$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/50/kpQy5ZGItqfOlsR1cEbSs2FieZ0.roa File: kpQy5ZGItqfOlsR1cEbSs2FieZ0.roa (raw, json) Hash identifier: ulZQvE/ckHABVDjq29DdVUSfy2oqLeCQ9hW2T38hH60= Subject key identifier: 92:94:32:E5:91:88:B6:A7:CE:96:C4:75:70:46:D2:B3:61:62:79:9D Certificate issuer: /CN=1BE3AB0F8DB265ABB2287E75151E7F5A93B2C736 Certificate serial: 5F Authority key identifier: 1B:E3:AB:0F:8D:B2:65:AB:B2:28:7E:75:15:1E:7F:5A:93:B2:C7:36 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G-OrD42yZauyKH51FR5_WpOyxzY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/50/kpQy5ZGItqfOlsR1cEbSs2FieZ0.roa Signing time: Sat 31 Aug 2024 01:33:56 +0000 ROA not before: Sat 31 Aug 2024 01:33:56 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 4685 IP address blocks: 211.132.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/50/G-OrD42yZauyKH51FR5_WpOyxzY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/50/G-OrD42yZauyKH51FR5_WpOyxzY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G-OrD42yZauyKH51FR5_WpOyxzY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BE3AB0F8DB265ABB2287E75151E7F5A93B2C736 Validity Not Before: Aug 31 01:33:56 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=929432E59188B6A7CE96C4757046D2B36162799D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:bb:8c:5c:0e:81:86:c8:cd:9e:ab:b7:7f:a6: a2:c2:a2:f9:15:25:55:ae:6f:fe:b1:52:8c:b2:0f: 83:c2:17:ab:d1:fe:c9:88:07:20:6f:32:90:8f:49: c6:79:62:51:88:e5:03:61:fc:92:f6:f9:d4:d1:4c: 80:dc:99:fa:de:df:ee:e1:79:f1:f4:ec:c6:0f:b1: 6e:8e:7c:50:ce:ea:26:71:8a:d0:f1:97:41:62:51: 27:5f:73:f8:79:ab:f9:ed:2d:6a:db:bc:78:5b:85: 6a:cb:0a:73:fd:ea:71:83:7b:f5:ba:3b:d4:d7:f3: 44:39:36:a9:ac:9a:24:03:dd:44:a8:5f:f3:b8:0f: e9:03:65:ad:c2:ad:00:4d:b3:c5:3e:3f:3f:1d:c1: a1:ca:17:5d:2a:50:6c:72:a4:46:04:50:f7:b2:42: c6:9f:03:b1:e7:f6:57:0a:de:2b:2a:80:c0:7e:dc: 11:78:79:9f:f2:8c:7d:f0:4c:3e:f5:f8:dc:f4:0a: 8e:a7:7c:96:c0:2c:e3:73:65:61:b5:a6:50:9a:f9: ff:2b:9a:c9:da:91:79:e5:18:76:34:17:61:ff:74: 3a:af:a5:f5:a7:c1:d8:44:16:7d:e9:95:6f:76:77: a7:3c:39:82:6e:57:57:59:bb:f0:34:50:9e:44:69: 82:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:94:32:E5:91:88:B6:A7:CE:96:C4:75:70:46:D2:B3:61:62:79:9D X509v3 Authority Key Identifier: keyid:1B:E3:AB:0F:8D:B2:65:AB:B2:28:7E:75:15:1E:7F:5A:93:B2:C7:36 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/50/G-OrD42yZauyKH51FR5_WpOyxzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G-OrD42yZauyKH51FR5_WpOyxzY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/50/kpQy5ZGItqfOlsR1cEbSs2FieZ0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.132.32.0/19 