$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/cUBMnacO58jHhv3DUlFuOaCib9c.roa File: cUBMnacO58jHhv3DUlFuOaCib9c.roa (raw, json) Hash identifier: cTAn+4NgGFv2gp91rFIvNbUiG/Q0gUA7qYUBkr+MF5I= Subject key identifier: 71:40:4C:9D:A7:0E:E7:C8:C7:86:FD:C3:52:51:6E:39:A0:A2:6F:D7 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 02C8 Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/cUBMnacO58jHhv3DUlFuOaCib9c.roa Signing time: Sat 31 Aug 2024 01:43:01 +0000 ROA not before: Sat 31 Aug 2024 01:43:01 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 9617 IP address blocks: 125.4.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 712 (0x2c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Aug 31 01:43:01 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=71404C9DA70EE7C8C786FDC352516E39A0A26FD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a1:c0:74:b4:ca:a4:ff:6a:85:e2:b7:bd:66: 8b:34:0a:19:a1:8b:50:5a:20:86:ac:19:44:b0:05: 9b:52:5c:c6:57:36:31:ec:57:8c:3e:56:f9:87:cd: 82:34:2e:31:56:86:cf:4c:a6:65:e4:7a:42:98:59: 60:15:5b:ea:19:06:3d:7d:29:55:1f:cb:c6:bd:45: 0b:11:de:24:93:57:60:7e:e2:7d:e8:6d:9f:63:e9: a4:a2:b7:15:97:12:40:8d:73:14:bc:38:17:33:f6: 16:32:35:e2:e1:fa:b4:cb:ab:4b:f4:05:35:21:ad: 56:65:89:65:a5:fa:ee:6d:18:45:f8:e8:ee:87:4d: e7:9e:e5:1e:c9:a2:8c:2f:b6:69:0f:8a:b2:56:18: 0c:9b:9c:1f:3b:45:7b:19:9b:8f:6a:5d:25:fa:be: b1:28:67:27:14:88:a4:eb:ea:61:8f:28:84:a3:5f: 69:ce:ef:f8:78:85:da:ca:91:ff:ec:ce:76:7a:d0: 93:2f:15:5e:e0:5d:a1:8b:9e:22:d1:00:fb:c9:77: dd:0c:07:c9:24:cf:d1:ab:18:b3:ea:73:d8:bf:ae: cd:27:71:45:8d:e0:d5:f7:9f:3d:58:fc:2d:fd:c4: 20:27:f0:45:c0:ed:cf:a7:7a:bc:41:76:84:f9:4e: d8:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:40:4C:9D:A7:0E:E7:C8:C7:86:FD:C3:52:51:6E:39:A0:A2:6F:D7 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/cUBMnacO58jHhv3DUlFuOaCib9c.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.4.0.0/16 Signature Algorithm: sha256WithRSAEncryption 19:17:8f:99:7f:62:a8:d4:52:ad:1d:e1:c3:50:0a:be:fd:c6: 2e:49:72:6a:28:d3:51:9e:a2:9d:63:3f:35:f6:c6:d1:f5:20: 7c:45:10:93:4a:6e:c8:af:1d:7d:1c:d9:43:83:4f:ef:0e:43: 00:2e:21:74:db:cd:75:85:cf:64:a6:90:a3:7f:3a:9c:f9:c7: 2b:76:04:3b:45:e5:11:73:6f:99:2b:f2:c6:1c:1f:99:58:9b: 2b:9a:19:4c:4e:ff:e2:e8:1b:fb:cf:80:c5:e6:50:d2:1a:bf: a3:72:14:b5:21:2a:0a:e2:fb:cb:58:07:ab:58:44:f2:3d:f0: 30:d0:8e:60:bd:cf:d4:45:b9:81:c5:31:32:80:28:d5:0a:d9: 52:15:0a:58:7a:41:41:3c:34:95:d8:7e:9a:1f:93:28:c7:4d: 5c:6e:24:10:73:49:b5:30:d4:b3:34:66:ca:65:ad:bc:ab:53: c1:ec:43:f7:02:c6:c4:43:7c:15:f8:26:a0:d7:8b:f6:a9:09: 2e:8f:cd:f7:f8:89:36:e1:d3:d0:8e:23:b7:e3:37:61:80:ed: db:ff:f4:55:7c:8f:06:ff:2b:94:d4:b4:c7:2d:d1:44:c1:8f: 25:2b:bd:10:71:ba:de:32:48:15:87:05:28:82:a4:65:8c:97: c6:9a:04:b6 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICAsgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNDA4MzEw MTQzMDFaFw0yNTA4MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDcxNDA0QzlEQTcwRUU3 QzhDNzg2RkRDMzUyNTE2RTM5QTBBMjZGRDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/ocB0tMqk/2qF4re9Zos0Chmhi1BaIIasGUSwBZtSXMZXNjHs V4w+VvmHzYI0LjFWhs9MpmXkekKYWWAVW+oZBj19KVUfy8a9RQsR3iSTV2B+4n3o bZ9j6aSitxWXEkCNcxS8OBcz9hYyNeLh+rTLq0v0BTUhrVZliWWl+u5tGEX46O6H Teee5R7JoowvtmkPirJWGAybnB87RXsZm49qXSX6vrEoZycUiKTr6mGPKISjX2nO 7/h4hdrKkf/sznZ60JMvFV7gXaGLniLRAPvJd90MB8kkz9GrGLPqc9i/rs0ncUWN 4NX3nz1Y/C39xCAn8EXA7c+nerxBdoT5TtgdAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUcUBMnacO58jHhv3DUlFuOaCib9cwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxL2NVQk1uYWNPNThqSGh2M0RVbEZ1T2FDaWI5Yy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwB9BDANBgkqhkiG9w0BAQsFAAOCAQEAGRePmX9iqNRSrR3hw1AKvv3GLkly aijTUZ6inWM/NfbG0fUgfEUQk0puyK8dfRzZQ4NP7w5DAC4hdNvNdYXPZKaQo386 nPnHK3YEO0XlEXNvmSvyxhwfmVibK5oZTE7/4ugb+8+AxeZQ0hq/o3IUtSEqCuL7 y1gHq1hE8j3wMNCOYL3P1EW5gcUxMoAo1QrZUhUKWHpBQTw0ldh+mh+TKMdNXG4k EHNJtTDUszRmymWtvKtTwexD9wLGxEN8FfgmoNeL9qkJLo/N9/iJNuHT0I4jt+M3 YYDt2//0VXyPBv8rlNS0xy3RRMGPJSu9EHG63jJIFYcFKIKkZYyXxpoEtg== -----END CERTIFICATE-----Generated at Fri Nov 22 09:31:34 2024 by rpki-client on console-fra.rpki-client.org