$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/XrZDTGF2pzPawb-_4Gb74HXdwIg.roa File: XrZDTGF2pzPawb-_4Gb74HXdwIg.roa (raw, json) Hash identifier: UwcfR0MQbQH48cqK7TVE6OW6vKGboSJZ2KOt/vLzBCE= Subject key identifier: 5E:B6:43:4C:61:76:A7:33:DA:C1:BF:BF:E0:66:FB:E0:75:DD:C0:88 Certificate issuer: /CN=095A182FA18D458233284AA8DC88BD075E5D702D Certificate serial: 0156 Authority key identifier: 09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/XrZDTGF2pzPawb-_4Gb74HXdwIg.roa Signing time: Thu 31 Oct 2024 01:30:52 +0000 ROA not before: Thu 31 Oct 2024 01:30:52 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 2527 IP address blocks: 123.198.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 342 (0x156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=095A182FA18D458233284AA8DC88BD075E5D702D Validity Not Before: Oct 31 01:30:52 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=5EB6434C6176A733DAC1BFBFE066FBE075DDC088 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:05:d3:6a:3d:45:49:66:03:d2:b0:b7:2f:ac: 23:e0:0a:b5:d2:20:a6:0f:43:b2:12:45:8e:dd:1c: 9b:ed:88:f4:c8:43:f6:2d:69:2d:64:dc:d9:65:f1: 82:0f:34:85:51:00:2c:61:93:98:0e:6b:e8:71:77: 18:d1:b4:f0:00:47:e8:76:38:e3:55:3d:b4:34:60: 0f:d8:eb:ba:27:e1:a5:cd:15:b4:1c:26:ed:3e:d8: ba:4c:7b:28:dc:81:86:8a:e5:d5:65:8f:4d:1a:b9: be:75:3e:f9:e8:95:63:9e:5d:59:7d:da:40:ed:29: 07:3a:57:63:f5:c9:0a:da:04:aa:31:60:60:0f:f6: 89:f8:f0:22:31:86:b9:57:bc:03:2e:25:e1:1c:10: 2a:c4:42:8e:ac:9a:a4:2a:d5:04:dd:42:02:be:79: 1d:05:da:25:d5:0d:3e:5a:a0:bb:2b:fb:71:3c:a9: c1:3e:a2:85:89:f7:81:dc:2f:86:c9:72:5c:71:56: e5:b6:f9:4a:26:b3:76:83:50:84:e4:a0:33:e9:be: be:ba:88:42:49:89:9c:e9:46:30:01:61:c7:56:a1: 30:13:c5:3b:0b:ca:78:69:9a:79:e0:8e:7c:09:e2: b1:e9:a6:d6:77:20:e7:47:ef:42:9c:04:ca:dd:77: e7:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:B6:43:4C:61:76:A7:33:DA:C1:BF:BF:E0:66:FB:E0:75:DD:C0:88 X509v3 Authority Key Identifier: keyid:09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/XrZDTGF2pzPawb-_4Gb74HXdwIg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.198.0.0/16 Signature Algorithm: sha256WithRSAEncryption 69:fb:74:57:77:7c:b8:c0:51:de:b6:c2:0b:42:e8:e5:77:28: 4e:e2:c5:58:e1:ea:c2:2a:f5:66:28:4c:0e:fd:b5:d8:c9:9e: e8:58:67:e6:d2:94:78:b7:35:fe:0f:8b:2c:c6:ef:3d:8f:b4: cd:73:f0:0f:04:ab:f9:da:a7:f1:48:ec:da:96:53:25:4b:72: d5:8f:d2:20:87:ac:1a:3f:b1:53:94:d9:40:f6:4a:70:46:e5: 47:48:f6:48:1f:38:ab:b5:ac:fd:d9:ee:37:d4:91:00:e4:48: 33:58:f6:79:14:5e:a3:d6:9e:a2:3c:78:44:2a:92:db:70:6c: 66:c8:e2:62:0b:ee:21:99:33:5f:c8:78:d4:ff:47:68:97:11: df:79:59:c9:be:92:89:59:c7:a3:c0:77:13:17:c8:23:0c:88: 3d:67:61:11:65:9a:ef:77:bd:f8:97:88:88:51:f3:fe:0d:bd: 7b:ae:03:f4:9e:08:07:73:6c:08:22:73:a4:0a:01:b3:37:67: 8d:0a:6f:a5:ad:71:eb:80:af:33:f4:9b:7f:ee:10:fd:dc:ff: f7:2c:fe:d9:d0:01:57:45:ab:02:fe:13:cc:52:2e:98:cc:6b: 51:d4:08:5d:86:80:88:72:ec:60:a1:19:29:7c:57:85:9e:46: 0a:d1:c9:02 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDk1 QTE4MkZBMThENDU4MjMzMjg0QUE4REM4OEJEMDc1RTVENzAyRDAeFw0yNDEwMzEw MTMwNTJaFw0yNTEwMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDVFQjY0MzRDNjE3NkE3 MzNEQUMxQkZCRkUwNjZGQkUwNzVEREMwODgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQBdNqPUVJZgPSsLcvrCPgCrXSIKYPQ7ISRY7dHJvtiPTIQ/Yt aS1k3Nll8YIPNIVRACxhk5gOa+hxdxjRtPAAR+h2OONVPbQ0YA/Y67on4aXNFbQc Ju0+2LpMeyjcgYaK5dVlj00aub51PvnolWOeXVl92kDtKQc6V2P1yQraBKoxYGAP 9on48CIxhrlXvAMuJeEcECrEQo6smqQq1QTdQgK+eR0F2iXVDT5aoLsr+3E8qcE+ ooWJ94HcL4bJclxxVuW2+Uoms3aDUITkoDPpvr66iEJJiZzpRjABYcdWoTATxTsL ynhpmnngjnwJ4rHpptZ3IOdH70KcBMrdd+cBAgMBAAGjggIhMIICHTAdBgNVHQ4E FgQUXrZDTGF2pzPawb+/4Gb74HXdwIgwHwYDVR0jBBgwFoAUCVoYL6GNRYIzKEqo 3Ii9B15dcC0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQzL0NWb1lMNkdOUllJektFcW8zSWk5QjE1ZGNDMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0NWb1lMNkdOUllJektFcW8zSWk5QjE1 ZGNDMC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80My9YclpEVEdGMnB6UGF3Yi1fNEdiNzRIWGR3SWcucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAF AwMAe8YwDQYJKoZIhvcNAQELBQADggEBAGn7dFd3fLjAUd62wgtC6OV3KE7ixVjh 6sIq9WYoTA79tdjJnuhYZ+bSlHi3Nf4PiyzG7z2PtM1z8A8Eq/nap/FI7NqWUyVL ctWP0iCHrBo/sVOU2UD2SnBG5UdI9kgfOKu1rP3Z7jfUkQDkSDNY9nkUXqPWnqI8 eEQqkttwbGbI4mIL7iGZM1/IeNT/R2iXEd95Wcm+kolZx6PAdxMXyCMMiD1nYRFl mu93vfiXiIhR8/4NvXuuA/SeCAdzbAgic6QKAbM3Z40Kb6WtceuArzP0m3/uEP3c //cs/tnQAVdFqwL+E8xSLpjMa1HUCF2GgIhy7GChGSl8V4WeRgrRyQI= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:44 2024 by rpki-client on console-ams.rpki-client.org