$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/530/7kvVSo-Vp2Zor29jLwzZvv4B1uA.roa File: 7kvVSo-Vp2Zor29jLwzZvv4B1uA.roa (raw, json) Hash identifier: iRkBdNO/UJTH1bbqMnNLV3dmUdUW//Yx36pvIZNi6oM= Subject key identifier: EE:4B:D5:4A:8F:95:A7:66:68:AF:6F:63:2F:0C:D9:BE:FE:01:D6:E0 Certificate issuer: /CN=40D220B9E4A6358E03CD47864517D9D300B06FF0 Certificate serial: 4E Authority key identifier: 40:D2:20:B9:E4:A6:35:8E:03:CD:47:86:45:17:D9:D3:00:B0:6F:F0 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QNIgueSmNY4DzUeGRRfZ0wCwb_A.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/7kvVSo-Vp2Zor29jLwzZvv4B1uA.roa Signing time: Thu 31 Oct 2024 01:30:00 +0000 ROA not before: Thu 31 Oct 2024 01:30:00 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 131925 IP address blocks: 160.237.184.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/QNIgueSmNY4DzUeGRRfZ0wCwb_A.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/QNIgueSmNY4DzUeGRRfZ0wCwb_A.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QNIgueSmNY4DzUeGRRfZ0wCwb_A.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:32:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40D220B9E4A6358E03CD47864517D9D300B06FF0 Validity Not Before: Oct 31 01:30:00 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=EE4BD54A8F95A76668AF6F632F0CD9BEFE01D6E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:2b:8e:ae:f2:80:04:bf:13:a1:ee:68:7b:be: a3:f0:5c:51:47:e3:25:41:b1:6f:a1:11:6b:e3:ce: 92:2f:87:1e:d2:08:0c:4f:d5:aa:4e:f5:5e:9b:95: 37:bb:db:a6:f7:bd:83:ac:23:d2:2d:42:1d:e0:22: 1e:10:f9:55:5e:43:12:66:8d:eb:ef:ee:76:22:9d: e1:31:ef:8d:c6:77:c7:db:e3:8a:c8:5d:49:cd:20: 66:5d:9f:6f:ea:08:3f:8c:7e:75:f6:f2:d9:30:d4: 8b:41:1c:e3:67:76:32:31:81:4a:89:8c:6e:94:c8: 99:7a:fc:a8:3e:67:5a:1d:63:1e:8e:e4:47:ff:16: 47:b2:71:a2:93:3f:99:18:07:0c:e1:b3:6e:64:35: 04:d5:b5:d8:be:4e:06:77:af:3f:a0:83:de:da:9d: 4d:11:e1:83:bb:51:08:76:1c:db:ab:0d:23:68:35: be:5f:34:12:91:96:29:20:d3:70:f6:3e:4f:93:0e: 9e:74:56:be:e4:66:ec:6c:7a:d8:24:e0:49:67:12: e9:68:80:94:07:aa:e5:4e:db:da:92:a6:0f:38:17: 2d:e2:a0:65:05:d9:4a:65:95:ca:a1:70:c5:7e:5a: 5f:13:18:dc:d6:e6:3f:c7:d6:fe:91:95:e2:08:cd: ac:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:4B:D5:4A:8F:95:A7:66:68:AF:6F:63:2F:0C:D9:BE:FE:01:D6:E0 X509v3 Authority Key Identifier: keyid:40:D2:20:B9:E4:A6:35:8E:03:CD:47:86:45:17:D9:D3:00:B0:6F:F0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/QNIgueSmNY4DzUeGRRfZ0wCwb_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QNIgueSmNY4DzUeGRRfZ0wCwb_A.