$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/Srfm7Ht8EDgEuH6pLp8uR5ehVi8.roa File: Srfm7Ht8EDgEuH6pLp8uR5ehVi8.roa (raw, json) Hash identifier: cNAQtbJAbqS7lvlTkul9bwZNL4LTx8Tl5XMqd8L09FA= Subject key identifier: 4A:B7:E6:EC:7B:7C:10:38:04:B8:7E:A9:2E:9F:2E:47:97:A1:56:2F Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 02EA Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/Srfm7Ht8EDgEuH6pLp8uR5ehVi8.roa Signing time: Mon 30 Sep 2024 01:28:10 +0000 ROA not before: Mon 30 Sep 2024 01:28:10 +0000 ROA not after: Mon 15 Sep 2025 01:30:03 +0000 asID: 0 IP address blocks: 202.180.176.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Oct 2024 13:49:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 746 (0x2ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Sep 30 01:28:10 2024 GMT Not After : Sep 15 01:30:03 2025 GMT Subject: CN=4AB7E6EC7B7C103804B87EA92E9F2E4797A1562F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:3f:44:12:a7:02:d4:9a:7b:39:82:1c:e7:fd: 51:34:c8:b3:e1:33:e8:44:7f:11:9a:36:a0:38:8b: 6c:f0:2b:e3:6e:24:4f:74:7f:73:22:46:1b:51:8d: e1:1e:47:48:20:d8:6c:f0:26:b7:ce:87:57:d6:db: 6c:3e:44:6c:b6:d4:aa:4f:65:8f:e0:c2:76:92:e2: 7b:36:6e:38:f2:00:99:1b:c0:e3:84:af:9c:53:ef: 81:f3:ec:46:16:bf:bf:35:b2:87:0e:41:d3:d3:df: b9:58:75:25:65:31:7b:67:25:c4:e3:3b:f6:16:02: 1d:f1:4b:d5:d8:eb:0d:5e:bd:4c:6c:69:f3:a0:7c: 91:be:b9:ad:78:71:b9:32:7c:fa:cf:81:3a:cc:e9: 01:ef:03:99:67:3c:20:b6:54:99:4f:32:32:7b:05: 0e:3c:87:87:43:a7:87:a1:bb:77:83:c3:ae:a5:a9: a5:42:c4:27:ff:db:98:26:bf:cc:4b:11:90:95:ba: 10:d8:97:89:75:cf:9c:e0:2d:d3:10:2e:b9:e3:b2: 85:b7:50:b2:67:84:40:a7:65:5f:0c:31:b2:e8:1d: 34:a8:4b:09:67:68:85:6b:69:b6:f5:29:20:05:a3: 40:e3:a0:f3:fd:68:ac:26:28:2c:ec:d7:37:96:9a: c7:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:B7:E6:EC:7B:7C:10:38:04:B8:7E:A9:2E:9F:2E:47:97:A1:56:2F X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/Srfm7Ht8EDgEuH6pLp8uR5ehVi8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.180.176.0/20 Signature Algorithm: sha256WithRSAEncryption b4:d4:af:23:d0:16:74:bc:11:0d:15:0a:fe:18:af:77:13:1f: a1:bd:41:f0:d1:8c:25:20:a1:8b:e0:00:ad:52:b0:78:0d:06: 25:22:6e:07:a9:21:d0:5e:de:e8:8d:0d:b2:0e:cd:88:01:4c: e8:bd:2f:d3:07:31:44:ca:e3:ab:5c:61:f0:2e:00:94:1b:f9: 27:0b:20:6a:05:57:e8:ac:16:ff:93:12:41:54:91:b4:fe:00: b3:b9:6d:e5:03:09:17:e9:74:38:3c:9f:11:97:59:f6:69:62: 67:19:57:9e:4e:7a:cd:fc:cf:8f:12:9c:bc:d8:21:4e:c5:8b: 55:c8:e6:66:8d:85:61:17:30:f9:cf:3d:62:ec:9f:bf:0d:99: 43:9d:ad:23:c4:6c:6c:29:3b:3a:68:f7:e8:bf:1c:27:df:ca: 4f:01:ff:ca:ea:ea:02:1f:79:11:85:bc:78:43:ec:34:05:52: 40:7c:7e:04:46:33:d1:07:77:41:5f:33:17:9f:a9:11:b2:c9: 0c:0c:19:d9:66:72:92:2d:31:85:13:4d:2f:88:b1:64:ff:ca: 86:54:49:44:af:df:ab:28:e6:5d:e2:d5:d0:48:64:f5:04:6d: 43:7b:4c:ed:44:bf:00:fb:b5:0d:97:76:46:6d:bc:d2:ed:eb: 6c:49:c6:cb -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAuowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNDA5MzAw MTI4MTBaFw0yNTA5MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDRBQjdFNkVDN0I3QzEw MzgwNEI4N0VBOTJFOUYyRTQ3OTdBMTU2MkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOP0QSpwLUmns5ghzn/VE0yLPhM+hEfxGaNqA4i2zwK+NuJE90 f3MiRhtRjeEeR0gg2GzwJrfOh1fW22w+RGy21KpPZY/gwnaS4ns2bjjyAJkbwOOE r5xT74Hz7EYWv781socOQdPT37lYdSVlMXtnJcTjO/YWAh3xS9XY6w1evUxsafOg fJG+ua14cbkyfPrPgTrM6QHvA5lnPCC2VJlPMjJ7BQ48h4dDp4ehu3eDw66lqaVC xCf/25gmv8xLEZCVuhDYl4l1z5zgLdMQLrnjsoW3ULJnhECnZV8MMbLoHTSoSwln aIVrabb1KSAFo0DjoPP9aKwmKCzs1zeWmsfhAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUSrfm7Ht8EDgEuH6pLp8uR5ehVi8wHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxL1NyZm03SHQ4RURnRXVINnBMcDh1UjVlaFZpOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATKtLAwDQYJKoZIhvcNAQELBQADggEBALTUryPQFnS8EQ0VCv4Yr3cTH6G9 QfDRjCUgoYvgAK1SsHgNBiUibgepIdBe3uiNDbIOzYgBTOi9L9MHMUTK46tcYfAu AJQb+ScLIGoFV+isFv+TEkFUkbT+ALO5beUDCRfpdDg8nxGXWfZpYmcZV55Oes38 z48SnLzYIU7Fi1XI5maNhWEXMPnPPWLsn78NmUOdrSPEbGwpOzpo9+i/HCffyk8B /8rq6gIfeRGFvHhD7DQFUkB8fgRGM9EHd0FfMxefqRGyyQwMGdlmcpItMYUTTS+I sWT/yoZUSUSv36so5l3i1dBIZPUEbUN7TO1EvwD7tQ2XdkZtvNLt62xJxss= -----END CERTIFICATE-----Generated at Tue Oct 22 15:30:53 2024 by rpki-client on console-ams.rpki-client.org