$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/307/sf3-hwFn9Dh-7IZJFIuwDdbI-rs.roa File: sf3-hwFn9Dh-7IZJFIuwDdbI-rs.roa (raw, json) Hash identifier: IN9VuU3j4n4Cwt7YeqyrZW2PN2+OZMkCdObV3X29Xus= Subject key identifier: B1:FD:FE:87:01:67:F4:38:7E:EC:86:49:14:8B:B0:0D:D6:C8:FA:BB Certificate issuer: /CN=6D1ED16D8C6D3BA40BF42CB3A29652ADAB76D061 Certificate serial: 27 Authority key identifier: 6D:1E:D1:6D:8C:6D:3B:A4:0B:F4:2C:B3:A2:96:52:AD:AB:76:D0:61 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/bR7RbYxtO6QL9CyzopZSrat20GE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/sf3-hwFn9Dh-7IZJFIuwDdbI-rs.roa Signing time: Thu 31 Oct 2024 01:32:10 +0000 ROA not before: Thu 31 Oct 2024 01:32:10 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 18266 IP address blocks: 203.179.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/bR7RbYxtO6QL9CyzopZSrat20GE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/bR7RbYxtO6QL9CyzopZSrat20GE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/bR7RbYxtO6QL9CyzopZSrat20GE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D1ED16D8C6D3BA40BF42CB3A29652ADAB76D061 Validity Not Before: Oct 31 01:32:10 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=B1FDFE870167F4387EEC8649148BB00DD6C8FABB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:eb:f7:35:af:65:ca:fb:fe:92:26:50:69:92: de:a1:ec:d1:a8:e3:1b:6b:0f:f3:a3:2f:6f:24:a1: a8:68:ae:38:dc:62:ce:34:55:5b:f6:1c:11:59:67: 77:21:a8:03:15:53:1c:37:1c:b0:15:22:1f:19:fb: 85:55:26:c2:3c:8d:33:3c:12:7e:ce:da:92:0d:85: 88:a1:aa:d9:7d:b0:71:93:87:55:52:a7:2e:b3:3b: 0d:33:57:24:93:9f:af:71:62:b3:7b:52:7f:eb:de: ae:72:57:95:0a:53:dc:f8:f9:f6:75:c9:b3:a7:31: 50:44:8d:9f:e9:37:cd:a8:fa:7b:83:6f:79:5e:34: 72:3d:53:c8:67:07:63:12:23:5f:c7:61:ef:b0:10: 44:b4:fb:7a:c7:b8:c7:13:cd:54:03:4c:d4:11:6a: f0:91:97:2c:52:8b:03:ac:ac:ae:44:06:cd:e3:62: 51:a3:53:70:0f:a4:12:ac:7b:9b:93:dc:b1:27:59: 8f:d2:dc:ba:22:72:b0:b5:a7:c1:96:1b:4b:87:51: 4b:b4:ee:16:12:cf:45:23:23:c0:6b:e3:9e:d7:b5: 4d:d8:13:9c:ef:51:a3:0e:39:e3:c2:b1:f9:4b:e1: fd:f0:1e:33:06:94:b7:70:97:e4:d0:a2:f1:f4:0a: a2:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:FD:FE:87:01:67:F4:38:7E:EC:86:49:14:8B:B0:0D:D6:C8:FA:BB X509v3 Authority Key Identifier: keyid:6D:1E:D1:6D:8C:6D:3B:A4:0B:F4:2C:B3:A2:96:52:AD:AB:76:D0:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/bR7RbYxtO6QL9CyzopZSrat20GE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/bR7RbYxtO6QL9CyzopZSrat20GE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/sf3-hwFn9Dh-7IZJFIuwDdbI-rs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.179.240.0/20 