$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/2432/asM8MkxWbveQUFt0VkCXfPEfOJM.roa File: asM8MkxWbveQUFt0VkCXfPEfOJM.roa (raw, json) Hash identifier: nB1P5bm1JtJ0nGSXK03UPGp+uamrrHwzUveyj8RQZA0= Subject key identifier: 6A:C3:3C:32:4C:56:6E:F7:90:50:5B:74:56:40:97:7C:F1:1F:38:93 Certificate issuer: /CN=E62F69C95A098F8073F5F3C3C1A98B76CBF8502A Certificate serial: 4B Authority key identifier: E6:2F:69:C9:5A:09:8F:80:73:F5:F3:C3:C1:A9:8B:76:CB:F8:50:2A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5i9pyVoJj4Bz9fPDwamLdsv4UCo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2432/asM8MkxWbveQUFt0VkCXfPEfOJM.roa Signing time: Thu 29 Feb 2024 01:29:48 +0000 ROA not before: Thu 29 Feb 2024 01:29:48 +0000 ROA not after: Fri 14 Feb 2025 01:30:03 +0000 asID: 7671 IP address blocks: 157.4.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2432/5i9pyVoJj4Bz9fPDwamLdsv4UCo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2432/5i9pyVoJj4Bz9fPDwamLdsv4UCo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5i9pyVoJj4Bz9fPDwamLdsv4UCo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E62F69C95A098F8073F5F3C3C1A98B76CBF8502A Validity Not Before: Feb 29 01:29:48 2024 GMT Not After : Feb 14 01:30:03 2025 GMT Subject: CN=6AC33C324C566EF790505B745640977CF11F3893 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a6:0b:38:0c:30:1c:13:f3:e2:e9:7f:66:03: 1a:59:38:7a:c3:7f:a0:4d:30:75:e7:86:48:f8:ab: 2a:d9:90:ab:65:41:73:2b:0f:33:a8:a7:b3:4d:24: 85:f6:e2:8f:60:51:0c:a0:24:f0:0f:17:8c:a4:e5: a9:e7:37:d4:c0:35:58:18:44:9b:14:1c:05:df:41: f0:c6:1a:69:b9:51:f9:8b:c4:3e:6e:27:5a:12:67: b8:9e:98:28:b2:84:e8:61:14:04:d7:16:89:56:85: 57:68:f5:28:0d:9e:93:d0:ac:51:e2:51:3a:37:55: 36:69:64:a0:16:0d:1d:6e:1c:39:06:1b:13:03:9d: b2:30:7b:f6:83:11:5c:05:23:fd:8b:d6:9d:61:a4: f5:a5:7b:fc:27:50:18:d3:43:d1:23:42:4e:a1:b3: 75:c9:ea:2b:4d:9c:5b:39:85:b2:bb:3d:1a:9f:52: 47:e4:4b:84:d7:d2:8f:f6:b5:6e:06:5a:03:dd:9e: 36:67:0e:e8:d8:39:ec:35:db:93:21:5e:81:4b:6f: 9c:68:ad:cd:24:aa:3c:41:f2:5c:bf:87:ad:f1:18: 72:ae:76:c3:a4:57:df:26:f6:5c:93:6b:ca:f6:c8: 2c:0e:3b:3a:73:0b:32:9e:07:e2:f6:ed:98:74:bb: 5b:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:C3:3C:32:4C:56:6E:F7:90:50:5B:74:56:40:97:7C:F1:1F:38:93 X509v3 Authority Key Identifier: keyid:E6:2F:69:C9:5A:09:8F:80:73:F5:F3:C3:C1:A9:8B:76:CB:F8:50:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2432/5i9pyVoJj4Bz9fPDwamLdsv4UCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5i9pyVoJj4Bz9fPDwamLdsv4UCo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2432/asM8MkxWbveQUFt0VkCXfPEfOJM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.4.0.0/16 