$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20075/o7qsx79imzrAGvMc_tdfGqD_aYg.roa File: o7qsx79imzrAGvMc_tdfGqD_aYg.roa (raw, json) Hash identifier: f1mfn7PjZPnOTqUJS2CcrweWBS1f97gEqFSZNNDFDIQ= Subject key identifier: A3:BA:AC:C7:BF:62:9B:3A:C0:1A:F3:1C:FE:D7:5F:1A:A0:FF:69:88 Certificate issuer: /CN=B8D07A5A02B1B45993E6CAEFB47D1D5E75DA193C Certificate serial: 20 Authority key identifier: B8:D0:7A:5A:02:B1:B4:59:93:E6:CA:EF:B4:7D:1D:5E:75:DA:19:3C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uNB6WgKxtFmT5srvtH0dXnXaGTw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/o7qsx79imzrAGvMc_tdfGqD_aYg.roa Signing time: Wed 18 Sep 2024 07:59:02 +0000 ROA not before: Wed 18 Sep 2024 07:59:02 +0000 ROA not after: Mon 15 Sep 2025 01:30:03 +0000 asID: 18068 IP address blocks: 133.88.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/uNB6WgKxtFmT5srvtH0dXnXaGTw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/uNB6WgKxtFmT5srvtH0dXnXaGTw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uNB6WgKxtFmT5srvtH0dXnXaGTw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8D07A5A02B1B45993E6CAEFB47D1D5E75DA193C Validity Not Before: Sep 18 07:59:02 2024 GMT Not After : Sep 15 01:30:03 2025 GMT Subject: CN=A3BAACC7BF629B3AC01AF31CFED75F1AA0FF6988 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:70:aa:8a:63:74:82:64:64:c7:ca:15:57:ff: 20:c6:8f:e0:04:61:d1:25:47:88:67:6b:a7:9c:f4: f6:ad:03:a1:3a:91:f5:02:7b:27:47:52:36:3a:5e: b2:2c:74:14:1f:ef:f7:3c:a7:c5:61:e6:a0:f0:59: 86:d1:65:dc:06:c4:ff:b7:2e:f4:a1:28:37:b1:4d: f8:b0:50:2c:94:f3:9d:4a:30:f4:af:b0:6b:b4:d1: 92:de:d9:59:87:bf:93:0b:b0:a7:f9:3f:55:b1:bf: da:17:d4:ce:56:0d:12:4e:e5:fa:eb:c3:a7:12:32: 80:f8:aa:4c:dd:25:1f:20:fe:58:39:6e:37:cf:60: 8e:4f:ba:7f:2c:7d:42:9e:f4:04:c3:91:97:eb:fe: 82:cb:5d:af:54:7e:22:7c:cb:c7:d7:3e:c6:ba:1a: 05:d7:cb:0c:d7:84:20:ad:0b:e6:ef:6c:2b:2a:a7: 62:dd:5c:24:4b:4c:c0:43:2b:52:b7:ef:01:dd:69: 4b:79:2e:7d:72:f2:da:96:07:32:93:a1:47:d2:e6: 8f:4c:8b:e0:2e:56:6e:75:2a:33:20:ce:61:4e:9e: c4:61:48:de:53:75:f4:2a:ed:0d:8f:f7:ef:05:0b: e0:38:0c:90:96:84:72:c1:c1:e7:bc:18:b9:ae:ff: cc:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:BA:AC:C7:BF:62:9B:3A:C0:1A:F3:1C:FE:D7:5F:1A:A0:FF:69:88 X509v3 Authority Key Identifier: keyid:B8:D0:7A:5A:02:B1:B4:59:93:E6:CA:EF:B4:7D:1D:5E:75:DA:19:3C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/uNB6WgKxtFmT5srvtH0dXnXaGTw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uNB6WgKxtFmT5srvtH0dXnXaGTw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/o7qsx79imzrAGvMc_tdfGqD_aYg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 