signature Algorithm: sha256WithRSAEncryption 9d:ee:c1:53:b8:2f:e3:94:0e:b7:06:bd:c5:df:be:11:11:b4: 75:b4:25:a6:ec:cf:e0:bf:ff:3a:3d:bd:1c:6b:bc:69:7b:cc: 07:80:0c:74:df:8d:76:de:19:65:eb:65:48:26:5d:14:5c:17: 50:47:ea:9d:c2:17:37:0c:a9:dc:94:29:32:fa:9b:9d:ca:59: ee:cc:23:5b:46:35:ea:9d:54:92:66:fe:66:28:3a:4e:8b:17: c7:5f:e3:3f:38:6b:83:59:07:6d:10:b6:89:20:b6:75:3e:80: 2b:9f:77:d7:db:e8:ee:bb:8d:24:48:e3:06:7f:22:01:23:18: 42:53:f6:2a:3f:a8:19:7c:e7:d4:da:45:20:89:a4:20:5c:d7: 22:55:2c:13:45:34:c4:02:00:78:8f:4d:93:e2:21:69:a3:79: 4c:1e:da:c8:0b:19:4e:79:bf:27:9f:3c:98:85:61:62:a2:77: 96:42:a2:25:32:0b:6e:67:9d:0e:13:e8:ab:e5:20:50:ac:d3: b9:00:8e:6c:14:02:21:fa:92:91:63:49:7e:ef:5d:77:a3:46: 77:51:4c:f6:cc:31:c7:74:93:0c:f1:1f:26:73:13:1c:3f:da: 1e:f1:3c:fa:5a:dc:9c:13:b0:51:16:0f:2b:4b:cd:0d:65:e6: bf:cb:bc:98 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICAeMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNDA1MzEw MTM0NDZaFw0yNTA1MTUwMTMwMDNaMDMxMTAvBgNVBAMTKEQ5QkQyMzlDOUZEOUM4 QUYxRDQyMUY5MDM1RUVBRTQ2OUNCRUU2OUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQFluVnEtxvK6Hipwe+gph18DgFeaklW03LXxAuKN92/M7OgjE iRAMnvT12UWYdrOA/4cWwg4ctBd1IUkG29/Nt/hv7sC/OR1Enu80W00wjIkQM9qO 94OxWrBhg/ZxKsHL2/gHDHmFFJ/WZAGGuJZjL3fnlrhWTGNb2COnw9mgdHnNO/U9 uBcmaiBSjPr+Ckev2wA0b+9wR4As0J+r6xkwQhsKTY31kUHsRTI+EcKhGLr9xcKL 08R4usKXCvxxHCdVO/DKsVyYtz/gA3wYpMB1Odn3P+3X1zalSJv2V9N+MCUtz3lX WYmN37CiRUyf/KzLEMhja/W+kmDwOOfX2BcZAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQU2b0jnJ/ZyK8dQh+QNe6uRpy+5pwwHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTMxLzJiMGpuSl9aeUs4ZFFoLVFOZTZ1UnB5LTVwdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwPcaDANBgkqhkiG9w0BAQsFAAOCAQEAne7BU7gv45QOtwa9xd++ERG0dbQl puzP4L//Oj29HGu8aXvMB4AMdN+Ndt4ZZetlSCZdFFwXUEfqncIXNwyp3JQpMvqb ncpZ7swjW0Y16p1Ukmb+Zig6TosXx1/jPzhrg1kHbRC2iSC2dT6AK59319vo7ruN JEjjBn8iASMYQlP2Kj+oGXzn1NpFIImkIFzXIlUsE0U0xAIAeI9Nk+IhaaN5TB7a yAsZTnm/J588mIVhYqJ3lkKiJTILbmedDhPoq+UgUKzTuQCObBQCIfqSkWNJfu9d d6NGd1FM9swxx3STDPEfJnMTHD/aHvE8+lrcnBOwURYPK0vNDWXmv8u8mA== -----END CERTIFICATE-----Generated at Fri Nov 22 15:23:55 2024 by rpki-client on console-fra.rpki-client.org