$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/GhgS0EuydIhahmdgYLrg8we2blA.roa File: GhgS0EuydIhahmdgYLrg8we2blA.roa (raw, json) Hash identifier: rsI3H6d5HVpO5ZZMcY/bCyJwzYJAkU1+yJVA3wd6e2c= Subject key identifier: 1A:18:12:D0:4B:B2:74:88:5A:86:67:60:60:BA:E0:F3:07:B6:6E:50 Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 01AE Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/GhgS0EuydIhahmdgYLrg8we2blA.roa Signing time: Sun 31 Mar 2024 01:29:07 +0000 ROA not before: Sun 31 Mar 2024 01:29:07 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 4713 IP address blocks: 114.144.0.0/12 maxlen: 12 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 430 (0x1ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: Mar 31 01:29:07 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=1A1812D04BB274885A86676060BAE0F307B66E50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:17:ac:8a:df:ac:10:d2:5e:8a:b3:2a:64:8d: 2c:97:e9:f5:d5:7c:08:29:68:56:65:2e:f9:3b:c9: 56:11:12:37:d9:aa:44:12:38:7f:33:be:cd:c8:06: 77:5e:53:3c:d0:8d:5e:d0:c6:f8:2d:a3:33:74:0a: 6c:b6:8a:f4:c0:c9:bb:cd:96:35:5a:8e:7d:40:b9: fb:5e:9a:96:bc:d4:bc:16:62:81:0b:e9:fa:dd:eb: 2c:33:87:b5:c0:0b:88:6a:eb:b5:7f:28:d9:e2:59: 32:2c:b2:db:c4:ac:08:5d:0f:d9:72:c4:d2:f1:83: 0a:3c:67:de:68:86:5c:36:e2:47:f0:eb:3f:56:b3: 2b:81:76:13:76:3a:98:b5:5d:ce:43:74:29:f2:1e: ca:75:0f:6f:ee:b7:62:a2:7c:b4:ee:0a:32:06:1c: 84:97:56:41:cd:f0:28:1f:36:63:5c:f3:c0:14:f6: b1:dc:48:56:80:61:67:fb:58:a1:ff:95:a2:77:7a: 73:8f:e2:1c:42:5c:2f:d4:ea:36:b8:d0:c5:9e:97: 51:d9:66:8e:8a:04:d8:12:05:f4:82:99:9d:b4:ee: c7:53:32:cf:79:82:ca:51:59:68:70:42:5c:c6:52: 95:77:fb:85:08:bf:1b:66:a0:ff:bb:35:2e:d6:ca: af:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:18:12:D0:4B:B2:74:88:5A:86:67:60:60:BA:E0:F3:07:B6:6E:50 X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/GhgS0EuydIhahmdgYLrg8we2blA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.144.0.0/12 Signature Algorithm: sha256WithRSAEncryption 18:0c:eb:42:72:14:b6:9a:b1:67:0a:ac:e5:f8:30:fa:62:41: ef:c5:d8:2a:9d:27:5c:55:40:d6:ed:47:26:24:7d:37:7a:94: 7c:60:af:94:e8:05:89:c6:c4:05:2f:9d:df:e1:9c:3c:94:a8: 69:8a:70:95:91:05:8d:cb:3a:aa:93:7d:bd:b4:9b:36:16:ee: c6:59:33:d4:59:d4:68:c3:21:2b:c7:d3:24:1e:44:21:c4:7a: 6c:aa:bd:71:37:24:e6:15:dd:7f:df:a0:63:02:de:1b:a0:56: 34:36:41:40:15:5e:17:7b:f3:6b:cb:7d:35:95:49:5f:2e:6c: da:c7:73:af:17:52:b9:f8:01:44:94:7b:49:28:d4:63:fe:f1: b5:21:08:56:20:45:8a:5d:55:59:f9:f5:94:be:34:8b:c8:82: 31:bd:d2:fa:3d:31:c0:43:a9:6b:9f:74:49:d2:bf:88:49:57: 4e:bb:15:15:14:87:b5:f4:55:97:c4:ff:2a:aa:0a:f9:69:9a: 31:82:a1:0e:a7:61:ca:be:6d:21:9c:ac:bd:91:90:ea:4a:c9: 3b:2c:4e:71:55:3f:88:b3:a1:87:3a:de:79:ee:f1:89:52:e0: 1c:4c:a6:84:59:4b:f5:ed:d7:4c:bc:a8:21:02:2f:68:e4:8a: bb:ec:81:41 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICAa4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNDAzMzEw MTI5MDdaFw0yNTAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDFBMTgxMkQwNEJCMjc0 ODg1QTg2Njc2MDYwQkFFMEYzMDdCNjZFNTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7F6yK36wQ0l6KsypkjSyX6fXVfAgpaFZlLvk7yVYREjfZqkQS OH8zvs3IBndeUzzQjV7QxvgtozN0Cmy2ivTAybvNljVajn1Auftempa81LwWYoEL 6frd6ywzh7XAC4hq67V/KNniWTIsstvErAhdD9lyxNLxgwo8Z95ohlw24kfw6z9W syuBdhN2Opi1Xc5DdCnyHsp1D2/ut2KifLTuCjIGHISXVkHN8CgfNmNc88AU9rHc SFaAYWf7WKH/laJ3enOP4hxCXC/U6ja40MWel1HZZo6KBNgSBfSCmZ207sdTMs95 gspRWWhwQlzGUpV3+4UIvxtmoP+7NS7Wyq9VAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUGhgS0EuydIhahmdgYLrg8we2blAwHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTMxL0doZ1MwRXV5ZEloYWhtZGdZTHJnOHdlMmJsQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwRykDANBgkqhkiG9w0BAQsFAAOCAQEAGAzrQnIUtpqxZwqs5fgw+mJB78XY Kp0nXFVA1u1HJiR9N3qUfGCvlOgFicbEBS+d3+GcPJSoaYpwlZEFjcs6qpN9vbSb Nhbuxlkz1FnUaMMhK8fTJB5EIcR6bKq9cTck5hXdf9+gYwLeG6BWNDZBQBVeF3vz a8t9NZVJXy5s2sdzrxdSufgBRJR7SSjUY/7xtSEIViBFil1VWfn1lL40i8iCMb3S +j0xwEOpa590SdK/iElXTrsVFRSHtfRVl8T/KqoK+WmaMYKhDqdhyr5tIZysvZGQ 6krJOyxOcVU/iLOhhzreee7xiVLgHEymhFlL9e3XTLyoIQIvaOSKu+yBQQ== -----END CERTIFICATE-----Generated at Fri Nov 22 15:23:55 2024 by rpki-client on console-fra.rpki-client.org