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/7kvVSo-Vp2Zor29jLwzZvv4B1uA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.237.184.0/22 Signature Algorithm: sha256WithRSAEncryption c0:8b:c4:76:1b:2d:17:dc:8a:4c:49:fe:c2:3e:89:35:bc:19: 27:79:82:15:cd:28:ca:02:b9:ff:fa:1c:91:72:6c:37:e0:09: c1:fd:cc:29:54:f4:cf:3a:52:4f:68:0c:01:3a:09:b5:76:44: a6:9e:b2:dc:c9:44:15:10:7d:29:ae:46:c5:9e:0a:02:e7:1d: cc:f5:71:7f:a1:cb:7c:c9:77:af:f2:a8:37:f0:b7:9f:3b:1a: 97:84:b4:6d:9d:05:48:36:ec:60:57:b2:b9:9c:a5:55:30:97: 5a:d2:4c:07:4f:8b:48:66:0c:38:14:42:5b:2b:62:6e:80:a1: 06:3b:0f:43:4f:c4:39:60:83:82:0b:43:af:f1:9d:d1:fc:ef: 6d:79:7a:9f:b8:62:60:ef:bb:49:94:91:c8:db:c1:69:bd:ef: e6:21:45:47:fd:66:55:eb:9d:40:c4:06:c5:67:62:c5:22:e2: 0b:ad:7e:9c:48:aa:9d:f4:c0:6f:48:dd:21:fd:67:4c:c4:8c: 3f:67:30:bd:ad:67:57:94:8d:0a:f2:e5:3c:01:36:b8:b1:97: 19:1c:a8:26:76:c6:82:0c:d5:d3:cd:92:b4:35:34:ad:95:b5: ec:15:11:e6:88:5b:b1:a0:e8:b9:80:2e:29:5c:68:4d:a8:b9: 53:ce:0f:03 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBTjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0MEQy MjBCOUU0QTYzNThFMDNDRDQ3ODY0NTE3RDlEMzAwQjA2RkYwMB4XDTI0MTAzMTAx MzAwMFoXDTI1MTAxNTAxMzAwMlowMzExMC8GA1UEAxMoRUU0QkQ1NEE4Rjk1QTc2 NjY4QUY2RjYzMkYwQ0Q5QkVGRTAxRDZFMDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMkrjq7ygAS/E6HuaHu+o/BcUUfjJUGxb6ERa+POki+HHtIIDE/V qk71XpuVN7vbpve9g6wj0i1CHeAiHhD5VV5DEmaN6+/udiKd4THvjcZ3x9vjishd Sc0gZl2fb+oIP4x+dfby2TDUi0Ec42d2MjGBSomMbpTImXr8qD5nWh1jHo7kR/8W R7JxopM/mRgHDOGzbmQ1BNW12L5OBnevP6CD3tqdTRHhg7tRCHYc26sNI2g1vl80 EpGWKSDTcPY+T5MOnnRWvuRm7Gx62CTgSWcS6WiAlAeq5U7b2pKmDzgXLeKgZQXZ SmWVyqFwxX5aXxMY3NbmP8fW/pGV4gjNrJkCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTuS9VKj5WnZmivb2MvDNm+/gHW4DAfBgNVHSMEGDAWgBRA0iC55KY1jgPNR4ZF F9nTALBv8DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTMwL1FOSWd1ZVNtTlk0RHpVZUdSUmZaMHdDd2JfQS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1FOSWd1ZVNtTlk0RHpVZUdSUmZaMHdD d2JfQS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81MzAvN2t2VlNvLVZwMlpvcjI5akx3elp2djRCMXVBLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAqDtuDANBgkqhkiG9w0BAQsFAAOCAQEAwIvEdhstF9yKTEn+wj6JNbwZJ3mC Fc0oygK5//ockXJsN+AJwf3MKVT0zzpST2gMAToJtXZEpp6y3MlEFRB9Ka5GxZ4K AucdzPVxf6HLfMl3r/KoN/C3nzsal4S0bZ0FSDbsYFeyuZylVTCXWtJMB0+LSGYM OBRCWytiboChBjsPQ0/EOWCDggtDr/Gd0fzvbXl6n7hiYO+7SZSRyNvBab3v5iFF R/1mVeudQMQGxWdixSLiC61+nEiqnfTAb0jdIf1nTMSMP2cwva1nV5SNCvLlPAE2 uLGXGRyoJnbGggzV082StDU0rZW17BUR5ohbsaDouYAuKVxoTai5U84PAw== -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:04 2024 by rpki-client on console-fra.rpki-client.org