$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20061/pmcMCZdJFB_vH8vhbrVSZgviH5k.roa File: pmcMCZdJFB_vH8vhbrVSZgviH5k.roa (raw, json) Hash identifier: DkUOghRKlI0R3UCYlIzMqP9Uo69aX2mH/Z5+7EznNJM= Subject key identifier: A6:67:0C:09:97:49:14:1F:EF:1F:CB:E1:6E:B5:52:66:0B:E2:1F:99 Certificate issuer: /CN=72811A6F4B1F7935818F8C8794F150A772BDD7CB Certificate serial: 31 Authority key identifier: 72:81:1A:6F:4B:1F:79:35:81:8F:8C:87:94:F1:50:A7:72:BD:D7:CB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/coEab0sfeTWBj4yHlPFQp3K918s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20061/pmcMCZdJFB_vH8vhbrVSZgviH5k.roa Signing time: Wed 31 Jul 2024 01:28:50 +0000 ROA not before: Wed 31 Jul 2024 01:28:50 +0000 ROA not after: Tue 15 Jul 2025 01:30:02 +0000 asID: 131161 IP address blocks: 43.222.0.0/16 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20061/coEab0sfeTWBj4yHlPFQp3K918s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20061/coEab0sfeTWBj4yHlPFQp3K918s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/coEab0sfeTWBj4yHlPFQp3K918s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72811A6F4B1F7935818F8C8794F150A772BDD7CB Validity Not Before: Jul 31 01:28:50 2024 GMT Not After : Jul 15 01:30:02 2025 GMT Subject: CN=A6670C099749141FEF1FCBE16EB552660BE21F99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:94:99:db:ec:da:74:3c:af:d1:ef:61:c4:90: 1d:ff:78:ac:93:3a:7f:04:38:d9:a5:82:4e:69:68: 67:be:7a:de:a5:61:35:29:ed:2e:ee:77:0d:11:7e: ad:f0:dc:e3:8c:1d:72:c6:0f:53:8d:b2:65:d2:67: 45:aa:09:7a:82:b7:3d:3b:e6:69:6f:a1:8d:cd:0c: 1e:5f:9e:e3:29:68:7c:5e:df:b1:8f:2c:30:74:bc: 74:c7:8a:ee:bb:ba:4f:e4:42:9b:a4:95:90:08:4b: 71:ca:18:6e:d2:2b:eb:b6:02:1a:32:ee:b6:b1:a6: e0:4a:5b:63:d6:35:25:76:93:4e:5e:bc:33:d6:d2: 8b:77:46:84:f3:0e:93:74:62:46:e5:0a:18:a2:a5: ca:0e:89:90:a4:59:a4:93:9b:59:2d:19:84:fc:c6: 33:91:17:3d:ae:0b:49:e2:2c:d6:77:9c:65:76:b9: da:b0:f5:e0:70:0c:5b:d7:bf:09:47:1a:c9:90:17: 1e:c5:a4:25:76:10:7c:39:06:cb:0b:59:06:17:00: 12:85:e8:ff:94:b8:bd:a3:e9:b9:36:c3:7c:b6:5a: 7e:53:c9:1c:34:eb:fc:ab:4b:96:64:dc:55:76:5e: 3f:cb:bc:64:a6:93:9b:6d:72:a7:67:4c:5a:aa:da: 5d:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:67:0C:09:97:49:14:1F:EF:1F:CB:E1:6E:B5:52:66:0B:E2:1F:99 X509v3 Authority Key Identifier: keyid:72:81:1A:6F:4B:1F:79:35:81:8F:8C:87:94:F1:50:A7:72:BD:D7:CB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20061/coEab0sfeTWBj4yHlPFQp3K918s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/coEab0sfeTWBj4yHlPFQp3K918s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20061/pmcMCZdJFB_vH8vhbrVSZgviH5k.