$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/AlgNdHG2Y6igRfFpt76yDBcaRu4.roa File: AlgNdHG2Y6igRfFpt76yDBcaRu4.roa (raw, json) Hash identifier: +vdIkV2kjZlrdgwL/8MjcXcxCq3vZ2w7WUTJ58ihSvA= Subject key identifier: 02:58:0D:74:71:B6:63:A8:A0:45:F1:69:B7:BE:B2:0C:17:1A:46:EE Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 0214 Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/AlgNdHG2Y6igRfFpt76yDBcaRu4.roa Signing time: Wed 31 Jul 2024 01:29:11 +0000 ROA not before: Wed 31 Jul 2024 01:29:11 +0000 ROA not after: Tue 15 Jul 2025 01:30:02 +0000 asID: 9378 IP address blocks: 103.3.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 532 (0x214) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Jul 31 01:29:11 2024 GMT Not After : Jul 15 01:30:02 2025 GMT Subject: CN=02580D7471B663A8A045F169B7BEB20C171A46EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:a7:ff:36:5b:27:27:0b:f7:c8:55:dc:8f:aa: a3:ca:ef:a2:2c:a5:e6:e1:a4:a3:1c:3a:c5:48:5b: e5:cd:b2:6f:7b:64:31:5a:15:23:70:1e:47:40:a2: 65:68:cd:5f:a6:56:ac:70:a8:04:d9:d9:f5:f6:2d: a5:dc:7b:51:61:1b:bc:d8:35:f4:f8:c1:6e:ff:a2: b5:62:98:e8:8e:72:81:91:42:9a:d0:66:49:75:fd: 85:b4:4d:c3:01:b4:ce:94:29:3a:6b:46:32:9d:47: 74:c6:36:22:ae:75:13:71:dc:06:1a:eb:79:52:8a: db:24:6c:8b:a1:58:b6:da:e2:a1:37:5b:90:fb:cb: 9f:3c:51:40:a0:ad:13:41:8a:a9:c6:6c:1e:43:68: 43:ef:96:da:54:99:79:de:5f:66:6c:04:f0:13:48: 9a:a7:b3:c2:da:38:5f:cc:c1:cf:03:3f:a0:c9:61: d3:18:b7:94:e1:89:3f:da:84:90:b5:8f:f6:a4:3e: 22:d6:b5:d1:3d:f4:eb:b2:3a:2a:51:cf:16:c9:00: b9:a6:a1:1a:9e:34:7f:e3:6c:62:bb:8b:0a:f0:d6: 63:0d:b4:0f:fd:b7:81:81:e9:d1:8c:e1:1c:67:a2: b5:e8:0d:fc:3d:ce:d3:42:18:10:c3:05:d1:0d:fd: 38:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:58:0D:74:71:B6:63:A8:A0:45:F1:69:B7:BE:B2:0C:17:1A:46:EE X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/AlgNdHG2Y6igRfFpt76yDBcaRu4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.3.4.0/22 Signature Algorithm: sha256WithRSAEncryption a7:c1:62:97:7b:ed:c7:4d:ab:80:3d:7b:80:7e:cc:1c:d2:5d: 62:7f:b5:1f:10:b8:f1:f3:72:46:40:c6:91:2d:9d:db:c3:e5: c1:b2:58:dd:b1:2d:56:b4:cc:66:0e:8c:da:37:c3:fe:65:69: 74:14:f8:f9:4f:f2:7a:1c:18:df:39:5d:bd:75:46:66:50:d5: fc:32:d7:92:78:38:72:60:f8:41:10:2d:5e:ad:d8:b7:ed:eb: 38:b0:3e:94:48:d8:9f:95:37:a8:5a:5c:ab:cb:b1:80:6f:f5: 43:b8:b5:48:da:3e:a3:3b:a4:cd:96:7f:85:53:05:41:41:8b: 15:b0:78:aa:81:7f:82:48:5d:ea:53:da:ef:cc:ae:80:6b:52: dc:1f:b3:20:e9:9a:dd:9c:0c:20:b4:92:99:c1:af:00:4a:56: d7:ef:1d:50:2c:e8:62:54:26:8c:27:f5:ad:43:5c:97:e8:5e: a3:6f:7a:14:e9:0a:57:b3:61:fa:46:dd:16:91:24:08:58:e1: 29:ac:b8:90:7d:95:9a:8c:d6:e7:f3:39:ef:93:23:cb:22:90: e2:80:14:1d:59:bb:0f:c9:8b:d3:72:d9:c1:92:50:ec:8d:f8: 4b:9c:73:68:29:23:c4:4f:b4:ae:f6:f0:5c:ff:f4:46:61:43: 04:7c:12:d3 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAhQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNDA3MzEw MTI5MTFaFw0yNTA3MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDAyNTgwRDc0NzFCNjYz QThBMDQ1RjE2OUI3QkVCMjBDMTcxQTQ2RUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDkp/82WycnC/fIVdyPqqPK76IspebhpKMcOsVIW+XNsm97ZDFa FSNwHkdAomVozV+mVqxwqATZ2fX2LaXce1FhG7zYNfT4wW7/orVimOiOcoGRQprQ Zkl1/YW0TcMBtM6UKTprRjKdR3TGNiKudRNx3AYa63lSitskbIuhWLba4qE3W5D7 y588UUCgrRNBiqnGbB5DaEPvltpUmXneX2ZsBPATSJqns8LaOF/Mwc8DP6DJYdMY t5ThiT/ahJC1j/akPiLWtdE99OuyOipRzxbJALmmoRqeNH/jbGK7iwrw1mMNtA/9 t4GB6dGM4RxnorXoDfw9ztNCGBDDBdEN/TgtAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUAlgNdHG2Y6igRfFpt76yDBcaRu4wHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxL0FsZ05kSEcyWTZpZ1JmRnB0NzZ5REJjYVJ1NC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJnAwQwDQYJKoZIhvcNAQELBQADggEBAKfBYpd77cdNq4A9e4B+zBzSXWJ/ tR8QuPHzckZAxpEtndvD5cGyWN2xLVa0zGYOjNo3w/5laXQU+PlP8nocGN85Xb11 RmZQ1fwy15J4OHJg+EEQLV6t2Lft6ziwPpRI2J+VN6haXKvLsYBv9UO4tUjaPqM7 pM2Wf4VTBUFBixWweKqBf4JIXepT2u/MroBrUtwfsyDpmt2cDCC0kpnBrwBKVtfv HVAs6GJUJown9a1DXJfoXqNvehTpClezYfpG3RaRJAhY4SmsuJB9lZqM1ufzOe+T I8sikOKAFB1Zuw/Ji9Ny2cGSUOyN+Eucc2gpI8RPtK728Fz/9EZhQwR8EtM= -----END CERTIFICATE-----Generated at Fri Nov 22 09:31:34 2024 by rpki-client on console-fra.rpki-client.org