$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/3XBagg2QXQAa1FanlEWTY8GzJh0.roa File: 3XBagg2QXQAa1FanlEWTY8GzJh0.roa (raw, json) Hash identifier: py47ZfAdWjZvdB3eTNUpeTbEgDHo9oYCOElRD5ZAUTc= Subject key identifier: DD:70:5A:82:0D:90:5D:00:1A:D4:56:A7:94:45:93:63:C1:B3:26:1D Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 02B3 Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/3XBagg2QXQAa1FanlEWTY8GzJh0.roa Signing time: Sat 31 Aug 2024 01:40:49 +0000 ROA not before: Sat 31 Aug 2024 01:40:49 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 9824 IP address blocks: 223.165.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 691 (0x2b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Aug 31 01:40:49 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=DD705A820D905D001AD456A794459363C1B3261D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:66:f7:30:5c:b2:f7:03:be:1e:99:96:72:e0: 72:f8:b9:41:80:10:2c:d6:c8:66:88:c2:7a:e4:1c: 93:fa:a0:6e:59:6f:68:38:23:20:17:65:a1:7c:27: 7d:5a:c4:42:19:97:62:ed:c3:6d:21:c1:da:60:f4: 1d:37:65:f1:21:55:68:e6:ca:12:23:2c:55:20:8f: 4b:5c:72:29:27:48:9d:08:bb:43:06:55:d5:ff:80: 5c:46:54:9e:d0:4a:e6:ea:38:e9:ea:15:47:da:e0: ec:9f:d0:89:80:98:2b:9a:fb:c6:84:74:b8:bb:c0: 8d:d6:4d:d7:73:f1:44:bd:b1:d1:3e:8f:eb:b0:71: d6:d9:9b:c8:1a:8e:ef:a1:75:94:da:4a:f4:cc:76: 43:cc:0c:c6:a4:36:50:96:d0:42:61:19:50:55:fb: 40:5d:ca:74:0d:13:70:14:29:9a:30:06:84:b3:c6: 86:82:1b:75:90:42:29:fe:ab:44:b6:31:f7:cb:9d: e1:bd:44:2b:d1:5a:da:1d:64:6d:6f:83:3b:48:66: e1:6c:50:6f:6d:1d:25:10:b3:d1:c9:c8:9d:8f:17: 6e:ad:ac:df:58:77:c3:ba:cf:49:a4:49:d6:49:8f: 24:e1:04:28:a4:c0:38:04:71:27:50:92:4f:6e:9d: e3:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:70:5A:82:0D:90:5D:00:1A:D4:56:A7:94:45:93:63:C1:B3:26:1D X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/3XBagg2QXQAa1FanlEWTY8GzJh0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 223.165.32.0/19 Signature Algorithm: sha256WithRSAEncryption 02:09:1d:d8:40:b3:4d:82:f1:55:df:40:89:65:3f:b9:02:cc: a8:1d:35:15:6c:01:7a:32:a7:fb:4d:ac:07:0a:bf:20:c0:d1: e9:16:51:75:a8:bf:98:bc:85:fa:c3:46:ce:1f:3e:19:81:0c: fe:f6:4a:3f:00:c6:a4:c6:47:ba:1f:ae:34:1e:38:24:be:af: fd:ae:e0:fe:9f:cf:63:b3:50:56:0f:ec:9a:3e:ad:52:c4:4a: 9e:ef:9d:56:a8:91:36:c9:f6:48:0d:ef:e8:d9:f2:05:72:ef: 37:49:d8:35:2c:ef:92:12:d3:b5:ee:0e:03:7f:98:8f:5e:9b: 35:93:3b:8a:5c:82:4c:86:f5:e0:d6:21:51:b2:47:ce:7a:84: d5:8f:14:72:10:68:3a:10:5b:8c:e7:2c:9c:7c:4f:2a:7c:9d: 50:4e:ef:97:e2:e0:a7:09:a7:01:0f:8b:4b:8a:03:a0:42:dd: f0:3c:f2:a1:eb:de:e3:f8:46:de:44:04:9d:41:1a:a8:7e:0d: a9:6e:67:cd:8c:8e:6e:ea:18:77:0c:7d:df:04:26:c7:fb:ec: 1a:18:41:2f:ef:0b:e4:79:aa:15:6f:14:99:14:1b:ac:3f:bc: f8:2a:ba:6b:8c:ef:ff:d6:d6:1e:ae:21:62:89:22:39:9a:6b: 23:72:68:8c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICArMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNDA4MzEw MTQwNDlaFw0yNTA4MTUwMTMwMDJaMDMxMTAvBgNVBAMTKERENzA1QTgyMEQ5MDVE MDAxQUQ0NTZBNzk0NDU5MzYzQzFCMzI2MUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+ZvcwXLL3A74emZZy4HL4uUGAECzWyGaIwnrkHJP6oG5Zb2g4 IyAXZaF8J31axEIZl2Ltw20hwdpg9B03ZfEhVWjmyhIjLFUgj0tcciknSJ0Iu0MG VdX/gFxGVJ7QSubqOOnqFUfa4Oyf0ImAmCua+8aEdLi7wI3WTddz8US9sdE+j+uw cdbZm8gaju+hdZTaSvTMdkPMDMakNlCW0EJhGVBV+0BdynQNE3AUKZowBoSzxoaC G3WQQin+q0S2MffLneG9RCvRWtodZG1vgztIZuFsUG9tHSUQs9HJyJ2PF26trN9Y d8O6z0mkSdZJjyThBCikwDgEcSdQkk9unePXAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU3XBagg2QXQAa1FanlEWTY8GzJh0wHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxLzNYQmFnZzJRWFFBYTFGYW5sRVdUWThHekpoMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXfpSAwDQYJKoZIhvcNAQELBQADggEBAAIJHdhAs02C8VXfQIllP7kCzKgd NRVsAXoyp/tNrAcKvyDA0ekWUXWov5i8hfrDRs4fPhmBDP72Sj8AxqTGR7ofrjQe OCS+r/2u4P6fz2OzUFYP7Jo+rVLESp7vnVaokTbJ9kgN7+jZ8gVy7zdJ2DUs75IS 07XuDgN/mI9emzWTO4pcgkyG9eDWIVGyR856hNWPFHIQaDoQW4znLJx8Typ8nVBO 75fi4KcJpwEPi0uKA6BC3fA88qHr3uP4Rt5EBJ1BGqh+DaluZ82Mjm7qGHcMfd8E Jsf77BoYQS/vC+R5qhVvFJkUG6w/vPgqumuM7//W1h6uIWKJIjmaayNyaIw= -----END CERTIFICATE-----Generated at Fri Nov 22 11:45:57 2024 by rpki-client on console-ams.rpki-client.org