$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/395/daF6soBiLx_2XucSlFB1I0X7V7E.roa File: daF6soBiLx_2XucSlFB1I0X7V7E.roa (raw, json) Hash identifier: tIhHdE4uoGYNy4kjHy+a3FHXKNTk7I+s8yTrT+I9guM= Subject key identifier: 75:A1:7A:B2:80:62:2F:1F:F6:5E:E7:12:94:50:75:23:45:FB:57:B1 Certificate issuer: /CN=B333AEDA5B81A6B2F54FF714668F8D63E87B85A1 Certificate serial: 28 Authority key identifier: B3:33:AE:DA:5B:81:A6:B2:F5:4F:F7:14:66:8F:8D:63:E8:7B:85:A1 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/szOu2luBprL1T_cUZo-NY-h7haE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/daF6soBiLx_2XucSlFB1I0X7V7E.roa Signing time: Fri 02 Feb 2024 07:37:02 +0000 ROA not before: Fri 02 Feb 2024 07:37:02 +0000 ROA not after: Tue 14 Jan 2025 01:30:02 +0000 asID: 9619 IP address blocks: 211.125.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/szOu2luBprL1T_cUZo-NY-h7haE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/szOu2luBprL1T_cUZo-NY-h7haE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/szOu2luBprL1T_cUZo-NY-h7haE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B333AEDA5B81A6B2F54FF714668F8D63E87B85A1 Validity Not Before: Feb 2 07:37:02 2024 GMT Not After : Jan 14 01:30:02 2025 GMT Subject: CN=75A17AB280622F1FF65EE7129450752345FB57B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:2b:54:1f:28:ed:17:3c:19:60:87:ca:2a:15: c9:af:98:61:f6:d9:b8:86:7c:45:8a:f2:54:e0:c3: e8:67:d0:b0:59:2f:be:cc:55:b6:47:7b:78:13:8b: 54:f1:22:27:a2:8f:cc:01:a2:66:de:aa:26:a8:86: a2:fd:b4:c4:37:27:9a:72:10:ba:30:57:c6:fd:78: 9a:13:f0:f4:6a:9c:03:b2:68:fd:a5:f2:53:df:91: f7:07:47:09:9e:15:a4:e5:25:d3:17:ab:ae:94:fc: ff:e4:a4:8c:ed:52:96:88:e5:70:fa:0a:c0:e0:fc: 6a:99:5d:5a:aa:62:3d:1d:93:85:be:ff:a9:c6:87: 39:08:27:9e:88:8b:f9:a3:53:7d:19:d8:f7:a3:77: aa:e5:07:05:39:f2:6e:5b:c5:df:d7:7a:3c:14:71: 18:c5:8d:b9:f5:fb:d4:7e:d8:f8:94:40:55:8f:5e: 94:2c:55:5b:63:22:0b:ce:32:df:5b:dc:d7:48:fc: b8:69:d8:fb:40:94:25:58:a9:a6:54:fc:71:31:dd: ba:ae:8b:dc:f5:e1:18:58:47:a9:af:86:95:b5:5d: dd:8a:1c:6f:1a:b5:e8:23:fc:e3:89:a9:55:04:35: fc:92:f6:ab:9f:01:e8:44:6c:3b:8e:63:8d:2b:68: 31:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:A1:7A:B2:80:62:2F:1F:F6:5E:E7:12:94:50:75:23:45:FB:57:B1 X509v3 Authority Key Identifier: keyid:B3:33:AE:DA:5B:81:A6:B2:F5:4F:F7:14:66:8F:8D:63:E8:7B:85:A1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/szOu2luBprL1T_cUZo-NY-h7haE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/szOu2luBprL1T_cUZo-NY-h7haE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/daF6soBiLx_2XucSlFB1I0X7V7E.