$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/2NNw1PvNBulxOoq-mjSdEH0whcU.roa File: 2NNw1PvNBulxOoq-mjSdEH0whcU.roa (raw, json) Hash identifier: 95dYv3V8zAqy3R5cHi1PlCAVtdDNmZa9HqiOuv6fU5w= Subject key identifier: D8:D3:70:D4:FB:CD:06:E9:71:3A:8A:BE:9A:34:9D:10:7D:30:85:C5 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 029D Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/2NNw1PvNBulxOoq-mjSdEH0whcU.roa Signing time: Sat 31 Aug 2024 01:40:38 +0000 ROA not before: Sat 31 Aug 2024 01:40:38 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 9824 IP address blocks: 203.124.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 669 (0x29d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Aug 31 01:40:38 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=D8D370D4FBCD06E9713A8ABE9A349D107D3085C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:aa:0b:e4:7f:33:bb:c5:f6:f6:ea:f8:d0:67: ed:42:a6:ac:55:ae:d7:41:41:c3:7b:f1:93:6d:4c: 7b:0c:91:45:46:59:b3:6c:52:33:9c:d6:6d:b4:4e: 04:37:fc:e7:0f:3b:b0:4b:59:22:d1:4d:be:c7:45: a0:15:9d:9a:6b:f5:c9:5c:1e:06:49:27:72:49:29: 56:47:20:6c:84:dd:1e:5b:6b:64:18:7a:61:d6:f3: ac:dc:c3:85:ac:83:5b:4a:ae:64:64:f3:63:87:0a: df:1f:7b:1d:42:3e:78:a2:64:66:a3:32:8d:c5:e1: 0a:cf:27:0d:64:14:c5:95:ac:0b:2f:2d:e1:6f:ee: b2:1f:4f:3d:0a:19:1c:6a:46:33:8f:fa:16:91:a0: 0d:db:c5:d1:01:c2:a6:a8:7b:77:42:ac:66:e7:10: 2c:a2:ab:c2:38:5f:20:25:40:3f:52:40:00:ab:30: 56:29:f1:98:dc:da:ad:33:f1:59:c7:a0:5e:88:2f: be:ec:dc:fe:27:cc:a3:dc:f9:07:bf:cf:e4:9b:b6: 72:30:61:d0:ad:96:45:e5:6d:f0:a3:b3:51:73:b6: 5f:4f:06:fb:96:1b:79:22:f3:f2:63:c6:a7:4b:b8: f9:5f:d0:66:76:e4:45:22:20:85:ba:60:a2:98:34: ed:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:D3:70:D4:FB:CD:06:E9:71:3A:8A:BE:9A:34:9D:10:7D:30:85:C5 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/2NNw1PvNBulxOoq-mjSdEH0whcU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.124.64.0/19 Signature Algorithm: sha256WithRSAEncryption 22:60:cc:0c:08:a2:3a:bc:fe:fa:a3:3f:33:e8:8f:72:8b:ff: ae:12:40:ff:25:af:3c:ff:74:7b:79:20:b0:a8:98:53:7e:1b: ea:ba:52:39:3b:7a:3c:4a:a1:56:f2:c6:94:02:8d:e3:48:5f: 4d:32:6e:a2:58:be:bf:00:a3:8c:9d:0d:a6:21:57:46:46:b9: da:f1:11:6a:93:5b:29:89:9b:25:d4:60:60:65:25:9c:da:c5: de:f2:63:b5:b4:e7:d1:1e:03:38:b5:c4:ff:60:54:58:77:6a: 72:ed:60:25:a9:c6:61:e8:d2:d8:0d:eb:b4:8a:11:93:cf:44: 4e:b6:52:68:81:b5:33:71:0b:fd:88:c7:5b:90:f4:b8:7e:c5: f5:21:53:0b:71:3a:95:b2:52:db:72:cd:4f:14:a9:e3:b1:f9: 81:8a:5b:c7:32:77:2b:c3:01:51:85:ad:2e:a4:97:9d:8b:b1: 77:47:a2:3f:53:1d:51:05:61:d8:6e:b3:0c:84:44:b0:4a:87: 93:ce:4b:50:a9:24:41:81:93:44:71:aa:61:c5:ff:62:3f:56: 48:b9:0e:7f:8d:f7:ae:0b:65:23:0a:5f:c2:5d:83:7e:11:12: fa:ab:be:ec:ad:ef:4c:8a:1e:87:23:69:04:78:79:b9:f5:13: 7c:34:cf:f1 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAp0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNDA4MzEw MTQwMzhaFw0yNTA4MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEQ4RDM3MEQ0RkJDRDA2 RTk3MTNBOEFCRTlBMzQ5RDEwN0QzMDg1QzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDjqgvkfzO7xfb26vjQZ+1CpqxVrtdBQcN78ZNtTHsMkUVGWbNs UjOc1m20TgQ3/OcPO7BLWSLRTb7HRaAVnZpr9clcHgZJJ3JJKVZHIGyE3R5ba2QY emHW86zcw4Wsg1tKrmRk82OHCt8fex1CPniiZGajMo3F4QrPJw1kFMWVrAsvLeFv 7rIfTz0KGRxqRjOP+haRoA3bxdEBwqaoe3dCrGbnECyiq8I4XyAlQD9SQACrMFYp 8Zjc2q0z8VnHoF6IL77s3P4nzKPc+Qe/z+SbtnIwYdCtlkXlbfCjs1Fztl9PBvuW G3ki8/JjxqdLuPlf0GZ25EUiIIW6YKKYNO1zAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU2NNw1PvNBulxOoq+mjSdEH0whcUwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxLzJOTncxUHZOQnVseE9vcS1talNkRUgwd2hjVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXLfEAwDQYJKoZIhvcNAQELBQADggEBACJgzAwIojq8/vqjPzPoj3KL/64S QP8lrzz/dHt5ILComFN+G+q6Ujk7ejxKoVbyxpQCjeNIX00ybqJYvr8Ao4ydDaYh V0ZGudrxEWqTWymJmyXUYGBlJZzaxd7yY7W059EeAzi1xP9gVFh3anLtYCWpxmHo 0tgN67SKEZPPRE62UmiBtTNxC/2Ix1uQ9Lh+xfUhUwtxOpWyUttyzU8UqeOx+YGK W8cydyvDAVGFrS6kl52LsXdHoj9THVEFYdhuswyERLBKh5POS1CpJEGBk0RxqmHF /2I/Vki5Dn+N964LZSMKX8Jdg34REvqrvuyt70yKHocjaQR4ebn1E3w0z/E= -----END CERTIFICATE-----Generated at Fri Nov 22 11:45:57 2024 by rpki-client on console-ams.rpki-client.org