$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/3VHH5lzCwS6RTTiYd4ZIGQwWBOQ.roa File: 3VHH5lzCwS6RTTiYd4ZIGQwWBOQ.roa (raw, json) Hash identifier: iP0gjV213xnT8nNqQJBXhqF9t7JMmDQ7UaYiNslZIJM= Subject key identifier: DD:51:C7:E6:5C:C2:C1:2E:91:4D:38:98:77:86:48:19:0C:16:04:E4 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 029B Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/3VHH5lzCwS6RTTiYd4ZIGQwWBOQ.roa Signing time: Sat 31 Aug 2024 01:40:37 +0000 ROA not before: Sat 31 Aug 2024 01:40:37 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 9824 IP address blocks: 203.89.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 667 (0x29b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Aug 31 01:40:37 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=DD51C7E65CC2C12E914D3898778648190C1604E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:02:b4:2c:fd:74:1a:31:cc:69:ab:eb:73:0a: f3:cf:94:88:ab:32:b2:e0:76:cc:c1:18:0b:ff:b3: 9b:f0:65:06:84:c8:c7:38:d2:84:16:6b:63:8b:30: d0:df:bb:46:c1:df:93:b1:59:e5:d4:6b:79:ed:52: 82:66:4e:a0:a1:6a:9a:07:b1:91:fc:d3:32:97:83: a8:dc:f0:20:13:0f:a2:91:d0:dc:3d:d3:7a:55:c4: 46:ce:42:56:33:4a:fc:9d:b6:1c:21:e2:68:b7:7f: 42:9e:91:eb:2b:85:66:eb:0f:33:ad:14:c9:1b:2c: 0e:15:5a:95:bc:36:2d:92:5f:9f:b7:56:5a:7d:78: 8b:b5:c3:72:50:0c:12:40:b8:98:0b:23:82:52:b4: 28:9f:91:39:47:fe:8f:d7:fa:f0:a1:21:db:3d:ca: 90:9d:c8:fe:6e:1b:80:56:06:fa:e5:17:4d:f4:28: a2:71:19:36:ac:b1:3e:6a:1c:93:50:54:60:5e:d3: af:8d:64:12:31:85:2e:04:9c:42:f2:d9:6e:ea:79: 40:04:f6:a7:69:57:c5:e5:a2:ac:32:b1:3e:a0:81: 96:0a:13:16:5c:7d:c7:65:15:1f:ca:dc:96:66:8d: ba:e1:10:31:a1:44:af:09:ef:96:d5:fe:9c:31:eb: 84:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:51:C7:E6:5C:C2:C1:2E:91:4D:38:98:77:86:48:19:0C:16:04:E4 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/3VHH5lzCwS6RTTiYd4ZIGQwWBOQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.89.32.0/19 Signature Algorithm: sha256WithRSAEncryption 0f:dd:dc:53:f8:f5:0f:95:7a:09:51:85:76:a9:0f:a1:fd:9b: d6:3c:07:18:2f:cc:7e:75:b1:08:5b:2b:72:81:5d:f5:f7:02: 29:dc:be:f6:0d:4f:0f:c3:d3:ba:9a:a7:28:6f:f9:a6:16:84: 06:63:17:39:af:c8:4e:b5:75:dc:2f:a7:c5:33:08:b3:74:cb: 01:b7:f4:80:f4:db:00:87:6e:ca:7d:14:d4:2e:f0:74:e4:50: 3d:c4:e0:96:0e:46:34:18:ec:af:4f:14:bf:0b:e5:8b:bb:fb: 81:25:01:8e:96:6e:1a:0d:a7:d6:5d:54:0d:36:26:09:12:7a: 93:5a:4e:b7:6f:37:cd:90:3d:be:73:0e:c0:58:6d:7f:ce:2c: a4:d4:56:1c:7c:75:b3:6d:76:27:c8:5f:78:90:06:81:36:f7: de:fb:c4:59:a4:da:f5:4c:7d:0a:ba:01:0f:13:2f:34:20:c2: 56:36:52:7a:45:32:da:39:3c:f0:5e:4d:91:01:69:5f:e5:38: a7:a7:a3:e3:1c:61:25:ba:dd:81:da:97:77:51:2d:66:d5:b4: 97:fb:37:db:79:6d:52:d8:5f:94:c2:de:ff:02:97:ad:a1:49: e6:6b:cd:5c:99:a3:8f:c9:da:d8:b2:73:f7:97:60:8f:a9:4a: 44:33:35:79 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICApswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNDA4MzEw MTQwMzdaFw0yNTA4MTUwMTMwMDJaMDMxMTAvBgNVBAMTKERENTFDN0U2NUNDMkMx MkU5MTREMzg5ODc3ODY0ODE5MEMxNjA0RTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhArQs/XQaMcxpq+tzCvPPlIirMrLgdszBGAv/s5vwZQaEyMc4 0oQWa2OLMNDfu0bB35OxWeXUa3ntUoJmTqChapoHsZH80zKXg6jc8CATD6KR0Nw9 03pVxEbOQlYzSvydthwh4mi3f0KekesrhWbrDzOtFMkbLA4VWpW8Ni2SX5+3Vlp9 eIu1w3JQDBJAuJgLI4JStCifkTlH/o/X+vChIds9ypCdyP5uG4BWBvrlF030KKJx GTassT5qHJNQVGBe06+NZBIxhS4EnELy2W7qeUAE9qdpV8XloqwysT6ggZYKExZc fcdlFR/K3JZmjbrhEDGhRK8J75bV/pwx64RPAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU3VHH5lzCwS6RTTiYd4ZIGQwWBOQwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxLzNWSEg1bHpDd1M2UlRUaVlkNFpJR1F3V0JPUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXLWSAwDQYJKoZIhvcNAQELBQADggEBAA/d3FP49Q+VeglRhXapD6H9m9Y8 BxgvzH51sQhbK3KBXfX3AincvvYNTw/D07qapyhv+aYWhAZjFzmvyE61ddwvp8Uz CLN0ywG39ID02wCHbsp9FNQu8HTkUD3E4JYORjQY7K9PFL8L5Yu7+4ElAY6WbhoN p9ZdVA02JgkSepNaTrdvN82QPb5zDsBYbX/OLKTUVhx8dbNtdifIX3iQBoE29977 xFmk2vVMfQq6AQ8TLzQgwlY2UnpFMto5PPBeTZEBaV/lOKeno+McYSW63YHal3dR LWbVtJf7N9t5bVLYX5TC3v8Cl62hSeZrzVyZo4/J2tiyc/eXYI+pSkQzNXk= -----END CERTIFICATE-----Generated at Fri Nov 22 11:45:57 2024 by rpki-client on console-ams.rpki-client.org