$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/2166/0chbnmDEynGmh_I1-O8iNCRLDiY.roa File: 0chbnmDEynGmh_I1-O8iNCRLDiY.roa (raw, json) Hash identifier: ksLl2MA/zl2RaeivE2zGoOwv/jGexrGiRuIFaY9zYw8= Subject key identifier: D1:C8:5B:9E:60:C4:CA:71:A6:87:F2:35:F8:EF:22:34:24:4B:0E:26 Certificate issuer: /CN=36DA30F686577D6576F647B295455535835130C3 Certificate serial: 05 Authority key identifier: 36:DA:30:F6:86:57:7D:65:76:F6:47:B2:95:45:55:35:83:51:30:C3 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ntow9oZXfWV29keylUVVNYNRMMM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/0chbnmDEynGmh_I1-O8iNCRLDiY.roa Signing time: Fri 27 Sep 2024 00:07:55 +0000 ROA not before: Fri 27 Sep 2024 00:07:55 +0000 ROA not after: Fri 26 Sep 2025 07:28:48 +0000 asID: 2907 IP address blocks: 192.153.104.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/Ntow9oZXfWV29keylUVVNYNRMMM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/Ntow9oZXfWV29keylUVVNYNRMMM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ntow9oZXfWV29keylUVVNYNRMMM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36DA30F686577D6576F647B295455535835130C3 Validity Not Before: Sep 27 00:07:55 2024 GMT Not After : Sep 26 07:28:48 2025 GMT Subject: CN=D1C85B9E60C4CA71A687F235F8EF2234244B0E26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:63:e1:e8:4b:6c:4c:4a:7e:bf:a9:a9:0d:40: 04:99:ae:43:54:0f:91:16:3a:a9:0e:2d:23:a5:d1: a8:12:d8:21:df:33:f7:1c:65:0e:94:50:46:cb:1d: 7d:d3:61:a4:00:3e:f5:f3:a5:e0:75:ed:b8:c1:d3: c4:06:65:dd:d1:a8:9c:62:9a:6b:40:bc:37:11:3c: 0e:f8:72:c0:e2:fc:28:5e:14:a7:ee:e3:20:49:52: 4a:3e:f0:80:8e:0b:94:de:a7:d5:e8:e7:d4:c2:0a: 5c:35:f8:9e:4b:d7:f8:07:37:4e:7c:c6:7b:99:d9: b4:ba:dd:4c:54:eb:4d:ae:77:2c:57:12:24:96:c4: 8b:6e:b2:d9:3f:ab:3c:cb:c9:01:84:29:41:c7:7f: 2e:78:fb:b0:bc:c4:2e:60:e5:d6:bb:4e:34:30:a1: 4c:73:d1:a1:23:4f:4a:47:8f:01:7f:7d:59:06:7d: 29:16:93:f4:9f:5d:18:8a:0f:87:fa:81:ee:27:f4: 25:7d:d7:81:94:d5:d5:c5:78:f2:7e:b3:d3:a9:26: 36:b6:2a:0e:d3:43:5d:eb:dd:46:0b:23:fa:fd:a2: 48:94:7b:f1:d2:ce:85:d3:dc:92:5a:61:0e:fb:56: ca:4e:f5:ef:49:27:b1:d7:b7:14:82:fc:3a:e0:8a: 92:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:C8:5B:9E:60:C4:CA:71:A6:87:F2:35:F8:EF:22:34:24:4B:0E:26 X509v3 Authority Key Identifier: keyid:36:DA:30:F6:86:57:7D:65:76:F6:47:B2:95:45:55:35:83:51:30:C3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/Ntow9oZXfWV29keylUVVNYNRMMM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ntow9oZXfWV29keylUVVNYNRMMM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/0chbnmDEynGmh_I1-O8iNCRLDiY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.153.104.0/24 