$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20053/GLwwB50UhDa_6RxCEFLDPW2gqOg.roa File: GLwwB50UhDa_6RxCEFLDPW2gqOg.roa (raw, json) Hash identifier: MBtujO8/LxBYYYlpXXIQMAbVdlX/7K7VJBdfgTxjOlE= Subject key identifier: 18:BC:30:07:9D:14:84:36:BF:E9:1C:42:10:52:C3:3D:6D:A0:A8:E8 Certificate issuer: /CN=DABF6D95DB256816D2942346B9FC2EA0C1AFD803 Certificate serial: 03 Authority key identifier: DA:BF:6D:95:DB:25:68:16:D2:94:23:46:B9:FC:2E:A0:C1:AF:D8:03 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2r9tldslaBbSlCNGufwuoMGv2AM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20053/GLwwB50UhDa_6RxCEFLDPW2gqOg.roa Signing time: Thu 18 Apr 2024 07:56:43 +0000 ROA not before: Thu 18 Apr 2024 07:56:43 +0000 ROA not after: Fri 18 Apr 2025 07:41:21 +0000 asID: 131926 IP address blocks: 104.251.144.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20053/2r9tldslaBbSlCNGufwuoMGv2AM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20053/2r9tldslaBbSlCNGufwuoMGv2AM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2r9tldslaBbSlCNGufwuoMGv2AM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:24:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DABF6D95DB256816D2942346B9FC2EA0C1AFD803 Validity Not Before: Apr 18 07:56:43 2024 GMT Not After : Apr 18 07:41:21 2025 GMT Subject: CN=18BC30079D148436BFE91C421052C33D6DA0A8E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ea:6b:ac:42:83:2d:fe:ea:dc:e7:f0:eb:3d: 7c:77:0b:6b:5f:33:1f:a1:58:14:8f:5a:5e:41:91: 66:ca:c1:91:35:39:0e:a8:73:f1:12:8c:19:35:80: b6:b8:1b:82:34:1a:93:0b:ee:a2:3d:d7:28:8b:eb: 4e:06:54:cf:62:f2:33:02:e9:b4:af:21:e6:60:ad: 1d:3d:96:83:11:be:87:fe:cd:37:76:9d:5d:f1:9b: fc:50:44:98:45:de:7c:41:5d:21:24:fd:b9:83:b3: 27:28:23:5f:fd:b8:33:7b:8c:ed:f8:af:f3:54:e2: 1c:fa:21:4b:e5:89:43:d7:4c:c6:87:9f:94:e1:a8: 5b:67:de:c1:98:44:ac:24:c3:ef:bd:b0:27:e9:b1: 30:9a:ba:ce:5d:57:d1:cd:5f:8c:c1:5a:d5:a1:15: 98:19:21:73:04:7b:58:60:45:77:b8:50:b5:2b:15: 8b:0a:7d:62:57:8e:07:7b:39:08:1b:8a:1d:4f:e6: 73:ee:f6:93:d3:b5:6d:b3:e3:bc:a6:7f:8c:65:28: f6:d3:1b:c4:b9:81:80:5e:9e:85:05:4e:c2:bf:26: 78:31:3b:54:e0:4e:ba:a0:fd:b2:46:77:4e:56:86: 6b:5b:57:79:02:8e:79:bc:bd:70:d6:4b:e5:ac:f9: 5a:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:BC:30:07:9D:14:84:36:BF:E9:1C:42:10:52:C3:3D:6D:A0:A8:E8 X509v3 Authority Key Identifier: keyid:DA:BF:6D:95:DB:25:68:16:D2:94:23:46:B9:FC:2E:A0:C1:AF:D8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20053/2r9tldslaBbSlCNGufwuoMGv2AM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2r9tldslaBbSlCNGufwuoMGv2AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20053/GLwwB50UhDa_6RxCEFLDPW2gqOg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 