$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/2166/hG-6b5ysBSUEhx3jXtb0fGPA5q4.roa File: hG-6b5ysBSUEhx3jXtb0fGPA5q4.roa (raw, json) Hash identifier: qO5pdW6oDYT3MgUg/0YGnRDzzRM43K4MeK7MsGiWbVg= Subject key identifier: 84:6F:BA:6F:9C:AC:05:25:04:87:1D:E3:5E:D6:F4:7C:63:C0:E6:AE Certificate issuer: /CN=36DA30F686577D6576F647B295455535835130C3 Certificate serial: 0A Authority key identifier: 36:DA:30:F6:86:57:7D:65:76:F6:47:B2:95:45:55:35:83:51:30:C3 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ntow9oZXfWV29keylUVVNYNRMMM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/hG-6b5ysBSUEhx3jXtb0fGPA5q4.roa Signing time: Fri 27 Sep 2024 00:07:56 +0000 ROA not before: Fri 27 Sep 2024 00:07:56 +0000 ROA not after: Fri 26 Sep 2025 07:28:48 +0000 asID: 2907 IP address blocks: 192.58.18.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/Ntow9oZXfWV29keylUVVNYNRMMM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/Ntow9oZXfWV29keylUVVNYNRMMM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ntow9oZXfWV29keylUVVNYNRMMM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36DA30F686577D6576F647B295455535835130C3 Validity Not Before: Sep 27 00:07:56 2024 GMT Not After : Sep 26 07:28:48 2025 GMT Subject: CN=846FBA6F9CAC052504871DE35ED6F47C63C0E6AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d0:b3:4d:a7:19:c4:8b:e1:f2:7e:79:e2:8b: d3:d1:ee:14:fd:e2:e8:70:58:66:eb:15:ab:09:95: ea:63:f0:cf:df:87:07:09:25:41:90:e2:d9:1c:4d: 0c:18:dd:ad:f3:fd:89:33:c0:d5:21:e3:40:c2:0c: 39:ed:08:a7:d3:69:e6:68:30:b2:42:a8:ac:44:0a: 55:49:a1:7a:ec:2f:ff:2f:89:88:80:e2:ba:6b:01: a9:a9:80:df:e2:03:f0:6e:a2:21:f3:3f:64:32:55: 19:8c:78:e9:bc:88:94:88:94:ae:64:79:2e:26:57: 08:4a:90:80:0e:d3:eb:fe:c1:81:ef:57:9f:33:a4: 8c:f7:e3:a4:cf:3c:40:7c:18:cc:c1:3b:11:2e:3e: 30:23:49:c8:dd:1d:68:2e:e2:f3:15:3a:10:81:00: 45:38:bc:ce:cd:43:43:c9:ff:81:fd:86:ba:60:c3: ce:be:f3:aa:8f:7a:a2:aa:c9:92:16:23:7e:41:4f: b1:ae:28:21:64:82:7f:2c:68:e7:45:67:16:ab:02: b7:02:10:6c:5e:af:51:7d:33:16:14:bf:ea:06:97: c0:ec:44:74:48:07:85:9a:61:ab:1b:37:9d:46:7f: 2e:37:2c:07:e3:72:69:d3:e9:02:64:2d:4f:ff:7b: cd:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:6F:BA:6F:9C:AC:05:25:04:87:1D:E3:5E:D6:F4:7C:63:C0:E6:AE X509v3 Authority Key Identifier: keyid:36:DA:30:F6:86:57:7D:65:76:F6:47:B2:95:45:55:35:83:51:30:C3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/Ntow9oZXfWV29keylUVVNYNRMMM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ntow9oZXfWV29keylUVVNYNRMMM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/hG-6b5ysBSUEhx3jXtb0fGPA5q4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.58.18.0/24 