$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/299/xXpNxDjlJ_hgv_lOXe6S3U3c2Hc.roa File: xXpNxDjlJ_hgv_lOXe6S3U3c2Hc.roa (raw, json) Hash identifier: saRI9hwHFN69Fij9ZMyaKuZgD/6TLIp48iy4ba+/QJw= Subject key identifier: C5:7A:4D:C4:38:E5:27:F8:60:BF:F9:4E:5D:EE:92:DD:4D:DC:D8:77 Certificate issuer: /CN=D8F1514508AFC38E51743B6CB58BA6561EDD3BB9 Certificate serial: 42 Authority key identifier: D8:F1:51:45:08:AF:C3:8E:51:74:3B:6C:B5:8B:A6:56:1E:DD:3B:B9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2PFRRQivw45RdDtstYumVh7dO7k.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/xXpNxDjlJ_hgv_lOXe6S3U3c2Hc.roa Signing time: Sun 31 Mar 2024 01:30:29 +0000 ROA not before: Sun 31 Mar 2024 01:30:29 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 63789 IP address blocks: 202.9.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/2PFRRQivw45RdDtstYumVh7dO7k.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/2PFRRQivw45RdDtstYumVh7dO7k.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2PFRRQivw45RdDtstYumVh7dO7k.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D8F1514508AFC38E51743B6CB58BA6561EDD3BB9 Validity Not Before: Mar 31 01:30:29 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=C57A4DC438E527F860BFF94E5DEE92DD4DDCD877 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:db:18:79:fe:c9:4d:b6:3c:b3:c8:9d:13:02: a2:db:30:95:52:05:62:44:16:8a:5d:21:fb:ff:07: b5:40:25:19:8a:b2:1a:1b:f3:ae:d9:4e:ec:a5:30: e5:f8:15:d3:c6:16:a9:c9:01:77:2a:fc:1a:d7:0b: 7d:c5:ea:09:ee:95:e3:88:67:b0:91:76:45:a3:fe: 05:c0:89:e6:a2:cc:aa:6b:96:4d:aa:24:5f:22:2e: 46:79:d2:7c:b4:68:e2:30:c3:7f:c4:84:f6:30:01: 5d:e4:29:d9:b6:a4:fd:15:57:ec:69:a5:a3:45:40: be:92:70:f1:8a:89:77:83:d6:fc:64:96:d8:09:83: 54:ce:e2:2d:6d:e8:6b:6e:0b:a7:ec:fc:4c:4d:40: 8d:1a:d3:f5:59:87:0b:c9:dc:2d:85:4a:0f:40:15: c4:7b:4d:a0:a6:dc:89:ce:6a:99:f9:08:c8:a1:a5: f7:a7:06:34:64:ca:10:0f:2d:03:68:40:f2:8e:27: 53:d0:8a:b5:b6:73:b6:0c:74:7c:99:1a:90:36:e2: 57:72:10:a4:c0:88:b8:91:df:7f:00:f4:88:f3:ac: 1c:ed:12:2e:84:45:81:47:b2:8f:9b:55:67:51:9b: 72:ab:7a:9e:f6:41:e4:cc:06:52:80:09:b9:3f:ee: 01:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:7A:4D:C4:38:E5:27:F8:60:BF:F9:4E:5D:EE:92:DD:4D:DC:D8:77 X509v3 Authority Key Identifier: keyid:D8:F1:51:45:08:AF:C3:8E:51:74:3B:6C:B5:8B:A6:56:1E:DD:3B:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/2PFRRQivw45RdDtstYumVh7dO7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2PFRRQivw45RdDtstYumVh7dO7k.