$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20128/IG4_zSJVkcqUb6qmIpfCWrE8MRY.roa File: IG4_zSJVkcqUb6qmIpfCWrE8MRY.roa (raw, json) Hash identifier: iYiF28vHFFEh9FL1CGB0rQSNucIn36jTp//RV+hpLok= Subject key identifier: 20:6E:3F:CD:22:55:91:CA:94:6F:AA:A6:22:97:C2:5A:B1:3C:31:16 Certificate issuer: /CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Certificate serial: 73 Authority key identifier: 8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/IG4_zSJVkcqUb6qmIpfCWrE8MRY.roa Signing time: Thu 14 Nov 2024 16:02:13 +0000 ROA not before: Thu 14 Nov 2024 16:02:13 +0000 ROA not after: Fri 07 Nov 2025 10:27:51 +0000 asID: 3949 IP address blocks: 153.254.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Validity Not Before: Nov 14 16:02:13 2024 GMT Not After : Nov 7 10:27:51 2025 GMT Subject: CN=206E3FCD225591CA946FAAA62297C25AB13C3116 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:27:69:d2:f2:6a:ad:ca:73:e5:ff:45:9b:1f: 19:69:71:0d:9c:ae:d9:2a:ed:23:ed:f2:9c:6c:15: 2a:2b:43:63:e7:47:1e:de:e3:37:35:aa:0b:59:93: 24:bd:ce:34:38:8c:df:4b:79:11:df:60:79:58:0b: a1:a0:16:73:89:c9:a4:54:47:20:9f:c8:45:97:7f: 2b:e5:89:6d:0d:29:c3:f3:d7:d9:66:cc:49:ff:18: c5:60:7c:ac:4f:40:2d:b6:9f:40:68:a2:31:36:29: a0:92:cf:30:65:52:04:5a:6e:03:bf:d0:20:95:86: 73:7b:3f:1e:ac:68:3e:a6:83:f7:a0:38:11:4d:91: 0e:77:1a:37:12:db:78:0f:6e:5d:dd:29:95:53:f9: ee:f1:3a:ee:20:16:fc:71:71:f9:89:16:03:0d:b1: 92:49:34:fd:58:0e:14:ae:14:62:eb:b6:ee:7a:71: 42:c8:d2:77:62:c8:6e:5f:4f:0c:03:0c:3b:18:99: 76:96:dc:a0:5f:c6:9d:37:66:73:8e:96:67:4c:74: d5:35:3c:7e:40:58:cd:b1:41:1c:c2:4e:46:60:74: 88:c2:95:31:40:b2:59:f4:da:21:71:e4:58:68:a1: 8b:5d:e6:e1:6a:f5:21:e3:7f:b8:c6:ba:19:db:36: 57:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:6E:3F:CD:22:55:91:CA:94:6F:AA:A6:22:97:C2:5A:B1:3C:31:16 X509v3 Authority Key Identifier: keyid:8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/IG4_zSJVkcqUb6qmIpfCWrE8MRY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 153.254.172.0/24 Signature Algorithm: sha256WithRSAEncryption 51:c7:ae:3c:70:ba:94:cf:ee:bd:8b:e3:16:0d:e7:4f:e5:48: ca:75:ae:80:cc:ad:de:2d:09:c0:09:53:e0:03:5d:61:b4:01: e3:d2:06:cf:3a:c8:c3:43:c1:78:14:e7:30:32:b2:00:55:8e: 4f:22:a5:8f:e0:c3:24:af:2c:90:46:e6:ca:a4:da:d2:87:4b: a9:96:1e:8e:81:38:9d:6c:12:44:8d:e8:8c:4c:f7:78:ba:00: d6:84:53:eb:6b:fe:56:61:05:02:6d:7d:78:9e:89:ce:42:96: f7:3a:af:50:69:65:f5:b9:28:93:56:71:3e:59:c8:e6:4f:64: b0:9e:1b:91:73:f0:30:75:b6:29:de:be:0f:02:2e:cf:9d:c2: d8:f4:a0:e8:a3:73:45:f7:a4:11:7b:b9:69:3a:2a:b0:1f:0c: ab:bd:b0:5b:d0:5d:5c:4a:14:03:60:c5:2f:31:e5:62:20:84: 39:47:ef:72:26:db:79:a8:4c:f5:22:6f:0b:b1:38:c7:c4:20: df:2d:d9:f5:bc:1c:01:6a:5a:0d:bd:6b:64:a8:68:db:2c:e7: 9d:d0:67:1b:25:b5:3b:d7:92:d2:d1:ae:86:e7:41:47:9f:7f: 73:e5:e9:ab:68:66:12:eb:9b:12:ad:99:02:c0:83:e1:56:a2: 0a:07:42:00 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBczANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4RDQ2 RERGODhBNDZFNEVDMkQ5QTlCQUI1RkYxMzA1RkQwNTdGMTM4MB4XDTI0MTExNDE2 MDIxM1oXDTI1MTEwNzEwMjc1MVowMzExMC8GA1UEAxMoMjA2RTNGQ0QyMjU1OTFD QTk0NkZBQUE2MjI5N0MyNUFCMTNDMzExNjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKwnadLyaq3Kc+X/RZsfGWlxDZyu2SrtI+3ynGwVKitDY+dHHt7j NzWqC1mTJL3ONDiM30t5Ed9geVgLoaAWc4nJpFRHIJ/IRZd/K+WJbQ0pw/PX2WbM Sf8YxWB8rE9ALbafQGiiMTYpoJLPMGVSBFpuA7/QIJWGc3s/HqxoPqaD96A4EU2R DncaNxLbeA9uXd0plVP57vE67iAW/HFx+YkWAw2xkkk0/VgOFK4UYuu27npxQsjS d2LIbl9PDAMMOxiZdpbcoF/GnTdmc46WZ0x01TU8fkBYzbFBHMJORmB0iMKVMUCy WfTaIXHkWGihi13m4Wr1IeN/uMa6Gds2V+MCAwEAAaOCAigwggIkMB0GA1UdDgQW BBQgbj/NIlWRypRvqqYil8JasTwxFjAfBgNVHSMEGDAWgBSNRt34ikbk7C2am6tf 8TBf0FfxODAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAxMjgvalViZC1JcEc1T3d0bXB1clhfRXdYOUJYOFRnLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvalViZC1JcEc1T3d0bXB1clhfRXdY OUJYOFRnLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMTI4L0lHNF96U0pWa2NxVWI2cW1JcGZDV3JFOE1SWS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBACZ/qwwDQYJKoZIhvcNAQELBQADggEBAFHHrjxwupTP7r2L4xYN50/l SMp1roDMrd4tCcAJU+ADXWG0AePSBs86yMNDwXgU5zAysgBVjk8ipY/gwySvLJBG 5sqk2tKHS6mWHo6BOJ1sEkSN6IxM93i6ANaEU+tr/lZhBQJtfXieic5Clvc6r1Bp ZfW5KJNWcT5ZyOZPZLCeG5Fz8DB1tinevg8CLs+dwtj0oOijc0X3pBF7uWk6KrAf DKu9sFvQXVxKFANgxS8x5WIghDlH73Im23moTPUibwuxOMfEIN8t2fW8HAFqWg29 a2SoaNss553QZxsltTvXktLRrobnQUeff3Pl6atoZhLrmxKtmQLAg+FWogoHQgA= -----END CERTIFICATE-----Generated at Fri Nov 22 08:13:18 2024 by rpki-client on console-fra.rpki-client.org