$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20042/aphWmhNQGHSr9e4Qe0F1l33b5p4.roa File: aphWmhNQGHSr9e4Qe0F1l33b5p4.roa (raw, json) Hash identifier: sD/5/L1Tpm3WEBl1qfJmd9fwbWFPVvlQYfca+q02How= Subject key identifier: 6A:98:56:9A:13:50:18:74:AB:F5:EE:10:7B:41:75:97:7D:DB:E6:9E Certificate issuer: /CN=961BC18512722AAF9A90D898ADEA9AF7793C2543 Certificate serial: 60 Authority key identifier: 96:1B:C1:85:12:72:2A:AF:9A:90:D8:98:AD:EA:9A:F7:79:3C:25:43 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lhvBhRJyKq-akNiYreqa93k8JUM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/aphWmhNQGHSr9e4Qe0F1l33b5p4.roa Signing time: Wed 04 Sep 2024 06:29:21 +0000 ROA not before: Wed 04 Sep 2024 06:29:21 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 15830 IP address blocks: 118.67.64.0/19 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/lhvBhRJyKq-akNiYreqa93k8JUM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/lhvBhRJyKq-akNiYreqa93k8JUM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lhvBhRJyKq-akNiYreqa93k8JUM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 20:13:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=961BC18512722AAF9A90D898ADEA9AF7793C2543 Validity Not Before: Sep 4 06:29:21 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=6A98569A13501874ABF5EE107B4175977DDBE69E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c7:8b:18:dc:ce:22:33:0f:2a:aa:06:92:a5: 2b:68:2e:2c:89:77:46:92:2a:c0:39:41:ab:e0:e1: 37:3a:37:7b:47:82:a4:47:af:83:db:40:fb:57:34: c2:49:e4:04:07:1d:a0:42:e1:18:8f:6e:ed:2c:1e: 47:c2:0b:21:6e:6d:af:be:71:6e:ad:53:1f:7e:8b: 02:37:cf:19:fb:4e:5e:48:f0:52:d7:f0:4b:05:c9: 90:d1:7c:4d:4e:9c:36:fc:97:bd:68:02:39:4c:b6: 49:89:e7:40:a4:55:ce:8f:9a:9c:b3:ca:96:c1:12: af:35:b1:84:6d:95:8b:69:f0:45:c9:f4:6e:94:39: 51:55:eb:bf:78:95:21:a8:5c:b9:00:e6:3c:43:54: 5f:c5:f3:ee:61:57:b4:0c:67:b1:e7:3e:f7:69:ac: ac:1d:07:2f:55:38:cc:cc:e1:ea:98:cd:ff:fe:00: 96:93:4d:f1:d5:7f:bf:a3:87:a3:fa:24:54:55:0e: cd:f7:fe:23:38:4c:35:b4:e6:bb:c4:55:22:92:be: a9:bf:7a:19:06:be:13:5c:3e:34:d6:e4:84:26:78: e6:55:e5:2a:5f:79:74:aa:1a:0b:14:c3:bf:7b:23: 49:d2:9a:f8:c5:ae:d0:e6:b2:b2:2d:6f:fc:7e:f8: b5:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:98:56:9A:13:50:18:74:AB:F5:EE:10:7B:41:75:97:7D:DB:E6:9E X509v3 Authority Key Identifier: keyid:96:1B:C1:85:12:72:2A:AF:9A:90:D8:98:AD:EA:9A:F7:79:3C:25:43 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/lhvBhRJyKq-akNiYreqa93k8JUM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lhvBhRJyKq-akNiYreqa93k8JUM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/aphWmhNQGHSr9e4Qe0F1l33b5p4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.67.64.0/19 