$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/SmAe5Pq9kOw-AMGskepKF0rpZ4M.roa File: SmAe5Pq9kOw-AMGskepKF0rpZ4M.roa (raw, json) Hash identifier: jqgByKHEZYdixMTU6dzud5H+foeSoZMQoAJw05Zodl0= Subject key identifier: 4A:60:1E:E4:FA:BD:90:EC:3E:00:C1:AC:91:EA:4A:17:4A:E9:67:83 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 02B4 Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/SmAe5Pq9kOw-AMGskepKF0rpZ4M.roa Signing time: Sat 31 Aug 2024 01:40:50 +0000 ROA not before: Sat 31 Aug 2024 01:40:50 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 4721 IP address blocks: 223.223.208.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 692 (0x2b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Aug 31 01:40:50 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=4A601EE4FABD90EC3E00C1AC91EA4A174AE96783 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:3f:56:63:2b:a5:df:de:b1:bd:f1:fd:b6:f2: 71:ea:98:03:4d:e7:74:5a:18:e2:3d:fc:fd:e1:7a: 8a:b9:ff:b8:6e:8c:91:06:48:56:b8:32:40:74:a5: 05:d3:66:40:8e:ba:b7:b2:d9:13:d4:6b:fc:ea:85: e7:06:24:3d:90:2b:c5:0b:e0:e1:f2:01:eb:cb:6e: 6b:7a:66:1d:2d:7f:cc:b6:60:31:7f:c3:7f:9e:8d: 00:ba:5d:aa:9b:2e:d1:15:e3:fd:f3:be:41:99:5d: 7a:ef:9c:c0:48:68:b9:fe:ec:f3:c0:de:b2:4e:94: 77:a7:d6:e1:09:a1:08:7b:5d:fd:ed:2a:f3:6a:24: 48:a9:fb:7a:22:3e:7a:05:1a:cc:53:56:e7:c7:b3: e1:6b:34:43:ad:af:5f:29:32:05:da:2b:2c:66:b5: a2:ce:d0:1b:50:ee:28:b1:21:07:16:f3:1f:33:e4: bd:f2:38:89:8f:f1:20:19:29:c5:05:c3:fb:08:f1: b7:18:fd:1f:28:fd:be:38:e2:01:87:ff:e7:32:bf: 77:13:fc:1a:b8:3d:22:3d:0e:52:36:05:8e:27:95: 67:44:2a:21:d3:ca:48:6b:94:15:7e:47:19:b9:f7: 7d:96:55:fc:f9:4a:aa:23:1b:85:fb:87:1d:3f:82: 7d:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:60:1E:E4:FA:BD:90:EC:3E:00:C1:AC:91:EA:4A:17:4A:E9:67:83 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/SmAe5Pq9kOw-AMGskepKF0rpZ4M.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 223.223.208.0/21 Signature Algorithm: sha256WithRSAEncryption 20:be:ec:b9:56:92:cc:e9:bb:8d:dc:1c:c6:9d:cd:ad:05:28: 53:ed:0c:97:d0:f1:7c:26:b1:5d:61:d4:e4:f7:ff:6f:db:f5: e1:93:ab:ef:d0:c3:27:8e:a0:16:9b:e0:46:8d:0a:c0:4c:20: 5d:05:6f:73:dd:b5:5c:d0:33:cf:3b:b9:b5:1e:9a:d7:27:64: 1d:2d:f2:cd:67:4b:98:10:e7:28:01:0c:82:82:2d:13:21:e5: b3:32:f8:0f:1f:ff:43:5b:8b:c1:59:f4:14:77:3f:8f:9e:d4: f6:01:d2:d3:79:a5:7d:c9:7c:24:89:af:71:e7:bf:91:0e:b5: 69:9b:3f:c9:98:d0:44:2b:ee:25:78:61:2f:21:bb:2e:55:13: 38:62:5b:84:ff:dd:e2:b1:7e:9d:2c:93:67:b5:61:41:d6:11: b1:5e:07:c9:6c:9e:57:a3:2a:86:fb:51:3a:a4:f7:9e:5a:a7: f1:63:12:35:2b:41:7e:e2:cf:97:f0:85:87:59:45:c3:20:e0: 54:40:1a:87:c7:49:0f:82:c6:26:f0:b3:9f:ce:ea:f8:63:b2: 37:21:d7:10:98:cf:62:50:b2:d5:2a:fd:18:12:88:6f:fc:9b: cb:59:ed:a1:44:bf:4d:5f:2e:33:1d:83:65:0e:cc:f5:20:a5: ba:ab:35:ac -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICArQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNDA4MzEw MTQwNTBaFw0yNTA4MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDRBNjAxRUU0RkFCRDkw RUMzRTAwQzFBQzkxRUE0QTE3NEFFOTY3ODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5P1ZjK6Xf3rG98f228nHqmANN53RaGOI9/P3heoq5/7hujJEG SFa4MkB0pQXTZkCOurey2RPUa/zqhecGJD2QK8UL4OHyAevLbmt6Zh0tf8y2YDF/ w3+ejQC6XaqbLtEV4/3zvkGZXXrvnMBIaLn+7PPA3rJOlHen1uEJoQh7Xf3tKvNq JEip+3oiPnoFGsxTVufHs+FrNEOtr18pMgXaKyxmtaLO0BtQ7iixIQcW8x8z5L3y OImP8SAZKcUFw/sI8bcY/R8o/b444gGH/+cyv3cT/Bq4PSI9DlI2BY4nlWdEKiHT ykhrlBV+Rxm5932WVfz5SqojG4X7hx0/gn39AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUSmAe5Pq9kOw+AMGskepKF0rpZ4MwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxL1NtQWU1UHE5a093LUFNR3NrZXBLRjBycFo0TS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPf39AwDQYJKoZIhvcNAQELBQADggEBACC+7LlWkszpu43cHMadza0FKFPt DJfQ8XwmsV1h1OT3/2/b9eGTq+/QwyeOoBab4EaNCsBMIF0Fb3PdtVzQM887ubUe mtcnZB0t8s1nS5gQ5ygBDIKCLRMh5bMy+A8f/0Nbi8FZ9BR3P4+e1PYB0tN5pX3J fCSJr3Hnv5EOtWmbP8mY0EQr7iV4YS8huy5VEzhiW4T/3eKxfp0sk2e1YUHWEbFe B8lsnlejKob7UTqk955ap/FjEjUrQX7iz5fwhYdZRcMg4FRAGofHSQ+Cxibws5/O 6vhjsjch1xCYz2JQstUq/RgSiG/8m8tZ7aFEv01fLjMdg2UOzPUgpbqrNaw= -----END CERTIFICATE-----Generated at Fri Nov 22 09:31:34 2024 by rpki-client on console-fra.rpki-client.org