$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/XZmT8qwbp2s0vYqYvhoW9TZprS8.roa File: XZmT8qwbp2s0vYqYvhoW9TZprS8.roa (raw, json) Hash identifier: 7xisjrkp/zqC229Md7XflW5YEUGN6W30+UP0O7qjTQU= Subject key identifier: 5D:99:93:F2:AC:1B:A7:6B:34:BD:8A:98:BE:1A:16:F5:36:69:AD:2F Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 0221 Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/XZmT8qwbp2s0vYqYvhoW9TZprS8.roa Signing time: Wed 31 Jul 2024 01:29:17 +0000 ROA not before: Wed 31 Jul 2024 01:29:17 +0000 ROA not after: Tue 15 Jul 2025 01:30:02 +0000 asID: 9824 IP address blocks: 219.100.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 545 (0x221) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Jul 31 01:29:17 2024 GMT Not After : Jul 15 01:30:02 2025 GMT Subject: CN=5D9993F2AC1BA76B34BD8A98BE1A16F53669AD2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f9:33:9a:aa:d9:a9:99:db:50:17:fc:cd:27: 24:49:49:3a:32:e0:5f:5c:3f:06:bd:33:37:a5:49: 3f:96:e6:d7:9e:aa:3f:7f:f2:28:9f:71:41:19:1d: 72:ca:37:50:a0:a2:bd:d5:07:ab:3b:44:e3:46:fa: ce:98:c4:44:b3:4f:9f:87:7d:26:fa:44:29:51:b4: fb:fe:71:db:c3:41:c1:09:61:be:17:bf:34:a7:3c: 4d:fc:ce:17:a8:ed:a8:35:c8:0c:b5:e6:cc:6c:70: c9:a3:0e:87:d2:37:4f:ce:f7:73:8f:83:cb:15:08: 6a:7c:4e:11:b9:d3:a8:c5:cd:14:89:5a:00:ea:fd: 63:7b:90:11:80:e1:e3:9f:23:22:5e:2e:fe:a1:7f: 01:02:8f:03:e9:04:6b:0f:16:26:49:db:22:6d:7e: ee:4f:17:fc:3e:b4:64:ab:3a:20:c5:d9:79:be:c0: 6d:62:c9:a1:8a:a0:0e:3d:05:f2:6c:f2:3b:c1:4c: 8a:28:bf:97:e9:1c:39:47:b7:88:d8:33:56:63:0c: 7b:58:c0:e4:e4:1e:d6:37:3d:fb:6a:47:54:f0:24: 2a:b1:3a:7b:0a:07:ac:f7:40:91:18:af:c4:f1:24: 15:e5:73:ce:27:05:8e:01:85:61:1f:95:51:0b:94: ba:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:99:93:F2:AC:1B:A7:6B:34:BD:8A:98:BE:1A:16:F5:36:69:AD:2F X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/XZmT8qwbp2s0vYqYvhoW9TZprS8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.100.152.0/22 Signature Algorithm: sha256WithRSAEncryption 7b:92:06:92:0f:a7:e9:9e:65:ae:50:c9:b3:12:fa:d1:bc:63: eb:18:6a:ff:d5:2b:55:b6:0e:a6:7e:51:9e:cc:89:b6:36:c9: 55:ef:70:7d:79:a9:53:7d:ce:13:0c:15:07:45:f7:b7:15:dc: b0:95:f8:f5:57:8e:8a:81:4f:13:5c:0c:5d:65:c0:92:06:5e: 65:ce:85:3a:b5:f3:a7:90:24:7a:b8:a9:04:3a:21:e7:d9:19: e7:d6:e8:43:e1:e4:d4:ef:62:81:a8:ba:45:2a:0f:1f:68:93: 11:85:43:b8:a2:ff:09:65:00:d4:4f:7a:19:66:05:5c:06:05: a5:e7:7e:15:90:1f:52:66:77:82:6e:d0:c9:ee:b8:a7:6a:1f: e0:4d:a6:f0:63:94:b3:62:a6:ed:1c:db:de:1e:c1:2a:e5:24: db:5b:b6:f1:9c:8c:a8:38:ec:e8:97:31:7f:83:39:d4:4e:ca: c8:32:13:09:30:8c:23:ed:77:b4:fd:34:fc:17:c3:01:36:83: ce:4b:b9:2c:b1:d8:b4:6b:d5:e0:f4:0c:04:7f:09:7b:00:3e: 8f:eb:d2:a6:e8:da:f5:93:5a:f0:f1:cc:a2:78:b1:e9:c8:f8: 28:61:e6:05:1d:88:54:80:dc:b8:59:25:7d:0a:f7:f1:56:14: 6e:1a:35:01 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAiEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNDA3MzEw MTI5MTdaFw0yNTA3MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDVEOTk5M0YyQUMxQkE3 NkIzNEJEOEE5OEJFMUExNkY1MzY2OUFEMkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQ+TOaqtmpmdtQF/zNJyRJSToy4F9cPwa9MzelST+W5teeqj9/ 8iifcUEZHXLKN1Cgor3VB6s7RONG+s6YxESzT5+HfSb6RClRtPv+cdvDQcEJYb4X vzSnPE38zheo7ag1yAy15sxscMmjDofSN0/O93OPg8sVCGp8ThG506jFzRSJWgDq /WN7kBGA4eOfIyJeLv6hfwECjwPpBGsPFiZJ2yJtfu5PF/w+tGSrOiDF2Xm+wG1i yaGKoA49BfJs8jvBTIoov5fpHDlHt4jYM1ZjDHtYwOTkHtY3PftqR1TwJCqxOnsK B6z3QJEYr8TxJBXlc84nBY4BhWEflVELlLqxAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUXZmT8qwbp2s0vYqYvhoW9TZprS8wHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxL1habVQ4cXdicDJzMHZZcVl2aG9XOVRacHJTOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALbZJgwDQYJKoZIhvcNAQELBQADggEBAHuSBpIPp+meZa5QybMS+tG8Y+sY av/VK1W2DqZ+UZ7MibY2yVXvcH15qVN9zhMMFQdF97cV3LCV+PVXjoqBTxNcDF1l wJIGXmXOhTq186eQJHq4qQQ6IefZGefW6EPh5NTvYoGoukUqDx9okxGFQ7ii/wll ANRPehlmBVwGBaXnfhWQH1Jmd4Ju0MnuuKdqH+BNpvBjlLNipu0c294ewSrlJNtb tvGcjKg47OiXMX+DOdROysgyEwkwjCPtd7T9NPwXwwE2g85LuSyx2LRr1eD0DAR/ CXsAPo/r0qbo2vWTWvDxzKJ4senI+Chh5gUdiFSA3LhZJX0K9/FWFG4aNQE= -----END CERTIFICATE-----Generated at Fri Nov 22 09:31:34 2024 by rpki-client on console-fra.rpki-client.org