$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/nZtrbY4NIn7F64uNIUWN227EMXU.roa File: nZtrbY4NIn7F64uNIUWN227EMXU.roa (raw, json) Hash identifier: NKkbV3P9Xl9dosFWmICO0jw0ea6S/qSSl5wxC42D+ro= Subject key identifier: 9D:9B:6B:6D:8E:0D:22:7E:C5:EB:8B:8D:21:45:8D:DB:6E:C4:31:75 Certificate issuer: /CN=095A182FA18D458233284AA8DC88BD075E5D702D Certificate serial: 014B Authority key identifier: 09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/nZtrbY4NIn7F64uNIUWN227EMXU.roa Signing time: Thu 31 Oct 2024 01:30:44 +0000 ROA not before: Thu 31 Oct 2024 01:30:44 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 2527 IP address blocks: 223.132.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 331 (0x14b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=095A182FA18D458233284AA8DC88BD075E5D702D Validity Not Before: Oct 31 01:30:44 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=9D9B6B6D8E0D227EC5EB8B8D21458DDB6EC43175 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b6:bd:c6:a8:5d:91:94:32:18:b8:56:ee:64: ad:ca:06:60:68:33:51:8f:5d:69:48:c0:8f:bf:91: 88:da:75:80:6d:b1:33:89:0d:47:80:8d:b6:fe:3b: dd:13:d0:09:ec:a3:35:12:48:98:dd:09:06:07:b7: 9b:55:e3:03:bd:4c:95:7a:d3:6c:04:5b:27:54:37: e8:b5:d4:cc:6f:b0:5c:ab:bc:5c:c2:e0:08:50:d2: cc:e9:8a:3c:5d:80:2d:af:5d:61:14:5d:8b:1f:33: fe:65:f0:4e:31:18:50:fa:d4:c9:14:87:6f:9e:54: d1:5c:82:6a:74:a7:f0:1f:3a:3f:45:10:c2:bd:b0: 11:35:76:22:bc:2a:56:18:e6:a2:1a:ab:0d:5a:8f: 51:a8:92:f5:8e:11:61:cb:01:bd:18:d7:95:2e:ca: ba:64:ce:1e:75:e6:c5:65:ee:01:a4:1b:c6:7b:0f: 94:a9:c6:d7:c8:1d:8b:65:67:08:5d:ce:d9:49:51: 19:df:b3:18:9a:5e:85:9f:11:4b:42:da:c0:76:16: ec:42:fe:d4:65:85:45:2e:4d:ab:da:5d:2b:1f:b4: 89:64:e6:7d:1e:95:75:13:72:a3:2e:32:a7:11:d6: 0e:8b:9c:69:da:29:07:bc:8f:f7:4e:a1:19:dd:ed: 98:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:9B:6B:6D:8E:0D:22:7E:C5:EB:8B:8D:21:45:8D:DB:6E:C4:31:75 X509v3 Authority Key Identifier: keyid:09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/nZtrbY4NIn7F64uNIUWN227EMXU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 223.132.0.0/14 Signature Algorithm: sha256WithRSAEncryption 67:32:af:f7:f4:e3:58:6c:21:5a:6e:08:97:7d:3c:64:77:48: c8:be:6b:0a:5d:fd:a0:cc:32:42:e2:33:75:87:64:ed:40:e0: a4:a0:fb:80:50:cc:09:e8:69:17:16:c5:f6:5d:1e:9c:39:49: 69:ac:36:46:70:0d:7c:c4:23:84:a4:1e:33:42:c3:55:fc:07: 36:19:3e:ed:a8:c0:29:83:f2:b3:b9:55:c0:f3:e5:fb:75:6b: 30:67:2a:40:b1:e4:29:88:86:13:48:74:96:90:1b:d9:1d:03: 26:34:05:35:64:f4:23:ce:ee:d1:a0:95:13:32:1d:9f:b4:11: a0:55:cc:88:e4:d1:d0:67:1d:45:34:da:41:d1:bf:60:7c:2d: cd:1f:91:1e:20:0d:77:9f:99:27:f3:2a:ef:bd:32:4d:ae:43: 33:6b:9c:84:4b:63:f2:ea:14:6b:b1:53:66:d2:7b:d5:22:3e: 1b:1a:35:4c:8f:1d:2d:18:74:2c:be:c7:36:e0:8d:32:09:a3: a1:7b:d9:d3:20:20:dc:38:dd:68:ee:b7:d5:b8:86:7f:ba:1b: 65:f4:d0:47:3e:be:84:2f:59:85:ac:7d:63:2d:5f:0d:9e:20: d6:da:d4:0e:7d:a7:75:94:4e:7f:b7:9a:5e:ef:95:27:9a:8c: ba:b7:dd:49 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgICAUswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDk1 QTE4MkZBMThENDU4MjMzMjg0QUE4REM4OEJEMDc1RTVENzAyRDAeFw0yNDEwMzEw MTMwNDRaFw0yNTEwMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDlEOUI2QjZEOEUwRDIy N0VDNUVCOEI4RDIxNDU4RERCNkVDNDMxNzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxtr3GqF2RlDIYuFbuZK3KBmBoM1GPXWlIwI+/kYjadYBtsTOJ DUeAjbb+O90T0AnsozUSSJjdCQYHt5tV4wO9TJV602wEWydUN+i11MxvsFyrvFzC 4AhQ0szpijxdgC2vXWEUXYsfM/5l8E4xGFD61MkUh2+eVNFcgmp0p/AfOj9FEMK9 sBE1diK8KlYY5qIaqw1aj1GokvWOEWHLAb0Y15Uuyrpkzh515sVl7gGkG8Z7D5Sp xtfIHYtlZwhdztlJURnfsxiaXoWfEUtC2sB2FuxC/tRlhUUuTavaXSsftIlk5n0e lXUTcqMuMqcR1g6LnGnaKQe8j/dOoRnd7ZiRAgMBAAGjggIhMIICHTAdBgNVHQ4E FgQUnZtrbY4NIn7F64uNIUWN227EMXUwHwYDVR0jBBgwFoAUCVoYL6GNRYIzKEqo 3Ii9B15dcC0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQzL0NWb1lMNkdOUllJektFcW8zSWk5QjE1ZGNDMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0NWb1lMNkdOUllJektFcW8zSWk5QjE1 ZGNDMC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80My9uWnRyYlk0TkluN0Y2NHVOSVVXTjIyN0VNWFUucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAF AwMC34QwDQYJKoZIhvcNAQELBQADggEBAGcyr/f041hsIVpuCJd9PGR3SMi+awpd /aDMMkLiM3WHZO1A4KSg+4BQzAnoaRcWxfZdHpw5SWmsNkZwDXzEI4SkHjNCw1X8 BzYZPu2owCmD8rO5VcDz5ft1azBnKkCx5CmIhhNIdJaQG9kdAyY0BTVk9CPO7tGg lRMyHZ+0EaBVzIjk0dBnHUU02kHRv2B8Lc0fkR4gDXefmSfzKu+9Mk2uQzNrnIRL Y/LqFGuxU2bSe9UiPhsaNUyPHS0YdCy+xzbgjTIJo6F72dMgINw43Wjut9W4hn+6 G2X00Ec+voQvWYWsfWMtXw2eINba1A59p3WUTn+3ml7vlSeajLq33Uk= -----END CERTIFICATE-----Generated at Mon Nov 25 23:59:14 2024 by rpki-client on console-fra.rpki-client.org