133.88.4.0/22 Signature Algorithm: sha256WithRSAEncryption 81:7d:3b:ca:fc:48:3c:98:e1:46:ef:bd:27:d8:7f:ed:a4:1f: 40:fe:54:e3:2e:6e:25:75:1a:16:a8:38:e7:18:1b:f3:ab:f3: 68:c6:2c:1a:40:a4:c5:9c:8b:d9:1a:ec:cc:37:96:40:70:f3: 6f:0f:d6:c7:f2:bb:dd:c0:5b:15:a1:61:9c:1b:60:a9:72:ec: 3c:ed:48:3e:4f:07:eb:ca:34:4a:8a:a3:66:46:a0:85:63:88: 41:5d:9c:69:87:ec:a0:40:0b:23:5b:60:7d:6b:c8:57:c5:71: 00:ff:2f:b3:6a:d2:c2:3d:cc:79:f2:0a:16:e4:98:39:07:cd: 43:ec:3d:eb:3d:8c:5e:ad:61:31:4d:c1:03:8e:b4:96:c6:c7: 9a:a6:51:38:fa:53:21:72:19:b4:fd:83:10:c6:4d:a7:84:a6: fd:9a:2e:eb:e7:55:68:5b:8f:3b:89:87:bf:92:70:f6:13:a1: 61:26:e2:b1:cb:d7:21:31:b4:14:f6:0d:bd:5a:4f:0f:a6:52: b9:b1:37:85:ad:5d:4d:5a:b6:3e:46:2a:45:21:3d:83:c9:e4: 34:49:da:0a:c9:f9:86:c7:be:15:56:74:3c:21:89:7f:ca:71: 8d:b7:39:5f:b5:8f:7f:4a:cd:72:49:31:06:80:c4:61:0d:3e: 87:81:25:74 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBIDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCOEQw N0E1QTAyQjFCNDU5OTNFNkNBRUZCNDdEMUQ1RTc1REExOTNDMB4XDTI0MDkxODA3 NTkwMloXDTI1MDkxNTAxMzAwM1owMzExMC8GA1UEAxMoQTNCQUFDQzdCRjYyOUIz QUMwMUFGMzFDRkVENzVGMUFBMEZGNjk4ODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOZwqopjdIJkZMfKFVf/IMaP4ARh0SVHiGdrp5z09q0DoTqR9QJ7 J0dSNjpesix0FB/v9zynxWHmoPBZhtFl3AbE/7cu9KEoN7FN+LBQLJTznUow9K+w a7TRkt7ZWYe/kwuwp/k/VbG/2hfUzlYNEk7l+uvDpxIygPiqTN0lHyD+WDluN89g jk+6fyx9Qp70BMORl+v+gstdr1R+InzLx9c+xroaBdfLDNeEIK0L5u9sKyqnYt1c JEtMwEMrUrfvAd1pS3kufXLy2pYHMpOhR9Lmj0yL4C5WbnUqMyDOYU6exGFI3lN1 9CrtDY/37wUL4DgMkJaEcsHB57wYua7/zBcCAwEAAaOCAigwggIkMB0GA1UdDgQW BBSjuqzHv2KbOsAa8xz+118aoP9piDAfBgNVHSMEGDAWgBS40HpaArG0WZPmyu+0 fR1eddoZPDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwNzUvdU5CNldnS3h0Rm1UNXNydnRIMGRYblhhR1R3LmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdU5CNldnS3h0Rm1UNXNydnRIMGRY blhhR1R3LmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMDc1L283cXN4NzlpbXpyQUd2TWNfdGRmR3FEX2FZZy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAKFWAQwDQYJKoZIhvcNAQELBQADggEBAIF9O8r8SDyY4UbvvSfYf+2k H0D+VOMubiV1GhaoOOcYG/Or82jGLBpApMWci9ka7Mw3lkBw828P1sfyu93AWxWh YZwbYKly7DztSD5PB+vKNEqKo2ZGoIVjiEFdnGmH7KBACyNbYH1ryFfFcQD/L7Nq 0sI9zHnyChbkmDkHzUPsPes9jF6tYTFNwQOOtJbGx5qmUTj6UyFyGbT9gxDGTaeE pv2aLuvnVWhbjzuJh7+ScPYToWEm4rHL1yExtBT2Db1aTw+mUrmxN4WtXU1atj5G KkUhPYPJ5DRJ2grJ+YbHvhVWdDwhiX/KcY23OV+1j39KzXJJMQaAxGENPoeBJXQ= -----END CERTIFICATE-----Generated at Fri Nov 22 11:45:32 2024 by rpki-client on console-ams.rpki-client.org