$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/8GLzKDtAQXfrE5qmYglVa39f0uI.roa File: 8GLzKDtAQXfrE5qmYglVa39f0uI.roa (raw, json) Hash identifier: 20r18ZKX5gu05E37FBtqOJuwoiAMNarsx/dXN1jTZv8= Subject key identifier: F0:62:F3:28:3B:40:41:77:EB:13:9A:A6:62:09:55:6B:7F:5F:D2:E2 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0328 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/8GLzKDtAQXfrE5qmYglVa39f0uI.roa Signing time: Thu 24 Oct 2024 01:28:00 +0000 ROA not before: Thu 24 Oct 2024 01:28:00 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 10013 IP address blocks: 220.215.32.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 808 (0x328) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Oct 24 01:28:00 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=F062F3283B404177EB139AA66209556B7F5FD2E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:a0:93:e5:6e:9f:22:51:47:ca:8c:ca:4b:d7: dd:83:7a:1a:2e:1b:f8:bc:35:ba:3e:cb:01:40:97: 25:c8:5d:61:3f:0d:b6:a7:c2:39:7d:aa:f8:0f:55: 8d:8c:13:58:28:72:5a:c4:bc:dd:86:d2:63:d3:44: 6f:bf:64:db:4e:af:79:3a:fb:7e:0d:25:7a:0e:b2: 6d:d8:2c:ce:46:22:b6:bf:20:8a:4c:ef:af:17:4c: 0a:10:a1:91:f0:0d:7e:d2:1a:be:f0:63:be:f0:b9: c5:46:7f:06:e8:ae:8a:35:a6:4d:c2:a7:1b:8c:93: 7f:39:31:90:f2:bd:42:05:28:77:83:f5:6a:b6:3b: 2e:41:53:c6:54:4f:61:11:b3:a6:b3:2f:a9:04:84: b8:b3:81:48:70:7b:2b:25:e4:1b:15:9f:6d:8f:18: ce:32:de:3b:60:ab:7a:13:c0:bd:d1:a1:8c:5a:ac: c0:23:d2:ab:e6:ca:13:1b:ff:a8:f0:53:ed:dc:c4: ef:47:7e:62:3a:67:94:ad:d2:78:e3:06:10:10:2a: 62:22:41:b4:27:6a:a4:ce:29:02:90:50:15:a2:9b: f9:0a:43:e0:da:bb:7b:df:46:a1:19:0f:4a:dd:52: 3a:62:3c:0b:0f:e2:63:42:de:68:3f:5f:76:3d:a4: f0:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:62:F3:28:3B:40:41:77:EB:13:9A:A6:62:09:55:6B:7F:5F:D2:E2 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/8GLzKDtAQXfrE5qmYglVa39f0uI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.215.32.0/21 Signature Algorithm: sha256WithRSAEncryption 4d:aa:0b:2e:71:65:ad:d2:63:1f:ff:cc:53:79:43:e2:1b:28: 56:93:df:ba:e5:a7:20:d2:92:06:54:e1:f9:d5:14:79:81:f7: ef:08:5c:89:56:7d:a6:61:6f:ee:52:b8:f1:39:3e:46:7a:dc: f7:8f:ed:93:df:08:dd:7f:6f:5d:c2:6f:0f:ef:9f:49:3c:c1: 4e:6f:ea:01:65:b1:8b:da:de:f6:ec:f8:22:5d:bb:ef:84:4a: f3:80:cb:4a:0a:1f:e0:63:aa:17:13:c3:fa:74:79:f1:78:92: fa:20:17:c4:13:80:37:78:8b:af:67:4e:21:13:82:e2:29:68: 04:89:ea:33:97:93:94:27:ec:cb:e0:90:40:2b:6d:c1:1b:12: 7b:0b:f7:34:56:5b:34:11:3e:d5:55:f6:ea:ab:f9:63:79:77: e9:b4:95:f1:fc:e9:49:57:84:b0:82:af:88:b6:87:2c:1b:bf: 0d:f7:87:45:11:d1:77:ac:8c:78:51:88:ca:ef:fd:9b:29:6e: ed:a1:11:0c:36:91:73:f5:85:ea:29:9a:ff:78:04:44:e0:50: 90:dd:1e:d1:4a:d3:6d:36:6b:5d:35:34:46:50:9e:1e:a8:d6: 6f:6c:95:fc:41:8e:34:9f:5a:ed:df:e2:c5:80:56:b5:9b:6c: 19:3f:66:07 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAygwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNDEwMjQw MTI4MDBaFw0yNTEwMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEYwNjJGMzI4M0I0MDQx NzdFQjEzOUFBNjYyMDk1NTZCN0Y1RkQyRTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCaoJPlbp8iUUfKjMpL192DehouG/i8Nbo+ywFAlyXIXWE/Dban wjl9qvgPVY2ME1goclrEvN2G0mPTRG+/ZNtOr3k6+34NJXoOsm3YLM5GIra/IIpM 768XTAoQoZHwDX7SGr7wY77wucVGfwboroo1pk3CpxuMk385MZDyvUIFKHeD9Wq2 Oy5BU8ZUT2ERs6azL6kEhLizgUhweysl5BsVn22PGM4y3jtgq3oTwL3RoYxarMAj 0qvmyhMb/6jwU+3cxO9HfmI6Z5St0njjBhAQKmIiQbQnaqTOKQKQUBWim/kKQ+Da u3vfRqEZD0rdUjpiPAsP4mNC3mg/X3Y9pPDlAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU8GLzKDtAQXfrE5qmYglVa39f0uIwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0LzhHTHpLRHRBUVhmckU1cW1ZZ2xWYTM5ZjB1SS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPc1yAwDQYJKoZIhvcNAQELBQADggEBAE2qCy5xZa3SYx//zFN5Q+IbKFaT 37rlpyDSkgZU4fnVFHmB9+8IXIlWfaZhb+5SuPE5PkZ63PeP7ZPfCN1/b13Cbw/v n0k8wU5v6gFlsYva3vbs+CJdu++ESvOAy0oKH+BjqhcTw/p0efF4kvogF8QTgDd4 i69nTiETguIpaASJ6jOXk5Qn7MvgkEArbcEbEnsL9zRWWzQRPtVV9uqr+WN5d+m0 lfH86UlXhLCCr4i2hywbvw33h0UR0XesjHhRiMrv/Zspbu2hEQw2kXP1heopmv94 BETgUJDdHtFK0202a101NEZQnh6o1m9slfxBjjSfWu3f4sWAVrWbbBk/Zgc= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:44 2024 by rpki-client on console-ams.rpki-client.org