$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/6/U2-h73G3286awFeU33FUTMXpcFg.roa File: U2-h73G3286awFeU33FUTMXpcFg.roa (raw, json) Hash identifier: CGYFCzsXmxqPP9E4kx1/bcrfaPxPEIjBQO6ikNA+wJU= Subject key identifier: 53:6F:A1:EF:71:B7:DB:CE:9A:C0:57:94:DF:71:54:4C:C5:E9:70:58 Certificate issuer: /CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Certificate serial: 0168 Authority key identifier: 29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/U2-h73G3286awFeU33FUTMXpcFg.roa Signing time: Wed 31 Jul 2024 01:31:28 +0000 ROA not before: Wed 31 Jul 2024 01:31:28 +0000 ROA not after: Tue 15 Jul 2025 01:30:02 +0000 asID: 2497 IP address blocks: 119.10.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 12:46:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 360 (0x168) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Validity Not Before: Jul 31 01:31:28 2024 GMT Not After : Jul 15 01:30:02 2025 GMT Subject: CN=536FA1EF71B7DBCE9AC05794DF71544CC5E97058 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:c5:07:5e:74:3b:6c:a6:35:78:fd:54:d6:7f: e3:2d:6b:43:ef:da:2d:33:f3:9a:1c:31:a0:84:74: 48:98:16:bb:09:a1:5b:35:34:dc:76:01:aa:03:5c: 1d:07:e3:8c:b7:da:69:fa:1f:77:ce:d3:22:57:86: 00:05:3d:41:7a:af:53:21:db:05:47:b1:a8:42:d4: c7:5f:bc:3e:3d:90:06:fb:27:a5:0e:7c:2e:a5:57: 7b:06:bd:fd:c0:a4:74:d8:43:18:4b:68:72:ef:98: 18:a6:a2:4e:a0:20:07:b4:5a:97:3b:85:42:0a:ef: ad:95:4b:e1:da:99:2c:31:15:0d:6b:37:c6:3b:87: 1a:45:31:8f:cf:b8:ed:2f:b4:1a:71:f5:6f:6d:e1: 77:6d:e8:03:4d:7b:69:09:ed:4d:44:d7:96:ae:c9: 15:62:85:b9:f5:4f:87:c2:8d:c1:50:31:0e:e8:9b: 26:70:f0:99:b3:34:8f:4f:b5:05:8a:6a:d2:19:ea: d8:55:96:dc:c0:96:6d:a8:cc:0c:e9:d9:c5:e3:23: 05:58:f0:a2:45:bd:29:87:0c:27:85:f5:f7:13:d3: 38:de:7d:7b:62:b6:1e:81:3e:dc:39:84:42:f4:f8: 3a:c7:c6:b5:8f:0e:68:37:d4:88:61:20:e7:a5:17: e2:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:6F:A1:EF:71:B7:DB:CE:9A:C0:57:94:DF:71:54:4C:C5:E9:70:58 X509v3 Authority Key Identifier: keyid:29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/U2-h73G3286awFeU33FUTMXpcFg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.10.192.0/18 Signature Algorithm: sha256WithRSAEncryption 85:2b:d3:3d:41:71:05:5d:90:91:56:76:2f:cb:9e:c4:99:e9: fb:60:41:50:22:73:a8:5d:bc:46:ec:ba:52:2e:6f:0b:de:65: d6:e9:8d:65:be:3a:27:2b:ce:c0:22:9c:30:76:c7:3d:3b:02: 3d:d6:80:99:bb:99:0c:fb:34:ac:07:7f:79:cd:70:d0:77:6b: f0:ea:c6:9a:86:30:88:50:00:ac:e4:7c:d7:af:b7:fe:7d:3d: 1d:ea:ae:2e:57:2e:dc:aa:f2:0e:ca:7c:e7:e9:13:41:f7:ae: 35:a1:4f:e8:25:f9:77:3b:0d:a1:60:15:ed:95:a2:c0:c7:73: 7c:e6:1b:68:8c:65:a6:6f:a5:3b:6d:13:db:af:9e:16:3e:6b: 9f:2d:16:45:0f:66:3a:77:ea:73:27:de:88:91:b7:7a:00:f8: 32:6e:04:d1:57:a6:b6:b3:a8:76:d5:01:1a:26:82:16:31:4e: 4a:36:b2:79:05:4d:f8:96:12:b8:45:93:4f:11:9b:83:6d:40: a2:df:fe:89:ea:1f:75:16:15:b6:f9:74:07:7a:c2:41:3a:2a: a2:27:ea:d4:27:18:d6:98:8c:9d:d7:9d:37:fc:50:c5:14:a3: b4:a7:ba:f9:62:aa:a6:1e:09:c9:66:4b:3a:d0:3d:b6:88:be: 5e:bb:3f:ea -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgICAWgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjk4 M0NGRDVGOENBRkEwMDY4RDJFQkEyNUVEMEY3MDEyNDRCMTJGOTAeFw0yNDA3MzEw MTMxMjhaFw0yNTA3MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDUzNkZBMUVGNzFCN0RC Q0U5QUMwNTc5NERGNzE1NDRDQzVFOTcwNTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDaxQdedDtspjV4/VTWf+Mta0Pv2i0z85ocMaCEdEiYFrsJoVs1 NNx2AaoDXB0H44y32mn6H3fO0yJXhgAFPUF6r1Mh2wVHsahC1MdfvD49kAb7J6UO fC6lV3sGvf3ApHTYQxhLaHLvmBimok6gIAe0Wpc7hUIK762VS+HamSwxFQ1rN8Y7 hxpFMY/PuO0vtBpx9W9t4Xdt6ANNe2kJ7U1E15auyRVihbn1T4fCjcFQMQ7omyZw 8JmzNI9PtQWKatIZ6thVltzAlm2ozAzp2cXjIwVY8KJFvSmHDCeF9fcT0zjefXti th6BPtw5hEL0+DrHxrWPDmg31IhhIOelF+LrAgMBAAGjggIgMIICHDAdBgNVHQ4E FgQUU2+h73G3286awFeU33FUTMXpcFgwHwYDVR0jBBgwFoAUKYPP1fjK+gBo0uui XtD3ASRLEvkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzYvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JMRXZrLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JM RXZrLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgbkGCCsGAQUFBwELBIGsMIGpMF8GCCsG AQUFBzALhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzYvVTItaDczRzMyODZhd0ZlVTMzRlVUTVhwY0ZnLnJvYTBGBggr BgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3JyZHAv YXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BncKwDANBgkqhkiG9w0BAQsFAAOCAQEAhSvTPUFxBV2QkVZ2L8uexJnp+2BBUCJz qF28Ruy6Ui5vC95l1umNZb46JyvOwCKcMHbHPTsCPdaAmbuZDPs0rAd/ec1w0Hdr 8OrGmoYwiFAArOR816+3/n09HequLlcu3KryDsp85+kTQfeuNaFP6CX5dzsNoWAV 7ZWiwMdzfOYbaIxlpm+lO20T26+eFj5rny0WRQ9mOnfqcyfeiJG3egD4Mm4E0Vem trOodtUBGiaCFjFOSjayeQVN+JYSuEWTTxGbg21Aot/+ieofdRYVtvl0B3rCQToq oifq1CcY1piMndedN/xQxRSjtKe6+WKqph4JyWZLOtA9toi+Xrs/6g== -----END CERTIFICATE-----Generated at Fri Nov 22 13:33:24 2024 by rpki-client on console-fra.rpki-client.org