$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/nh3XWMTyBfqKJZT4CJCvykqxK9k.roa File: nh3XWMTyBfqKJZT4CJCvykqxK9k.roa (raw, json) Hash identifier: fZ11XMECb73GPOOfIJejuoGsDLNytDLols9FNwZS1RA= Subject key identifier: 9E:1D:D7:58:C4:F2:05:FA:8A:25:94:F8:08:90:AF:CA:4A:B1:2B:D9 Certificate issuer: /CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA Certificate serial: 91 Authority key identifier: 04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/nh3XWMTyBfqKJZT4CJCvykqxK9k.roa Signing time: Thu 31 Oct 2024 01:34:20 +0000 ROA not before: Thu 31 Oct 2024 01:34:20 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 2527 IP address blocks: 216.153.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 145 (0x91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA Validity Not Before: Oct 31 01:34:20 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=9E1DD758C4F205FA8A2594F80890AFCA4AB12BD9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0c:e8:5f:95:d4:6f:22:c6:77:90:d1:7f:2b: 58:2f:96:95:11:be:c9:2a:13:73:0d:f5:80:53:88: b6:f7:ce:b7:16:4b:03:3f:07:5b:b7:59:43:a1:5c: ea:7b:63:cc:23:88:05:6c:1e:96:a8:b6:ec:2a:e9: 5f:d4:31:bb:49:19:97:0c:f3:78:35:a6:7e:ad:9a: 09:49:f2:46:f0:36:a6:71:c6:aa:3d:70:fb:2d:04: a6:e2:1a:54:2b:94:5d:53:3e:f9:4d:06:37:aa:4d: 9a:76:03:f9:fe:dc:3d:4a:36:f4:c7:aa:7e:7e:b6: b7:a5:04:d8:89:9e:18:32:c0:30:0a:da:ab:3f:8f: 47:97:85:a8:42:6d:71:85:f5:5e:4e:30:c7:ef:23: 74:c6:ae:83:ac:21:b0:e1:02:7d:c2:32:54:0d:28: cf:a3:5b:70:f9:ff:b4:50:8a:9c:37:fe:7a:12:15: 57:c3:e5:8d:6c:f0:7a:f1:83:40:04:bd:21:a5:93: 1f:dd:f5:1e:f3:36:1e:b3:4a:18:f0:67:d1:2c:8b: c4:9d:e7:60:2a:f0:09:c3:1a:2d:31:24:71:b3:33: b0:79:e6:fe:06:84:d6:e7:1d:d6:5a:e1:4b:6e:fc: 7b:7a:ed:ba:01:f1:88:ff:8b:45:8d:e6:2d:06:b1: ae:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:1D:D7:58:C4:F2:05:FA:8A:25:94:F8:08:90:AF:CA:4A:B1:2B:D9 X509v3 Authority Key Identifier: keyid:04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/nh3XWMTyBfqKJZT4CJCvykqxK9k.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 216.153.64.0/18 Signature Algorithm: sha256WithRSAEncryption ac:c6:db:b8:15:57:e3:ea:de:36:a6:8f:68:d6:d5:69:47:f6: ed:b9:c7:73:d5:86:c6:7c:58:02:73:4c:e5:9c:25:39:70:37: 65:a3:fc:b2:c1:d9:bd:93:1f:e0:63:3c:df:c4:56:fd:1a:48: 1c:ea:ab:cd:dd:e3:04:e7:57:16:1b:37:62:f3:2c:5b:a7:1b: f1:9d:d2:02:35:3d:9d:85:b2:c3:8f:0d:a1:5e:76:55:28:cf: d8:67:c2:c6:f0:64:12:0c:82:d6:5c:9b:0d:13:eb:ef:d7:7e: e1:21:9d:18:cd:2d:1c:82:54:78:49:86:1b:de:c7:34:0b:63: 17:2e:7a:22:33:42:b7:69:6c:3d:b0:62:54:c3:57:02:47:b1: 7e:d2:39:36:52:f6:12:bc:18:6f:68:e9:10:f0:d0:5c:be:d0: 15:61:23:47:88:4f:df:22:d1:61:ed:88:aa:fb:0a:a9:3d:1d: 37:84:e0:91:85:d1:d8:c0:3d:61:09:f8:a3:e0:ba:33:e9:d2: 8e:d6:9c:a5:92:d4:ff:30:99:6d:c3:75:1d:77:90:c9:f5:35: 0b:75:ef:24:89:98:1d:69:70:b0:16:ff:0e:c5:b5:8c:3f:83: 86:01:39:d7:ed:15:b5:0d:d5:ff:e9:e0:19:5e:85:0d:2b:5f: 09:dd:b9:ec -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAJEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDRD QTdGMzVBRjFBOEY1MjU3NUE5RkVGRkYyMUM0QTQ3MDgwRERGQTAeFw0yNDEwMzEw MTM0MjBaFw0yNTEwMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDlFMURENzU4QzRGMjA1 RkE4QTI1OTRGODA4OTBBRkNBNEFCMTJCRDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwDOhfldRvIsZ3kNF/K1gvlpURvskqE3MN9YBTiLb3zrcWSwM/ B1u3WUOhXOp7Y8wjiAVsHpaotuwq6V/UMbtJGZcM83g1pn6tmglJ8kbwNqZxxqo9 cPstBKbiGlQrlF1TPvlNBjeqTZp2A/n+3D1KNvTHqn5+trelBNiJnhgywDAK2qs/ j0eXhahCbXGF9V5OMMfvI3TGroOsIbDhAn3CMlQNKM+jW3D5/7RQipw3/noSFVfD 5Y1s8Hrxg0AEvSGlkx/d9R7zNh6zShjwZ9Esi8Sd52Aq8AnDGi0xJHGzM7B55v4G hNbnHdZa4Utu/Ht67boB8Yj/i0WN5i0Gsa7xAgMBAAGjggIiMIICHjAdBgNVHQ4E FgQUnh3XWMTyBfqKJZT4CJCvykqxK9kwHwYDVR0jBBgwFoAUBMp/Na8aj1JXWp/v /yHEpHCA3fowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQzL0JNcF9OYThhajFKWFdwX3ZfeUhFcEhDQTNmby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0JNcF9OYThhajFKWFdwX3ZfeUhFcEhD QTNmby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80My9uaDNYV01UeUJmcUtKWlQ0Q0pDdnlrcXhLOWsucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQG2JlAMA0GCSqGSIb3DQEBCwUAA4IBAQCsxtu4FVfj6t42po9o1tVpR/btucdz 1YbGfFgCc0zlnCU5cDdlo/yywdm9kx/gYzzfxFb9Gkgc6qvN3eME51cWGzdi8yxb pxvxndICNT2dhbLDjw2hXnZVKM/YZ8LG8GQSDILWXJsNE+vv137hIZ0YzS0cglR4 SYYb3sc0C2MXLnoiM0K3aWw9sGJUw1cCR7F+0jk2UvYSvBhvaOkQ8NBcvtAVYSNH iE/fItFh7Yiq+wqpPR03hOCRhdHYwD1hCfij4Loz6dKO1pylktT/MJltw3Udd5DJ 9TULde8kiZgdaXCwFv8OxbWMP4OGATnX7RW1DdX/6eAZXoUNK18J3bns -----END CERTIFICATE-----Generated at Mon Nov 25 23:54:44 2024 by rpki-client on console-ams.rpki-client.org