$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20031/Ewlj1vzQTRfcOV5ZWq1OPrg-wvk.roa File: Ewlj1vzQTRfcOV5ZWq1OPrg-wvk.roa (raw, json) Hash identifier: MtpSQllVFCbp2hK8L+jIOy6YVK/f/DMes+TVhoUsqkQ= Subject key identifier: 13:09:63:D6:FC:D0:4D:17:DC:39:5E:59:5A:AD:4E:3E:B8:3E:C2:F9 Certificate issuer: /CN=7642A07D9AC9D227EA42F79E6D131CB1A920EDCE Certificate serial: 2D Authority key identifier: 76:42:A0:7D:9A:C9:D2:27:EA:42:F7:9E:6D:13:1C:B1:A9:20:ED:CE Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/dkKgfZrJ0ifqQveebRMcsakg7c4.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20031/Ewlj1vzQTRfcOV5ZWq1OPrg-wvk.roa Signing time: Thu 31 Oct 2024 01:31:21 +0000 ROA not before: Thu 31 Oct 2024 01:31:21 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 7511 IP address blocks: 202.95.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20031/dkKgfZrJ0ifqQveebRMcsakg7c4.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20031/dkKgfZrJ0ifqQveebRMcsakg7c4.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/dkKgfZrJ0ifqQveebRMcsakg7c4.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7642A07D9AC9D227EA42F79E6D131CB1A920EDCE Validity Not Before: Oct 31 01:31:21 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=130963D6FCD04D17DC395E595AAD4E3EB83EC2F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:6d:4b:cd:45:98:b9:b9:43:ca:08:b6:ba:fe: 29:8e:72:d7:da:2d:fa:e5:cd:f5:ec:16:ca:42:f5: 4d:b4:ba:b6:5d:c7:80:ac:25:cc:df:14:e0:8b:53: c4:f5:3a:ac:f1:0c:9b:68:49:30:a5:7a:98:4f:06: ec:d4:d1:ae:78:d5:ee:92:bd:b3:7c:2c:00:64:28: 54:4a:01:61:8f:72:2d:37:9b:f3:53:b1:43:fc:65: 71:86:0e:2b:99:d8:37:38:4a:4f:81:55:e3:d4:f5: cf:53:ec:de:2e:70:45:39:66:00:82:c5:68:ea:a4: ba:fe:38:89:42:b8:c1:e7:39:e4:39:19:80:a1:df: 8f:49:fe:a7:81:2d:a4:59:90:ff:bc:58:87:91:8c: 96:e8:ea:fc:8e:20:0d:16:0d:17:0a:50:88:98:c0: d9:47:71:0b:1a:a8:c0:2b:2b:77:34:0b:e5:a8:00: 89:58:02:ac:f9:e4:5f:4a:01:06:95:bd:16:3a:0a: d9:7b:dc:7f:1b:08:c8:00:fc:37:fd:43:37:2f:85: c4:a4:ea:a4:64:4b:27:f4:62:3b:4b:77:85:d2:89: 1d:7e:8f:25:47:10:7e:90:b3:f7:af:4c:f7:44:58: 70:81:99:27:29:f5:c5:39:e5:8b:8e:7b:65:96:b5: 02:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:09:63:D6:FC:D0:4D:17:DC:39:5E:59:5A:AD:4E:3E:B8:3E:C2:F9 X509v3 Authority Key Identifier: keyid:76:42:A0:7D:9A:C9:D2:27:EA:42:F7:9E:6D:13:1C:B1:A9:20:ED:CE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20031/dkKgfZrJ0ifqQveebRMcsakg7c4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/dkKgfZrJ0ifqQveebRMcsakg7c4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20031/Ewlj1vzQTRfcOV5ZWq1OPrg-wvk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.95.32.0/19 