$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/299/KWjH0Lyvxauuy2xySH6G294I6hQ.roa File: KWjH0Lyvxauuy2xySH6G294I6hQ.roa (raw, json) Hash identifier: WBbn7uiHbpx/zjSqzOx6ADafjPbuDFe8/nfd9730CMc= Subject key identifier: 29:68:C7:D0:BC:AF:C5:AB:AE:CB:6C:72:48:7E:86:DB:DE:08:EA:14 Certificate issuer: /CN=D8F1514508AFC38E51743B6CB58BA6561EDD3BB9 Certificate serial: 43 Authority key identifier: D8:F1:51:45:08:AF:C3:8E:51:74:3B:6C:B5:8B:A6:56:1E:DD:3B:B9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2PFRRQivw45RdDtstYumVh7dO7k.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/KWjH0Lyvxauuy2xySH6G294I6hQ.roa Signing time: Sun 31 Mar 2024 01:30:29 +0000 ROA not before: Sun 31 Mar 2024 01:30:29 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 23637 IP address blocks: 202.9.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/2PFRRQivw45RdDtstYumVh7dO7k.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/2PFRRQivw45RdDtstYumVh7dO7k.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2PFRRQivw45RdDtstYumVh7dO7k.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D8F1514508AFC38E51743B6CB58BA6561EDD3BB9 Validity Not Before: Mar 31 01:30:29 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=2968C7D0BCAFC5ABAECB6C72487E86DBDE08EA14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b5:9b:4b:29:e4:11:8c:15:92:a4:7d:e2:eb: ec:03:b5:7d:23:62:5d:a0:6a:db:9b:50:65:3c:c8: 74:38:e7:ec:bc:64:70:50:ce:48:67:16:ec:1f:21: 67:1a:7a:6c:f1:20:cc:7e:ce:24:a8:16:22:b5:07: d8:e1:21:7c:24:79:e6:9d:ce:3a:f3:5c:59:6b:29: 7a:78:e3:43:33:fe:4e:aa:9a:ed:b4:a7:c0:d7:9d: fc:87:6a:1b:00:6e:bf:fd:8a:cd:7e:e8:f7:58:86: bd:59:09:8c:18:c6:d8:ae:f7:10:7a:1a:ee:21:04: 70:e2:85:73:84:46:f2:78:4a:2b:7a:ab:86:9f:26: e9:4f:b3:02:ab:20:9d:84:c6:af:9a:7e:d0:f9:50: 28:e6:3d:fe:57:c0:70:17:2f:9b:c2:f4:44:5e:6e: ba:5a:d5:6f:16:61:e0:54:6d:96:84:58:1d:ca:f2: e2:f3:ce:ed:47:27:e9:7f:6c:62:18:1b:15:90:21: e3:3c:dc:4b:ba:94:b8:04:64:ff:ba:68:50:5a:fc: cb:7c:72:fc:cb:88:0d:87:60:e1:6b:2f:7a:69:61: 38:9d:76:cb:47:3f:fd:b1:28:66:f6:27:49:45:ef: bd:66:b2:94:ef:4c:ab:60:bf:0f:e7:1b:4c:ec:80: da:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:68:C7:D0:BC:AF:C5:AB:AE:CB:6C:72:48:7E:86:DB:DE:08:EA:14 X509v3 Authority Key Identifier: keyid:D8:F1:51:45:08:AF:C3:8E:51:74:3B:6C:B5:8B:A6:56:1E:DD:3B:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/2PFRRQivw45RdDtstYumVh7dO7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2PFRRQivw45RdDtstYumVh7dO7k.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/KWjH0Lyvxauuy2xySH6G294I6hQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.9.210.