$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/232/YyxP0E9r1wLRVboQhVykUN4STps.roa File: YyxP0E9r1wLRVboQhVykUN4STps.roa (raw, json) Hash identifier: N0OTylOfy3svhm0C0slwIkEnqbudiJr3KZa77n+92j8= Subject key identifier: 63:2C:4F:D0:4F:6B:D7:02:D1:55:BA:10:85:5C:A4:50:DE:12:4E:9B Certificate issuer: /CN=2222A4C3961E467181A78700B960718846C8404B Certificate serial: 28 Authority key identifier: 22:22:A4:C3:96:1E:46:71:81:A7:87:00:B9:60:71:88:46:C8:40:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/YyxP0E9r1wLRVboQhVykUN4STps.roa Signing time: Mon 20 May 2024 06:56:00 +0000 ROA not before: Mon 20 May 2024 06:56:00 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 7672 IP address blocks: 218.228.16.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2222A4C3961E467181A78700B960718846C8404B Validity Not Before: May 20 06:56:00 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=632C4FD04F6BD702D155BA10855CA450DE124E9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c7:06:31:f8:88:f0:c3:ef:c4:dc:9d:45:16: 2c:2a:66:88:84:78:8b:8b:d5:80:63:26:f4:6e:08: 6e:9c:91:df:12:85:a4:61:af:ca:7e:19:42:de:94: 61:0e:ac:a5:fe:3c:9c:a4:cd:da:51:d1:a7:0c:94: b5:0e:57:e1:80:a3:ae:35:ce:e1:5c:41:8a:bc:90: ff:d6:77:81:83:55:2a:8a:d6:03:67:43:f0:15:31: 82:00:75:20:3d:e1:bf:d1:2b:3f:7c:48:e1:cb:1b: 70:d0:22:3e:bd:3a:2b:7a:11:10:10:e1:72:c2:c8: 87:37:e0:20:62:d8:ff:41:cb:86:9a:68:ff:76:d0: 4e:94:3d:58:52:cb:98:ef:c7:6a:36:4a:38:17:c1: ae:79:65:5e:e0:c1:b4:82:28:35:68:48:5d:91:ef: a5:55:db:81:10:b9:26:52:90:db:dd:e3:8f:ab:a3: a8:2f:fc:5d:9b:9c:f0:f9:38:1d:74:32:8b:ee:a5: 7d:9a:79:72:5a:e7:06:3b:2e:9d:29:01:df:6c:29: 0d:76:52:36:aa:34:a0:c4:a9:31:66:6a:aa:ce:18: b8:ab:de:6b:95:17:ca:84:c5:22:7b:b3:b6:1d:4c: 47:2d:b3:f1:65:56:0b:fc:64:22:bc:6b:e2:16:21: 3c:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:2C:4F:D0:4F:6B:D7:02:D1:55:BA:10:85:5C:A4:50:DE:12:4E:9B X509v3 Authority Key Identifier: keyid:22:22:A4:C3:96:1E:46:71:81:A7:87:00:B9:60:71:88:46:C8:40:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/YyxP0E9r1wLRVboQhVykUN4STps.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.228.16.0/20 Signature Algorithm: sha256WithRSAEncryption 5e:41:6a:8a:67:ba:f0:0a:e7:3b:a1:bc:87:dc:d0:cd:c3:ad: 33:78:98:29:f1:7c:ae:39:10:05:30:9c:a2:b6:8c:96:0a:ae: 3c:0a:10:8d:79:5a:2c:7b:b9:61:ed:e8:4f:b4:84:69:8b:9d: 94:05:d6:05:4d:71:fc:ab:52:32:29:0b:be:14:ad:b0:6c:b5: d7:32:b9:06:cd:f7:b7:d3:77:55:be:63:80:8b:20:d7:88:3d: 70:73:4e:94:8c:69:c4:a3:6a:6d:40:f6:99:c6:95:34:51:77: a4:07:06:be:ac:ff:67:da:3b:01:77:6e:2b:ec:64:50:90:11: ba:bd:f1:bb:4a:40:fe:84:f4:7b:06:1b:a2:2b:ff:0e:ab:81: a9:80:6c:93:7d:43:e1:99:d1:64:7a:39:9b:b8:86:f7:65:de: 6f:37:ff:42:b6:b4:13:37:88:76:c3:cf:73:6b:2c:6c:8b:19: e2:5f:93:ff:92:ad:67:68:1c:18:ec:29:e2:97:c3:0f:9f:9a: 66:e4:15:1a:75:be:cf:fa:b2:71:73:4a:11:96:04:1a:41:30: c8:e9:2e:6b:43:07:b8:b2:95:8a:52:08:72:ff:4f:19:6b:c9: a4:a2:f8:3e:7c:69:b4:50:5b:30:ff:f9:5e:c4:d3:8b:b6:ca: be:8f:36:c0 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBKDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyMjIy QTRDMzk2MUU0NjcxODFBNzg3MDBCOTYwNzE4ODQ2Qzg0MDRCMB4XDTI0MDUyMDA2 NTYwMFoXDTI1MDUxNTAxMzAwM1owMzExMC8GA1UEAxMoNjMyQzRGRDA0RjZCRDcw MkQxNTVCQTEwODU1Q0E0NTBERTEyNEU5QjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMjHBjH4iPDD78TcnUUWLCpmiIR4i4vVgGMm9G4IbpyR3xKFpGGv yn4ZQt6UYQ6spf48nKTN2lHRpwyUtQ5X4YCjrjXO4VxBiryQ/9Z3gYNVKorWA2dD 8BUxggB1ID3hv9ErP3xI4csbcNAiPr06K3oREBDhcsLIhzfgIGLY/0HLhppo/3bQ TpQ9WFLLmO/HajZKOBfBrnllXuDBtIIoNWhIXZHvpVXbgRC5JlKQ293jj6ujqC/8 XZuc8Pk4HXQyi+6lfZp5clrnBjsunSkB32wpDXZSNqo0oMSpMWZqqs4YuKvea5UX yoTFInuzth1MRy2z8WVWC/xkIrxr4hYhPK0CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRjLE/QT2vXAtFVuhCFXKRQ3hJOmzAfBgNVHSMEGDAWgBQiIqTDlh5GcYGnhwC5 YHGIRshASzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjMyL0lpS2t3NVllUm5HQnA0Y0F1V0J4aUViSVFFcy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0lpS2t3NVllUm5HQnA0Y0F1V0J4aUVi SVFFcy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMzIvWXl4UDBFOXIxd0xSVmJvUWhWeWtVTjRTVHBzLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNrkEDANBgkqhkiG9w0BAQsFAAOCAQEAXkFqime68ArnO6G8h9zQzcOtM3iY KfF8rjkQBTCcoraMlgquPAoQjXlaLHu5Ye3oT7SEaYudlAXWBU1x/KtSMikLvhSt sGy11zK5Bs33t9N3Vb5jgIsg14g9cHNOlIxpxKNqbUD2mcaVNFF3pAcGvqz/Z9o7 AXduK+xkUJARur3xu0pA/oT0ewYboiv/DquBqYBsk31D4ZnRZHo5m7iG92Xebzf/ Qra0EzeIdsPPc2ssbIsZ4l+T/5KtZ2gcGOwp4pfDD5+aZuQVGnW+z/qycXNKEZYE GkEwyOkua0MHuLKVilIIcv9PGWvJpKL4PnxptFBbMP/5XsTTi7bKvo82wA== -----END CERTIFICATE-----Generated at Mon Nov 25 23:59:05 2024 by rpki-client on console-fra.rpki-client.org