$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/3HmfLwmauUr8Js7GxNvb1dA2_HM.roa File: 3HmfLwmauUr8Js7GxNvb1dA2_HM.roa (raw, json) Hash identifier: KUhaG+kKePfH7AP4/yymm3oGTORXy1CNw52AplNQDfs= Subject key identifier: DC:79:9F:2F:09:9A:B9:4A:FC:26:CE:C6:C4:DB:DB:D5:D0:36:FC:73 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 024C Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/3HmfLwmauUr8Js7GxNvb1dA2_HM.roa Signing time: Sat 31 Aug 2024 01:36:36 +0000 ROA not before: Sat 31 Aug 2024 01:36:36 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 18136 IP address blocks: 117.53.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 588 (0x24c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Aug 31 01:36:36 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=DC799F2F099AB94AFC26CEC6C4DBDBD5D036FC73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:56:d1:74:f6:3a:10:90:f1:fc:e0:92:6a:34: b9:17:42:9c:23:c4:31:6f:ee:b7:43:ea:6d:06:93: be:b6:ed:8a:25:fa:2f:89:e7:e3:db:4e:0e:16:ec: 69:73:d7:15:46:c0:5d:fc:17:a1:a3:39:66:0c:85: b8:5e:7f:6b:e0:cb:23:a4:08:6f:9d:6b:1c:f9:79: d0:f9:58:f7:c7:59:a0:9f:82:12:2e:63:d4:46:80: d0:40:17:a4:a8:fd:dc:8e:86:c7:81:f8:c4:19:18: a1:3e:27:34:5d:a2:05:97:3f:ee:f0:fc:fc:58:2c: 74:11:0c:b8:29:ca:48:23:91:cb:4c:53:f8:93:a8: bd:dd:c0:1c:f3:f1:3f:da:e6:1e:d1:4e:1c:d9:41: 7a:4f:29:8e:c2:23:59:bc:b3:f8:62:4d:1c:c9:09: bb:14:00:36:99:4f:f8:36:7a:44:9e:45:e4:f7:53: fc:27:1e:4b:9e:9c:04:92:97:15:ea:c7:98:26:a3: d7:72:74:c8:49:a6:22:94:01:7c:ea:1a:a1:4b:23: 07:49:41:c2:69:f1:05:bf:dc:0a:48:a4:f4:3b:bb: f6:7a:f3:9d:61:d8:71:51:c5:b7:75:c5:33:15:55: 57:51:63:e1:3d:fd:2d:04:30:c1:06:aa:a4:44:c3: c3:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:79:9F:2F:09:9A:B9:4A:FC:26:CE:C6:C4:DB:DB:D5:D0:36:FC:73 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/3HmfLwmauUr8Js7GxNvb1dA2_HM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.53.0.0/19 Signature Algorithm: sha256WithRSAEncryption 13:25:87:30:03:b6:fc:fc:9f:f1:fd:4b:e0:6a:59:fe:7e:96: fb:8c:d2:a2:89:2a:b8:9f:a8:9f:8d:2d:cf:0a:36:de:d8:6a: 61:78:f6:c7:de:1d:d4:a4:b7:2b:31:f9:54:ad:3f:66:10:db: 24:d9:4e:1e:1d:2b:52:d1:3b:13:04:64:2e:9c:3e:36:33:61: ff:b5:8f:d6:84:08:87:d1:ea:fe:6e:13:31:e4:1f:8b:18:99: be:28:75:f4:4b:40:74:1f:b1:3d:b1:b9:3e:9f:0e:b4:45:ea: 6f:dd:19:6b:55:77:7c:4f:d0:0a:a3:ca:39:41:ff:22:02:67: 6e:91:39:80:c5:c4:69:95:39:b9:77:db:2a:b6:bd:60:d8:5b: 9b:5a:65:6f:42:90:c6:76:d9:d8:d8:1f:93:c1:5e:86:55:df: cd:11:65:30:59:e5:c0:85:25:60:06:22:14:4f:87:a3:16:fe: d6:54:3a:4d:2c:ac:8e:51:11:aa:27:f0:ae:4f:76:91:cd:dc: 4e:79:0d:c4:bf:65:ba:7f:7c:27:cb:54:76:d6:6d:b5:9e:93: a5:1f:2c:fc:bf:73:6f:71:b2:86:ab:23:c7:36:eb:dd:dd:bf: ce:73:39:1f:b7:5c:7d:46:44:8f:e6:33:0d:bb:77:c0:c3:7d: 05:26:05:83 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAkwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNDA4MzEw MTM2MzZaFw0yNTA4MTUwMTMwMDJaMDMxMTAvBgNVBAMTKERDNzk5RjJGMDk5QUI5 NEFGQzI2Q0VDNkM0REJEQkQ1RDAzNkZDNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6VtF09joQkPH84JJqNLkXQpwjxDFv7rdD6m0Gk7627Yol+i+J 5+PbTg4W7Glz1xVGwF38F6GjOWYMhbhef2vgyyOkCG+daxz5edD5WPfHWaCfghIu Y9RGgNBAF6So/dyOhseB+MQZGKE+JzRdogWXP+7w/PxYLHQRDLgpykgjkctMU/iT qL3dwBzz8T/a5h7RThzZQXpPKY7CI1m8s/hiTRzJCbsUADaZT/g2ekSeReT3U/wn HkuenASSlxXqx5gmo9dydMhJpiKUAXzqGqFLIwdJQcJp8QW/3ApIpPQ7u/Z6851h 2HFRxbd1xTMVVVdRY+E9/S0EMMEGqqREw8OJAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU3HmfLwmauUr8Js7GxNvb1dA2/HMwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxLzNIbWZMd21hdVVyOEpzN0d4TnZiMWRBMl9ITS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAV1NQAwDQYJKoZIhvcNAQELBQADggEBABMlhzADtvz8n/H9S+BqWf5+lvuM 0qKJKrifqJ+NLc8KNt7YamF49sfeHdSktysx+VStP2YQ2yTZTh4dK1LROxMEZC6c PjYzYf+1j9aECIfR6v5uEzHkH4sYmb4odfRLQHQfsT2xuT6fDrRF6m/dGWtVd3xP 0AqjyjlB/yICZ26ROYDFxGmVObl32yq2vWDYW5taZW9CkMZ22djYH5PBXoZV380R ZTBZ5cCFJWAGIhRPh6MW/tZUOk0srI5REaon8K5PdpHN3E55DcS/Zbp/fCfLVHbW bbWek6UfLPy/c29xsoarI8c2693dv85zOR+3XH1GRI/mMw27d8DDfQUmBYM= -----END CERTIFICATE-----Generated at Fri Nov 22 11:45:57 2024 by rpki-client on console-ams.rpki-client.org