$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/iQgXdXxCSlL161eOON3CJN4LEps.roa File: iQgXdXxCSlL161eOON3CJN4LEps.roa (raw, json) Hash identifier: 3fSctUGnDE4HtN7yyiZ96u7nVt9i2rdbuwGz+aaM/W8= Subject key identifier: 89:08:17:75:7C:42:4A:52:F5:EB:57:8E:38:DD:C2:24:DE:0B:12:9B Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 026B Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/iQgXdXxCSlL161eOON3CJN4LEps.roa Signing time: Sat 31 Aug 2024 01:36:49 +0000 ROA not before: Sat 31 Aug 2024 01:36:49 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 9824 IP address blocks: 211.120.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 619 (0x26b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Aug 31 01:36:49 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=890817757C424A52F5EB578E38DDC224DE0B129B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:3d:ed:2e:d6:59:e4:f1:1f:fa:74:11:52:6c: b7:63:04:9d:ec:44:e8:41:c5:91:51:5e:7b:6b:5e: 0b:e4:7c:7a:2b:3f:8f:5f:38:a3:28:96:43:44:52: e9:23:0a:c3:01:cb:91:85:7a:cb:22:4d:60:0b:f5: 62:59:58:9c:03:33:25:0b:3b:e1:aa:91:70:01:4e: d8:f8:a9:ed:41:b6:8b:24:15:81:66:4d:52:4b:1c: 48:4e:aa:00:6e:91:d0:f4:1b:d1:cc:24:56:e0:b7: de:90:be:c1:a5:9c:39:ac:2a:91:de:34:81:ec:99: 76:30:a1:44:66:50:35:dc:55:ec:12:ee:7a:a3:c7: 4e:c5:04:26:89:ed:b0:c7:99:70:73:7a:d7:9d:81: e5:75:58:04:3d:a7:4f:01:f2:7a:29:12:4c:cc:9a: 49:ec:4e:21:28:3e:05:4e:04:d3:b3:98:c6:06:7b: e8:e8:67:12:b7:33:7e:5e:b3:ce:4b:48:d2:1d:65: ab:1b:57:c9:bc:1f:53:69:89:d1:cb:cd:ca:0c:e2: 8e:9a:94:1d:c0:73:d9:f6:99:69:5e:a9:1a:fc:3b: 46:7b:90:ca:fc:af:37:1a:23:34:76:16:45:e1:00: cc:62:66:ab:48:45:f9:41:15:6a:aa:ad:7a:ec:0f: 1f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:08:17:75:7C:42:4A:52:F5:EB:57:8E:38:DD:C2:24:DE:0B:12:9B X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/iQgXdXxCSlL161eOON3CJN4LEps.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.120.128.0/18 Signature Algorithm: sha256WithRSAEncryption e7:99:38:76:ad:79:fa:2b:76:c6:d5:db:bb:2d:f0:b8:ce:7e: 39:f5:7e:76:cf:a9:19:46:ee:f2:32:b1:88:8e:bb:88:b3:69: b8:0d:ba:7d:ff:fb:69:8d:cc:f7:f0:cd:d9:91:e6:c9:64:22: de:e9:43:17:a8:c7:92:e5:cc:78:c9:a2:73:01:6b:c7:e5:e4: ec:62:17:ed:4c:0a:5f:d0:62:19:03:ad:41:bf:a5:73:cc:3c: 91:6b:07:79:2d:81:5a:5e:8a:2f:23:ac:75:7a:09:50:63:62: 58:98:72:5a:01:62:62:dc:f4:f7:fa:5a:84:56:7f:1a:1a:17: 18:e3:17:77:20:6c:6f:64:06:fa:d5:76:9d:b0:78:00:68:31: 4c:01:8f:ea:97:11:4d:0e:5b:f7:7b:b4:85:c6:68:85:f0:e0: d0:e8:84:27:c6:30:6f:91:4f:18:e3:7a:03:3a:41:0d:c5:75: c0:af:ee:b1:88:27:1e:dc:8c:36:f2:b2:ce:21:ec:93:02:16: 0e:15:e0:d5:9f:79:d6:4f:f6:1a:9a:b4:a7:e0:59:a7:ed:dd: 17:04:11:a5:93:e1:2b:e6:96:64:5c:86:45:7e:4e:a6:01:a5: 8e:b1:09:42:e0:ea:33:06:3a:fa:70:89:58:e3:47:95:1b:f4: f7:cd:a8:fc -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAmswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNDA4MzEw MTM2NDlaFw0yNTA4MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDg5MDgxNzc1N0M0MjRB NTJGNUVCNTc4RTM4RERDMjI0REUwQjEyOUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNPe0u1lnk8R/6dBFSbLdjBJ3sROhBxZFRXntrXgvkfHorP49f OKMolkNEUukjCsMBy5GFessiTWAL9WJZWJwDMyULO+GqkXABTtj4qe1BtoskFYFm TVJLHEhOqgBukdD0G9HMJFbgt96QvsGlnDmsKpHeNIHsmXYwoURmUDXcVewS7nqj x07FBCaJ7bDHmXBzetedgeV1WAQ9p08B8nopEkzMmknsTiEoPgVOBNOzmMYGe+jo ZxK3M35es85LSNIdZasbV8m8H1NpidHLzcoM4o6alB3Ac9n2mWleqRr8O0Z7kMr8 rzcaIzR2FkXhAMxiZqtIRflBFWqqrXrsDx9xAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUiQgXdXxCSlL161eOON3CJN4LEpswHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxL2lRZ1hkWHhDU2xMMTYxZU9PTjNDSk40TEVwcy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAbTeIAwDQYJKoZIhvcNAQELBQADggEBAOeZOHatefordsbV27st8LjOfjn1 fnbPqRlG7vIysYiOu4izabgNun3/+2mNzPfwzdmR5slkIt7pQxeox5LlzHjJonMB a8fl5OxiF+1MCl/QYhkDrUG/pXPMPJFrB3ktgVpeii8jrHV6CVBjYliYcloBYmLc 9Pf6WoRWfxoaFxjjF3cgbG9kBvrVdp2weABoMUwBj+qXEU0OW/d7tIXGaIXw4NDo hCfGMG+RTxjjegM6QQ3FdcCv7rGIJx7cjDbyss4h7JMCFg4V4NWfedZP9hqatKfg Waft3RcEEaWT4SvmlmRchkV+TqYBpY6xCULg6jMGOvpwiVjjR5Ub9PfNqPw= -----END CERTIFICATE-----Generated at Fri Nov 22 09:31:34 2024 by rpki-client on console-fra.rpki-client.org