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.222.0.0/16 Signature Algorithm: sha256WithRSAEncryption df:8c:30:83:42:bf:f5:2b:dc:38:cc:1a:33:55:99:32:b5:49: 50:42:de:33:e7:07:dc:5f:4b:a0:05:15:e9:56:2f:c0:0b:34: fa:89:20:d2:95:13:51:b6:8c:62:13:55:d3:0d:ac:86:88:fd: bd:d5:b9:83:e3:1b:3b:d2:08:fb:48:e1:30:f2:74:63:64:58: 40:60:38:3a:6a:a8:82:4c:ff:10:7e:d2:75:1a:d8:c5:d8:88: dc:a5:4c:15:34:84:e8:52:46:0a:c0:5a:a8:74:84:30:e4:58: 5c:6a:41:ae:4b:63:8c:40:ca:cf:9c:60:51:6d:0e:4c:54:51: 9e:0d:1f:17:07:f4:42:94:63:1d:2d:9b:aa:6c:a4:08:c2:9a: e3:95:ea:af:59:c1:ea:f8:41:f7:8f:ec:16:43:9a:17:da:c7: 1c:57:f0:a8:78:83:33:f8:bb:30:12:97:86:cb:4e:c5:fe:b8: e4:d1:ab:6d:f9:bf:ed:d7:76:d9:f0:d5:a6:69:76:cf:2b:9d: a0:e9:3c:1c:fb:2f:c9:80:0f:6d:85:ba:41:bc:05:c2:74:97: 8f:ad:a9:77:ef:61:66:46:4e:40:f3:bc:09:d7:7a:82:80:7c: 2a:0e:09:10:2d:09:b0:c2:1b:68:79:ef:29:0e:23:6e:0d:35: 34:4d:a7:36 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIBMTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3Mjgx MUE2RjRCMUY3OTM1ODE4RjhDODc5NEYxNTBBNzcyQkREN0NCMB4XDTI0MDczMTAx Mjg1MFoXDTI1MDcxNTAxMzAwMlowMzExMC8GA1UEAxMoQTY2NzBDMDk5NzQ5MTQx RkVGMUZDQkUxNkVCNTUyNjYwQkUyMUY5OTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMSUmdvs2nQ8r9HvYcSQHf94rJM6fwQ42aWCTmloZ7563qVhNSnt Lu53DRF+rfDc44wdcsYPU42yZdJnRaoJeoK3PTvmaW+hjc0MHl+e4ylofF7fsY8s MHS8dMeK7ru6T+RCm6SVkAhLccoYbtIr67YCGjLutrGm4EpbY9Y1JXaTTl68M9bS i3dGhPMOk3RiRuUKGKKlyg6JkKRZpJObWS0ZhPzGM5EXPa4LSeIs1necZXa52rD1 4HAMW9e/CUcayZAXHsWkJXYQfDkGywtZBhcAEoXo/5S4vaPpuTbDfLZaflPJHDTr /KtLlmTcVXZeP8u8ZKaTm21yp2dMWqraXYsCAwEAAaOCAicwggIjMB0GA1UdDgQW BBSmZwwJl0kUH+8fy+FutVJmC+IfmTAfBgNVHSMEGDAWgBRygRpvSx95NYGPjIeU 8VCncr3XyzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwNjEvY29FYWIwc2ZlVFdCajR5SGxQRlFwM0s5MThzLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvY29FYWIwc2ZlVFdCajR5SGxQRlFw M0s5MThzLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMDYxL3BtY01DWmRKRkJfdkg4dmhiclZTWmd2aUg1ay5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsE AgABMAUDAwAr3jANBgkqhkiG9w0BAQsFAAOCAQEA34wwg0K/9SvcOMwaM1WZMrVJ UELeM+cH3F9LoAUV6VYvwAs0+okg0pUTUbaMYhNV0w2shoj9vdW5g+MbO9II+0jh MPJ0Y2RYQGA4Omqogkz/EH7SdRrYxdiI3KVMFTSE6FJGCsBaqHSEMORYXGpBrktj jEDKz5xgUW0OTFRRng0fFwf0QpRjHS2bqmykCMKa45Xqr1nB6vhB94/sFkOaF9rH HFfwqHiDM/i7MBKXhstOxf645NGrbfm/7dd22fDVpml2zyudoOk8HPsvyYAPbYW6 QbwFwnSXj62pd+9hZkZOQPO8Cdd6goB8Kg4JEC0JsMIbaHnvKQ4jbg01NE2nNg== -----END CERTIFICATE-----Generated at Fri Nov 22 15:23:56 2024 by rpki-client on console-fra.rpki-client.org