$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/Z6rw-DTlHsAT37uVkd1-uTmonUg.roa File: Z6rw-DTlHsAT37uVkd1-uTmonUg.roa (raw, json) Hash identifier: hBaLpxZnwcnsdG0cIV9RsJcCwWmq2lXFm6g2ruG+UAA= Subject key identifier: 67:AA:F0:F8:34:E5:1E:C0:13:DF:BB:95:91:DD:7E:B9:39:A8:9D:48 Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Certificate serial: 04E6 Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/Z6rw-DTlHsAT37uVkd1-uTmonUg.roa Signing time: Thu 29 Feb 2024 01:35:59 +0000 ROA not before: Thu 29 Feb 2024 01:35:59 +0000 ROA not after: Fri 14 Feb 2025 01:30:03 +0000 asID: 10010 IP address blocks: 42.125.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1254 (0x4e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Validity Not Before: Feb 29 01:35:59 2024 GMT Not After : Feb 14 01:30:03 2025 GMT Subject: CN=67AAF0F834E51EC013DFBB9591DD7EB939A89D48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e4:63:95:bc:d7:6b:9d:75:f6:b8:e2:81:56: f3:b5:c1:08:e7:3c:58:49:2c:30:a4:77:4b:a4:15: d6:c4:05:9d:44:cd:63:33:04:fb:1d:8b:3d:fe:7e: 72:8b:f5:a9:57:df:e5:53:7b:a3:3b:53:1d:ff:6a: 2c:e5:51:dc:96:52:53:7c:99:16:c5:b3:71:35:20: ce:81:16:fb:62:1e:59:eb:2c:4f:e6:16:49:5e:21: ea:61:e4:e1:0f:e4:7a:dc:d4:9c:fb:c5:ed:dd:21: 94:48:81:bb:b1:5e:04:3f:7e:9b:41:ed:53:d0:c0: 84:a1:63:f0:be:ea:be:91:1a:96:cc:6f:fc:b2:e9: 51:fc:13:3f:42:5a:14:49:fb:ba:7c:e6:e5:6e:df: 14:7e:4c:9b:27:e5:e6:81:ca:1f:25:04:f4:9c:66: e7:e1:08:46:53:7a:df:b2:41:5f:a8:51:9c:d8:03: 7d:ed:73:3b:91:43:f1:cc:12:46:97:cf:9f:4c:0f: 2d:a8:7b:0b:df:80:22:5c:54:49:9b:0e:5d:a7:65: 4e:c2:cf:23:f5:a9:0e:77:37:0e:61:84:26:9c:7a: a8:6b:7c:d6:d6:53:f9:aa:a0:2c:48:f0:8a:c6:4b: 32:cf:c8:04:5a:ea:41:bf:15:44:ae:73:cc:5c:17: 2a:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:AA:F0:F8:34:E5:1E:C0:13:DF:BB:95:91:DD:7E:B9:39:A8:9D:48 X509v3 Authority Key Identifier: keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/Z6rw-DTlHsAT37uVkd1-uTmonUg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 42.125.225.0/24 Signature Algorithm: sha256WithRSAEncryption 65:9c:88:65:c5:a9:e7:a5:67:cd:a8:05:b8:3f:84:16:49:5a: 54:f7:aa:f4:77:3c:60:d9:e1:e8:b6:45:ad:d3:44:08:9d:37: 8d:f9:56:37:6c:83:0f:20:0e:5d:62:f2:1a:7b:f5:19:75:7b: 0c:dc:0c:07:e8:0e:72:fa:7f:b5:76:8c:1d:e3:d9:da:1c:62: 81:1b:a3:8d:3c:23:04:3c:bd:85:f0:8b:cb:5a:12:e9:94:54: b0:9d:f8:f7:df:31:3f:fd:ff:ff:e1:2d:76:67:8d:18:fd:94: ba:da:5a:7d:ec:24:6a:9a:9f:68:d4:fe:19:c6:7b:ee:4a:d9: 67:57:85:ab:77:5d:f9:bd:39:3a:b6:8e:7c:44:f7:93:fc:56: 32:fa:11:7d:42:64:03:dd:ac:de:ac:b6:23:09:88:c5:9d:fd: 1f:dc:cd:74:c6:fb:1d:54:50:7f:0f:6c:aa:ea:3c:63:8c:04: aa:a3:53:c2:d8:ff:8d:43:67:7d:c3:1c:66:b8:ef:fd:c5:69: 02:c9:ba:82:b4:0e:67:28:c4:ec:b9:18:62:97:a5:dc:48:02: 07:84:6d:b7:d3:f3:bf:c5:96:73:1e:f8:34:6c:f8:ca:ac:6a: 18:ee:93:2d:64:fd:32:e2:19:45:e0:83:b4:d6:85:7d:c5:a2: 67:09:69:cc -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBOYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkJE Q0Q1MjZCMDlFNzg5N0Y3MUZFMDQ4NThCRTc1QzA2RUM0RjEzQTAeFw0yNDAyMjkw MTM1NTlaFw0yNTAyMTQwMTMwMDNaMDMxMTAvBgNVBAMTKDY3QUFGMEY4MzRFNTFF QzAxM0RGQkI5NTkxREQ3RUI5MzlBODlENDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDR5GOVvNdrnXX2uOKBVvO1wQjnPFhJLDCkd0ukFdbEBZ1EzWMz BPsdiz3+fnKL9alX3+VTe6M7Ux3/aizlUdyWUlN8mRbFs3E1IM6BFvtiHlnrLE/m FkleIeph5OEP5Hrc1Jz7xe3dIZRIgbuxXgQ/fptB7VPQwIShY/C+6r6RGpbMb/yy 6VH8Ez9CWhRJ+7p85uVu3xR+TJsn5eaByh8lBPScZufhCEZTet+yQV+oUZzYA33t czuRQ/HMEkaXz59MDy2oewvfgCJcVEmbDl2nZU7CzyP1qQ53Nw5hhCaceqhrfNbW U/mqoCxI8IrGSzLPyARa6kG/FUSuc8xcFyoxAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUZ6rw+DTlHsAT37uVkd1+uTmonUgwHwYDVR0jBBgwFoAUu9zVJrCeeJf3H+BI WL51wG7E8TowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzU0NS91OXpWSnJDZWVKZjNILUJJV0w1MXdHN0U4VG8uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC91OXpWSnJDZWVKZjNILUJJV0w1MXdH N0U4VG8uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNTQ1L1o2cnctRFRsSHNBVDM3dVZrZDEtdVRtb25VZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAqfeEwDQYJKoZIhvcNAQELBQADggEBAGWciGXFqeelZ82oBbg/hBZJWlT3 qvR3PGDZ4ei2Ra3TRAidN435Vjdsgw8gDl1i8hp79Rl1ewzcDAfoDnL6f7V2jB3j 2docYoEbo408IwQ8vYXwi8taEumUVLCd+PffMT/9///hLXZnjRj9lLraWn3sJGqa n2jU/hnGe+5K2WdXhat3Xfm9OTq2jnxE95P8VjL6EX1CZAPdrN6stiMJiMWd/R/c zXTG+x1UUH8PbKrqPGOMBKqjU8LY/41DZ33DHGa47/3FaQLJuoK0DmcoxOy5GGKX pdxIAgeEbbfT87/FlnMe+DRs+Mqsahjuky1k/TLiGUXgg7TWhX3FomcJacw= -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:05 2024 by rpki-client on console-fra.rpki-client.org