$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/GIDQI2KMr6eQp_f_ej-Vxe9jWEM.roa File: GIDQI2KMr6eQp_f_ej-Vxe9jWEM.roa (raw, json) Hash identifier: 8Db+UDPuYa5X4Q4G5auyRIPk30G4RnigdEZCaOxo4sY= Subject key identifier: 18:80:D0:23:62:8C:AF:A7:90:A7:F7:FF:7A:3F:95:C5:EF:63:58:43 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0325 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/GIDQI2KMr6eQp_f_ej-Vxe9jWEM.roa Signing time: Thu 24 Oct 2024 01:27:59 +0000 ROA not before: Thu 24 Oct 2024 01:27:59 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 10013 IP address blocks: 220.150.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 12:46:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 805 (0x325) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Oct 24 01:27:59 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=1880D023628CAFA790A7F7FF7A3F95C5EF635843 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:9c:3b:a1:f4:2a:73:46:85:d9:08:29:63:01: b4:d5:1d:b3:f0:cd:0a:3d:aa:fb:02:20:92:6d:e9: bf:6e:59:7d:a9:83:3b:47:34:6e:80:e0:8c:47:83: f2:e4:e8:fa:3a:fb:6d:aa:eb:59:75:ad:9c:56:55: fa:ba:33:d4:4a:46:c0:81:b6:e3:c5:d0:7d:6f:5a: a9:e9:8e:ff:e2:7d:fa:02:ca:47:3c:55:00:de:bd: cf:c3:b1:76:06:f2:67:c6:9e:e3:27:bd:ce:2f:05: 18:99:cb:d9:a5:8d:36:7c:0c:29:2f:7d:a8:e0:99: fa:64:4f:35:5f:c4:6d:0f:4c:52:37:16:64:19:c2: 5a:8b:b9:d4:0e:c3:8a:5a:0f:7d:6e:03:fc:82:2d: 35:5e:02:ae:95:cf:a0:69:e3:72:ce:09:bf:c5:fd: 98:49:3d:f3:6c:58:34:79:af:e4:cb:e5:e2:f4:f9: 1b:51:4a:7e:7b:80:4e:d2:40:7b:cb:ff:c2:b9:2d: 13:25:63:10:be:ba:80:d4:10:6c:6a:9d:13:7a:2f: 96:86:54:5a:3c:33:7b:cf:95:a0:14:59:67:d2:2d: a4:63:02:73:c4:2b:12:2e:33:ad:fd:4c:9c:71:bf: ad:09:6f:28:4b:dc:f5:6a:83:1e:29:ca:38:80:da: 6d:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:80:D0:23:62:8C:AF:A7:90:A7:F7:FF:7A:3F:95:C5:EF:63:58:43 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/GIDQI2KMr6eQp_f_ej-Vxe9jWEM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.150.64.0/24 Signature Algorithm: sha256WithRSAEncryption 65:33:e1:ea:81:6f:7f:85:f2:14:9f:8d:49:0a:08:4c:c1:bd: ba:3c:74:50:b5:b6:32:6a:8e:1c:59:06:fd:bf:81:ca:7d:ac: 9a:10:a2:da:45:16:70:d9:6a:10:23:48:a3:c3:61:5e:d3:23: d2:6e:f5:31:e0:47:17:05:18:20:d1:51:af:19:3f:33:fb:05: b8:86:29:fc:76:03:7b:2d:27:c4:57:80:28:b7:0e:5e:f1:9e: 99:4c:b3:9c:00:5c:a2:ab:3d:73:a4:47:53:12:c2:bd:82:5e: e9:6b:7a:f8:10:4c:2e:4b:30:62:78:4f:ad:2b:3a:6f:ff:73: 54:56:7e:c5:2e:a1:06:99:72:a7:13:18:2a:99:dc:71:44:0d: e0:e6:05:e3:49:1e:ec:8d:91:35:09:c6:7f:4f:17:b5:df:7a: 0a:e4:ae:e1:05:81:b1:14:86:03:70:1e:d9:bb:5d:2f:40:31: ee:d3:30:b1:eb:c1:1e:89:90:99:9a:92:1e:f7:d1:a5:68:9c: cf:c2:4a:54:e1:58:66:37:7b:ca:c5:c6:fe:0f:8a:1b:4e:c6: 8f:d1:64:8e:a7:bb:a8:c3:14:ff:6f:1a:cb:e8:3f:e0:fc:f9: bd:7d:b6:ca:55:e0:7b:8d:99:33:81:9f:84:30:54:ac:0d:71: 2e:a2:53:6b -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAyUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNDEwMjQw MTI3NTlaFw0yNTEwMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDE4ODBEMDIzNjI4Q0FG QTc5MEE3RjdGRjdBM0Y5NUM1RUY2MzU4NDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDtnDuh9CpzRoXZCCljAbTVHbPwzQo9qvsCIJJt6b9uWX2pgztH NG6A4IxHg/Lk6Po6+22q61l1rZxWVfq6M9RKRsCBtuPF0H1vWqnpjv/iffoCykc8 VQDevc/DsXYG8mfGnuMnvc4vBRiZy9mljTZ8DCkvfajgmfpkTzVfxG0PTFI3FmQZ wlqLudQOw4paD31uA/yCLTVeAq6Vz6Bp43LOCb/F/ZhJPfNsWDR5r+TL5eL0+RtR Sn57gE7SQHvL/8K5LRMlYxC+uoDUEGxqnRN6L5aGVFo8M3vPlaAUWWfSLaRjAnPE KxIuM639TJxxv60JbyhL3PVqgx4pyjiA2m3LAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUGIDQI2KMr6eQp/f/ej+Vxe9jWEMwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L0dJRFFJMktNcjZlUXBfZl9lai1WeGU5aldFTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADclkAwDQYJKoZIhvcNAQELBQADggEBAGUz4eqBb3+F8hSfjUkKCEzBvbo8 dFC1tjJqjhxZBv2/gcp9rJoQotpFFnDZahAjSKPDYV7TI9Ju9THgRxcFGCDRUa8Z PzP7BbiGKfx2A3stJ8RXgCi3Dl7xnplMs5wAXKKrPXOkR1MSwr2CXulrevgQTC5L MGJ4T60rOm//c1RWfsUuoQaZcqcTGCqZ3HFEDeDmBeNJHuyNkTUJxn9PF7Xfegrk ruEFgbEUhgNwHtm7XS9AMe7TMLHrwR6JkJmakh730aVonM/CSlThWGY3e8rFxv4P ihtOxo/RZI6nu6jDFP9vGsvoP+D8+b19tspV4HuNmTOBn4QwVKwNcS6iU2s= -----END CERTIFICATE-----Generated at Fri Nov 22 13:33:21 2024 by rpki-client on console-fra.rpki-client.org