104.251.144.0/20 Signature Algorithm: sha256WithRSAEncryption 97:07:4a:1a:67:41:69:81:b1:66:11:33:0a:97:0f:87:b5:58: b7:99:ba:77:e4:64:1a:17:13:a6:6e:75:4a:21:50:da:3d:37: 15:84:a6:3d:ee:67:64:15:a3:bf:10:0a:7d:59:0d:64:66:ad: 8e:8b:71:74:23:a3:ef:ad:d6:b2:f6:28:24:b2:92:b3:43:eb: 06:7e:b9:22:11:94:ba:19:fe:c8:e9:42:26:fc:ff:8b:da:db: d9:4d:83:d1:4b:82:17:f2:99:01:2f:c3:69:3d:81:98:89:71: 46:3f:09:58:1f:c7:e6:03:f7:a8:2f:12:35:91:d0:85:40:59: 96:a6:5a:01:8b:c9:43:7f:80:07:19:d7:54:dc:29:32:05:ec: bb:5f:3d:d6:d7:b8:09:aa:bb:0f:8e:6a:7e:4b:88:4e:ca:53: fe:ba:5e:5c:ec:9d:27:d5:66:37:78:95:3a:5f:12:25:32:5d: ad:da:80:6f:ef:68:70:a8:8e:5d:27:3e:28:39:64:5f:81:ff: 7f:25:f9:22:b7:2c:ee:d8:68:a2:53:7b:86:a1:02:35:a1:cc: 98:e1:56:aa:39:6b:c9:8e:cd:9c:0c:77:95:db:53:95:5b:e7: 56:5e:f2:f9:9e:bb:22:77:35:4c:7a:c0:4f:1d:51:73:e6:07: d8:25:93:f7 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBAzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEQUJG NkQ5NURCMjU2ODE2RDI5NDIzNDZCOUZDMkVBMEMxQUZEODAzMB4XDTI0MDQxODA3 NTY0M1oXDTI1MDQxODA3NDEyMVowMzExMC8GA1UEAxMoMThCQzMwMDc5RDE0ODQz NkJGRTkxQzQyMTA1MkMzM0Q2REEwQThFODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALvqa6xCgy3+6tzn8Os9fHcLa18zH6FYFI9aXkGRZsrBkTU5Dqhz 8RKMGTWAtrgbgjQakwvuoj3XKIvrTgZUz2LyMwLptK8h5mCtHT2WgxG+h/7NN3ad XfGb/FBEmEXefEFdIST9uYOzJygjX/24M3uM7fiv81TiHPohS+WJQ9dMxoeflOGo W2fewZhErCTD772wJ+mxMJq6zl1X0c1fjMFa1aEVmBkhcwR7WGBFd7hQtSsViwp9 YleOB3s5CBuKHU/mc+72k9O1bbPjvKZ/jGUo9tMbxLmBgF6ehQVOwr8meDE7VOBO uqD9skZ3TlaGa1tXeQKOeby9cNZL5az5Wu0CAwEAAaOCAigwggIkMB0GA1UdDgQW BBQYvDAHnRSENr/pHEIQUsM9baCo6DAfBgNVHSMEGDAWgBTav22V2yVoFtKUI0a5 /C6gwa/YAzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwNTMvMnI5dGxkc2xhQmJTbENOR3Vmd3VvTUd2MkFNLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvMnI5dGxkc2xhQmJTbENOR3Vmd3Vv TUd2MkFNLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMDUzL0dMd3dCNTBVaERhXzZSeENFRkxEUFcyZ3FPZy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBARo+5AwDQYJKoZIhvcNAQELBQADggEBAJcHShpnQWmBsWYRMwqXD4e1 WLeZunfkZBoXE6ZudUohUNo9NxWEpj3uZ2QVo78QCn1ZDWRmrY6LcXQjo++t1rL2 KCSykrND6wZ+uSIRlLoZ/sjpQib8/4va29lNg9FLghfymQEvw2k9gZiJcUY/CVgf x+YD96gvEjWR0IVAWZamWgGLyUN/gAcZ11TcKTIF7LtfPdbXuAmquw+Oan5LiE7K U/66XlzsnSfVZjd4lTpfEiUyXa3agG/vaHCojl0nPig5ZF+B/38l+SK3LO7YaKJT e4ahAjWhzJjhVqo5a8mOzZwMd5XbU5Vb51Ze8vmeuyJ3NUx6wE8dUXPmB9glk/c= -----END CERTIFICATE-----Generated at Fri Nov 22 17:51:38 2024 by rpki-client on console-fra.rpki-client.org