Signature Algorithm: sha256WithRSAEncryption b0:b6:bb:17:01:ad:8f:a4:05:cf:30:7e:7d:63:54:81:c2:d0: 69:7a:3f:9f:c2:f4:3c:ed:35:33:a5:48:fa:01:97:2e:1a:ca: 46:28:4d:3b:39:c5:00:29:ce:2c:bb:31:ba:b2:f1:bf:16:32: e6:74:1e:c7:d9:7d:51:53:7b:cf:a0:20:aa:15:cd:1f:f6:a5: 3d:52:2f:7c:b6:6f:45:67:8e:08:86:dc:78:11:fb:33:b2:4d: 68:56:ce:78:04:1c:5e:4f:94:38:f6:6a:df:de:43:f8:1c:b2: 20:d1:4e:1d:c1:99:40:b3:79:ca:34:6a:59:e3:42:5a:f0:76: f8:77:3e:25:7b:86:cd:b6:57:46:00:8c:27:38:71:22:57:c3: 0e:d9:82:6a:61:09:c1:03:51:9b:8c:1e:25:05:64:49:7c:8f: 7a:90:02:39:6a:d8:f5:44:f3:8f:64:24:e4:67:f4:16:25:a1: 9f:8c:7d:40:25:8a:0f:64:b6:5d:05:6f:03:11:50:6a:f3:96: db:4d:10:73:09:8d:0f:d8:0a:e9:5c:51:96:b0:cd:aa:47:b7: 03:2e:62:1d:22:80:e0:d0:a0:a5:23:33:34:f1:d0:d9:fe:e7: db:2f:9a:31:a0:af:7e:f2:f4:64:e9:9b:f7:58:c2:63:46:fa: 23:43:f4:24 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBLTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3NjQy QTA3RDlBQzlEMjI3RUE0MkY3OUU2RDEzMUNCMUE5MjBFRENFMB4XDTI0MTAzMTAx MzEyMVoXDTI1MTAxNTAxMzAwMlowMzExMC8GA1UEAxMoMTMwOTYzRDZGQ0QwNEQx N0RDMzk1RTU5NUFBRDRFM0VCODNFQzJGOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKRtS81FmLm5Q8oItrr+KY5y19ot+uXN9ewWykL1TbS6tl3HgKwl zN8U4ItTxPU6rPEMm2hJMKV6mE8G7NTRrnjV7pK9s3wsAGQoVEoBYY9yLTeb81Ox Q/xlcYYOK5nYNzhKT4FV49T1z1Ps3i5wRTlmAILFaOqkuv44iUK4wec55DkZgKHf j0n+p4EtpFmQ/7xYh5GMlujq/I4gDRYNFwpQiJjA2UdxCxqowCsrdzQL5agAiVgC rPnkX0oBBpW9FjoK2XvcfxsIyAD8N/1DNy+FxKTqpGRLJ/RiO0t3hdKJHX6PJUcQ fpCz969M90RYcIGZJyn1xTnli457ZZa1AkkCAwEAAaOCAigwggIkMB0GA1UdDgQW BBQTCWPW/NBNF9w5XllarU4+uD7C+TAfBgNVHSMEGDAWgBR2QqB9msnSJ+pC955t ExyxqSDtzjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwMzEvZGtLZ2ZackowaWZxUXZlZWJSTWNzYWtnN2M0LmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvZGtLZ2ZackowaWZxUXZlZWJSTWNz YWtnN2M0LmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMDMxL0V3bGoxdnpRVFJmY09WNVpXcTFPUHJnLXd2ay5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAXKXyAwDQYJKoZIhvcNAQELBQADggEBALC2uxcBrY+kBc8wfn1jVIHC 0Gl6P5/C9DztNTOlSPoBly4aykYoTTs5xQApziy7Mbqy8b8WMuZ0HsfZfVFTe8+g IKoVzR/2pT1SL3y2b0VnjgiG3HgR+zOyTWhWzngEHF5PlDj2at/eQ/gcsiDRTh3B mUCzeco0alnjQlrwdvh3PiV7hs22V0YAjCc4cSJXww7ZgmphCcEDUZuMHiUFZEl8 j3qQAjlq2PVE849kJORn9BYloZ+MfUAlig9ktl0FbwMRUGrzlttNEHMJjQ/YCulc UZawzapHtwMuYh0igODQoKUjMzTx0Nn+59svmjGgr37y9GTpm/dYwmNG+iND9CQ= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:27 2024 by rpki-client on console-ams.rpki-client.org