$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/604/pbbA1FcsH7fuA9bRFzuA2nkooTY.roa File: pbbA1FcsH7fuA9bRFzuA2nkooTY.roa (raw, json) Hash identifier: CWtUXXOJFTx4UhnLd/rQexhxAV5mf6PaVrD4tM+ubg4= Subject key identifier: A5:B6:C0:D4:57:2C:1F:B7:EE:03:D6:D1:17:3B:80:DA:79:28:A1:36 Certificate issuer: /CN=84F94F26AD23CBA93655AE34D806A8CE0A4C5907 Certificate serial: 1B Authority key identifier: 84:F9:4F:26:AD:23:CB:A9:36:55:AE:34:D8:06:A8:CE:0A:4C:59:07 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/hPlPJq0jy6k2Va402AaozgpMWQc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/604/pbbA1FcsH7fuA9bRFzuA2nkooTY.roa Signing time: Sun 04 Aug 2024 03:06:35 +0000 ROA not before: Sun 04 Aug 2024 03:06:35 +0000 ROA not after: Tue 15 Jul 2025 01:30:02 +0000 asID: 17682 IP address blocks: 218.40.88.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/604/hPlPJq0jy6k2Va402AaozgpMWQc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/604/hPlPJq0jy6k2Va402AaozgpMWQc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/hPlPJq0jy6k2Va402AaozgpMWQc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84F94F26AD23CBA93655AE34D806A8CE0A4C5907 Validity Not Before: Aug 4 03:06:35 2024 GMT Not After : Jul 15 01:30:02 2025 GMT Subject: CN=A5B6C0D4572C1FB7EE03D6D1173B80DA7928A136 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:79:1c:16:b1:5c:f7:68:15:78:72:50:54:53: 5c:17:3c:bc:f9:60:f2:5f:83:37:3f:2c:1e:15:15: cf:e4:ae:e2:60:74:43:d6:62:d6:0b:9a:6e:30:b5: 9e:41:06:f8:a3:7d:e5:7e:52:9e:fb:e5:07:ec:eb: fc:36:3a:4d:90:c5:81:28:f6:fa:66:6a:c8:e0:6b: c4:98:0a:d7:51:a5:d0:cc:db:f9:91:51:81:93:5a: 94:69:40:c9:29:77:5a:6f:b6:aa:8e:cc:31:9d:5f: 90:fb:f7:3d:a9:c1:35:31:21:49:b7:af:27:bb:31: 51:a7:5c:95:28:72:5d:e2:71:a2:bb:c5:3d:57:b3: f9:48:b7:c4:72:ef:eb:7e:48:90:1e:08:03:84:5a: 31:1d:ee:2b:da:ad:2e:96:13:0a:bb:ff:e7:0c:d5: 33:2a:d6:5d:3b:97:6a:d7:51:cc:ef:3f:86:77:fd: 2f:85:c4:4b:cc:2c:2a:ef:49:27:ca:e1:41:fd:a2: 6f:88:bf:07:de:86:b3:cf:bf:a5:56:ad:10:22:32: 06:f5:d0:5b:c8:e6:e3:04:01:45:13:39:34:ed:bd: 1f:9c:fc:2d:f7:2f:35:03:af:94:6f:d2:86:f5:0a: c6:46:82:85:d3:24:3d:5c:8a:29:e3:2f:96:3f:27: e9:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:B6:C0:D4:57:2C:1F:B7:EE:03:D6:D1:17:3B:80:DA:79:28:A1:36 X509v3 Authority Key Identifier: keyid:84:F9:4F:26:AD:23:CB:A9:36:55:AE:34:D8:06:A8:CE:0A:4C:59:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/604/hPlPJq0jy6k2Va402AaozgpMWQc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/hPlPJq0jy6k2Va402AaozgpMWQc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/604/pbbA1FcsH7fuA9bRFzuA2nkooTY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.40.88.0/21 