$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/6/3sFjEQ1mONBBaJrr3om2gmpeVOg.roa File: 3sFjEQ1mONBBaJrr3om2gmpeVOg.roa (raw, json) Hash identifier: xKGCIrx4oVR/ObKVoXIFOHLqzWn96YbghBCLiBq6PFk= Subject key identifier: DE:C1:63:11:0D:66:38:D0:41:68:9A:EB:DE:89:B6:82:6A:5E:54:E8 Certificate issuer: /CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Certificate serial: 0179 Authority key identifier: 29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/3sFjEQ1mONBBaJrr3om2gmpeVOg.roa Signing time: Wed 31 Jul 2024 01:34:19 +0000 ROA not before: Wed 31 Jul 2024 01:34:19 +0000 ROA not after: Tue 15 Jul 2025 01:30:02 +0000 asID: 2497 IP address blocks: 220.210.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 12:46:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 377 (0x179) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Validity Not Before: Jul 31 01:34:19 2024 GMT Not After : Jul 15 01:30:02 2025 GMT Subject: CN=DEC163110D6638D041689AEBDE89B6826A5E54E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:bf:0c:7c:6f:8b:af:b0:c3:53:de:0b:29:c5: 28:17:37:a7:4e:67:de:9a:72:0a:ad:54:56:76:74: 5e:ad:a1:01:7e:5f:de:50:c3:e5:1b:9f:b5:1e:74: 68:d4:8c:fb:d7:bc:d8:60:bd:2c:e7:5c:e1:7b:36: b1:19:5f:28:00:45:95:ef:b4:69:57:86:eb:ad:51: 33:47:b8:c8:f4:4d:59:7e:c5:aa:0b:6e:19:5d:8a: 36:cb:a3:67:c3:25:66:31:af:ea:f1:32:c7:86:6e: 4f:31:44:63:e1:6f:24:f1:8d:7b:31:d7:a6:a1:41: c7:c5:e5:ec:55:75:f8:f2:8d:d0:18:af:d1:ea:28: 3b:fc:45:eb:76:e6:95:ea:fb:72:45:1f:69:1b:5e: 42:18:d7:4a:85:ad:76:3f:76:c0:8e:51:d7:be:2b: 29:e2:e4:f8:80:2f:9a:3e:49:c3:5b:c4:3b:b2:50: 7e:69:ce:2f:8e:a6:56:1d:b9:63:b4:53:11:a8:50: 01:73:54:bf:4f:12:e6:93:26:74:73:5a:4f:c3:6f: 90:0e:e0:d2:23:c2:5f:c2:40:80:ba:d5:98:c5:f1: 10:fd:9a:06:d7:b6:b0:32:b6:f0:e8:04:18:2c:56: 30:1b:45:90:af:32:ab:ac:c2:17:e3:73:cb:0d:b7: df:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:C1:63:11:0D:66:38:D0:41:68:9A:EB:DE:89:B6:82:6A:5E:54:E8 X509v3 Authority Key Identifier: keyid:29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/3sFjEQ1mONBBaJrr3om2gmpeVOg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.210.128.0/18 Signature Algorithm: sha256WithRSAEncryption 21:b5:9a:ed:88:28:77:0f:c7:39:34:44:9a:c7:82:93:1b:a8: 92:28:be:eb:81:e7:33:a5:26:e7:0d:71:3e:2f:fd:f3:8d:df: 08:3c:90:dd:f9:08:b1:12:e1:91:3e:e9:ca:05:85:a8:b2:7c: 06:82:85:82:7d:11:3d:69:e4:f7:6c:dd:3f:9b:e5:28:20:d7: dc:88:0b:dd:04:95:66:1e:df:4c:89:9d:25:1b:b1:34:30:15: 3c:f1:c0:34:6c:a8:3a:60:0f:14:93:3f:04:19:34:d3:e4:14: dd:8d:a6:02:75:49:87:d5:c9:6b:a5:a8:3d:3a:ee:fe:d3:80: 56:04:00:f7:9a:4a:7e:75:36:e0:e5:f6:86:7b:a2:78:31:8d: 0f:27:8d:aa:af:b1:43:e1:37:be:08:3c:2c:69:af:f2:fe:6c: 1b:96:cd:03:db:cb:95:25:e0:52:7d:20:8e:ec:8f:0f:f9:24: 29:1f:5b:88:0a:ab:cc:2d:af:76:a2:98:4f:05:11:33:38:93: d0:03:66:78:8a:a4:55:45:12:8b:fc:45:7d:dc:53:e7:32:bb: c0:ad:c4:bb:47:88:bb:c1:3c:af:1b:13:71:b4:54:82:e7:24: f9:bd:9d:1d:0c:d5:d2:22:80:16:a9:97:b3:5c:c3:b7:cd:b3: a5:37:bf:96 -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgICAXkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjk4 M0NGRDVGOENBRkEwMDY4RDJFQkEyNUVEMEY3MDEyNDRCMTJGOTAeFw0yNDA3MzEw MTM0MTlaFw0yNTA3MTUwMTMwMDJaMDMxMTAvBgNVBAMTKERFQzE2MzExMEQ2NjM4 RDA0MTY4OUFFQkRFODlCNjgyNkE1RTU0RTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXvwx8b4uvsMNT3gspxSgXN6dOZ96acgqtVFZ2dF6toQF+X95Q w+Ubn7UedGjUjPvXvNhgvSznXOF7NrEZXygARZXvtGlXhuutUTNHuMj0TVl+xaoL bhldijbLo2fDJWYxr+rxMseGbk8xRGPhbyTxjXsx16ahQcfF5exVdfjyjdAYr9Hq KDv8Ret25pXq+3JFH2kbXkIY10qFrXY/dsCOUde+Kyni5PiAL5o+ScNbxDuyUH5p zi+OplYduWO0UxGoUAFzVL9PEuaTJnRzWk/Db5AO4NIjwl/CQIC61ZjF8RD9mgbX trAytvDoBBgsVjAbRZCvMquswhfjc8sNt98fAgMBAAGjggIgMIICHDAdBgNVHQ4E FgQU3sFjEQ1mONBBaJrr3om2gmpeVOgwHwYDVR0jBBgwFoAUKYPP1fjK+gBo0uui XtD3ASRLEvkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzYvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JMRXZrLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JM RXZrLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgbkGCCsGAQUFBwELBIGsMIGpMF8GCCsG AQUFBzALhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzYvM3NGakVRMW1PTkJCYUpycjNvbTJnbXBlVk9nLnJvYTBGBggr BgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3JyZHAv YXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BtzSgDANBgkqhkiG9w0BAQsFAAOCAQEAIbWa7Ygodw/HOTREmseCkxuokii+64Hn M6Um5w1xPi/9843fCDyQ3fkIsRLhkT7pygWFqLJ8BoKFgn0RPWnk92zdP5vlKCDX 3IgL3QSVZh7fTImdJRuxNDAVPPHANGyoOmAPFJM/BBk00+QU3Y2mAnVJh9XJa6Wo PTru/tOAVgQA95pKfnU24OX2hnuieDGNDyeNqq+xQ+E3vgg8LGmv8v5sG5bNA9vL lSXgUn0gjuyPD/kkKR9biAqrzC2vdqKYTwURMziT0ANmeIqkVUUSi/xFfdxT5zK7 wK3Eu0eIu8E8rxsTcbRUguck+b2dHQzV0iKAFqmXs1zDt82zpTe/lg== -----END CERTIFICATE-----Generated at Fri Nov 22 13:33:24 2024 by rpki-client on console-fra.rpki-client.org