$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/484/U-GuS64ziTI8SUJ8t_FAvgcwAtI.roa File: U-GuS64ziTI8SUJ8t_FAvgcwAtI.roa (raw, json) Hash identifier: yO0qF1s2UQCQlNVXx8dVZMeUCJ9kB4g/nHrmU6Fkrj8= Subject key identifier: 53:E1:AE:4B:AE:33:89:32:3C:49:42:7C:B7:F1:40:BE:07:30:02:D2 Certificate issuer: /CN=C0986C0F2DB2D4FE707672C227937BEAA9F5D78A Certificate serial: 03 Authority key identifier: C0:98:6C:0F:2D:B2:D4:FE:70:76:72:C2:27:93:7B:EA:A9:F5:D7:8A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/wJhsDy2y1P5wdnLCJ5N76qn114o.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/484/U-GuS64ziTI8SUJ8t_FAvgcwAtI.roa Signing time: Mon 21 Oct 2024 01:55:02 +0000 ROA not before: Mon 21 Oct 2024 01:55:02 +0000 ROA not after: Tue 21 Oct 2025 01:23:02 +0000 asID: 9354 IP address blocks: 223.252.80.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/484/wJhsDy2y1P5wdnLCJ5N76qn114o.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/484/wJhsDy2y1P5wdnLCJ5N76qn114o.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/wJhsDy2y1P5wdnLCJ5N76qn114o.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 12:46:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0986C0F2DB2D4FE707672C227937BEAA9F5D78A Validity Not Before: Oct 21 01:55:02 2024 GMT Not After : Oct 21 01:23:02 2025 GMT Subject: CN=53E1AE4BAE3389323C49427CB7F140BE073002D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:0c:7a:fa:55:2a:01:5d:a8:d8:18:ef:ba:eb: 01:4b:ff:14:54:e0:bf:8d:9d:71:d5:5a:04:62:f5: 59:24:3c:9a:a6:08:12:bf:ae:44:6f:00:73:b1:56: 3d:27:05:aa:38:c4:da:8e:ff:c6:64:d0:69:74:64: 11:4b:71:ba:d7:ff:e7:f5:78:0d:3f:27:43:34:a9: e8:57:a4:73:61:d1:cd:bb:b7:02:2c:1e:67:f0:4f: 8c:b1:54:55:14:55:44:1b:2f:83:4a:88:e2:fd:ce: 79:51:1f:c1:ab:32:c6:80:bb:b6:76:6e:47:6e:0b: 77:19:08:a7:9c:10:15:f4:85:4e:ff:66:0b:4b:62: cf:c7:08:cc:ed:1d:8f:13:ac:2f:4e:80:94:11:1a: aa:be:44:df:be:f7:4c:f8:ed:c4:cb:96:0e:aa:18: 32:81:88:b9:89:d5:36:fa:08:b0:9b:d1:9e:d8:da: bf:55:b0:d9:0c:09:ff:bc:8b:6f:49:8a:50:84:f3: 55:d2:f6:35:2e:66:f9:5a:9b:f9:4d:36:91:89:d4: de:50:8e:86:1d:53:05:3e:b0:7f:82:af:7a:34:a1: 5c:be:11:8a:b4:9a:42:a2:3f:d5:28:7d:73:ec:70: 25:3d:2a:e9:94:ee:98:3b:81:2a:45:f5:5b:7d:c1: 3a:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:E1:AE:4B:AE:33:89:32:3C:49:42:7C:B7:F1:40:BE:07:30:02:D2 X509v3 Authority Key Identifier: keyid:C0:98:6C:0F:2D:B2:D4:FE:70:76:72:C2:27:93:7B:EA:A9:F5:D7:8A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/484/wJhsDy2y1P5wdnLCJ5N76qn114o.