$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/2LvB9MXaXTKQTV2fSzVhQL_NXSg.roa File: 2LvB9MXaXTKQTV2fSzVhQL_NXSg.roa (raw, json) Hash identifier: HGM7ugFVQ42Fq1245x/hFf3Q5hmFEFUJjmh871ldusA= Subject key identifier: D8:BB:C1:F4:C5:DA:5D:32:90:4D:5D:9F:4B:35:61:40:BF:CD:5D:28 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 0204 Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/2LvB9MXaXTKQTV2fSzVhQL_NXSg.roa Signing time: Wed 31 Jul 2024 01:29:05 +0000 ROA not before: Wed 31 Jul 2024 01:29:05 +0000 ROA not after: Tue 15 Jul 2025 01:30:02 +0000 asID: 4721 IP address blocks: 202.43.68.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 516 (0x204) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Jul 31 01:29:05 2024 GMT Not After : Jul 15 01:30:02 2025 GMT Subject: CN=D8BBC1F4C5DA5D32904D5D9F4B356140BFCD5D28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:13:35:65:ba:e9:56:a9:d6:d0:9b:1a:84:aa: 0e:92:de:8b:af:e1:42:6e:36:c6:c9:41:f6:7e:be: ee:f8:ab:e1:da:15:5d:04:6a:71:0b:47:a6:5b:f5: 12:74:a7:c6:84:1f:ea:a2:9f:18:89:57:e2:be:31: 6c:2f:3e:75:96:f1:fa:d6:17:7e:a4:aa:8c:8a:b1: 6a:5f:78:5f:84:45:ee:92:20:54:f5:2c:f3:88:20: cf:cb:86:f7:8b:82:b4:22:dc:5c:fe:c8:01:8d:24: 8e:87:18:ad:6b:cb:82:2c:f3:e0:a8:44:f0:bb:35: cd:74:a8:23:e8:4c:3a:4f:a4:b4:ba:c0:8f:9d:f7: 94:07:e4:37:33:b1:fc:a0:21:44:21:46:f4:9d:a6: 66:74:00:de:b1:d1:51:4a:c8:38:d3:7f:60:7a:70: 30:4d:f1:d6:e2:3d:02:ff:ca:73:1e:bf:61:c8:64: da:a5:3f:b6:12:cd:42:ed:01:8a:33:c8:19:d1:63: 61:9e:d7:42:89:88:a9:48:86:8c:c0:32:b8:93:06: 9f:4f:2b:f3:b4:b1:07:58:22:b3:c5:60:2c:f2:ac: b2:3b:7d:67:cd:bb:fa:af:fc:69:8f:4d:ed:98:e0: f5:3d:42:2d:c4:8a:0b:7b:c9:8f:b3:fd:91:7b:37: 43:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:BB:C1:F4:C5:DA:5D:32:90:4D:5D:9F:4B:35:61:40:BF:CD:5D:28 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/2LvB9MXaXTKQTV2fSzVhQL_NXSg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.43.68.0/22 Signature Algorithm: sha256WithRSAEncryption 7a:6a:f9:ce:54:5a:e0:f7:24:fe:d5:fb:88:63:91:9a:4d:a2: 63:00:bc:33:05:ce:39:4c:f1:84:d7:70:c9:26:a2:0d:ab:2e: c4:6b:11:c2:67:c3:29:4d:f7:a7:4f:35:5f:78:c8:20:ed:8e: 82:4f:53:4b:51:88:e0:69:04:90:fa:a9:a7:c1:06:c9:9e:dc: 8a:11:97:1e:a9:ee:fa:d3:8e:c6:56:fa:82:f7:d7:95:12:0e: cf:8f:22:0d:25:0e:7b:6a:bf:a8:d7:fc:db:e0:d1:83:1a:76: 9c:e7:e6:b5:07:1c:9d:ff:63:8e:53:27:d0:4e:04:42:fb:ba: 9c:b7:f8:0e:f4:e7:a0:33:a6:7a:ab:3d:5b:ea:f5:7c:bd:93: b6:93:28:e4:6a:a9:b9:1a:01:71:89:e2:0e:ac:48:e1:ca:16: f4:12:83:34:a8:85:7e:68:3c:1c:a6:ea:89:fa:80:41:77:3c: 9a:7d:ce:29:6b:c2:4d:ef:92:b0:d0:80:f9:f9:50:46:ff:c3: 78:bd:36:b8:9e:3f:a0:af:d6:66:0c:10:f1:31:9d:0b:6d:25: bb:9c:34:c0:b9:e5:87:63:4a:d6:f0:54:18:d1:79:6f:dd:f4: c8:4c:7b:0c:dc:cf:7e:1b:84:02:c2:9d:f2:5a:a9:09:cc:f1: 31:47:ac:e6 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAgQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNDA3MzEw MTI5MDVaFw0yNTA3MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEQ4QkJDMUY0QzVEQTVE MzI5MDRENUQ5RjRCMzU2MTQwQkZDRDVEMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKEzVluulWqdbQmxqEqg6S3ouv4UJuNsbJQfZ+vu74q+HaFV0E anELR6Zb9RJ0p8aEH+qinxiJV+K+MWwvPnWW8frWF36kqoyKsWpfeF+ERe6SIFT1 LPOIIM/LhveLgrQi3Fz+yAGNJI6HGK1ry4Is8+CoRPC7Nc10qCPoTDpPpLS6wI+d 95QH5DczsfygIUQhRvSdpmZ0AN6x0VFKyDjTf2B6cDBN8dbiPQL/ynMev2HIZNql P7YSzULtAYozyBnRY2Ge10KJiKlIhozAMriTBp9PK/O0sQdYIrPFYCzyrLI7fWfN u/qv/GmPTe2Y4PU9Qi3Eigt7yY+z/ZF7N0OnAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU2LvB9MXaXTKQTV2fSzVhQL/NXSgwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxLzJMdkI5TVhhWFRLUVRWMmZTelZoUUxfTlhTZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALKK0QwDQYJKoZIhvcNAQELBQADggEBAHpq+c5UWuD3JP7V+4hjkZpNomMA vDMFzjlM8YTXcMkmog2rLsRrEcJnwylN96dPNV94yCDtjoJPU0tRiOBpBJD6qafB Bsme3IoRlx6p7vrTjsZW+oL315USDs+PIg0lDntqv6jX/Nvg0YMadpzn5rUHHJ3/ Y45TJ9BOBEL7upy3+A7056AzpnqrPVvq9Xy9k7aTKORqqbkaAXGJ4g6sSOHKFvQS gzSohX5oPBym6on6gEF3PJp9zilrwk3vkrDQgPn5UEb/w3i9NrieP6Cv1mYMEPEx nQttJbucNMC55YdjStbwVBjReW/d9MhMewzcz34bhALCnfJaqQnM8TFHrOY= -----END CERTIFICATE-----Generated at Fri Nov 22 09:31:33 2024 by rpki-client on console-fra.rpki-client.org