$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/Q5FhH0QRYQO5x9I20cpZZ1b-ozE.roa File: Q5FhH0QRYQO5x9I20cpZZ1b-ozE.roa (raw, json) Hash identifier: ivVzGRaZgAe9PvkRkVMPu/iENGWgxUjkaWbvcyBFkRM= Subject key identifier: 43:91:61:1F:44:11:61:03:B9:C7:D2:36:D1:CA:59:67:56:FE:A3:31 Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Certificate serial: 04E9 Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/Q5FhH0QRYQO5x9I20cpZZ1b-ozE.roa Signing time: Thu 29 Feb 2024 01:36:01 +0000 ROA not before: Thu 29 Feb 2024 01:36:01 +0000 ROA not after: Fri 14 Feb 2025 01:30:03 +0000 asID: 10010 IP address blocks: 218.40.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1257 (0x4e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Validity Not Before: Feb 29 01:36:01 2024 GMT Not After : Feb 14 01:30:03 2025 GMT Subject: CN=4391611F44116103B9C7D236D1CA596756FEA331 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:33:34:cf:bd:32:5e:6e:33:b4:af:10:9b:4b: ee:40:30:14:74:7d:53:ce:99:06:5f:e4:06:5a:4e: 72:16:a8:a9:81:7d:18:05:16:f8:87:83:fa:f4:bc: 2a:81:ac:2b:e0:ce:1a:cf:2f:19:4f:f3:92:6d:64: 6f:55:16:be:a3:5a:ab:9d:db:12:2b:ed:c1:1e:bb: 6c:d4:aa:1c:5d:b7:1c:ae:6b:9c:d7:2e:ce:fb:5a: a2:c1:a0:0a:ef:ea:0c:53:b0:42:bf:f4:bf:bc:9c: 36:4e:14:82:3f:ac:02:ce:7f:42:7b:04:40:56:8e: 6a:40:3d:9e:7d:bb:1e:c4:cc:25:8d:61:b7:bc:56: 57:19:44:a9:6f:ef:9e:25:e2:72:73:32:68:15:9e: 4c:7d:80:91:12:9d:ec:b1:2a:30:a5:f9:6b:6e:b8: 40:59:89:b6:bb:9f:d2:58:fb:9e:e5:cb:86:21:06: 06:72:65:3a:41:40:ec:56:9e:f7:2e:7f:ae:27:44: 5d:51:1e:a2:78:89:df:2c:e5:22:62:77:23:bd:b2: b8:22:23:73:c8:00:b1:d8:1b:8e:0e:cd:e5:62:da: 8c:3b:2c:04:09:7d:03:19:76:6d:d1:3f:b9:d6:6e: c7:76:b9:e5:ba:8d:87:a4:7a:c1:43:57:5d:23:fd: e5:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:91:61:1F:44:11:61:03:B9:C7:D2:36:D1:CA:59:67:56:FE:A3:31 X509v3 Authority Key Identifier: keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/Q5FhH0QRYQO5x9I20cpZZ1b-ozE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.40.208.0/20 Signature Algorithm: sha256WithRSAEncryption a3:40:d1:f4:8e:77:37:57:f0:7a:27:58:b4:e3:3c:ef:c6:44: 8f:ed:24:56:79:8d:a0:50:f2:84:70:4c:03:0a:cd:9a:7b:1b: ef:b1:46:e8:8e:1f:9a:3d:19:30:24:63:56:14:7d:41:12:be: 57:73:75:9f:28:e0:58:c2:94:e5:f9:b6:85:4d:83:13:04:b5: 50:a6:67:2a:c6:f0:75:8a:ff:76:23:13:7e:ac:78:56:64:bd: dc:fd:29:89:e5:fd:8d:61:f9:73:4a:fc:94:5b:72:e1:81:be: 3a:2f:40:b3:ea:c0:76:b9:6c:65:42:22:d5:84:e1:c2:3c:f9: 88:1d:30:d2:cf:38:d4:5f:70:b0:de:ff:30:0e:d9:39:24:fe: 79:49:24:62:d9:28:07:cf:bc:42:82:ee:3a:47:b7:3f:1e:13: 46:49:28:a0:52:5b:ee:da:b7:d1:10:52:c0:a0:5a:a2:c0:9b: 5d:59:5b:94:87:4d:1e:fc:df:c7:44:30:58:e1:af:c9:dd:47: 21:b3:9f:7c:d8:39:6d:a7:61:cb:99:e8:48:f1:a0:8b:4b:ec: dd:83:8c:c2:35:1f:e6:bd:70:d4:24:80:5b:74:a2:e2:ee:61: 0b:ea:93:43:7b:a9:6c:7b:63:70:9c:39:51:2c:89:01:3a:3a: e9:98:a6:73 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBOkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkJE Q0Q1MjZCMDlFNzg5N0Y3MUZFMDQ4NThCRTc1QzA2RUM0RjEzQTAeFw0yNDAyMjkw MTM2MDFaFw0yNTAyMTQwMTMwMDNaMDMxMTAvBgNVBAMTKDQzOTE2MTFGNDQxMTYx MDNCOUM3RDIzNkQxQ0E1OTY3NTZGRUEzMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8MzTPvTJebjO0rxCbS+5AMBR0fVPOmQZf5AZaTnIWqKmBfRgF FviHg/r0vCqBrCvgzhrPLxlP85JtZG9VFr6jWqud2xIr7cEeu2zUqhxdtxyua5zX Ls77WqLBoArv6gxTsEK/9L+8nDZOFII/rALOf0J7BEBWjmpAPZ59ux7EzCWNYbe8 VlcZRKlv754l4nJzMmgVnkx9gJESneyxKjCl+WtuuEBZiba7n9JY+57ly4YhBgZy ZTpBQOxWnvcuf64nRF1RHqJ4id8s5SJidyO9srgiI3PIALHYG44OzeVi2ow7LAQJ fQMZdm3RP7nWbsd2ueW6jYekesFDV10j/eWRAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUQ5FhH0QRYQO5x9I20cpZZ1b+ozEwHwYDVR0jBBgwFoAUu9zVJrCeeJf3H+BI WL51wG7E8TowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzU0NS91OXpWSnJDZWVKZjNILUJJV0w1MXdHN0U4VG8uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC91OXpWSnJDZWVKZjNILUJJV0w1MXdH N0U4VG8uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNTQ1L1E1RmhIMFFSWVFPNXg5STIwY3BaWjFiLW96RS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATaKNAwDQYJKoZIhvcNAQELBQADggEBAKNA0fSOdzdX8HonWLTjPO/GRI/t JFZ5jaBQ8oRwTAMKzZp7G++xRuiOH5o9GTAkY1YUfUESvldzdZ8o4FjClOX5toVN gxMEtVCmZyrG8HWK/3YjE36seFZkvdz9KYnl/Y1h+XNK/JRbcuGBvjovQLPqwHa5 bGVCItWE4cI8+YgdMNLPONRfcLDe/zAO2Tkk/nlJJGLZKAfPvEKC7jpHtz8eE0ZJ KKBSW+7at9EQUsCgWqLAm11ZW5SHTR7838dEMFjhr8ndRyGzn3zYOW2nYcuZ6Ejx oItL7N2DjMI1H+a9cNQkgFt0ouLuYQvqk0N7qWx7Y3CcOVEsiQE6OumYpnM= -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:05 2024 by rpki-client on console-fra.rpki-client.org