$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/232/X9UWoS3hvEj_3Ezwn1vic1X-vIc.roa File: X9UWoS3hvEj_3Ezwn1vic1X-vIc.roa (raw, json) Hash identifier: 32z6Fg+CJZAHW0uyB/TGtmxbh50IDE4+h1i+nIw2kek= Subject key identifier: 5F:D5:16:A1:2D:E1:BC:48:FF:DC:4C:F0:9F:5B:E2:73:55:FE:BC:87 Certificate issuer: /CN=2222A4C3961E467181A78700B960718846C8404B Certificate serial: 25 Authority key identifier: 22:22:A4:C3:96:1E:46:71:81:A7:87:00:B9:60:71:88:46:C8:40:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/X9UWoS3hvEj_3Ezwn1vic1X-vIc.roa Signing time: Mon 20 May 2024 06:56:00 +0000 ROA not before: Mon 20 May 2024 06:56:00 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 7672 IP address blocks: 210.171.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2222A4C3961E467181A78700B960718846C8404B Validity Not Before: May 20 06:56:00 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=5FD516A12DE1BC48FFDC4CF09F5BE27355FEBC87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a6:5a:d8:1e:bd:11:44:97:d6:d8:fd:06:45: 95:8c:12:e8:72:26:44:f3:cb:c1:12:66:48:87:43: 7c:3b:9a:d1:8c:e1:d9:11:ff:4d:b1:fa:7b:e8:dd: 48:7e:1b:9f:18:e6:ec:b7:ad:30:58:4c:8f:d5:c9: ff:b8:98:26:d5:c5:23:af:bd:b6:e9:84:f6:80:05: 31:a5:a4:18:8a:72:8f:c1:44:4a:4c:0d:f1:ee:32: 44:c1:a5:1e:ff:90:eb:af:39:22:fd:ee:ce:e4:94: 12:c8:e8:6a:e3:5f:96:99:c3:c3:9c:5b:0b:37:d9: 7d:e9:ba:3d:0b:f1:d9:d4:f5:27:7f:a7:1c:12:e0: d1:77:ba:85:d9:dc:89:41:ac:2d:fe:66:c4:92:97: e4:08:15:ee:6b:7f:a3:b8:67:6c:6d:0a:24:ce:1f: 66:f1:db:56:bc:19:3e:c7:8a:c7:50:a2:a6:e2:d0: 76:d8:d0:69:a3:fc:11:70:c3:54:20:4b:dc:8b:16: 39:71:c3:4f:88:b2:20:a2:0c:15:dc:12:86:14:eb: c3:eb:37:8a:92:49:34:94:8e:e9:d4:8c:89:77:59: ba:78:16:0f:c5:11:71:82:7e:12:b0:3c:d8:16:54: d2:c2:39:c1:14:ff:38:9c:36:f9:50:e3:a1:d5:df: 19:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:D5:16:A1:2D:E1:BC:48:FF:DC:4C:F0:9F:5B:E2:73:55:FE:BC:87 X509v3 Authority Key Identifier: keyid:22:22:A4:C3:96:1E:46:71:81:A7:87:00:B9:60:71:88:46:C8:40:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/X9UWoS3hvEj_3Ezwn1vic1X-vIc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.171.208.0/20 Signature Algorithm: sha256WithRSAEncryption 57:14:96:7f:21:87:85:e0:a2:3b:ef:1a:13:45:c3:56:f7:b9: d9:30:de:6d:be:bb:97:57:f3:c2:c7:7d:17:59:c9:3c:7b:88: 