Signature Algorithm: sha256WithRSAEncryption c6:73:2a:19:cf:ab:f7:95:6c:f6:0e:f3:a0:b9:d8:bc:b7:18: e3:75:80:b0:b1:cd:de:19:d3:43:28:2d:e5:46:a4:27:64:1f: a4:33:66:47:e6:e0:8b:50:5d:1d:f6:19:cd:31:d6:8e:a1:f7: 4c:81:41:39:8b:18:e8:29:be:47:46:33:2a:46:33:e3:32:03: ed:ad:04:8a:e2:71:4d:9e:21:03:ae:6c:cf:22:5d:a2:f3:0f: 5e:08:bb:a3:54:39:7f:dc:3c:a7:2f:eb:df:11:1d:f2:52:a7: f1:1f:49:13:6c:1e:08:84:b9:f3:eb:66:f1:8e:be:e3:ec:c4: 78:92:c3:31:80:61:c5:aa:e4:bc:24:96:d4:18:cd:03:6b:66: e5:70:f6:03:6a:a6:52:85:07:4f:c4:21:54:f5:52:46:18:89: a0:80:53:27:71:c1:00:96:38:ec:b3:65:4c:00:4c:4b:13:67: e6:e8:7d:00:08:56:42:bf:9e:d1:08:a0:64:25:4f:c9:aa:37: 1e:23:b3:15:d5:45:35:d0:87:75:47:d2:c3:4e:bc:e7:54:d8: 9d:27:43:12:41:fc:18:47:e1:a2:f3:4d:01:cd:ca:55:31:95: d3:c4:62:e1:0e:ad:78:c7:fe:62:b9:ce:ee:14:45:04:3b:4e: f7:b0:ee:c0 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBXzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxQkUz QUIwRjhEQjI2NUFCQjIyODdFNzUxNTFFN0Y1QTkzQjJDNzM2MB4XDTI0MDgzMTAx MzM1NloXDTI1MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoOTI5NDMyRTU5MTg4QjZB N0NFOTZDNDc1NzA0NkQyQjM2MTYyNzk5RDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAK27jFwOgYbIzZ6rt3+mosKi+RUlVa5v/rFSjLIPg8IXq9H+yYgH IG8ykI9JxnliUYjlA2H8kvb51NFMgNyZ+t7f7uF58fTsxg+xbo58UM7qJnGK0PGX QWJRJ19z+Hmr+e0tatu8eFuFassKc/3qcYN79bo71NfzRDk2qayaJAPdRKhf87gP 6QNlrcKtAE2zxT4/Px3BocoXXSpQbHKkRgRQ97JCxp8Dsef2VwreKyqAwH7cEXh5 n/KMffBMPvX43PQKjqd8lsAs43NlYbWmUJr5/yuaydqReeUYdjQXYf90Oq+l9afB 2EQWfemVb3Z3pzw5gm5XV1m78DRQnkRpgmUCAwEAAaOCAiIwggIeMB0GA1UdDgQW BBSSlDLlkYi2p86WxHVwRtKzYWJ5nTAfBgNVHSMEGDAWgBQb46sPjbJlq7IofnUV Hn9ak7LHNjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTAvRy1PckQ0MnlaYXV5S0g1MUZSNV9XcE95eHpZLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvRy1PckQ0MnlaYXV5S0g1MUZSNV9XcE95 eHpZLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzUwL2twUXk1WkdJdHFmT2xzUjFjRWJTczJGaWVaMC5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAXThCAwDQYJKoZIhvcNAQELBQADggEBAMZzKhnPq/eVbPYO86C52Ly3GON1gLCx zd4Z00MoLeVGpCdkH6QzZkfm4ItQXR32Gc0x1o6h90yBQTmLGOgpvkdGMypGM+My A+2tBIricU2eIQOubM8iXaLzD14Iu6NUOX/cPKcv698RHfJSp/EfSRNsHgiEufPr ZvGOvuPsxHiSwzGAYcWq5LwkltQYzQNrZuVw9gNqplKFB0/EIVT1UkYYiaCAUydx wQCWOOyzZUwATEsTZ+bofQAIVkK/ntEIoGQlT8mqNx4jsxXVRTXQh3VH0sNOvOdU 2J0nQxJB/BhH4aLzTQHNylUxldPEYuEOrXjH/mK5zu4URQQ7Tvew7sA= -----END CERTIFICATE-----Generated at Sun Feb 16 22:09:34 2025 by rpki-client