$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/232/ye_CkSbr74uHar7vReWGzRSpiM0.roa File: ye_CkSbr74uHar7vReWGzRSpiM0.roa (raw, json) Hash identifier: /vuOGU8wnb3O5ooSebfXUQkcrA7gx/WKJkq6G/cd0Ws= Subject key identifier: C9:EF:C2:91:26:EB:EF:8B:87:6A:BE:EF:45:E5:86:CD:14:A9:88:CD Certificate issuer: /CN=D6E9A21E81CA12EB8455ADEC46610477EA5F4F4C Certificate serial: 18 Authority key identifier: D6:E9:A2:1E:81:CA:12:EB:84:55:AD:EC:46:61:04:77:EA:5F:4F:4C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1umiHoHKEuuEVa3sRmEEd-pfT0w.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/ye_CkSbr74uHar7vReWGzRSpiM0.roa Signing time: Tue 02 Apr 2024 00:18:52 +0000 ROA not before: Tue 02 Apr 2024 00:18:52 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 7672 IP address blocks: 157.250.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/1umiHoHKEuuEVa3sRmEEd-pfT0w.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/1umiHoHKEuuEVa3sRmEEd-pfT0w.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1umiHoHKEuuEVa3sRmEEd-pfT0w.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:32:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D6E9A21E81CA12EB8455ADEC46610477EA5F4F4C Validity Not Before: Apr 2 00:18:52 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=C9EFC29126EBEF8B876ABEEF45E586CD14A988CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9e:eb:fe:09:1a:d0:00:c6:db:d2:b2:fb:ac: a5:e3:7c:97:bf:fe:ee:5a:ef:91:a2:82:00:d2:35: e8:75:66:67:59:5d:7b:60:b5:61:0d:b8:8e:01:a4: 19:4f:f3:13:8d:c5:5d:0f:90:46:a3:1a:29:ae:6c: 0a:f0:f2:3b:c3:ae:74:db:2c:d2:50:8e:0a:a8:38: c1:30:d5:49:2e:5b:18:ae:80:a6:9d:cd:0c:1a:8b: 4c:65:12:4d:ce:08:3c:ae:24:37:4c:61:81:e5:0f: ea:ea:78:d2:0a:15:01:a1:3c:e1:ce:48:0f:af:1f: 3a:d5:9b:4c:3c:f8:4e:05:d1:7c:75:4e:22:54:e6: 24:04:db:fa:ab:6c:70:5e:c0:c0:e5:6d:cf:87:c7: 74:7e:86:89:f1:93:45:7a:92:60:40:b8:76:d1:ed: 6e:f6:b6:52:bb:56:b9:5f:08:1e:e0:6a:75:a3:78: 94:8b:f3:07:d6:b5:ce:9f:c0:df:d3:b3:ee:9c:69: 84:6e:fb:f0:c0:67:25:15:68:f0:ea:d9:6c:ea:74: 0b:dd:b3:67:da:30:b0:f3:0a:58:8b:c5:af:ee:1a: a4:57:4c:45:0a:0f:5b:02:93:b7:cf:aa:a9:d2:cb: d0:0c:b9:ff:e7:22:a9:79:a2:4d:10:67:5e:89:a4: 78:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:EF:C2:91:26:EB:EF:8B:87:6A:BE:EF:45:E5:86:CD:14:A9:88:CD X509v3 Authority Key Identifier: keyid:D6:E9:A2:1E:81:CA:12:EB:84:55:AD:EC:46:61:04:77:EA:5F:4F:4C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/1umiHoHKEuuEVa3sRmEEd-pfT0w.