$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/395/Cb6YjmP-DGn9OZY2QX7fVWULNRs.roa File: Cb6YjmP-DGn9OZY2QX7fVWULNRs.roa (raw, json) Hash identifier: u5T/LbenPzHYsaVNK5ydBSr92csBg++h4aKT+u2MIqA= Subject key identifier: 09:BE:98:8E:63:FE:0C:69:FD:39:96:36:41:7E:DF:55:65:0B:35:1B Certificate issuer: /CN=B333AEDA5B81A6B2F54FF714668F8D63E87B85A1 Certificate serial: 24 Authority key identifier: B3:33:AE:DA:5B:81:A6:B2:F5:4F:F7:14:66:8F:8D:63:E8:7B:85:A1 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/szOu2luBprL1T_cUZo-NY-h7haE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/Cb6YjmP-DGn9OZY2QX7fVWULNRs.roa Signing time: Fri 02 Feb 2024 07:37:01 +0000 ROA not before: Fri 02 Feb 2024 07:37:01 +0000 ROA not after: Tue 14 Jan 2025 01:30:02 +0000 asID: 9619 IP address blocks: 211.125.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/szOu2luBprL1T_cUZo-NY-h7haE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/szOu2luBprL1T_cUZo-NY-h7haE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/szOu2luBprL1T_cUZo-NY-h7haE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B333AEDA5B81A6B2F54FF714668F8D63E87B85A1 Validity Not Before: Feb 2 07:37:01 2024 GMT Not After : Jan 14 01:30:02 2025 GMT Subject: CN=09BE988E63FE0C69FD399636417EDF55650B351B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:bb:68:ee:fe:96:68:6e:20:ef:f9:58:59:0c: 93:93:3b:7a:bc:f6:da:8b:16:32:5e:57:a4:a0:8f: 77:3e:c5:35:fa:d4:67:03:0f:a7:b1:be:72:1e:19: 61:7d:28:d1:6e:37:f9:4e:1e:d6:11:f4:f0:61:28: db:a3:ba:1f:6c:ea:f4:eb:77:51:1b:db:81:f9:08: 33:2b:87:15:86:28:b4:6d:1f:5f:18:c2:09:98:9c: a2:b2:c3:33:bb:6c:39:ac:d1:70:ab:39:f4:75:67: c0:cc:3e:92:64:19:2e:db:44:88:cd:5d:10:9a:b0: a5:97:44:a9:5a:3c:9d:c5:b7:42:97:0a:e8:92:48: f5:6a:ac:6d:fd:aa:29:a1:b6:7b:c7:d0:fc:ec:7e: db:81:c9:70:dc:14:bd:71:30:67:71:cd:94:a1:cc: a9:86:4e:a3:15:f9:d0:3e:15:52:e0:3f:51:70:67: a5:66:1f:95:6a:53:9c:e4:9c:6e:47:c4:9a:b8:55: 26:4b:79:f8:d6:81:e4:4b:14:f4:76:9c:d9:80:4c: bc:b7:72:92:a3:63:57:2b:cc:6e:23:2d:a8:14:ef: a9:d3:f2:bd:f0:5d:3d:b9:eb:b5:60:67:85:31:27: 6b:1b:5d:60:35:32:16:1b:ee:b1:86:ac:3b:f3:6d: cd:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:BE:98:8E:63:FE:0C:69:FD:39:96:36:41:7E:DF:55:65:0B:35:1B X509v3 Authority Key Identifier: keyid:B3:33:AE:DA:5B:81:A6:B2:F5:4F:F7:14:66:8F:8D:63:E8:7B:85:A1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/szOu2luBprL1T_cUZo-NY-h7haE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/szOu2luBprL1T_cUZo-NY-h7haE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/Cb6YjmP-DGn9OZY2QX7fVWULNRs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.125.131.0/24 