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/xXpNxDjlJ_hgv_lOXe6S3U3c2Hc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.9.210.0/24 Signature Algorithm: sha256WithRSAEncryption 28:b4:b9:da:9f:95:6b:dd:a8:eb:da:92:04:63:5a:de:9c:8c: 71:78:5d:93:81:64:e8:ec:00:43:47:38:cc:9c:ba:80:ec:78: 03:82:db:a0:5e:df:45:94:61:c7:4c:c5:eb:44:1e:b7:69:37: 3e:2b:e8:74:18:d5:15:1e:7b:98:9f:99:20:9a:15:ca:db:59: 12:3a:ba:2b:da:64:4e:7c:46:a1:1e:41:04:3c:7a:c1:e6:a5: b8:3d:4b:ae:7e:eb:8e:86:16:15:1d:21:a0:72:40:09:b5:36: b3:27:c6:db:90:52:3f:7d:85:43:ad:7d:a3:60:ea:df:60:c3: 6d:02:2f:67:aa:68:58:16:31:dd:71:1a:db:ba:09:82:5d:34: c8:d4:38:d5:65:2f:35:da:17:b5:1f:a3:13:32:04:bf:da:e5: 9a:bf:e7:2a:8b:8c:67:21:e5:38:fd:d6:5c:ae:33:44:b8:4e: 9b:f6:f7:5a:b7:13:65:f8:80:ea:b6:80:2e:f5:1a:e3:58:65: e3:5f:0f:38:f3:04:7b:8b:a6:65:b0:0b:3b:cf:4b:a6:28:e0: 40:68:9c:bc:e5:fe:bf:06:c1:16:45:ab:23:6d:3f:39:a1:20: f2:3d:a8:64:d4:22:57:d1:f7:1a:eb:e3:d8:bf:7f:73:88:15: 3e:e3:7e:4d -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBQjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEOEYx NTE0NTA4QUZDMzhFNTE3NDNCNkNCNThCQTY1NjFFREQzQkI5MB4XDTI0MDMzMTAx MzAyOVoXDTI1MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoQzU3QTREQzQzOEU1MjdG ODYwQkZGOTRFNURFRTkyREQ0RERDRDg3NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMPbGHn+yU22PLPInRMCotswlVIFYkQWil0h+/8HtUAlGYqyGhvz rtlO7KUw5fgV08YWqckBdyr8GtcLfcXqCe6V44hnsJF2RaP+BcCJ5qLMqmuWTaok XyIuRnnSfLRo4jDDf8SE9jABXeQp2bak/RVX7Gmlo0VAvpJw8YqJd4PW/GSW2AmD VM7iLW3oa24Lp+z8TE1AjRrT9VmHC8ncLYVKD0AVxHtNoKbcic5qmfkIyKGl96cG NGTKEA8tA2hA8o4nU9CKtbZztgx0fJkakDbiV3IQpMCIuJHffwD0iPOsHO0SLoRF gUeyj5tVZ1Gbcqt6nvZB5MwGUoAJuT/uAfECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTFek3EOOUn+GC/+U5d7pLdTdzYdzAfBgNVHSMEGDAWgBTY8VFFCK/DjlF0O2y1 i6ZWHt07uTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjk5LzJQRlJSUWl2dzQ1UmREdHN0WXVtVmg3ZE83ay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzJQRlJSUWl2dzQ1UmREdHN0WXVtVmg3 ZE83ay5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yOTkveFhwTnhEamxKX2hndl9sT1hlNlMzVTNjMkhjLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAMoJ0jANBgkqhkiG9w0BAQsFAAOCAQEAKLS52p+Va92o69qSBGNa3pyMcXhd k4Fk6OwAQ0c4zJy6gOx4A4LboF7fRZRhx0zF60Qet2k3PivodBjVFR57mJ+ZIJoV yttZEjq6K9pkTnxGoR5BBDx6wealuD1Lrn7rjoYWFR0hoHJACbU2syfG25BSP32F Q619o2Dq32DDbQIvZ6poWBYx3XEa27oJgl00yNQ41WUvNdoXtR+jEzIEv9rlmr/n KouMZyHlOP3WXK4zRLhOm/b3WrcTZfiA6raALvUa41hl418POPMEe4umZbALO89L pijgQGicvOX+vwbBFkWrI20/OaEg8j2oZNQiV9H3Guvj2L9/c4gVPuN+TQ== -----END CERTIFICATE-----Generated at Mon Nov 25 23:54:32 2024 by rpki-client on console-ams.rpki-client.org