$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/602/2XhF3IhIEZRwzR5Dbx_omC4FdhM.roa File: 2XhF3IhIEZRwzR5Dbx_omC4FdhM.roa (raw, json) Hash identifier: /KBvU45Mqps9yEgEjvoqKDQhuR2YgRz9xsZUJhnBrbs= Subject key identifier: D9:78:45:DC:88:48:11:94:70:CD:1E:43:6F:1F:E8:98:2E:05:76:13 Certificate issuer: /CN=4EFF1AB6EADA273BA066DB0F77B79D6A0D901542 Certificate serial: 6E Authority key identifier: 4E:FF:1A:B6:EA:DA:27:3B:A0:66:DB:0F:77:B7:9D:6A:0D:90:15:42 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tv8aturaJzugZtsPd7edag2QFUI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/602/2XhF3IhIEZRwzR5Dbx_omC4FdhM.roa Signing time: Mon 30 Sep 2024 01:30:21 +0000 ROA not before: Mon 30 Sep 2024 01:30:21 +0000 ROA not after: Mon 15 Sep 2025 01:30:03 +0000 asID: 32787 IP address blocks: 219.113.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/602/Tv8aturaJzugZtsPd7edag2QFUI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/602/Tv8aturaJzugZtsPd7edag2QFUI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tv8aturaJzugZtsPd7edag2QFUI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4EFF1AB6EADA273BA066DB0F77B79D6A0D901542 Validity Not Before: Sep 30 01:30:21 2024 GMT Not After : Sep 15 01:30:03 2025 GMT Subject: CN=D97845DC8848119470CD1E436F1FE8982E057613 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:bf:b1:81:1d:cd:5d:df:8e:9e:e2:41:47:f6: 0d:8e:e4:cd:44:95:92:85:3e:a1:e0:98:18:26:2b: f0:23:55:64:2a:f4:ee:8e:32:56:3d:a9:6e:98:da: b6:95:38:a8:7e:9e:79:40:61:42:40:f3:5c:f0:33: 0d:52:a3:9c:28:b2:b3:36:a6:ba:59:7e:c1:d9:85: 2a:a2:f2:f2:29:56:15:75:f4:63:d6:96:e5:7f:8c: e0:f1:ef:25:b2:aa:d5:3a:89:27:6a:61:9e:03:9a: f3:5d:71:2f:e3:61:7d:53:fa:11:66:d6:d1:d5:e8: 1e:ee:34:bd:23:0a:81:b4:8a:1a:c0:51:bc:0d:cf: e0:12:a1:b6:41:4a:32:ef:71:0a:42:41:2b:08:bf: 37:2c:f4:94:64:20:10:5d:a8:7d:e0:23:ca:74:88: fb:95:33:b3:e2:45:27:fd:36:05:a9:e4:68:30:5a: 8b:87:43:38:1e:7d:57:15:0b:d7:d0:f1:ec:04:4a: ff:d2:bb:41:a4:a4:e1:2a:67:6c:4f:f0:a3:cf:4d: a3:77:32:dc:47:c1:0f:0c:a6:aa:67:b5:ab:6c:1f: 58:57:b2:21:93:9a:3b:8f:96:a9:94:8e:3c:5e:9f: 53:93:d2:c3:ed:89:e8:99:db:8c:c1:50:6a:29:b0: 03:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:78:45:DC:88:48:11:94:70:CD:1E:43:6F:1F:E8:98:2E:05:76:13 X509v3 Authority Key Identifier: keyid:4E:FF:1A:B6:EA:DA:27:3B:A0:66:DB:0F:77:B7:9D:6A:0D:90:15:42 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/602/Tv8aturaJzugZtsPd7edag2QFUI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tv8aturaJzugZtsPd7edag2QFUI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/602/2XhF3IhIEZRwzR5Dbx_omC4FdhM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.113.26.0/24 