$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20102/xGHcQY42iuy38d5CbNyXjpCFp8k.roa File: xGHcQY42iuy38d5CbNyXjpCFp8k.roa (raw, json) Hash identifier: nwNZU7PfKlhx+jPjyUSVcigOAqKW3DK3z1zdbB6C+5Q= Subject key identifier: C4:61:DC:41:8E:36:8A:EC:B7:F1:DE:42:6C:DC:97:8E:90:85:A7:C9 Certificate issuer: /CN=33D2C2C8816F30E6B58262B93C717C85513505C5 Certificate serial: 02 Authority key identifier: 33:D2:C2:C8:81:6F:30:E6:B5:82:62:B9:3C:71:7C:85:51:35:05:C5 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9LCyIFvMOa1gmK5PHF8hVE1BcU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20102/xGHcQY42iuy38d5CbNyXjpCFp8k.roa Signing time: Mon 03 Jun 2024 02:46:32 +0000 ROA not before: Mon 03 Jun 2024 02:46:32 +0000 ROA not after: Tue 03 Jun 2025 02:41:55 +0000 asID: 131952 IP address blocks: 202.233.68.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20102/M9LCyIFvMOa1gmK5PHF8hVE1BcU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20102/M9LCyIFvMOa1gmK5PHF8hVE1BcU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9LCyIFvMOa1gmK5PHF8hVE1BcU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33D2C2C8816F30E6B58262B93C717C85513505C5 Validity Not Before: Jun 3 02:46:32 2024 GMT Not After : Jun 3 02:41:55 2025 GMT Subject: CN=C461DC418E368AECB7F1DE426CDC978E9085A7C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:bb:c5:8c:32:93:72:2a:c1:8d:f6:6a:de:ae: 14:b7:95:1e:f1:92:6e:c2:3b:bd:e5:31:83:bb:ee: 94:73:21:bb:13:ce:05:b9:65:22:04:a4:36:56:eb: 17:44:be:f6:cd:fe:cf:e2:06:0b:23:92:13:af:8d: 34:54:c9:67:2a:ae:81:ff:46:6d:a8:e8:7d:98:5f: a6:a5:68:92:fb:cb:b5:88:7b:75:e3:b3:b1:70:aa: 85:eb:59:7e:fe:2b:a8:c8:de:89:9a:fc:4e:15:fb: 55:62:17:96:35:40:8c:d3:91:f6:29:bd:33:43:fb: 9b:42:ed:a0:52:3d:44:ba:81:f5:26:a0:6a:0d:73: 80:71:29:7b:ef:41:14:69:0b:3c:f9:d6:30:ec:59: 71:24:8f:46:6a:bd:7e:7d:ae:7f:e5:59:a5:09:f0: 06:c7:ab:fc:55:b6:44:28:21:b0:f9:ec:b4:d8:48: 8d:88:c7:72:12:36:33:5b:cf:11:a0:3c:52:c5:f7: 28:80:dd:05:f6:a6:74:61:f4:ff:95:3d:bb:ea:f4: 4f:bf:eb:e5:9a:54:89:8b:85:fb:5d:d5:f0:bf:8b: 21:ac:8e:0f:bf:bf:c4:5e:04:3d:78:30:47:da:23: bf:88:63:33:6b:1f:e3:62:91:49:2c:c2:9e:04:b0: 01:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:61:DC:41:8E:36:8A:EC:B7:F1:DE:42:6C:DC:97:8E:90:85:A7:C9 X509v3 Authority Key Identifier: keyid:33:D2:C2:C8:81:6F:30:E6:B5:82:62:B9:3C:71:7C:85:51:35:05:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20102/M9LCyIFvMOa1gmK5PHF8hVE1BcU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9LCyIFvMOa1gmK5PHF8hVE1BcU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20102/xGHcQY42iuy38d5CbNyXjpCFp8k.