Signature Algorithm: sha256WithRSAEncryption 26:36:3a:6a:97:ae:0b:bc:b8:29:9b:eb:f6:ee:a2:e7:1c:3d: 29:50:7a:09:4d:e3:e0:56:0d:77:62:4b:e9:99:3a:8c:c0:49: 34:16:94:dc:a2:1d:97:58:0c:3a:95:60:c3:09:5c:02:75:1e: 15:1b:a4:e9:df:11:05:57:69:89:1b:89:ec:5d:e0:1f:52:43: 2b:02:54:e3:7b:90:0e:cb:4c:a8:53:fa:e6:ab:a0:0a:2d:d5: fe:5a:2d:4d:55:c5:3b:7d:83:c9:35:68:ec:6c:d6:f0:cb:aa: c7:6a:2d:46:fd:3a:ac:04:27:b3:7c:5d:cf:3d:7b:0a:8c:6a: 8e:43:19:a5:37:12:9d:e2:2c:76:c2:fe:c9:dc:65:0c:02:7e: b6:c3:22:b6:3a:c0:23:de:f2:4e:ed:3c:03:ed:5e:82:d7:ac: 75:53:ab:33:22:01:50:68:1a:3f:97:94:8f:01:47:f9:7a:1b: 2f:45:30:96:ab:ad:65:aa:29:a0:32:97:69:85:c4:bc:f6:58: bd:29:28:71:09:2d:47:c8:2c:93:10:74:cb:c3:c9:ba:10:57: 5d:f7:c0:59:25:97:82:d8:96:9f:20:e1:4b:47:07:c1:5f:bb: 99:a9:16:43:d4:6d:33:e9:c6:13:ac:31:c9:00:1f:ea:50:35: c7:fb:3f:6c -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBJDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCMzMz QUVEQTVCODFBNkIyRjU0RkY3MTQ2NjhGOEQ2M0U4N0I4NUExMB4XDTI0MDIwMjA3 MzcwMVoXDTI1MDExNDAxMzAwMlowMzExMC8GA1UEAxMoMDlCRTk4OEU2M0ZFMEM2 OUZEMzk5NjM2NDE3RURGNTU2NTBCMzUxQjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOS7aO7+lmhuIO/5WFkMk5M7erz22osWMl5XpKCPdz7FNfrUZwMP p7G+ch4ZYX0o0W43+U4e1hH08GEo26O6H2zq9Ot3URvbgfkIMyuHFYYotG0fXxjC CZicorLDM7tsOazRcKs59HVnwMw+kmQZLttEiM1dEJqwpZdEqVo8ncW3QpcK6JJI 9Wqsbf2qKaG2e8fQ/Ox+24HJcNwUvXEwZ3HNlKHMqYZOoxX50D4VUuA/UXBnpWYf lWpTnOScbkfEmrhVJkt5+NaB5EsU9Hac2YBMvLdykqNjVyvMbiMtqBTvqdPyvfBd PbnrtWBnhTEnaxtdYDUyFhvusYasO/NtzekCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQJvpiOY/4Maf05ljZBft9VZQs1GzAfBgNVHSMEGDAWgBSzM67aW4GmsvVP9xRm j41j6HuFoTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzk1L3N6T3UybHVCcHJMMVRfY1Vaby1OWS1oN2hhRS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3N6T3UybHVCcHJMMVRfY1Vaby1OWS1o N2hhRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8zOTUvQ2I2WWptUC1ER245T1pZMlFYN2ZWV1VMTlJzLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEANN9gzANBgkqhkiG9w0BAQsFAAOCAQEAJjY6apeuC7y4KZvr9u6i5xw9KVB6 CU3j4FYNd2JL6Zk6jMBJNBaU3KIdl1gMOpVgwwlcAnUeFRuk6d8RBVdpiRuJ7F3g H1JDKwJU43uQDstMqFP65qugCi3V/lotTVXFO32DyTVo7GzW8Muqx2otRv06rAQn s3xdzz17CoxqjkMZpTcSneIsdsL+ydxlDAJ+tsMitjrAI97yTu08A+1egtesdVOr MyIBUGgaP5eUjwFH+XobL0UwlqutZaopoDKXaYXEvPZYvSkocQktR8gskxB0y8PJ uhBXXffAWSWXgtiWnyDhS0cHwV+7makWQ9RtM+nGE6wxyQAf6lA1x/s/bA== -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:04 2024 by rpki-client on console-fra.rpki-client.org