Signature Algorithm: sha256WithRSAEncryption c0:a1:4e:21:bd:42:53:d8:24:73:94:71:ae:96:6d:ea:98:a6: e8:71:f9:a8:b7:d5:58:17:84:ff:48:bc:8c:23:49:af:ab:00: 7a:89:b1:34:7d:12:60:0b:95:00:ed:98:e5:7b:9c:27:15:b7: f8:a3:90:88:3e:cd:b6:36:0b:ef:01:2b:7a:21:d4:a2:b7:bd: 2c:61:6e:2a:9b:24:f4:38:bd:95:22:56:68:43:4c:87:d5:36: 8c:8b:32:48:71:55:13:4b:2d:08:02:73:a6:7b:76:76:51:96: 90:1b:e5:bc:a5:c1:b8:ae:20:db:fb:22:c2:ca:95:8d:45:78: 42:1d:96:d0:50:50:9b:9e:46:2d:a1:9e:1a:11:f0:32:c2:5a: 03:d1:98:46:7f:8a:5d:45:57:75:99:be:07:20:5f:42:e8:7a: fd:9f:9f:60:02:68:2c:af:47:1d:94:03:ce:db:02:61:ad:e7: bb:e3:3d:22:c8:c6:69:67:b3:01:83:ee:78:bc:8d:8d:7b:b9: f5:92:20:52:5d:ce:35:50:66:83:30:5b:e6:0f:3b:55:aa:c3: 5f:c1:88:6a:d5:17:00:1e:8f:ec:8f:2e:1b:6a:ba:cf:df:ee: 55:5f:d4:ec:79:ab:11:57:94:4f:c8:ef:11:e2:0f:bc:7f:4d: 61:6a:9f:3f -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBbjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0RUZG MUFCNkVBREEyNzNCQTA2NkRCMEY3N0I3OUQ2QTBEOTAxNTQyMB4XDTI0MDkzMDAx MzAyMVoXDTI1MDkxNTAxMzAwM1owMzExMC8GA1UEAxMoRDk3ODQ1REM4ODQ4MTE5 NDcwQ0QxRTQzNkYxRkU4OTgyRTA1NzYxMzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALi/sYEdzV3fjp7iQUf2DY7kzUSVkoU+oeCYGCYr8CNVZCr07o4y Vj2pbpjatpU4qH6eeUBhQkDzXPAzDVKjnCiyszamull+wdmFKqLy8ilWFXX0Y9aW 5X+M4PHvJbKq1TqJJ2phngOa811xL+NhfVP6EWbW0dXoHu40vSMKgbSKGsBRvA3P 4BKhtkFKMu9xCkJBKwi/Nyz0lGQgEF2ofeAjynSI+5Uzs+JFJ/02BankaDBai4dD OB59VxUL19Dx7ARK/9K7QaSk4SpnbE/wo89No3cy3EfBDwymqme1q2wfWFeyIZOa O4+WqZSOPF6fU5PSw+2J6JnbjMFQaimwA7UCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTZeEXciEgRlHDNHkNvH+iYLgV2EzAfBgNVHSMEGDAWgBRO/xq26tonO6Bm2w93 t51qDZAVQjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjAyL1R2OGF0dXJhSnp1Z1p0c1BkN2VkYWcyUUZVSS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1R2OGF0dXJhSnp1Z1p0c1BkN2VkYWcy UUZVSS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC82MDIvMlhoRjNJaElFWlJ3elI1RGJ4X29tQzRGZGhNLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEANtxGjANBgkqhkiG9w0BAQsFAAOCAQEAwKFOIb1CU9gkc5RxrpZt6pim6HH5 qLfVWBeE/0i8jCNJr6sAeomxNH0SYAuVAO2Y5XucJxW3+KOQiD7NtjYL7wEreiHU ore9LGFuKpsk9Di9lSJWaENMh9U2jIsySHFVE0stCAJzpnt2dlGWkBvlvKXBuK4g 2/siwsqVjUV4Qh2W0FBQm55GLaGeGhHwMsJaA9GYRn+KXUVXdZm+ByBfQuh6/Z+f YAJoLK9HHZQDztsCYa3nu+M9IsjGaWezAYPueLyNjXu59ZIgUl3ONVBmgzBb5g87 VarDX8GIatUXAB6P7I8uG2q6z9/uVV/U7HmrEVeUT8jvEeIPvH9NYWqfPw== -----END CERTIFICATE-----Generated at Sun Feb 16 15:47:20 2025 by rpki-client