$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20063/hvrC2RgjCcsGi-GENDhuNRQxa74.roa File: hvrC2RgjCcsGi-GENDhuNRQxa74.roa (raw, json) Hash identifier: K52ZpkP4cS9oU+TMiXVf+oG1YqOe9bw9J/a2AIiB1dE= Subject key identifier: 86:FA:C2:D9:18:23:09:CB:06:8B:E1:84:34:38:6E:35:14:31:6B:BE Certificate issuer: /CN=9DB0764C6DFC1E3DF6BD580EA6994A1E7098F52A Certificate serial: 86 Authority key identifier: 9D:B0:76:4C:6D:FC:1E:3D:F6:BD:58:0E:A6:99:4A:1E:70:98:F5:2A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/nbB2TG38Hj32vVgOpplKHnCY9So.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20063/hvrC2RgjCcsGi-GENDhuNRQxa74.roa Signing time: Fri 31 May 2024 01:28:28 +0000 ROA not before: Fri 31 May 2024 01:28:28 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 24277 IP address blocks: 115.166.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20063/nbB2TG38Hj32vVgOpplKHnCY9So.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20063/nbB2TG38Hj32vVgOpplKHnCY9So.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/nbB2TG38Hj32vVgOpplKHnCY9So.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 134 (0x86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9DB0764C6DFC1E3DF6BD580EA6994A1E7098F52A Validity Not Before: May 31 01:28:28 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=86FAC2D9182309CB068BE18434386E3514316BBE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:81:a4:79:b5:a9:3b:37:22:fa:68:e9:18:2a: 99:bf:ca:5d:06:cf:75:94:8c:01:4b:d6:41:ab:f4: 1b:ea:ae:61:f4:24:4c:68:e7:d6:e0:46:a3:5d:6b: dc:40:ff:3e:5a:66:2a:4e:b2:c5:5f:20:3f:2c:4e: f7:c3:30:e6:da:38:26:83:a5:fb:18:ff:8e:c9:f9: 2b:f7:95:7a:22:ab:73:3a:a5:f1:f6:d3:9c:ad:c7: a4:d4:c9:10:58:c3:6d:66:ef:25:0a:1e:ff:55:6a: a9:9d:08:f1:e7:37:20:e6:09:74:df:ec:42:5f:c5: 19:0a:16:72:06:a3:6e:c5:fa:4e:a9:06:fd:95:f5: e4:83:cd:c5:5e:5f:dc:f4:0b:ea:cf:81:5b:c6:ac: 34:bb:ca:ea:b8:2c:3e:68:f4:1b:03:f5:14:1b:42: 29:90:cb:8b:b7:b7:96:4e:2a:ce:a5:50:8f:6e:af: c6:7a:ca:58:d2:86:d7:29:ef:ed:5e:e1:55:59:6f: 3f:30:0a:49:9b:ba:27:72:a6:e9:6c:95:c9:42:55: 36:ac:54:43:ab:fc:e9:83:83:c5:98:d7:6d:52:73: eb:98:65:bb:47:47:4a:1f:b8:dd:79:fe:0c:08:23: 12:c2:31:ed:6f:9c:78:bc:a9:f9:b0:fa:8c:36:99: d6:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:FA:C2:D9:18:23:09:CB:06:8B:E1:84:34:38:6E:35:14:31:6B:BE X509v3 Authority Key Identifier: keyid:9D:B0:76:4C:6D:FC:1E:3D:F6:BD:58:0E:A6:99:4A:1E:70:98:F5:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20063/nbB2TG38Hj32vVgOpplKHnCY9So.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/nbB2TG38Hj32vVgOpplKHnCY9So.