$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/524/2tfCUV_uz9A4cuYQPukBhWSb95s.roa File: 2tfCUV_uz9A4cuYQPukBhWSb95s.roa (raw, json) Hash identifier: rLb9OLvnUAWM0boRqUkiI5TRFDZgMEpErnM1W8cSidY= Subject key identifier: DA:D7:C2:51:5F:EE:CF:D0:38:72:E6:10:3E:E9:01:85:64:9B:F7:9B Certificate issuer: /CN=EE13ACCF7E77B0292AE17B05340211C8F971760B Certificate serial: 2A Authority key identifier: EE:13:AC:CF:7E:77:B0:29:2A:E1:7B:05:34:02:11:C8:F9:71:76:0B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/7hOsz353sCkq4XsFNAIRyPlxdgs.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/524/2tfCUV_uz9A4cuYQPukBhWSb95s.roa Signing time: Thu 31 Oct 2024 01:31:34 +0000 ROA not before: Thu 31 Oct 2024 01:31:34 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 7527 IP address blocks: 210.171.226.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/524/7hOsz353sCkq4XsFNAIRyPlxdgs.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/524/7hOsz353sCkq4XsFNAIRyPlxdgs.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/7hOsz353sCkq4XsFNAIRyPlxdgs.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 17:05:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EE13ACCF7E77B0292AE17B05340211C8F971760B Validity Not Before: Oct 31 01:31:34 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=DAD7C2515FEECFD03872E6103EE90185649BF79B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9c:3a:7b:c2:b7:76:24:d8:eb:23:8b:61:ad: 58:4d:9b:d3:f5:a1:a7:28:0f:9e:a1:74:8f:06:b3: e7:d5:28:a8:17:e3:7b:a7:b9:58:17:2b:5f:3a:ee: dd:49:28:2a:02:99:f6:6d:a4:47:c2:ae:4b:93:4f: aa:5d:97:0f:8a:ca:b6:24:1c:d6:e2:f5:f7:ba:59: 8e:23:fc:c7:40:f0:b4:6d:3b:bb:b2:34:e1:5d:e5: 20:67:e5:8f:7e:01:0e:ed:1b:99:0f:e3:2b:c5:0c: 94:ff:f2:fd:72:60:a1:01:cc:04:d3:fa:d7:9c:90: 63:20:49:59:35:56:50:58:eb:28:0d:92:e1:e0:5d: c3:40:03:6b:69:bf:79:49:05:2f:73:b6:cd:0b:c6: 7c:ec:37:c3:6c:0b:dd:b1:6f:e1:ef:bd:4f:c3:3b: 1a:1c:96:63:3e:61:6e:77:2f:ec:69:cc:d8:91:34: 8e:cf:1a:bd:1e:96:18:3b:18:62:13:6d:24:d5:a8: 4a:c9:ee:7d:76:64:f4:34:c0:68:dc:18:ac:8b:11: a5:6e:ac:3f:68:14:6b:ca:b0:73:12:e9:73:0e:de: ff:30:c5:4a:3b:4b:91:ae:59:f5:8c:d1:0e:20:84: 42:7b:da:05:de:be:05:91:7c:bf:56:12:f6:c4:8a: 6a:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:D7:C2:51:5F:EE:CF:D0:38:72:E6:10:3E:E9:01:85:64:9B:F7:9B X509v3 Authority Key Identifier: keyid:EE:13:AC:CF:7E:77:B0:29:2A:E1:7B:05:34:02:11:C8:F9:71:76:0B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/524/7hOsz353sCkq4XsFNAIRyPlxdgs.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/7hOsz353sCkq4XsFNAIRyPlxdgs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/524/2tfCUV_uz9A4cuYQPukBhWSb95s.