$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/233/6afVIS-bqjMN-ZgP0oW9kRIWtWg.roa File: 6afVIS-bqjMN-ZgP0oW9kRIWtWg.roa (raw, json) Hash identifier: Frmg6rXHq0iRbDHzZARmVldGsR8jIVt9/AdC6WZPWOw= Subject key identifier: E9:A7:D5:21:2F:9B:AA:33:0D:F9:98:0F:D2:85:BD:91:12:16:B5:68 Certificate issuer: /CN=D788678E64D29184C23DAAADB594BFD9BAE2405C Certificate serial: 43 Authority key identifier: D7:88:67:8E:64:D2:91:84:C2:3D:AA:AD:B5:94:BF:D9:BA:E2:40:5C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/14hnjmTSkYTCPaqttZS_2briQFw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/233/6afVIS-bqjMN-ZgP0oW9kRIWtWg.roa Signing time: Sat 31 Aug 2024 01:30:17 +0000 ROA not before: Sat 31 Aug 2024 01:30:17 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 7670 IP address blocks: 210.253.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/233/14hnjmTSkYTCPaqttZS_2briQFw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/233/14hnjmTSkYTCPaqttZS_2briQFw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/14hnjmTSkYTCPaqttZS_2briQFw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D788678E64D29184C23DAAADB594BFD9BAE2405C Validity Not Before: Aug 31 01:30:17 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=E9A7D5212F9BAA330DF9980FD285BD911216B568 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d1:91:b2:7f:22:d2:cd:dc:f6:3d:e8:59:d3: 3d:08:7c:b1:9d:80:16:ff:fd:7a:a1:54:b8:5d:0e: 5d:e2:6c:3d:00:a0:b3:55:87:fe:7c:c2:c6:16:0c: e0:4f:77:5f:1e:84:d4:ec:d6:fa:fd:8e:04:b3:f7: 60:61:1d:8a:9d:d2:60:85:56:73:01:65:3f:cd:54: 9c:2f:8c:0b:db:14:f1:b6:56:70:f8:e9:66:a6:24: 94:ce:d6:f9:7a:29:9f:9b:37:d0:99:ee:1e:7c:e8: 87:51:d9:51:b3:20:6b:cd:e1:e0:09:a9:ad:ba:1c: fe:b0:e7:66:7a:4e:e0:63:8c:49:45:0b:38:8d:42: 0e:85:17:b6:62:67:a8:ae:b7:f2:23:06:4e:2a:dd: cf:27:81:fe:11:5b:ff:23:34:b1:6a:b7:6c:80:11: 00:df:83:b0:7b:16:2e:a5:8a:8b:fd:07:ac:f7:a2: a9:0e:69:5b:f4:ff:78:c9:74:f1:a7:2f:9f:6f:25: 23:f0:ad:34:10:15:b2:62:36:d8:dd:68:56:ef:a2: d8:db:eb:78:70:68:e1:c0:51:bf:0b:c5:4a:df:9b: 51:33:eb:11:2c:10:6a:56:e1:25:ce:7a:a3:c0:f2: 89:80:82:58:a3:63:04:9f:ed:f9:db:8b:b2:57:cc: 0c:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:A7:D5:21:2F:9B:AA:33:0D:F9:98:0F:D2:85:BD:91:12:16:B5:68 X509v3 Authority Key Identifier: keyid:D7:88:67:8E:64:D2:91:84:C2:3D:AA:AD:B5:94:BF:D9:BA:E2:40:5C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/233/14hnjmTSkYTCPaqttZS_2briQFw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/14hnjmTSkYTCPaqttZS_2briQFw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/233/6afVIS-bqjMN-ZgP0oW9kRIWtWg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.253.32.0/19 