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/wJhsDy2y1P5wdnLCJ5N76qn114o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/484/U-GuS64ziTI8SUJ8t_FAvgcwAtI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 223.252.80.0/20 Signature Algorithm: sha256WithRSAEncryption c5:f5:b0:21:df:07:89:39:bd:9a:c8:d6:d6:9d:9b:57:5c:09: 22:29:cb:70:f4:2b:40:91:5b:d5:6e:d0:d7:cc:b0:9e:bf:93: 9a:a2:c3:94:fb:e7:55:37:ce:2f:24:d2:0d:d5:68:92:1c:11: 2e:d9:7d:22:6f:4f:d6:c1:8e:e0:3a:d8:fb:f8:f5:5e:53:3f: ce:b1:3b:c0:79:9a:55:66:de:d1:64:37:00:19:48:75:4f:6e: 0f:af:85:35:e4:eb:56:ce:d5:32:c5:b9:fc:6b:e9:0a:f0:12: 39:ac:df:81:81:7e:a6:09:d3:ec:a6:80:0e:22:56:b5:24:2d: e9:00:47:8f:bb:60:f3:fd:44:b8:0e:24:56:fe:e9:7c:bd:a7: 8f:e8:3b:40:b8:13:c3:e3:0a:20:60:a8:35:ee:2c:75:75:cf: 3f:32:38:5a:15:7e:42:f0:f3:41:6f:a2:8b:29:d9:71:8a:33: 73:24:b0:34:f8:39:40:70:6c:2f:8b:af:2b:6d:27:97:8d:52: a4:7e:a7:be:16:fc:50:01:87:d5:6f:fb:a3:2d:6e:e8:5f:c7: be:a8:2d:4e:20:2b:98:e6:7a:e7:a6:c1:47:13:06:c8:a4:2e: 46:75:77:f6:ad:b1:9f:de:22:79:7b:96:cd:b7:20:8e:5c:e2: 82:e1:2c:ba -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBAzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDMDk4 NkMwRjJEQjJENEZFNzA3NjcyQzIyNzkzN0JFQUE5RjVENzhBMB4XDTI0MTAyMTAx NTUwMloXDTI1MTAyMTAxMjMwMlowMzExMC8GA1UEAxMoNTNFMUFFNEJBRTMzODkz MjNDNDk0MjdDQjdGMTQwQkUwNzMwMDJEMjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKYMevpVKgFdqNgY77rrAUv/FFTgv42dcdVaBGL1WSQ8mqYIEr+u RG8Ac7FWPScFqjjE2o7/xmTQaXRkEUtxutf/5/V4DT8nQzSp6Fekc2HRzbu3Aiwe Z/BPjLFUVRRVRBsvg0qI4v3OeVEfwasyxoC7tnZuR24LdxkIp5wQFfSFTv9mC0ti z8cIzO0djxOsL06AlBEaqr5E3773TPjtxMuWDqoYMoGIuYnVNvoIsJvRntjav1Ww 2QwJ/7yLb0mKUITzVdL2NS5m+Vqb+U02kYnU3lCOhh1TBT6wf4KvejShXL4RirSa QqI/1Sh9c+xwJT0q6ZTumDuBKkX1W33BOvUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRT4a5LrjOJMjxJQny38UC+BzAC0jAfBgNVHSMEGDAWgBTAmGwPLbLU/nB2csIn k3vqqfXXijAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDg0L3dKaHNEeTJ5MVA1d2RuTENKNU43NnFuMTE0by5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3dKaHNEeTJ5MVA1d2RuTENKNU43NnFu MTE0by5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80ODQvVS1HdVM2NHppVEk4U1VKOHRfRkF2Z2N3QXRJLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBN/8UDANBgkqhkiG9w0BAQsFAAOCAQEAxfWwId8HiTm9msjW1p2bV1wJIinL cPQrQJFb1W7Q18ywnr+TmqLDlPvnVTfOLyTSDdVokhwRLtl9Im9P1sGO4DrY+/j1 XlM/zrE7wHmaVWbe0WQ3ABlIdU9uD6+FNeTrVs7VMsW5/GvpCvASOazfgYF+pgnT 7KaADiJWtSQt6QBHj7tg8/1EuA4kVv7pfL2nj+g7QLgTw+MKIGCoNe4sdXXPPzI4 WhV+QvDzQW+iiynZcYozcySwNPg5QHBsL4uvK20nl41SpH6nvhb8UAGH1W/7oy1u 6F/HvqgtTiArmOZ656bBRxMGyKQuRnV39q2xn94ieXuWzbcgjlziguEsug== -----END CERTIFICATE-----Generated at Fri Nov 22 13:33:22 2024 by rpki-client on console-fra.rpki-client.org