$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/307/tnr3PL0lU5nRpJAelQwcKXh45UM.roa File: tnr3PL0lU5nRpJAelQwcKXh45UM.roa (raw, json) Hash identifier: HWPZ01PrpQHB/vqdT1T0Xfl4/d/es3o7idEFYG/azp0= Subject key identifier: B6:7A:F7:3C:BD:25:53:99:D1:A4:90:1E:95:0C:1C:29:78:78:E5:43 Certificate issuer: /CN=6D1ED16D8C6D3BA40BF42CB3A29652ADAB76D061 Certificate serial: 29 Authority key identifier: 6D:1E:D1:6D:8C:6D:3B:A4:0B:F4:2C:B3:A2:96:52:AD:AB:76:D0:61 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/bR7RbYxtO6QL9CyzopZSrat20GE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/tnr3PL0lU5nRpJAelQwcKXh45UM.roa Signing time: Thu 31 Oct 2024 01:32:11 +0000 ROA not before: Thu 31 Oct 2024 01:32:11 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 23783 IP address blocks: 203.179.248.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/bR7RbYxtO6QL9CyzopZSrat20GE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/bR7RbYxtO6QL9CyzopZSrat20GE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/bR7RbYxtO6QL9CyzopZSrat20GE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D1ED16D8C6D3BA40BF42CB3A29652ADAB76D061 Validity Not Before: Oct 31 01:32:11 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=B67AF73CBD255399D1A4901E950C1C297878E543 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:92:db:ce:d6:ab:0c:83:6d:34:e4:87:99:57: e1:74:8e:4c:63:dd:6e:f8:04:70:4d:bf:28:47:e5: 02:b6:cb:92:f4:75:6b:e3:ea:ac:b8:51:d3:f0:69: 07:56:e6:cd:ac:c7:38:65:b1:df:76:4f:fc:b9:13: 66:b3:e5:24:f6:c6:78:b4:9d:a2:6b:39:f4:63:b9: 62:17:1e:0d:21:b1:8f:f6:f5:33:f4:09:41:36:df: a2:d5:77:a9:2c:9c:b0:4e:18:2f:41:5a:27:79:da: 07:90:7f:a0:e4:f1:18:9d:1b:d0:92:dd:03:89:6f: 18:e0:32:aa:66:3f:ce:b3:55:39:c4:5d:91:61:df: 86:75:00:f1:b7:ab:36:6c:82:1f:97:07:c5:5d:fc: f4:94:fc:69:12:d9:a5:d3:2d:f1:fe:fa:76:0e:a7: 7d:3e:28:c7:9e:8f:92:c5:49:2e:53:85:6d:74:ef: c8:85:ee:9e:15:d6:68:73:7e:e5:67:a4:61:90:c9: 43:1f:9a:af:14:54:6c:03:d2:d0:ee:66:51:de:95: ef:cf:c2:94:cf:42:41:18:99:8c:31:cf:8e:c8:d8: 24:56:66:6b:34:06:82:0c:8d:76:1d:ac:2e:aa:61: 39:30:0e:e4:d1:10:4a:53:ad:b4:cf:4c:c3:ad:90: 64:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:7A:F7:3C:BD:25:53:99:D1:A4:90:1E:95:0C:1C:29:78:78:E5:43 X509v3 Authority Key Identifier: keyid:6D:1E:D1:6D:8C:6D:3B:A4:0B:F4:2C:B3:A2:96:52:AD:AB:76:D0:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/bR7RbYxtO6QL9CyzopZSrat20GE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/bR7RbYxtO6QL9CyzopZSrat20GE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/tnr3PL0lU5nRpJAelQwcKXh45UM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.179.248.0/23 