$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/573/pgibcTE6ePDqOW_5FyvpcNckS7k.roa File: pgibcTE6ePDqOW_5FyvpcNckS7k.roa (raw, json) Hash identifier: wsoEnCIf7Uxe2yTHchZ5bX/N49GZpkYcZQZLOd+ymRM= Subject key identifier: A6:08:9B:71:31:3A:78:F0:EA:39:6F:F9:17:2B:E9:70:D7:24:4B:B9 Certificate issuer: /CN=C814D85BD48360A65D9D4144EC6D20752C1EDC7D Certificate serial: 5E Authority key identifier: C8:14:D8:5B:D4:83:60:A6:5D:9D:41:44:EC:6D:20:75:2C:1E:DC:7D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/yBTYW9SDYKZdnUFE7G0gdSwe3H0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/573/pgibcTE6ePDqOW_5FyvpcNckS7k.roa Signing time: Wed 31 Jul 2024 01:28:33 +0000 ROA not before: Wed 31 Jul 2024 01:28:33 +0000 ROA not after: Tue 15 Jul 2025 01:30:02 +0000 asID: 131896 IP address blocks: 103.239.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/573/yBTYW9SDYKZdnUFE7G0gdSwe3H0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/573/yBTYW9SDYKZdnUFE7G0gdSwe3H0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/yBTYW9SDYKZdnUFE7G0gdSwe3H0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C814D85BD48360A65D9D4144EC6D20752C1EDC7D Validity Not Before: Jul 31 01:28:33 2024 GMT Not After : Jul 15 01:30:02 2025 GMT Subject: CN=A6089B71313A78F0EA396FF9172BE970D7244BB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:3b:f0:bb:c8:a3:65:40:ce:51:fb:47:bb:4f: 0f:8a:be:ad:3c:d1:2f:3b:b3:57:f5:03:aa:aa:ec: 24:38:bd:7d:a9:d0:67:84:24:e3:67:d9:69:f0:c0: 33:a3:85:6d:75:18:67:7a:9d:df:9b:b8:12:f0:c1: be:af:fd:e9:ef:5e:9c:ce:a6:6a:35:71:b4:3b:11: 35:71:f5:6a:b8:21:2a:89:dc:ee:c9:99:f9:13:c5: de:7f:06:26:6f:7d:70:6c:80:bb:ff:7a:32:fc:bc: 44:66:2f:95:63:ba:52:55:96:39:06:88:fa:bd:ac: 62:fe:07:08:4d:3b:90:df:61:d2:6b:47:c3:fe:00: 0b:ce:06:ad:56:17:78:e8:be:bd:6c:1c:12:ec:21: ce:fd:53:20:8b:9f:16:bd:d2:2d:f2:3d:95:ff:ed: 1a:32:82:b5:b2:80:61:9d:db:e2:c4:01:fc:7c:bf: d3:26:3a:5c:27:32:22:59:f3:d5:5d:0d:09:7c:b8: ee:a0:69:74:6b:be:2a:71:d1:36:3d:cb:74:98:8e: 9e:bc:f3:38:af:17:7a:d8:20:cd:c0:4a:98:3d:6f: 7d:83:e6:85:97:57:71:82:5a:e3:0a:de:f4:86:fb: 2e:aa:c6:17:c6:31:a1:e3:d5:43:85:e2:f8:66:c2: e6:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:08:9B:71:31:3A:78:F0:EA:39:6F:F9:17:2B:E9:70:D7:24:4B:B9 X509v3 Authority Key Identifier: keyid:C8:14:D8:5B:D4:83:60:A6:5D:9D:41:44:EC:6D:20:75:2C:1E:DC:7D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/573/yBTYW9SDYKZdnUFE7G0gdSwe3H0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/yBTYW9SDYKZdnUFE7G0gdSwe3H0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/573/pgibcTE6ePDqOW_5FyvpcNckS7k.