Signature Algorithm: sha256WithRSAEncryption 67:75:8a:f1:c6:f2:e1:92:d7:fd:f3:55:27:b1:64:57:6b:6f: 8f:13:8f:2a:ec:27:6a:5c:cf:ee:6d:44:20:80:94:e8:be:f3: bc:a8:af:df:4c:51:a1:22:90:31:08:49:77:4b:3e:cc:f3:f0: 57:1d:03:f8:59:16:a4:2f:4a:65:ac:71:5d:57:6d:ef:ca:65: 02:61:04:2a:1b:33:73:2f:7d:cd:bd:26:ab:92:ff:6d:44:ef: 54:07:38:da:0e:e2:b2:bc:e3:9c:44:ea:8b:9f:90:ea:e2:67: 7b:94:05:60:4f:0b:54:a0:16:22:09:ab:27:08:8e:68:a4:fb: 65:4b:7b:69:9e:5e:9a:68:cb:73:04:ca:c3:43:dd:b3:5d:25: d1:c0:93:3c:22:41:05:6f:8a:78:8a:50:f7:12:40:c5:fa:cd: 11:09:32:49:d1:55:0b:db:b6:15:7a:3e:ac:67:25:66:be:3f: e7:9b:00:68:a2:b8:b1:c9:5b:73:50:b0:82:b3:44:3b:8d:c4: 6d:77:13:40:41:19:bf:2b:03:fe:35:b6:87:bd:5f:0a:97:41: 0b:45:4c:26:8f:fa:a9:6c:a2:3d:82:d7:f2:0c:23:7b:fb:8b: 71:a8:aa:a0:99:2c:29:6a:de:02:dd:69:d8:fb:a3:5c:e8:9a: 4c:9d:4a:29 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgIBSzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhFNjJG NjlDOTVBMDk4RjgwNzNGNUYzQzNDMUE5OEI3NkNCRjg1MDJBMB4XDTI0MDIyOTAx Mjk0OFoXDTI1MDIxNDAxMzAwM1owMzExMC8GA1UEAxMoNkFDMzNDMzI0QzU2NkVG NzkwNTA1Qjc0NTY0MDk3N0NGMTFGMzg5MzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALKmCzgMMBwT8+Lpf2YDGlk4esN/oE0wdeeGSPirKtmQq2VBcysP M6ins00khfbij2BRDKAk8A8XjKTlqec31MA1WBhEmxQcBd9B8MYaablR+YvEPm4n WhJnuJ6YKLKE6GEUBNcWiVaFV2j1KA2ek9CsUeJROjdVNmlkoBYNHW4cOQYbEwOd sjB79oMRXAUj/YvWnWGk9aV7/CdQGNND0SNCTqGzdcnqK02cWzmFsrs9Gp9SR+RL hNfSj/a1bgZaA92eNmcO6Ng57DXbkyFegUtvnGitzSSqPEHyXL+HrfEYcq52w6RX 3yb2XJNryvbILA47OnMLMp4H4vbtmHS7W3kCAwEAAaOCAiUwggIhMB0GA1UdDgQW BBRqwzwyTFZu95BQW3RWQJd88R84kzAfBgNVHSMEGDAWgBTmL2nJWgmPgHP188PB qYt2y/hQKjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjQzMi81aTlweVZvSmo0Qno5ZlBEd2FtTGRzdjRVQ28uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC81aTlweVZvSmo0Qno5ZlBEd2FtTGRz djRVQ28uY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMjQzMi9hc004TWt4V2J2ZVFVRnQwVmtDWGZQRWZPSk0ucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIA ATAFAwMAnQQwDQYJKoZIhvcNAQELBQADggEBAGd1ivHG8uGS1/3zVSexZFdrb48T jyrsJ2pcz+5tRCCAlOi+87yor99MUaEikDEISXdLPszz8FcdA/hZFqQvSmWscV1X be/KZQJhBCobM3Mvfc29JquS/21E71QHONoO4rK845xE6oufkOriZ3uUBWBPC1Sg FiIJqycIjmik+2VLe2meXppoy3MEysND3bNdJdHAkzwiQQVviniKUPcSQMX6zREJ MknRVQvbthV6PqxnJWa+P+ebAGiiuLHJW3NQsIKzRDuNxG13E0BBGb8rA/41toe9 XwqXQQtFTCaP+qlsoj2C1/IMI3v7i3GoqqCZLClq3gLdadj7o1zomkydSik= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:29 2024 by rpki-client on console-ams.rpki-client.org