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.233.68.0/22 Signature Algorithm: sha256WithRSAEncryption 9b:ff:59:d8:60:6c:8b:1f:fd:a9:6e:9b:a1:5f:8c:f5:04:37: d0:16:e3:a8:81:df:7f:86:1a:47:e1:93:a2:ac:d5:72:bf:e0: 5a:3d:3d:99:66:95:e5:90:f5:56:04:0c:d5:42:ed:32:82:78: 13:61:23:dc:37:d1:43:50:84:62:10:33:a5:55:88:f5:89:ed: 1b:68:6a:e2:61:db:01:5f:f8:25:87:99:ce:6c:56:0a:9a:90: 6a:9a:15:04:99:1a:12:82:d7:fa:49:91:0c:f6:2b:1d:b3:37: 94:6a:ca:e4:77:ae:45:e8:59:6f:d4:ad:a8:57:80:1a:24:a0: 3e:c4:ef:45:de:2a:86:4c:d2:e5:0b:18:3e:e6:34:1d:10:0e: 96:e8:6f:23:eb:9d:66:ae:76:b1:9c:75:b5:6a:c9:d2:d6:5f: 51:e8:2b:2b:34:9c:7d:f5:95:08:83:88:07:28:b1:87:4b:3c: 78:5f:e6:0d:21:c4:fd:d1:4e:af:76:25:50:a7:40:8b:9c:28: 6e:b8:62:ab:16:c4:65:b9:d1:93:dd:13:32:03:1a:d4:e3:b5: 6d:93:b8:37:d2:a5:18:67:89:87:f7:47:85:f7:ff:cf:cc:2e: 2a:7c:9b:95:f1:c4:15:15:d2:32:f7:63:9d:41:f1:10:65:4c: f8:6f:cb:6e -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBAjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzM0Qy QzJDODgxNkYzMEU2QjU4MjYyQjkzQzcxN0M4NTUxMzUwNUM1MB4XDTI0MDYwMzAy NDYzMloXDTI1MDYwMzAyNDE1NVowMzExMC8GA1UEAxMoQzQ2MURDNDE4RTM2OEFF Q0I3RjFERTQyNkNEQzk3OEU5MDg1QTdDOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOK7xYwyk3IqwY32at6uFLeVHvGSbsI7veUxg7vulHMhuxPOBbll IgSkNlbrF0S+9s3+z+IGCyOSE6+NNFTJZyqugf9GbajofZhfpqVokvvLtYh7deOz sXCqhetZfv4rqMjeiZr8ThX7VWIXljVAjNOR9im9M0P7m0LtoFI9RLqB9Sagag1z gHEpe+9BFGkLPPnWMOxZcSSPRmq9fn2uf+VZpQnwBser/FW2RCghsPnstNhIjYjH chI2M1vPEaA8UsX3KIDdBfamdGH0/5U9u+r0T7/r5ZpUiYuF+13V8L+LIayOD7+/ xF4EPXgwR9ojv4hjM2sf42KRSSzCngSwAScCAwEAAaOCAigwggIkMB0GA1UdDgQW BBTEYdxBjjaK7Lfx3kJs3JeOkIWnyTAfBgNVHSMEGDAWgBQz0sLIgW8w5rWCYrk8 cXyFUTUFxTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAxMDIvTTlMQ3lJRnZNT2ExZ21LNVBIRjhoVkUxQmNVLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvTTlMQ3lJRnZNT2ExZ21LNVBIRjho VkUxQmNVLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMTAyL3hHSGNRWTQyaXV5MzhkNUNiTnlYanBDRnA4ay5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBALK6UQwDQYJKoZIhvcNAQELBQADggEBAJv/WdhgbIsf/alum6FfjPUE N9AW46iB33+GGkfhk6Ks1XK/4Fo9PZlmleWQ9VYEDNVC7TKCeBNhI9w30UNQhGIQ M6VViPWJ7RtoauJh2wFf+CWHmc5sVgqakGqaFQSZGhKC1/pJkQz2Kx2zN5RqyuR3 rkXoWW/UrahXgBokoD7E70XeKoZM0uULGD7mNB0QDpbobyPrnWaudrGcdbVqydLW X1HoKys0nH31lQiDiAcosYdLPHhf5g0hxP3RTq92JVCnQIucKG64YqsWxGW50ZPd EzIDGtTjtW2TuDfSpRhniYf3R4X3/8/MLip8m5XxxBUV0jL3Y51B8RBlTPhvy24= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:27 2024 by rpki-client on console-ams.rpki-client.org