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.125.136.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:2b:96:8e:21:51:6c:b2:da:ba:8d:66:9c:f5:f4:9d:ac:c8: fc:1f:e0:ec:43:39:61:a5:59:83:cd:ea:86:8e:44:43:36:47: c9:ee:3d:c2:f5:68:a7:fb:63:73:32:b8:6b:48:44:94:c3:f1: d6:3c:f3:45:5b:a3:da:ae:74:3a:af:7a:92:49:dd:b1:4a:c6: db:d1:fa:f8:16:f3:39:7c:b5:7d:e2:f0:cc:9e:ca:10:42:84: 6c:a9:26:cc:da:56:73:bc:31:4c:69:bf:43:b9:74:78:da:f0: 74:ce:3a:2f:f7:f3:72:20:ea:21:82:f3:c9:75:70:46:0f:52: 12:b5:c0:ce:2d:f9:40:b0:17:6b:75:6c:6e:54:63:b5:7d:e7: 94:5d:76:68:86:02:00:46:8c:dc:ea:aa:3d:c5:50:16:99:68: 2e:55:bd:22:76:f1:30:5a:11:72:aa:9b:f9:f2:f7:fb:9a:bb: 3c:13:1a:92:c0:6c:bc:44:61:fe:4a:52:b4:e9:c4:98:46:af: f9:72:cc:bf:47:f4:86:fb:11:94:eb:e1:8a:9f:fc:cb:2c:bc: 3d:12:50:22:16:77:65:59:08:67:f8:63:ed:53:df:5d:d8:39: 41:e7:d6:ef:4a:74:69:8d:20:ad:25:f5:43:cd:d0:2b:51:fc: d5:31:4d:02 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBKDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCMzMz QUVEQTVCODFBNkIyRjU0RkY3MTQ2NjhGOEQ2M0U4N0I4NUExMB4XDTI0MDIwMjA3 MzcwMloXDTI1MDExNDAxMzAwMlowMzExMC8GA1UEAxMoNzVBMTdBQjI4MDYyMkYx RkY2NUVFNzEyOTQ1MDc1MjM0NUZCNTdCMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMMrVB8o7Rc8GWCHyioVya+YYfbZuIZ8RYryVODD6GfQsFkvvsxV tkd7eBOLVPEiJ6KPzAGiZt6qJqiGov20xDcnmnIQujBXxv14mhPw9GqcA7Jo/aXy U9+R9wdHCZ4VpOUl0xerrpT8/+SkjO1SlojlcPoKwOD8apldWqpiPR2Thb7/qcaH OQgnnoiL+aNTfRnY96N3quUHBTnyblvF39d6PBRxGMWNufX71H7Y+JRAVY9elCxV W2MiC84y31vc10j8uGnY+0CUJVipplT8cTHduq6L3PXhGFhHqa+GlbVd3Yocbxq1 6CP844mpVQQ1/JL2q58B6ERsO45jjStoMQcCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBR1oXqygGIvH/Ze5xKUUHUjRftXsTAfBgNVHSMEGDAWgBSzM67aW4GmsvVP9xRm j41j6HuFoTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzk1L3N6T3UybHVCcHJMMVRfY1Vaby1OWS1oN2hhRS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3N6T3UybHVCcHJMMVRfY1Vaby1OWS1o N2hhRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8zOTUvZGFGNnNvQmlMeF8yWHVjU2xGQjFJMFg3VjdFLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEANN9iDANBgkqhkiG9w0BAQsFAAOCAQEALyuWjiFRbLLauo1mnPX0nazI/B/g 7EM5YaVZg83qho5EQzZHye49wvVop/tjczK4a0hElMPx1jzzRVuj2q50Oq96kknd sUrG29H6+BbzOXy1feLwzJ7KEEKEbKkmzNpWc7wxTGm/Q7l0eNrwdM46L/fzciDq IYLzyXVwRg9SErXAzi35QLAXa3VsblRjtX3nlF12aIYCAEaM3OqqPcVQFploLlW9 InbxMFoRcqqb+fL3+5q7PBMaksBsvERh/kpStOnEmEav+XLMv0f0hvsRlOvhip/8 yyy8PRJQIhZ3ZVkIZ/hj7VPfXdg5QefW70p0aY0grSX1Q83QK1H81TFNAg== -----END CERTIFICATE-----Generated at Mon Nov 25 23:59:14 2024 by rpki-client on console-fra.rpki-client.org