Signature Algorithm: sha256WithRSAEncryption 1d:66:2b:bc:a3:65:a8:a5:73:8b:e6:e8:5c:8f:b9:79:e6:4e: e6:71:43:24:6c:fa:51:95:b7:a9:eb:06:d7:6b:40:1e:f8:00: 54:60:e3:54:a9:be:6f:0b:9a:83:83:f9:99:41:e2:82:54:51: 56:ed:06:cb:41:85:5f:20:46:87:70:26:45:b2:94:17:58:e8: bd:5d:3b:85:0d:cc:c7:cb:d2:f2:cb:05:5c:4d:a5:35:4f:1e: d0:67:58:45:6c:ee:de:38:7a:17:0c:37:90:dd:8e:65:4d:48: 21:fc:6a:8f:26:16:50:e4:f4:f1:b5:58:2a:f3:39:e8:5c:66: dd:dc:7c:55:b9:a0:01:de:91:e2:d9:f7:98:56:c7:c2:c1:df: de:9e:d0:0f:d8:1e:df:9a:04:c7:e2:85:e6:b6:51:49:01:b6: 17:15:70:79:d1:10:7c:5d:1f:a9:7d:86:a2:f1:dd:ba:5c:62: cb:06:52:39:f8:76:45:2a:bd:0d:cf:01:3b:bf:19:b5:1c:6c: 99:a0:0b:e4:15:41:c4:14:b3:2e:20:50:e6:2e:79:b6:54:dc: 23:ec:1a:b3:79:48:8d:07:1b:e2:82:e1:45:b2:32:cd:ab:cd: b2:fc:83:ba:bc:0f:e3:44:e8:26:ef:50:f6:55:80:92:9c:cc: 6a:25:db:34 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBYDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5NjFC QzE4NTEyNzIyQUFGOUE5MEQ4OThBREVBOUFGNzc5M0MyNTQzMB4XDTI0MDkwNDA2 MjkyMVoXDTI1MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoNkE5ODU2OUExMzUwMTg3 NEFCRjVFRTEwN0I0MTc1OTc3RERCRTY5RTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALjHixjcziIzDyqqBpKlK2guLIl3RpIqwDlBq+DhNzo3e0eCpEev g9tA+1c0wknkBAcdoELhGI9u7SweR8ILIW5tr75xbq1TH36LAjfPGftOXkjwUtfw SwXJkNF8TU6cNvyXvWgCOUy2SYnnQKRVzo+anLPKlsESrzWxhG2Vi2nwRcn0bpQ5 UVXrv3iVIahcuQDmPENUX8Xz7mFXtAxnsec+92msrB0HL1U4zMzh6pjN//4AlpNN 8dV/v6OHo/okVFUOzff+IzhMNbTmu8RVIpK+qb96GQa+E1w+NNbkhCZ45lXlKl95 dKoaCxTDv3sjSdKa+MWu0Oaysi1v/H74tXsCAwEAAaOCAigwggIkMB0GA1UdDgQW BBRqmFaaE1AYdKv17hB7QXWXfdvmnjAfBgNVHSMEGDAWgBSWG8GFEnIqr5qQ2Jit 6pr3eTwlQzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwNDIvbGh2QmhSSnlLcS1ha05pWXJlcWE5M2s4SlVNLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvbGh2QmhSSnlLcS1ha05pWXJlcWE5 M2s4SlVNLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMDQyL2FwaFdtaE5RR0hTcjllNFFlMEYxbDMzYjVwNC5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAV2Q0AwDQYJKoZIhvcNAQELBQADggEBAB1mK7yjZailc4vm6FyPuXnm TuZxQyRs+lGVt6nrBtdrQB74AFRg41Spvm8LmoOD+ZlB4oJUUVbtBstBhV8gRodw JkWylBdY6L1dO4UNzMfL0vLLBVxNpTVPHtBnWEVs7t44ehcMN5DdjmVNSCH8ao8m FlDk9PG1WCrzOehcZt3cfFW5oAHekeLZ95hWx8LB396e0A/YHt+aBMfihea2UUkB thcVcHnREHxdH6l9hqLx3bpcYssGUjn4dkUqvQ3PATu/GbUcbJmgC+QVQcQUsy4g UOYuebZU3CPsGrN5SI0HG+KC4UWyMs2rzbL8g7q8D+NE6CbvUPZVgJKczGol2zQ= -----END CERTIFICATE-----Generated at Fri Nov 22 01:33:17 2024 by rpki-client on console-ams.rpki-client.org