Signature Algorithm: sha256WithRSAEncryption 09:6c:59:6c:d3:a7:a3:51:26:ee:6f:0d:72:52:45:08:a8:39: 87:9a:a9:84:fe:ad:8b:03:3d:38:31:31:3f:55:f8:4f:b6:d2: 89:40:b4:50:0f:5a:68:ab:e5:0a:85:f5:f3:3d:bf:1c:c9:f8: 7c:98:44:4a:f2:0a:a5:29:be:67:ff:68:66:1a:d8:4b:1b:08: b8:3d:04:ae:1b:4f:7e:a0:f2:e0:d1:f6:13:68:eb:1b:e4:bb: 0e:59:8a:a7:5c:15:04:3f:26:80:3b:66:90:08:6d:d8:db:e8: f8:5b:ec:1b:c7:5c:70:55:87:d9:ed:22:6e:f8:66:eb:65:5c: ce:c9:24:c3:7f:01:fd:e3:13:fa:f2:02:52:29:f9:f3:9f:dd: c2:18:37:8b:f8:db:8d:6b:9d:64:1f:d6:26:f0:82:d8:9a:15: b9:e9:5d:ae:41:ee:f2:7a:c5:b7:8b:30:fe:17:96:ff:37:f3: da:2e:f1:1a:90:dd:50:eb:e9:2a:66:15:77:1b:0a:5f:b0:33: c2:b3:d6:71:1d:07:b4:cb:06:69:4d:38:9f:ac:76:fa:05:4c: 73:98:2a:12:ef:8a:57:87:40:13:3b:97:a9:50:3c:19:3f:62: 70:47:74:2d:b5:dd:34:e3:38:25:a9:fb:c4:12:da:8e:d8:66: 41:e5:fe:62 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBBTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzNkRB MzBGNjg2NTc3RDY1NzZGNjQ3QjI5NTQ1NTUzNTgzNTEzMEMzMB4XDTI0MDkyNzAw MDc1NVoXDTI1MDkyNjA3Mjg0OFowMzExMC8GA1UEAxMoRDFDODVCOUU2MEM0Q0E3 MUE2ODdGMjM1RjhFRjIyMzQyNDRCMEUyNjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL1j4ehLbExKfr+pqQ1ABJmuQ1QPkRY6qQ4tI6XRqBLYId8z9xxl DpRQRssdfdNhpAA+9fOl4HXtuMHTxAZl3dGonGKaa0C8NxE8DvhywOL8KF4Up+7j IElSSj7wgI4LlN6n1ejn1MIKXDX4nkvX+Ac3TnzGe5nZtLrdTFTrTa53LFcSJJbE i26y2T+rPMvJAYQpQcd/Lnj7sLzELmDl1rtONDChTHPRoSNPSkePAX99WQZ9KRaT 9J9dGIoPh/qB7if0JX3XgZTV1cV48n6z06kmNrYqDtNDXevdRgsj+v2iSJR78dLO hdPcklphDvtWyk7170knsde3FIL8OuCKkqUCAwEAAaOCAiYwggIiMB0GA1UdDgQW BBTRyFueYMTKcaaH8jX47yI0JEsOJjAfBgNVHSMEGDAWgBQ22jD2hld9ZXb2R7KV RVU1g1EwwzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjE2Ni9OdG93OW9aWGZXVjI5a2V5bFVWVk5ZTlJNTU0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9OdG93OW9aWGZXVjI5a2V5bFVWVk5Z TlJNTU0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMjE2Ni8wY2hibm1ERXluR21oX0kxLU84aU5DUkxEaVkucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAwJloMA0GCSqGSIb3DQEBCwUAA4IBAQAJbFls06ejUSbubw1yUkUIqDmH mqmE/q2LAz04MTE/VfhPttKJQLRQD1poq+UKhfXzPb8cyfh8mERK8gqlKb5n/2hm GthLGwi4PQSuG09+oPLg0fYTaOsb5LsOWYqnXBUEPyaAO2aQCG3Y2+j4W+wbx1xw VYfZ7SJu+GbrZVzOySTDfwH94xP68gJSKfnzn93CGDeL+NuNa51kH9Ym8ILYmhW5 6V2uQe7yesW3izD+F5b/N/PaLvEakN1Q6+kqZhV3GwpfsDPCs9ZxHQe0ywZpTTif rHb6BUxzmCoS74pXh0ATO5epUDwZP2JwR3Qttd004zglqfvEEtqO2GZB5f5i -----END CERTIFICATE-----Generated at Mon Nov 25 23:59:05 2024 by rpki-client on console-fra.rpki-client.org