$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/2166/e4ZSN30fbg5-_dCBobOdlkq1X4c.roa File: e4ZSN30fbg5-_dCBobOdlkq1X4c.roa (raw, json) Hash identifier: EIcWysAtbiBmxQa/Oqovd6EiARdhX+daWm/RHf1SriE= Subject key identifier: 7B:86:52:37:7D:1F:6E:0E:7E:FD:D0:81:A1:B3:9D:96:4A:B5:5F:87 Certificate issuer: /CN=36DA30F686577D6576F647B295455535835130C3 Certificate serial: 08 Authority key identifier: 36:DA:30:F6:86:57:7D:65:76:F6:47:B2:95:45:55:35:83:51:30:C3 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ntow9oZXfWV29keylUVVNYNRMMM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/e4ZSN30fbg5-_dCBobOdlkq1X4c.roa Signing time: Fri 27 Sep 2024 00:07:56 +0000 ROA not before: Fri 27 Sep 2024 00:07:56 +0000 ROA not after: Fri 26 Sep 2025 07:28:48 +0000 asID: 2907 IP address blocks: 192.58.12.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/Ntow9oZXfWV29keylUVVNYNRMMM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/Ntow9oZXfWV29keylUVVNYNRMMM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ntow9oZXfWV29keylUVVNYNRMMM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36DA30F686577D6576F647B295455535835130C3 Validity Not Before: Sep 27 00:07:56 2024 GMT Not After : Sep 26 07:28:48 2025 GMT Subject: CN=7B8652377D1F6E0E7EFDD081A1B39D964AB55F87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:2e:b2:9b:38:c6:8a:62:9c:46:58:a6:97:1b: 31:8f:28:05:85:b0:86:bb:28:7d:93:40:9e:cb:6a: e9:68:d6:34:d3:ad:98:1d:d6:78:be:0a:eb:60:8f: c3:10:c2:cc:10:a8:00:f9:f0:33:28:95:59:22:c0: 54:e8:62:fb:69:15:2e:74:a8:8d:87:a5:85:86:46: 5d:70:27:73:dc:80:19:05:00:9c:91:28:13:9f:c8: b7:b0:45:b4:2c:ae:d1:9e:1f:01:71:1d:66:48:8c: 3e:78:1e:47:cb:e5:e7:83:bd:4c:58:26:8c:ec:1e: 90:da:e8:fd:d2:73:42:c0:da:6b:b5:d4:e0:9d:3c: 8f:04:2f:df:5e:c4:bf:7e:6d:62:ef:e0:48:06:80: 18:18:fe:a6:20:1a:99:fb:d1:33:e4:28:7d:a0:a2: d6:00:46:e5:2d:75:06:19:b5:68:03:54:33:60:8a: 0a:43:06:20:96:36:04:13:14:6d:81:12:37:fc:b9: 23:dd:8a:01:cc:b9:07:01:cc:18:97:b5:fd:93:3b: a5:d9:3d:7c:7d:c4:c9:d3:73:c7:80:7e:d0:3e:fd: 8e:97:a8:6f:8b:7d:55:79:0d:22:1f:2d:04:c0:5a: 85:31:3b:b2:27:31:07:92:00:2b:bc:13:95:63:27: f0:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:86:52:37:7D:1F:6E:0E:7E:FD:D0:81:A1:B3:9D:96:4A:B5:5F:87 X509v3 Authority Key Identifier: keyid:36:DA:30:F6:86:57:7D:65:76:F6:47:B2:95:45:55:35:83:51:30:C3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/Ntow9oZXfWV29keylUVVNYNRMMM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ntow9oZXfWV29keylUVVNYNRMMM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/e4ZSN30fbg5-_dCBobOdlkq1X4c.