Signature Algorithm: sha256WithRSAEncryption 93:23:04:a6:d0:6a:a8:fe:12:83:b8:53:ac:2e:73:8a:10:9e: 8b:52:bd:58:5e:f3:37:94:5b:00:e6:73:25:e6:fe:98:4e:69: 89:70:e1:20:75:44:d9:f3:67:17:9b:ec:20:e3:81:b5:91:dc: 88:6b:62:a1:f2:ed:9b:1e:5f:cc:1b:22:d4:fa:1f:fe:78:28: 35:cb:40:6d:4b:75:9c:fc:fb:1f:85:d2:3b:16:b1:c3:09:fa: 9c:2c:f3:ee:0b:e6:9f:fc:78:a7:8e:4b:02:ab:e0:12:b2:dc: b9:d9:32:45:f6:0e:49:57:78:d0:21:05:18:b1:2d:2d:53:9e: 1f:c6:00:ce:b1:fa:57:61:c2:4f:d3:16:54:55:00:e4:1c:43: a8:7c:d2:54:0f:14:5d:45:7f:9f:9b:47:2d:68:1c:2d:b4:d5: d3:15:5b:06:1e:d6:4c:7e:8d:8c:53:98:c4:ed:9c:2a:21:a1: 45:82:71:0e:23:e7:8a:d0:a6:9a:38:ee:e9:e5:eb:1b:cb:64: 77:66:a9:00:45:93:19:d9:1a:46:e0:10:17:d7:5f:50:4d:70: d2:79:db:5b:02:95:fd:5d:d2:90:9b:11:a9:89:40:21:11:b7: 73:a2:f3:10:7d:b4:62:e0:47:15:3d:91:a7:8e:96:1c:1a:f2: ae:aa:84:9a -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBCjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzNkRB MzBGNjg2NTc3RDY1NzZGNjQ3QjI5NTQ1NTUzNTgzNTEzMEMzMB4XDTI0MDkyNzAw MDc1NloXDTI1MDkyNjA3Mjg0OFowMzExMC8GA1UEAxMoODQ2RkJBNkY5Q0FDMDUy NTA0ODcxREUzNUVENkY0N0M2M0MwRTZBRTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL3Qs02nGcSL4fJ+eeKL09HuFP3i6HBYZusVqwmV6mPwz9+HBwkl QZDi2RxNDBjdrfP9iTPA1SHjQMIMOe0Ip9Np5mgwskKorEQKVUmheuwv/y+JiIDi umsBqamA3+ID8G6iIfM/ZDJVGYx46byIlIiUrmR5LiZXCEqQgA7T6/7Bge9XnzOk jPfjpM88QHwYzME7ES4+MCNJyN0daC7i8xU6EIEARTi8zs1DQ8n/gf2GumDDzr7z qo96oqrJkhYjfkFPsa4oIWSCfyxo50VnFqsCtwIQbF6vUX0zFhS/6gaXwOxEdEgH hZphqxs3nUZ/LjcsB+NyadPpAmQtT/97zTsCAwEAAaOCAiYwggIiMB0GA1UdDgQW BBSEb7pvnKwFJQSHHeNe1vR8Y8DmrjAfBgNVHSMEGDAWgBQ22jD2hld9ZXb2R7KV RVU1g1EwwzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjE2Ni9OdG93OW9aWGZXVjI5a2V5bFVWVk5ZTlJNTU0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9OdG93OW9aWGZXVjI5a2V5bFVWVk5Z TlJNTU0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMjE2Ni9oRy02YjV5c0JTVUVoeDNqWHRiMGZHUEE1cTQucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAwDoSMA0GCSqGSIb3DQEBCwUAA4IBAQCTIwSm0Gqo/hKDuFOsLnOKEJ6L Ur1YXvM3lFsA5nMl5v6YTmmJcOEgdUTZ82cXm+wg44G1kdyIa2Kh8u2bHl/MGyLU +h/+eCg1y0BtS3Wc/PsfhdI7FrHDCfqcLPPuC+af/HinjksCq+ASsty52TJF9g5J V3jQIQUYsS0tU54fxgDOsfpXYcJP0xZUVQDkHEOofNJUDxRdRX+fm0ctaBwttNXT FVsGHtZMfo2MU5jE7ZwqIaFFgnEOI+eK0KaaOO7p5esby2R3ZqkARZMZ2RpG4BAX 119QTXDSedtbApX9XdKQmxGpiUAhEbdzovMQfbRi4EcVPZGnjpYcGvKuqoSa -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:28 2024 by rpki-client on console-ams.rpki-client.org