Signature Algorithm: sha256WithRSAEncryption 98:65:bf:9f:a7:47:a4:6b:81:48:6c:25:51:f9:ae:b0:c9:52: d2:01:50:67:40:b9:d9:da:28:89:d2:1b:e0:8d:ea:ce:eb:63: 1d:d8:54:76:87:3d:6e:9b:ca:e6:9b:28:1e:e4:36:65:de:72: 10:c0:5f:be:5e:48:ea:8b:e0:f7:b1:53:90:37:3f:f3:b6:44: 28:09:df:83:85:ef:8e:59:9f:be:51:d3:af:27:cb:9e:98:59: e4:ae:d3:8e:f6:8d:29:48:d6:ba:62:8d:da:6e:f5:2e:db:92: 3f:3a:f3:f1:0e:e9:41:90:ee:0b:a6:d8:98:36:a9:d5:8f:2e: 37:8a:43:5c:11:15:1c:67:06:a4:14:ca:6a:df:f7:2f:b8:fc: e9:5d:e2:d0:de:91:fb:ac:33:8e:94:25:e3:5e:99:75:c4:df: 6f:c3:6e:2a:a1:55:a8:ce:e3:e5:c8:48:af:22:80:58:82:48: ab:cf:d3:14:c5:87:a6:22:b0:27:d1:ef:bb:07:cc:df:ce:a3: 35:00:aa:84:ce:55:71:5f:ec:f5:17:60:2f:6e:de:f8:45:32: 8a:91:fc:41:de:38:15:b6:bf:1a:a9:17:fa:ff:cf:b6:3b:01: 4d:9e:1a:d3:05:db:a6:c0:ca:4c:41:52:9a:5b:6f:76:11:fe: df:e5:a4:c4 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBGzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4NEY5 NEYyNkFEMjNDQkE5MzY1NUFFMzREODA2QThDRTBBNEM1OTA3MB4XDTI0MDgwNDAz MDYzNVoXDTI1MDcxNTAxMzAwMlowMzExMC8GA1UEAxMoQTVCNkMwRDQ1NzJDMUZC N0VFMDNENkQxMTczQjgwREE3OTI4QTEzNjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMZ5HBaxXPdoFXhyUFRTXBc8vPlg8l+DNz8sHhUVz+Su4mB0Q9Zi 1guabjC1nkEG+KN95X5SnvvlB+zr/DY6TZDFgSj2+mZqyOBrxJgK11Gl0Mzb+ZFR gZNalGlAySl3Wm+2qo7MMZ1fkPv3PanBNTEhSbevJ7sxUadclShyXeJxorvFPVez +Ui3xHLv635IkB4IA4RaMR3uK9qtLpYTCrv/5wzVMyrWXTuXatdRzO8/hnf9L4XE S8wsKu9JJ8rhQf2ib4i/B96Gs8+/pVatECIyBvXQW8jm4wQBRRM5NO29H5z8Lfcv NQOvlG/ShvUKxkaChdMkPVyKKeMvlj8n6U0CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSltsDUVywft+4D1tEXO4DaeSihNjAfBgNVHSMEGDAWgBSE+U8mrSPLqTZVrjTY BqjOCkxZBzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjA0L2hQbFBKcTBqeTZrMlZhNDAyQWFvemdwTVdRYy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2hQbFBKcTBqeTZrMlZhNDAyQWFvemdw TVdRYy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC82MDQvcGJiQTFGY3NIN2Z1QTliUkZ6dUEybmtvb1RZLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA9ooWDANBgkqhkiG9w0BAQsFAAOCAQEAmGW/n6dHpGuBSGwlUfmusMlS0gFQ Z0C52dooidIb4I3qzutjHdhUdoc9bpvK5psoHuQ2Zd5yEMBfvl5I6ovg97FTkDc/ 87ZEKAnfg4XvjlmfvlHTryfLnphZ5K7TjvaNKUjWumKN2m71LtuSPzrz8Q7pQZDu C6bYmDap1Y8uN4pDXBEVHGcGpBTKat/3L7j86V3i0N6R+6wzjpQl416ZdcTfb8Nu KqFVqM7j5chIryKAWIJIq8/TFMWHpiKwJ9HvuwfM386jNQCqhM5VcV/s9RdgL27e +EUyipH8Qd44Fba/GqkX+v/PtjsBTZ4a0wXbpsDKTEFSmltvdhH+3+WkxA== -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:05 2024 by rpki-client on console-fra.rpki-client.org