$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/173/PM8OLIv-ndKuBOaMsl8GEslpznQ.roa File: PM8OLIv-ndKuBOaMsl8GEslpznQ.roa (raw, json) Hash identifier: vHvjelJz3OoBPyNK28FRBHJaJLv9iQryltLJNqpJ2PA= Subject key identifier: 3C:CF:0E:2C:8B:FE:9D:D2:AE:04:E6:8C:B2:5F:06:12:C9:69:CE:74 Certificate issuer: /CN=CD312427F800B8296DA11540C8B86E5CE12FC6C5 Certificate serial: AD Authority key identifier: CD:31:24:27:F8:00:B8:29:6D:A1:15:40:C8:B8:6E:5C:E1:2F:C6:C5 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/PM8OLIv-ndKuBOaMsl8GEslpznQ.roa Signing time: Thu 29 Feb 2024 01:29:55 +0000 ROA not before: Thu 29 Feb 2024 01:29:55 +0000 ROA not after: Fri 14 Feb 2025 01:30:03 +0000 asID: 18126 IP address blocks: 223.29.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Oct 2024 13:34:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CD312427F800B8296DA11540C8B86E5CE12FC6C5 Validity Not Before: Feb 29 01:29:55 2024 GMT Not After : Feb 14 01:30:03 2025 GMT Subject: CN=3CCF0E2C8BFE9DD2AE04E68CB25F0612C969CE74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:6a:17:05:a5:8a:0b:46:14:66:60:21:3f:fa: 27:5a:8c:0a:77:f1:40:6d:a0:3e:f3:31:78:46:cc: 41:d3:6b:a9:61:81:ac:de:8f:23:ed:b2:2e:57:c8: 45:77:e1:b4:a0:ec:ce:f7:10:0b:f1:a4:86:22:4a: 9d:cb:e0:aa:c2:74:d1:55:af:30:f8:11:40:82:9c: 4e:91:19:98:7b:9b:63:f7:bf:1e:0a:67:83:d8:a4: 46:61:8c:ad:84:ac:b5:73:f2:4a:72:c9:8e:15:29: 7f:af:86:90:b9:9f:31:be:53:7d:70:ef:71:5c:20: 5f:51:5b:d2:46:a3:b3:1a:7f:05:5f:73:19:f4:ab: 86:35:2b:15:19:0f:f5:b7:9e:d9:41:85:1e:cb:ef: 02:ef:d9:c0:c1:39:ee:3e:48:dd:65:3c:78:30:4d: e8:e7:2f:f2:10:4e:b6:2d:fc:9b:52:07:1b:04:d3: 64:68:d7:70:c3:2a:d7:cd:c1:cf:e8:be:98:b5:fa: 4e:70:d9:b9:f9:0b:25:f2:ea:be:ef:9a:b6:16:93: 9e:48:91:6b:f0:e4:4d:39:59:a8:31:5c:fc:b0:f4: 57:51:cb:a5:47:29:64:07:04:22:e8:f0:8b:cc:41: 8b:74:b5:a5:47:63:5f:a4:b6:1b:0d:3c:07:5a:ed: b2:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:CF:0E:2C:8B:FE:9D:D2:AE:04:E6:8C:B2:5F:06:12:C9:69:CE:74 X509v3 Authority Key Identifier: keyid:CD:31:24:27:F8:00:B8:29:6D:A1:15:40:C8:B8:6E:5C:E1:2F:C6:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/PM8OLIv-ndKuBOaMsl8GEslpznQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 223.29.0.0/17 Signature Algorithm: sha256WithRSAEncryption 22:30:bb:78:b0:95:aa:3b:ed:42:e4:0f:a6:2a:b5:89:37:eb: 