6f:19:d5:f0:3e:31:4d:b5:c1:9b:93:4d:8b:3a:87:f7:e9:00: 5c:48:d1:7f:e2:20:fd:94:61:7a:14:91:57:87:07:22:7d:fd: b8:dd:07:8f:56:f0:80:3d:82:cc:35:be:7b:41:b3:73:ef:93: 68:85:87:bd:74:66:51:6a:0b:97:54:36:e8:3a:b2:72:b8:02: 3c:6e:52:08:e3:40:c7:0c:d1:e5:ae:95:63:84:b8:06:68:21: 13:1e:f8:8f:d2:5b:39:67:c5:c9:a2:6b:85:b9:d8:da:88:4f: 5f:40:87:8c:fb:51:27:b8:5f:a2:73:ba:d5:7b:0b:cb:17:82: 13:0f:19:3a:8b:86:3c:82:53:ed:cd:50:1a:4e:93:1c:56:54: 31:cd:14:aa:d9:47:bb:38:3b:1a:c7:75:66:d5:20:27:a8:2e: e5:eb:90:e0:65:e4:51:88:45:a7:ff:56:bf:71:47:cf:5f:1e: 2e:34:13:bc:d3:e8:ea:7a:82:87:b8:98:e3:9e:7a:7e:9e:9b: 93:1b:22:08:e1:f3:56:38:87:47:1c:d7:72:8e:4c:0f:9f:67: a8:4a:fd:48 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBJTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyMjIy QTRDMzk2MUU0NjcxODFBNzg3MDBCOTYwNzE4ODQ2Qzg0MDRCMB4XDTI0MDUyMDA2 NTYwMFoXDTI1MDUxNTAxMzAwM1owMzExMC8GA1UEAxMoNUZENTE2QTEyREUxQkM0 OEZGREM0Q0YwOUY1QkUyNzM1NUZFQkM4NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALqmWtgevRFEl9bY/QZFlYwS6HImRPPLwRJmSIdDfDua0Yzh2RH/ TbH6e+jdSH4bnxjm7LetMFhMj9XJ/7iYJtXFI6+9tumE9oAFMaWkGIpyj8FESkwN 8e4yRMGlHv+Q6685Iv3uzuSUEsjoauNflpnDw5xbCzfZfem6PQvx2dT1J3+nHBLg 0Xe6hdnciUGsLf5mxJKX5AgV7mt/o7hnbG0KJM4fZvHbVrwZPseKx1CipuLQdtjQ aaP8EXDDVCBL3IsWOXHDT4iyIKIMFdwShhTrw+s3ipJJNJSO6dSMiXdZungWD8UR cYJ+ErA82BZU0sI5wRT/OJw2+VDjodXfGSMCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRf1RahLeG8SP/cTPCfW+JzVf68hzAfBgNVHSMEGDAWgBQiIqTDlh5GcYGnhwC5 YHGIRshASzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjMyL0lpS2t3NVllUm5HQnA0Y0F1V0J4aUViSVFFcy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0lpS2t3NVllUm5HQnA0Y0F1V0J4aUVi SVFFcy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMzIvWDlVV29TM2h2RWpfM0V6d24xdmljMVgtdkljLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNKr0DANBgkqhkiG9w0BAQsFAAOCAQEAVxSWfyGHheCiO+8aE0XDVve52TDe bb67l1fzwsd9F1nJPHuIbxnV8D4xTbXBm5NNizqH9+kAXEjRf+Ig/ZRhehSRV4cH In39uN0Hj1bwgD2CzDW+e0Gzc++TaIWHvXRmUWoLl1Q26DqycrgCPG5SCONAxwzR 5a6VY4S4BmghEx74j9JbOWfFyaJrhbnY2ohPX0CHjPtRJ7hfonO61XsLyxeCEw8Z OouGPIJT7c1QGk6THFZUMc0UqtlHuzg7Gsd1ZtUgJ6gu5euQ4GXkUYhFp/9Wv3FH z18eLjQTvNPo6nqCh7iY4556fp6bkxsiCOHzVjiHRxzXco5MD59nqEr9SA== -----END CERTIFICATE-----Generated at Mon Nov 25 23:54:32 2024 by rpki-client on console-ams.rpki-client.org