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20063/hvrC2RgjCcsGi-GENDhuNRQxa74.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.166.160.0/19 Signature Algorithm: sha256WithRSAEncryption 88:4d:c5:39:99:e5:28:ca:9b:72:fe:08:2f:e7:75:92:b8:1c: 1f:0b:90:68:f0:43:be:97:18:bc:d7:3e:5e:db:0e:84:2d:ef: c2:04:38:a3:b5:8e:b2:59:20:e0:b9:04:d3:14:d3:5c:6f:96: 1f:81:12:80:c0:17:23:ed:08:cb:bf:0a:06:01:92:e7:6f:06: e9:41:d0:97:c2:7b:db:2c:06:cf:21:37:21:8c:73:a4:f7:85: ad:3a:11:bd:8d:a1:14:81:c3:a5:93:64:4a:29:b0:94:72:5d: 68:f4:a8:1d:60:49:b6:5f:e7:fb:3a:97:ac:2e:b2:1c:fc:95: d0:af:a3:cf:3a:08:78:46:f7:b2:61:d5:31:c9:82:a8:e0:a4: 61:fb:bc:70:00:a4:29:91:45:db:3a:5c:b2:bf:30:4e:a2:15: d4:63:f3:dc:0e:35:40:10:16:54:49:dd:00:f6:3a:03:36:f7: d5:91:d9:c5:f5:b7:bf:90:32:a2:44:aa:2c:f7:52:75:ee:48: 46:69:0e:cb:d0:e6:13:17:0e:d8:eb:58:18:fb:63:89:e7:4e: 96:be:a3:af:ea:26:d2:36:cc:02:65:9d:d6:91:1f:55:1b:7c: b8:b8:73:ad:aa:fd:8c:1f:00:cc:30:71:01:7e:88:75:ee:99: ae:f2:9a:fd -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAIYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOURC MDc2NEM2REZDMUUzREY2QkQ1ODBFQTY5OTRBMUU3MDk4RjUyQTAeFw0yNDA1MzEw MTI4MjhaFw0yNTA1MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDg2RkFDMkQ5MTgyMzA5 Q0IwNjhCRTE4NDM0Mzg2RTM1MTQzMTZCQkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0gaR5tak7NyL6aOkYKpm/yl0Gz3WUjAFL1kGr9BvqrmH0JExo 59bgRqNda9xA/z5aZipOssVfID8sTvfDMObaOCaDpfsY/47J+Sv3lXoiq3M6pfH2 05ytx6TUyRBYw21m7yUKHv9VaqmdCPHnNyDmCXTf7EJfxRkKFnIGo27F+k6pBv2V 9eSDzcVeX9z0C+rPgVvGrDS7yuq4LD5o9BsD9RQbQimQy4u3t5ZOKs6lUI9ur8Z6 yljShtcp7+1e4VVZbz8wCkmbuidypulslclCVTasVEOr/OmDg8WY121Sc+uYZbtH R0ofuN15/gwIIxLCMe1vnHi8qfmw+ow2mdaRAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUhvrC2RgjCcsGi+GENDhuNRQxa74wHwYDVR0jBBgwFoAUnbB2TG38Hj32vVgO pplKHnCY9SowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMDYzL25iQjJURzM4SGozMnZWZ09wcGxLSG5DWTlTby5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL25iQjJURzM4SGozMnZWZ09wcGxL SG5DWTlTby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDA2My9odnJDMlJnakNjc0dpLUdFTkRodU5SUXhhNzQu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFc6agMA0GCSqGSIb3DQEBCwUAA4IBAQCITcU5meUoypty/ggv53WS uBwfC5Bo8EO+lxi81z5e2w6ELe/CBDijtY6yWSDguQTTFNNcb5YfgRKAwBcj7QjL vwoGAZLnbwbpQdCXwnvbLAbPITchjHOk94WtOhG9jaEUgcOlk2RKKbCUcl1o9Kgd YEm2X+f7OpesLrIc/JXQr6PPOgh4RveyYdUxyYKo4KRh+7xwAKQpkUXbOlyyvzBO ohXUY/PcDjVAEBZUSd0A9joDNvfVkdnF9be/kDKiRKos91J17khGaQ7L0OYTFw7Y 61gY+2OJ506WvqOv6ibSNswCZZ3WkR9VG3y4uHOtqv2MHwDMMHEBfoh17pmu8pr9 -----END CERTIFICATE-----Generated at Sun Feb 16 22:12:27 2025 by rpki-client