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.171.226.0/23 Signature Algorithm: sha256WithRSAEncryption 94:2b:5a:ea:13:b2:70:64:a6:4d:a2:be:5d:34:5f:3b:a1:c8: 39:8b:d5:82:fa:96:85:ec:55:5f:77:37:ee:f1:96:31:7a:20: ee:4c:cb:06:b3:bd:60:10:bc:64:be:75:7f:89:d2:b7:95:73: bd:24:7b:e7:2b:17:4f:3c:74:55:92:9f:0b:fd:ce:80:ac:56: f4:f8:bd:ce:6c:5e:ab:48:75:ab:00:bf:a0:dc:7c:6f:97:cd: 4b:05:b4:c7:34:e1:54:2f:03:84:ef:a6:21:2d:e9:20:6f:8a: 07:e4:2c:ca:49:be:90:85:bc:ac:62:d6:3b:e7:85:c0:02:bc: 45:9b:98:21:66:e2:95:fb:70:13:9b:7a:b6:ca:61:b7:52:0f: aa:af:7a:18:90:cb:a3:e3:0e:50:b5:f6:e0:09:8e:df:2e:2f: 9f:3c:c0:6b:6e:38:ec:31:d7:96:7b:ca:56:3d:cf:b6:89:74: 15:72:7d:a2:8e:d3:d1:62:a5:b5:dc:bc:f1:30:8d:49:bc:4f: 0f:8f:e0:bd:a6:82:08:05:9d:da:e1:19:f2:28:3d:ab:0d:2b: a2:84:ce:a4:e8:ae:ad:f7:2c:74:ff:8c:6f:bf:3c:a2:29:b8: 94:06:d8:da:14:e4:aa:f7:69:62:77:47:60:65:1a:39:ca:2f: 27:5b:89:42 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBKjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhFRTEz QUNDRjdFNzdCMDI5MkFFMTdCMDUzNDAyMTFDOEY5NzE3NjBCMB4XDTI0MTAzMTAx MzEzNFoXDTI1MTAxNTAxMzAwMlowMzExMC8GA1UEAxMoREFEN0MyNTE1RkVFQ0ZE MDM4NzJFNjEwM0VFOTAxODU2NDlCRjc5QjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALScOnvCt3Yk2Osji2GtWE2b0/WhpygPnqF0jwaz59UoqBfje6e5 WBcrXzru3UkoKgKZ9m2kR8KuS5NPql2XD4rKtiQc1uL197pZjiP8x0DwtG07u7I0 4V3lIGflj34BDu0bmQ/jK8UMlP/y/XJgoQHMBNP615yQYyBJWTVWUFjrKA2S4eBd w0ADa2m/eUkFL3O2zQvGfOw3w2wL3bFv4e+9T8M7GhyWYz5hbncv7GnM2JE0js8a vR6WGDsYYhNtJNWoSsnufXZk9DTAaNwYrIsRpW6sP2gUa8qwcxLpcw7e/zDFSjtL ka5Z9YzRDiCEQnvaBd6+BZF8v1YS9sSKav8CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTa18JRX+7P0Dhy5hA+6QGFZJv3mzAfBgNVHSMEGDAWgBTuE6zPfnewKSrhewU0 AhHI+XF2CzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTI0LzdoT3N6MzUzc0NrcTRYc0ZOQUlSeVBseGRncy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzdoT3N6MzUzc0NrcTRYc0ZOQUlSeVBs eGRncy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81MjQvMnRmQ1VWX3V6OUE0Y3VZUVB1a0JoV1NiOTVzLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAdKr4jANBgkqhkiG9w0BAQsFAAOCAQEAlCta6hOycGSmTaK+XTRfO6HIOYvV gvqWhexVX3c37vGWMXog7kzLBrO9YBC8ZL51f4nSt5VzvSR75ysXTzx0VZKfC/3O gKxW9Pi9zmxeq0h1qwC/oNx8b5fNSwW0xzThVC8DhO+mIS3pIG+KB+Qsykm+kIW8 rGLWO+eFwAK8RZuYIWbilftwE5t6tspht1IPqq96GJDLo+MOULX24AmO3y4vnzzA a2447DHXlnvKVj3Ptol0FXJ9oo7T0WKltdy88TCNSbxPD4/gvaaCCAWd2uEZ8ig9 qw0rooTOpOiurfcsdP+Mb788oim4lAbY2hTkqvdpYndHYGUaOcovJ1uJQg== -----END CERTIFICATE-----Generated at Mon Nov 25 18:45:04 2024 by rpki-client on console-ams.rpki-client.org