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.239.18.0/24 Signature Algorithm: sha256WithRSAEncryption 51:0b:6e:8e:f5:d5:14:e3:df:0e:3a:22:f6:3d:6e:1f:46:e8: 6f:df:91:7f:ff:b7:cb:e6:bc:33:5f:bc:20:04:e9:45:ac:ff: 5c:4e:35:fb:6c:8b:44:56:55:41:89:87:bd:6a:e4:2a:5e:6a: 30:ae:99:d2:c3:a5:c6:59:7b:66:25:e3:c2:c2:db:2c:3e:46: aa:18:84:68:87:6c:a6:23:22:55:aa:0a:de:e9:ca:c3:38:3e: 9d:46:7d:58:7a:7e:f5:0c:13:f3:69:48:41:f4:b1:5a:a8:28: 9b:11:f5:2e:2a:92:f3:68:07:2e:85:b7:48:33:94:6c:2a:da: 0e:8d:5c:9a:c1:6c:02:d5:91:2c:b2:db:54:bb:ff:36:71:8e: e6:66:0e:d6:80:8c:fa:5f:65:3f:32:fc:ee:b1:93:39:2d:24: 61:ea:52:e9:f7:c0:7b:6d:44:b5:14:60:b1:ed:79:e5:ed:86: 20:70:68:c9:87:4d:8b:e3:36:d5:a4:9d:3f:26:e9:2f:28:bf: ca:48:98:d3:cc:8c:84:f0:a8:ea:b4:34:b9:d1:ec:17:7c:c6: c8:10:af:42:35:6d:44:3a:78:74:f0:fe:ed:6e:49:cd:22:a3: 40:e6:94:31:39:fe:be:c7:67:bd:64:be:de:c0:94:3c:72:21: 64:ae:af:98 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBXjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDODE0 RDg1QkQ0ODM2MEE2NUQ5RDQxNDRFQzZEMjA3NTJDMUVEQzdEMB4XDTI0MDczMTAx MjgzM1oXDTI1MDcxNTAxMzAwMlowMzExMC8GA1UEAxMoQTYwODlCNzEzMTNBNzhG MEVBMzk2RkY5MTcyQkU5NzBENzI0NEJCOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALY78LvIo2VAzlH7R7tPD4q+rTzRLzuzV/UDqqrsJDi9fanQZ4Qk 42fZafDAM6OFbXUYZ3qd35u4EvDBvq/96e9enM6majVxtDsRNXH1arghKonc7smZ +RPF3n8GJm99cGyAu/96Mvy8RGYvlWO6UlWWOQaI+r2sYv4HCE07kN9h0mtHw/4A C84GrVYXeOi+vWwcEuwhzv1TIIufFr3SLfI9lf/tGjKCtbKAYZ3b4sQB/Hy/0yY6 XCcyIlnz1V0NCXy47qBpdGu+KnHRNj3LdJiOnrzzOK8XetggzcBKmD1vfYPmhZdX cYJa4wre9Ib7LqrGF8YxoePVQ4Xi+GbC5i0CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSmCJtxMTp48Oo5b/kXK+lw1yRLuTAfBgNVHSMEGDAWgBTIFNhb1INgpl2dQUTs bSB1LB7cfTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTczL3lCVFlXOVNEWUtaZG5VRkU3RzBnZFN3ZTNIMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3lCVFlXOVNEWUtaZG5VRkU3RzBnZFN3 ZTNIMC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81NzMvcGdpYmNURTZlUERxT1dfNUZ5dnBjTmNrUzdrLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGfvEjANBgkqhkiG9w0BAQsFAAOCAQEAUQtujvXVFOPfDjoi9j1uH0bob9+R f/+3y+a8M1+8IATpRaz/XE41+2yLRFZVQYmHvWrkKl5qMK6Z0sOlxll7ZiXjwsLb LD5GqhiEaIdspiMiVaoK3unKwzg+nUZ9WHp+9QwT82lIQfSxWqgomxH1LiqS82gH LoW3SDOUbCraDo1cmsFsAtWRLLLbVLv/NnGO5mYO1oCM+l9lPzL87rGTOS0kYepS 6ffAe21EtRRgse155e2GIHBoyYdNi+M21aSdPybpLyi/ykiY08yMhPCo6rQ0udHs F3zGyBCvQjVtRDp4dPD+7W5JzSKjQOaUMTn+vsdnvWS+3sCUPHIhZK6vmA== -----END CERTIFICATE-----Generated at Sun Feb 16 22:27:34 2025 by rpki-client