Signature Algorithm: sha256WithRSAEncryption 86:d8:4f:11:64:14:37:2a:38:e2:2f:a0:93:74:43:1f:93:e1: 2b:eb:31:34:4a:fe:d6:13:c8:77:eb:45:a8:40:9a:a7:bb:4a: b0:c4:19:8f:6e:10:56:b8:cd:56:09:57:19:9d:ca:48:21:5c: 5d:33:3f:a4:6c:69:22:f9:a4:3e:4a:f9:a4:d0:f4:ed:e8:21: ea:74:5e:00:6f:ae:02:1d:c1:1f:82:1e:ba:94:0b:7b:52:c5: 79:d5:01:fa:19:82:c6:58:de:d0:ff:a7:a0:a0:c8:d2:f4:97: 69:fc:46:20:d9:1d:32:40:f8:eb:4d:41:d0:a5:06:26:49:9e: 89:a5:fe:9c:01:bd:9c:6b:e5:10:3d:b4:60:fe:eb:0e:39:7c: 17:c5:13:ee:b9:54:ae:96:15:9f:d8:3a:9e:4e:d9:d5:58:cb: 4a:67:2d:68:ff:f8:c7:d6:3e:99:73:5d:51:ce:26:fb:fa:d8: f3:18:5e:23:b9:01:79:18:9c:a0:d6:19:59:b7:80:74:f2:c4: bf:ce:56:8a:ed:be:b8:88:aa:16:dc:5a:ce:5e:b9:a0:d3:80: b0:81:32:11:30:b2:e3:98:35:d6:6b:35:45:e4:61:de:93:50: 3a:e3:24:29:0e:15:b4:42:ac:13:3e:75:d5:89:a4:c8:36:33: 32:c9:d4:ba -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBQzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhENzg4 Njc4RTY0RDI5MTg0QzIzREFBQURCNTk0QkZEOUJBRTI0MDVDMB4XDTI0MDgzMTAx MzAxN1oXDTI1MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoRTlBN0Q1MjEyRjlCQUEz MzBERjk5ODBGRDI4NUJEOTExMjE2QjU2ODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANjRkbJ/ItLN3PY96FnTPQh8sZ2AFv/9eqFUuF0OXeJsPQCgs1WH /nzCxhYM4E93Xx6E1OzW+v2OBLP3YGEdip3SYIVWcwFlP81UnC+MC9sU8bZWcPjp ZqYklM7W+Xopn5s30JnuHnzoh1HZUbMga83h4Amprboc/rDnZnpO4GOMSUULOI1C DoUXtmJnqK638iMGTirdzyeB/hFb/yM0sWq3bIARAN+DsHsWLqWKi/0HrPeiqQ5p W/T/eMl08acvn28lI/CtNBAVsmI22N1oVu+i2NvreHBo4cBRvwvFSt+bUTPrESwQ albhJc56o8DyiYCCWKNjBJ/t+duLslfMDEcCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTpp9UhL5uqMw35mA/Shb2REha1aDAfBgNVHSMEGDAWgBTXiGeOZNKRhMI9qq21 lL/ZuuJAXDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjMzLzE0aG5qbVRTa1lUQ1BhcXR0WlNfMmJyaVFGdy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzE0aG5qbVRTa1lUQ1BhcXR0WlNfMmJy aVFGdy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMzMvNmFmVklTLWJxak1OLVpnUDBvVzlrUklXdFdnLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBdL9IDANBgkqhkiG9w0BAQsFAAOCAQEAhthPEWQUNyo44i+gk3RDH5PhK+sx NEr+1hPId+tFqECap7tKsMQZj24QVrjNVglXGZ3KSCFcXTM/pGxpIvmkPkr5pND0 7egh6nReAG+uAh3BH4IeupQLe1LFedUB+hmCxlje0P+noKDI0vSXafxGINkdMkD4 601B0KUGJkmeiaX+nAG9nGvlED20YP7rDjl8F8UT7rlUrpYVn9g6nk7Z1VjLSmct aP/4x9Y+mXNdUc4m+/rY8xheI7kBeRicoNYZWbeAdPLEv85Wiu2+uIiqFtxazl65 oNOAsIEyETCy45g11ms1ReRh3pNQOuMkKQ4VtEKsEz511YmkyDYzMsnUug== -----END CERTIFICATE-----Generated at Sun Feb 16 22:25:37 2025 by rpki-client