$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/iFI2mUdFnt87YLASDUgPPQ443P0.roa File: iFI2mUdFnt87YLASDUgPPQ443P0.roa (raw, json) Hash identifier: 8EhuWE8sx66/hFWLaoPBQ3mkiI+EPdGSU4gXtsAessw= Subject key identifier: 88:52:36:99:47:45:9E:DF:3B:60:B0:12:0D:48:0F:3D:0E:38:DC:FD Certificate issuer: /CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA Certificate serial: 94 Authority key identifier: 04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/iFI2mUdFnt87YLASDUgPPQ443P0.roa Signing time: Thu 31 Oct 2024 01:34:27 +0000 ROA not before: Thu 31 Oct 2024 01:34:27 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 2527 IP address blocks: 157.147.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 13:07:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 148 (0x94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA Validity Not Before: Oct 31 01:34:27 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=8852369947459EDF3B60B0120D480F3D0E38DCFD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:67:42:a5:12:61:66:60:48:66:d1:99:f6:fa: ae:24:94:d9:c0:52:da:8d:15:b8:eb:54:d0:c5:91: 66:9e:c7:ec:91:8d:34:44:64:9d:95:0d:f3:10:b1: 26:f8:3c:97:ca:22:44:80:d7:35:26:3c:e6:55:75: e2:0b:7e:3c:32:3f:20:fb:28:a6:d5:25:41:62:55: 09:76:e3:7d:57:e6:cb:90:f9:6e:1a:57:10:80:a3: f4:8c:82:29:ed:72:04:46:c6:e7:8a:1b:c7:1a:82: a5:8e:82:fc:18:0a:63:5a:c2:97:d7:79:5e:8f:ad: 3e:97:de:ae:c6:55:20:5e:4d:cd:fa:f8:f3:6e:b5: 78:07:a5:bf:ad:ea:c9:d1:b7:32:7b:b0:fa:28:0d: 2b:30:4a:55:cd:81:ec:60:69:0a:38:6a:7d:3b:f1: bf:88:70:df:73:3d:f6:44:b6:d5:4e:13:ba:1e:96: c1:03:98:7e:ea:ac:5f:23:af:a9:9a:1f:a3:fa:1a: 84:f9:79:98:a3:14:95:d6:90:a0:c1:fc:55:ba:bb: 7b:fd:76:12:1f:19:7a:f2:f5:ad:af:2d:e3:c0:f9: 4c:20:e1:33:77:68:d0:ff:0a:ee:0f:ab:5c:ff:24: 68:b3:52:72:d1:e0:c2:75:f0:1b:1b:ec:73:53:88: 26:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:52:36:99:47:45:9E:DF:3B:60:B0:12:0D:48:0F:3D:0E:38:DC:FD X509v3 Authority Key Identifier: keyid:04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/iFI2mUdFnt87YLASDUgPPQ443P0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.147.0.0/16 Signature Algorithm: sha256WithRSAEncryption d1:13:30:67:36:bc:a1:30:dd:ff:b4:11:12:9f:27:e9:21:64: 66:62:d3:11:7a:ba:c1:bc:9e:cd:e7:3c:5c:77:ad:c9:0a:4b: 96:d2:d0:f4:d2:82:69:28:51:20:cb:99:f9:34:a9:a9:10:7a: 5d:cc:d6:20:7a:a3:8d:ca:11:07:9e:95:f4:ae:7d:92:63:00: 42:e3:5a:0b:87:bb:63:8e:59:8b:56:25:f5:6a:da:d2:01:ed: 4d:5c:23:56:3f:cc:36:e9:45:93:d6:0c:91:ec:bd:2d:70:d5: c9:c8:b0:f7:39:73:c6:f1:00:83:f4:4a:24:1c:1c:99:65:66: 3c:c8:40:af:8f:55:6a:e1:21:86:3d:a6:32:e5:9e:5e:b2:bc: b9:ec:a4:a7:61:a0:6c:2f:c4:12:2c:ca:00:07:27:95:9b:02: 0e:37:e4:c9:44:b6:52:b8:95:30:ea:8d:c2:03:af:8f:29:09: 45:0f:78:33:5d:f1:b7:42:ce:c7:61:bc:53:e0:6a:96:fc:a5: 29:57:84:ed:30:15:08:91:6a:f0:c3:04:66:74:37:98:88:f1: 6b:7e:9b:92:e3:08:76:28:c7:02:f6:6b:47:3d:e0:13:9b:3a: 88:5d:d0:46:5c:04:5a:00:ae:77:ef:ed:40:19:c7:67:0f:51: 03:63:19:3e -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgICAJQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDRD QTdGMzVBRjFBOEY1MjU3NUE5RkVGRkYyMUM0QTQ3MDgwRERGQTAeFw0yNDEwMzEw MTM0MjdaFw0yNTEwMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDg4NTIzNjk5NDc0NTlF REYzQjYwQjAxMjBENDgwRjNEMEUzOERDRkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOZ0KlEmFmYEhm0Zn2+q4klNnAUtqNFbjrVNDFkWaex+yRjTRE ZJ2VDfMQsSb4PJfKIkSA1zUmPOZVdeILfjwyPyD7KKbVJUFiVQl2431X5suQ+W4a VxCAo/SMgintcgRGxueKG8cagqWOgvwYCmNawpfXeV6PrT6X3q7GVSBeTc36+PNu tXgHpb+t6snRtzJ7sPooDSswSlXNgexgaQo4an078b+IcN9zPfZEttVOE7oelsED mH7qrF8jr6maH6P6GoT5eZijFJXWkKDB/FW6u3v9dhIfGXry9a2vLePA+Uwg4TN3 aND/Cu4Pq1z/JGizUnLR4MJ18Bsb7HNTiCY3AgMBAAGjggIhMIICHTAdBgNVHQ4E FgQUiFI2mUdFnt87YLASDUgPPQ443P0wHwYDVR0jBBgwFoAUBMp/Na8aj1JXWp/v /yHEpHCA3fowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQzL0JNcF9OYThhajFKWFdwX3ZfeUhFcEhDQTNmby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0JNcF9OYThhajFKWFdwX3ZfeUhFcEhD QTNmby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80My9pRkkybVVkRm50ODdZTEFTRFVnUFBRNDQzUDAucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAF AwMAnZMwDQYJKoZIhvcNAQELBQADggEBANETMGc2vKEw3f+0ERKfJ+khZGZi0xF6 usG8ns3nPFx3rckKS5bS0PTSgmkoUSDLmfk0qakQel3M1iB6o43KEQeelfSufZJj AELjWguHu2OOWYtWJfVq2tIB7U1cI1Y/zDbpRZPWDJHsvS1w1cnIsPc5c8bxAIP0 SiQcHJllZjzIQK+PVWrhIYY9pjLlnl6yvLnspKdhoGwvxBIsygAHJ5WbAg435MlE tlK4lTDqjcIDr48pCUUPeDNd8bdCzsdhvFPgapb8pSlXhO0wFQiRavDDBGZ0N5iI 8Wt+m5LjCHYoxwL2a0c94BObOohd0EZcBFoArnfv7UAZx2cPUQNjGT4= -----END CERTIFICATE-----Generated at Fri Nov 22 14:21:26 2024 by rpki-client on console-ams.rpki-client.org