Signature Algorithm: sha256WithRSAEncryption df:a8:c4:01:83:c2:5f:eb:7f:22:26:c1:67:04:34:1e:40:29: 6f:82:7c:b5:fc:f1:43:0e:7d:4a:f8:3e:0e:60:5f:da:6f:05: 99:76:12:68:3f:d6:42:74:6f:37:12:3f:e5:bc:8a:47:94:88: 91:3e:b7:90:0f:b1:5b:f9:8f:9e:e0:38:69:12:5f:93:2a:e4: d5:4d:cd:18:14:95:58:c6:77:e1:ac:2c:81:86:ba:ac:f4:e5: 80:49:c2:8e:e2:f7:3d:ed:09:e5:81:15:b5:72:22:76:69:74: 32:7a:22:a5:f8:b2:8f:5b:d4:f4:93:46:e5:ee:3f:f4:81:4f: 10:47:bb:71:57:3a:c2:6b:22:e9:37:9f:89:2f:7a:54:01:ab: 3e:1e:d3:2d:a9:71:78:c7:f4:06:2b:79:d1:c0:2f:b8:d3:d6: c4:85:d2:cc:9a:48:ed:c7:7b:54:2c:2c:0d:35:33:bb:80:b1: a9:86:f5:11:4e:41:11:68:4f:eb:2e:40:91:43:74:08:b8:bb: ee:0d:39:9e:11:57:e1:13:ea:f6:d7:5d:92:81:b8:7c:93:df: 75:ad:67:9e:33:50:78:99:cc:8c:20:69:f6:f5:ff:bc:0d:1c: 9a:b9:cd:e0:c4:0f:8f:20:e1:5f:ba:57:04:fe:1c:24:e7:6e: a8:65:fc:76 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBKTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2RDFF RDE2RDhDNkQzQkE0MEJGNDJDQjNBMjk2NTJBREFCNzZEMDYxMB4XDTI0MTAzMTAx MzIxMVoXDTI1MTAxNTAxMzAwMlowMzExMC8GA1UEAxMoQjY3QUY3M0NCRDI1NTM5 OUQxQTQ5MDFFOTUwQzFDMjk3ODc4RTU0MzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOWS287WqwyDbTTkh5lX4XSOTGPdbvgEcE2/KEflArbLkvR1a+Pq rLhR0/BpB1bmzazHOGWx33ZP/LkTZrPlJPbGeLSdoms59GO5YhceDSGxj/b1M/QJ QTbfotV3qSycsE4YL0FaJ3naB5B/oOTxGJ0b0JLdA4lvGOAyqmY/zrNVOcRdkWHf hnUA8berNmyCH5cHxV389JT8aRLZpdMt8f76dg6nfT4ox56PksVJLlOFbXTvyIXu nhXWaHN+5WekYZDJQx+arxRUbAPS0O5mUd6V78/ClM9CQRiZjDHPjsjYJFZmazQG ggyNdh2sLqphOTAO5NEQSlOttM9Mw62QZEMCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBS2evc8vSVTmdGkkB6VDBwpeHjlQzAfBgNVHSMEGDAWgBRtHtFtjG07pAv0LLOi llKtq3bQYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA3L2JSN1JiWXh0TzZRTDlDeXpvcFpTcmF0MjBHRS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2JSN1JiWXh0TzZRTDlDeXpvcFpTcmF0 MjBHRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8zMDcvdG5yM1BMMGxVNW5ScEpBZWxRd2NLWGg0NVVNLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAcuz+DANBgkqhkiG9w0BAQsFAAOCAQEA36jEAYPCX+t/IibBZwQ0HkApb4J8 tfzxQw59Svg+DmBf2m8FmXYSaD/WQnRvNxI/5byKR5SIkT63kA+xW/mPnuA4aRJf kyrk1U3NGBSVWMZ34awsgYa6rPTlgEnCjuL3Pe0J5YEVtXIidml0Mnoipfiyj1vU 9JNG5e4/9IFPEEe7cVc6wmsi6TefiS96VAGrPh7TLalxeMf0Bit50cAvuNPWxIXS zJpI7cd7VCwsDTUzu4CxqYb1EU5BEWhP6y5AkUN0CLi77g05nhFX4RPq9tddkoG4 fJPfda1nnjNQeJnMjCBp9vX/vA0cmrnN4MQPjyDhX7pXBP4cJOduqGX8dg== -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:38 2024 by rpki-client on console-ams.rpki-client.org