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.58.12.0/22 Signature Algorithm: sha256WithRSAEncryption 2a:66:70:40:e8:c0:b9:24:bf:22:1d:66:f6:7d:1f:41:3c:23: 6e:61:8a:2c:95:16:74:1e:9f:35:e3:e6:eb:81:bc:88:08:3c: a7:a2:51:88:95:9b:ba:44:43:c2:99:c2:fc:d2:b6:25:f4:4b: 4b:6d:76:83:c2:21:e0:f7:34:4c:3a:7b:cd:5a:94:6a:c1:ef: 22:b8:b8:69:2d:a9:bd:48:60:c7:fe:e5:42:78:59:65:e6:73: c3:d4:21:a6:90:fa:11:6e:ad:af:1b:da:2a:81:46:14:5e:1a: d1:d4:74:e9:84:b0:7f:f9:25:f4:fd:62:31:44:11:d2:53:a8: 29:7f:92:6c:af:ba:9a:72:4b:5b:40:93:b8:e0:5f:3e:b6:a5: ad:c0:ec:db:5b:2c:15:40:c7:cc:3c:c8:30:0a:54:9d:10:7a: a6:d3:b9:dc:88:df:03:ff:b4:8f:9e:d8:7c:39:7a:4f:10:6b: a7:f9:a4:20:8f:e1:54:96:dd:22:e7:9c:90:25:1c:bc:53:2d: a8:dd:d5:eb:67:1d:50:18:e6:c6:9e:c5:2f:e6:cf:98:5e:bf: 5a:98:fa:a0:7d:ab:18:0a:67:ba:23:44:65:12:cc:8e:ab:68: 25:eb:1c:c3:e2:1c:78:91:f2:64:bb:bf:8a:54:44:e4:ac:b3: d5:e9:6f:f5 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBCDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzNkRB MzBGNjg2NTc3RDY1NzZGNjQ3QjI5NTQ1NTUzNTgzNTEzMEMzMB4XDTI0MDkyNzAw MDc1NloXDTI1MDkyNjA3Mjg0OFowMzExMC8GA1UEAxMoN0I4NjUyMzc3RDFGNkUw RTdFRkREMDgxQTFCMzlEOTY0QUI1NUY4NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAO8usps4xopinEZYppcbMY8oBYWwhrsofZNAnstq6WjWNNOtmB3W eL4K62CPwxDCzBCoAPnwMyiVWSLAVOhi+2kVLnSojYelhYZGXXAnc9yAGQUAnJEo E5/It7BFtCyu0Z4fAXEdZkiMPngeR8vl54O9TFgmjOwekNro/dJzQsDaa7XU4J08 jwQv317Ev35tYu/gSAaAGBj+piAamfvRM+QofaCi1gBG5S11Bhm1aANUM2CKCkMG IJY2BBMUbYESN/y5I92KAcy5BwHMGJe1/ZM7pdk9fH3EydNzx4B+0D79jpeob4t9 VXkNIh8tBMBahTE7sicxB5IAK7wTlWMn8AUCAwEAAaOCAiYwggIiMB0GA1UdDgQW BBR7hlI3fR9uDn790IGhs52WSrVfhzAfBgNVHSMEGDAWgBQ22jD2hld9ZXb2R7KV RVU1g1EwwzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjE2Ni9OdG93OW9aWGZXVjI5a2V5bFVWVk5ZTlJNTU0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9OdG93OW9aWGZXVjI5a2V5bFVWVk5Z TlJNTU0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMjE2Ni9lNFpTTjMwZmJnNS1fZENCb2JPZGxrcTFYNGMucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQCwDoMMA0GCSqGSIb3DQEBCwUAA4IBAQAqZnBA6MC5JL8iHWb2fR9BPCNu YYoslRZ0Hp814+brgbyICDynolGIlZu6REPCmcL80rYl9EtLbXaDwiHg9zRMOnvN WpRqwe8iuLhpLam9SGDH/uVCeFll5nPD1CGmkPoRbq2vG9oqgUYUXhrR1HTphLB/ +SX0/WIxRBHSU6gpf5Jsr7qacktbQJO44F8+tqWtwOzbWywVQMfMPMgwClSdEHqm 07nciN8D/7SPnth8OXpPEGun+aQgj+FUlt0i55yQJRy8Uy2o3dXrZx1QGObGnsUv 5s+YXr9amPqgfasYCme6I0RlEsyOq2gl6xzD4hx4kfJku7+KVETkrLPV6W/1 -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:28 2024 by rpki-client on console-ams.rpki-client.org