59:c5:c9:33:40:35:5c:8d:fb:06:1b:f7:33:37:2f:74:f3:81: 3e:2e:3c:23:38:a1:5b:5d:bb:6c:9a:e6:70:00:12:b8:06:ea: 9b:fa:9c:2f:4e:d3:27:b2:67:6b:f7:d4:58:46:81:7b:16:11: 77:e2:2b:69:ad:c5:9e:23:1c:e6:b5:de:36:0f:07:fb:48:36: 83:d4:93:ca:4d:a3:37:e3:ec:0a:81:97:03:22:0a:85:40:85: 0f:34:6e:8c:b5:71:dd:44:b7:86:74:a3:46:33:d7:18:cf:66: 1d:2a:ca:45:7b:49:ff:1e:ea:a7:05:97:ff:fd:16:ad:da:32: d4:22:8e:ab:d5:7c:19:e7:a7:af:b4:5b:52:00:16:7d:9e:15: c0:e2:bf:50:6f:4b:95:29:0d:73:48:be:a2:0d:e4:db:06:46: 0f:7f:ed:f8:a4:d6:0d:c3:83:9d:31:39:a0:8e:9e:61:fd:96: 86:ea:63:ef:e4:2f:ac:1c:05:fc:12:f6:c6:8e:18:9a:ca:12: 4d:bf:46:31:3f:ac:f9:3c:f4:0b:d0:c4:2e:6f:a7:39:48:28: 48:c4:be:92:96:0a:d1:97:dd:4c:4f:e3:96:f6:22:5c:b0:d2: 0f:dd:3c:b1 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0Qz MTI0MjdGODAwQjgyOTZEQTExNTQwQzhCODZFNUNFMTJGQzZDNTAeFw0yNDAyMjkw MTI5NTVaFw0yNTAyMTQwMTMwMDNaMDMxMTAvBgNVBAMTKDNDQ0YwRTJDOEJGRTlE RDJBRTA0RTY4Q0IyNUYwNjEyQzk2OUNFNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDyahcFpYoLRhRmYCE/+idajAp38UBtoD7zMXhGzEHTa6lhgaze jyPtsi5XyEV34bSg7M73EAvxpIYiSp3L4KrCdNFVrzD4EUCCnE6RGZh7m2P3vx4K Z4PYpEZhjK2ErLVz8kpyyY4VKX+vhpC5nzG+U31w73FcIF9RW9JGo7MafwVfcxn0 q4Y1KxUZD/W3ntlBhR7L7wLv2cDBOe4+SN1lPHgwTejnL/IQTrYt/JtSBxsE02Ro 13DDKtfNwc/ovpi1+k5w2bn5CyXy6r7vmrYWk55IkWvw5E05WagxXPyw9FdRy6VH KWQHBCLo8IvMQYt0taVHY1+kthsNPAda7bI/AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUPM8OLIv+ndKuBOaMsl8GEslpznQwHwYDVR0jBBgwFoAUzTEkJ/gAuCltoRVA yLhuXOEvxsUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE3My96VEVrSl9nQXVDbHRvUlZBeUxodVhPRXZ4c1UuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC96VEVrSl9nQXVDbHRvUlZBeUxodVhP RXZ4c1UuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTczL1BNOE9MSXYtbmRLdUJPYU1zbDhHRXNscHpuUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAffHQAwDQYJKoZIhvcNAQELBQADggEBACIwu3iwlao77ULkD6YqtYk361nF yTNANVyN+wYb9zM3L3TzgT4uPCM4oVtdu2ya5nAAErgG6pv6nC9O0yeyZ2v31FhG gXsWEXfiK2mtxZ4jHOa13jYPB/tINoPUk8pNozfj7AqBlwMiCoVAhQ80boy1cd1E t4Z0o0Yz1xjPZh0qykV7Sf8e6qcFl//9Fq3aMtQijqvVfBnnp6+0W1IAFn2eFcDi v1BvS5UpDXNIvqIN5NsGRg9/7fik1g3Dg50xOaCOnmH9lobqY+/kL6wcBfwS9saO GJrKEk2/RjE/rPk89AvQxC5vpzlIKEjEvpKWCtGX3UxP45b2Ilyw0g/dPLE= -----END CERTIFICATE-----Generated at Fri Sep 27 05:00:13 2024 by rpki-client on console-fra.rpki-client.org