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:e2:56:90:a7:81:ac:29:40:69:b2:67:e2:45:2e:68:9a:da: ae:79:67:ed:52:c4:88:1b:d5:bd:ef:08:97:06:5e:ab:d6:28: f5:8c:78:bb:de:7e:5b:b3:5c:63:75:4d:9f:11:f8:0f:1d:91: 70:f6:be:c8:ca:a3:f7:71:32:1e:cf:d1:9f:7e:95:54:73:11: c5:5a:99:90:1b:d9:75:b9:79:71:21:7a:cf:5a:96:3b:6a:b5: 2d:3f:ff:9d:35:43:8d:bf:2b:e9:9b:37:b0:3f:4e:41:ed:ff: 21:2c:84:a0:0e:23:4b:1e:8d:d4:5d:0f:13:10:4a:a0:fc:44: ed:a0:cb:b5:10:1e:a7:31:b0:ad:14:1e:3f:e7:47:f1:eb:61: 6c:7f:cc:23:74:88:55:7b:18:dc:85:a6:e6:fc:37:46:15:b5: 13:16:aa:0d:6f:c8:3e:5e:c9:9c:99:13:20:8c:55:e8:8f:b4: a7:86:4a:f3:de:4b:d0:cf:41:b9:aa:9d:a2:c2:59:23:27:cb: 49:d3:3f:73:8a:4d:47:43:de:24:0c:ad:ae:f7:d5:b1:b6:2b: 03:a6:41:30:66:8b:c5:d0:bb:f8:95:b7:d3:cc:b1:94:58:15: c9:ce:1d:56:58:5d:0e:02:9d:73:f2:37:79:5b:be:96:15:a6: 65:62:55:84 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBQzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEOEYx NTE0NTA4QUZDMzhFNTE3NDNCNkNCNThCQTY1NjFFREQzQkI5MB4XDTI0MDMzMTAx MzAyOVoXDTI1MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoMjk2OEM3RDBCQ0FGQzVB QkFFQ0I2QzcyNDg3RTg2REJERTA4RUExNDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMW1m0sp5BGMFZKkfeLr7AO1fSNiXaBq25tQZTzIdDjn7LxkcFDO SGcW7B8hZxp6bPEgzH7OJKgWIrUH2OEhfCR55p3OOvNcWWspenjjQzP+Tqqa7bSn wNed/IdqGwBuv/2KzX7o91iGvVkJjBjG2K73EHoa7iEEcOKFc4RG8nhKK3qrhp8m 6U+zAqsgnYTGr5p+0PlQKOY9/lfAcBcvm8L0RF5uulrVbxZh4FRtloRYHcry4vPO 7Ucn6X9sYhgbFZAh4zzcS7qUuARk/7poUFr8y3xy/MuIDYdg4WsvemlhOJ12y0c/ /bEoZvYnSUXvvWaylO9Mq2C/D+cbTOyA2lMCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQpaMfQvK/Fq67LbHJIfobb3gjqFDAfBgNVHSMEGDAWgBTY8VFFCK/DjlF0O2y1 i6ZWHt07uTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjk5LzJQRlJSUWl2dzQ1UmREdHN0WXVtVmg3ZE83ay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzJQRlJSUWl2dzQ1UmREdHN0WXVtVmg3 ZE83ay5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yOTkvS1dqSDBMeXZ4YXV1eTJ4eVNINkcyOTRJNmhRLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAMoJ0jANBgkqhkiG9w0BAQsFAAOCAQEALOJWkKeBrClAabJn4kUuaJrarnln 7VLEiBvVve8IlwZeq9Yo9Yx4u95+W7NcY3VNnxH4Dx2RcPa+yMqj93EyHs/Rn36V VHMRxVqZkBvZdbl5cSF6z1qWO2q1LT//nTVDjb8r6Zs3sD9OQe3/ISyEoA4jSx6N 1F0PExBKoPxE7aDLtRAepzGwrRQeP+dH8ethbH/MI3SIVXsY3IWm5vw3RhW1Exaq DW/IPl7JnJkTIIxV6I+0p4ZK895L0M9BuaqdosJZIyfLSdM/c4pNR0PeJAytrvfV sbYrA6ZBMGaLxdC7+JW308yxlFgVyc4dVlhdDgKdc/I3eVu+lhWmZWJVhA== -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:29 2024 by rpki-client on console-ams.rpki-client.org