Signature Algorithm: sha256WithRSAEncryption 3f:92:1f:7c:01:6c:8f:a4:6b:0f:9c:a8:69:82:57:1b:70:8a: de:b8:ac:37:80:6a:4e:ad:9b:f8:75:5c:6c:34:f9:22:a1:65: ae:7d:41:a9:40:d8:32:3d:44:dc:5b:3c:65:fe:13:81:d8:71: 17:60:dc:d1:7c:55:35:3a:b6:a6:39:a2:bb:b2:cd:c2:bd:ef: 32:26:ac:df:e9:34:e9:55:e4:d7:55:d1:b4:c1:b0:95:c9:92: 2a:d7:42:07:bb:37:b7:1c:41:9d:47:fc:cb:40:c1:0f:31:bf: 9e:7b:27:74:e0:13:58:5c:ee:7f:b6:80:ad:41:5d:fd:30:f2: 07:71:85:9b:45:b6:b7:ad:e2:dc:73:d0:9d:6d:31:7f:94:06: e0:4f:c8:b2:1b:93:f5:6e:6e:8b:82:cb:37:0a:80:98:08:9d: 9c:60:9e:a0:06:12:73:cf:05:a0:e9:5a:de:d4:00:c5:fb:08: 83:0c:f9:00:50:1a:4e:b7:31:be:cd:2e:3a:50:10:78:3d:4b: 69:5f:f1:57:1d:26:38:a3:8c:40:23:9b:f0:2c:11:06:28:3b: a9:48:30:47:e7:0b:ee:da:10:df:9d:54:10:62:87:1b:cb:5a: 2a:f0:3f:b5:e0:2e:7d:c7:84:4c:32:87:21:8f:f3:c5:ce:e5: 87:65:f1:4f -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBJzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2RDFF RDE2RDhDNkQzQkE0MEJGNDJDQjNBMjk2NTJBREFCNzZEMDYxMB4XDTI0MTAzMTAx MzIxMFoXDTI1MTAxNTAxMzAwMlowMzExMC8GA1UEAxMoQjFGREZFODcwMTY3RjQz ODdFRUM4NjQ5MTQ4QkIwMERENkM4RkFCQjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMPr9zWvZcr7/pImUGmS3qHs0ajjG2sP86MvbyShqGiuONxizjRV W/YcEVlndyGoAxVTHDccsBUiHxn7hVUmwjyNMzwSfs7akg2FiKGq2X2wcZOHVVKn LrM7DTNXJJOfr3Fis3tSf+vernJXlQpT3Pj59nXJs6cxUESNn+k3zaj6e4NveV40 cj1TyGcHYxIjX8dh77AQRLT7ese4xxPNVANM1BFq8JGXLFKLA6ysrkQGzeNiUaNT cA+kEqx7m5PcsSdZj9LcuiJysLWnwZYbS4dRS7TuFhLPRSMjwGvjnte1TdgTnO9R ow4548Kx+Uvh/fAeMwaUt3CX5NCi8fQKol0CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSx/f6HAWf0OH7shkkUi7AN1sj6uzAfBgNVHSMEGDAWgBRtHtFtjG07pAv0LLOi llKtq3bQYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA3L2JSN1JiWXh0TzZRTDlDeXpvcFpTcmF0MjBHRS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2JSN1JiWXh0TzZRTDlDeXpvcFpTcmF0 MjBHRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8zMDcvc2YzLWh3Rm45RGgtN0laSkZJdXdEZGJJLXJzLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBMuz8DANBgkqhkiG9w0BAQsFAAOCAQEAP5IffAFsj6RrD5yoaYJXG3CK3ris N4BqTq2b+HVcbDT5IqFlrn1BqUDYMj1E3Fs8Zf4TgdhxF2Dc0XxVNTq2pjmiu7LN wr3vMias3+k06VXk11XRtMGwlcmSKtdCB7s3txxBnUf8y0DBDzG/nnsndOATWFzu f7aArUFd/TDyB3GFm0W2t63i3HPQnW0xf5QG4E/IshuT9W5ui4LLNwqAmAidnGCe oAYSc88FoOla3tQAxfsIgwz5AFAaTrcxvs0uOlAQeD1LaV/xVx0mOKOMQCOb8CwR Big7qUgwR+cL7toQ351UEGKHG8taKvA/teAufceETDKHIY/zxc7lh2XxTw== -----END CERTIFICATE-----Generated at Sun Feb 16 22:04:34 2025 by rpki-client