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1umiHoHKEuuEVa3sRmEEd-pfT0w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/ye_CkSbr74uHar7vReWGzRSpiM0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.250.224.0/20 Signature Algorithm: sha256WithRSAEncryption 4b:84:27:67:30:2a:f2:8b:6d:c0:88:e7:8a:61:a9:92:2d:f5: fd:78:1d:a7:57:43:e4:58:f5:bc:c4:5a:a2:7b:46:fe:12:f4: 91:a3:7c:53:c5:8e:d4:58:13:03:ce:3e:1d:c4:95:8f:8b:16: c0:c0:8e:cd:ca:30:59:75:c6:15:f5:51:94:0b:60:f4:4c:ce: 89:38:a7:89:89:12:42:5d:36:32:43:83:3b:92:83:0b:29:95: b6:e0:f4:ae:22:b8:d1:7f:df:3c:00:b5:a3:1e:7b:40:18:dc: 07:9b:46:dc:38:2f:44:c5:78:20:71:63:78:2f:66:ca:d6:cf: 48:4a:1c:6d:bf:c6:0e:5f:16:ea:c3:bb:2a:cc:7e:95:ca:f9: 5f:a3:6f:c3:4b:55:e4:b2:52:c3:cc:50:7e:db:9b:bf:c1:44: cd:27:56:ab:51:48:c5:72:18:1b:e2:a9:07:46:5b:67:36:d6: e8:c5:07:6e:7b:4a:64:02:16:46:7e:19:02:08:ae:43:ce:a3: 4a:b1:a2:bf:aa:0e:46:19:28:9a:a5:81:55:84:f4:88:27:86: 4e:5c:27:d7:33:89:22:55:cc:be:4c:59:de:ae:d5:55:f1:15: b1:25:22:88:24:f6:a9:5a:c0:49:d6:f8:4e:05:32:f4:f5:98: 33:0d:90:ba -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBGDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhENkU5 QTIxRTgxQ0ExMkVCODQ1NUFERUM0NjYxMDQ3N0VBNUY0RjRDMB4XDTI0MDQwMjAw MTg1MloXDTI1MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoQzlFRkMyOTEyNkVCRUY4 Qjg3NkFCRUVGNDVFNTg2Q0QxNEE5ODhDRDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALqe6/4JGtAAxtvSsvuspeN8l7/+7lrvkaKCANI16HVmZ1lde2C1 YQ24jgGkGU/zE43FXQ+QRqMaKa5sCvDyO8OudNss0lCOCqg4wTDVSS5bGK6App3N DBqLTGUSTc4IPK4kN0xhgeUP6up40goVAaE84c5ID68fOtWbTDz4TgXRfHVOIlTm JATb+qtscF7AwOVtz4fHdH6GifGTRXqSYEC4dtHtbva2UrtWuV8IHuBqdaN4lIvz B9a1zp/A39Oz7pxphG778MBnJRVo8OrZbOp0C92zZ9owsPMKWIvFr+4apFdMRQoP WwKTt8+qqdLL0Ay5/+ciqXmiTRBnXomkeM8CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTJ78KRJuvvi4dqvu9F5YbNFKmIzTAfBgNVHSMEGDAWgBTW6aIegcoS64RVrexG YQR36l9PTDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjMyLzF1bWlIb0hLRXV1RVZhM3NSbUVFZC1wZlQwdy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzF1bWlIb0hLRXV1RVZhM3NSbUVFZC1w ZlQwdy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMzIveWVfQ2tTYnI3NHVIYXI3dlJlV0d6UlNwaU0wLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBJ364DANBgkqhkiG9w0BAQsFAAOCAQEAS4QnZzAq8ottwIjnimGpki31/Xgd p1dD5Fj1vMRaontG/hL0kaN8U8WO1FgTA84+HcSVj4sWwMCOzcowWXXGFfVRlAtg 9EzOiTiniYkSQl02MkODO5KDCymVtuD0riK40X/fPAC1ox57QBjcB5tG3DgvRMV4 IHFjeC9mytbPSEocbb/GDl8W6sO7Ksx+lcr5X6Nvw0tV5LJSw8xQftubv8FEzSdW q1FIxXIYG+KpB0ZbZzbW6MUHbntKZAIWRn4ZAgiuQ86jSrGiv6oORhkomqWBVYT0 iCeGTlwn1zOJIlXMvkxZ3q7VVfEVsSUiiCT2qVrASdb4TgUy9PWYMw2Qug== -----END CERTIFICATE-----Generated at Fri Nov 22 15:23:56 2024 by rpki-client on console-fra.rpki-client.org