$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/kDzJAGS4f3Jdi0chOtPqaopPTNA.roa File: kDzJAGS4f3Jdi0chOtPqaopPTNA.roa (raw, json) Hash identifier: Jw/1tsea9t4FDoAXZWAzndCv8Rl7KSi9V+ZcQfJEENk= Subject key identifier: 90:3C:C9:00:64:B8:7F:72:5D:8B:47:21:3A:D3:EA:6A:8A:4F:4C:D0 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 024D Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/kDzJAGS4f3Jdi0chOtPqaopPTNA.roa Signing time: Sat 31 Aug 2024 01:36:36 +0000 ROA not before: Sat 31 Aug 2024 01:36:36 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 18136 IP address blocks: 117.53.32.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 589 (0x24d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Aug 31 01:36:36 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=903CC90064B87F725D8B47213AD3EA6A8A4F4CD0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a6:e9:33:85:3a:a3:c4:0a:a7:ce:ff:ac:74: db:f9:08:26:b0:85:25:87:0b:eb:6e:fc:21:0e:5b: 48:35:74:ca:e8:05:b8:79:b1:01:26:5a:e6:eb:01: 92:65:66:42:41:97:52:f8:04:dc:fa:c9:45:e2:73: 9b:b9:c2:83:af:4e:ff:ca:8f:bd:04:49:01:d6:78: aa:43:ef:62:ce:cb:47:9d:ac:c0:5e:36:47:5b:d3: 8b:36:90:86:e7:b3:4e:4b:f2:e5:8d:88:5c:86:13: 61:32:76:41:b6:07:0f:62:6d:c2:00:56:98:9c:0d: 5f:40:8a:3e:1a:bb:4d:b0:99:f1:e7:71:f1:74:f2: e7:b6:a1:36:ca:e7:32:98:1b:4a:e7:32:d2:ed:aa: d3:23:87:e7:c5:e6:44:a6:4d:89:8d:48:ed:e3:69: 6c:d3:31:12:0f:8b:d0:91:0f:08:c0:ea:66:60:28: e9:c3:15:62:f8:90:a0:da:3f:2e:13:d7:64:43:8d: 18:1c:c9:e0:d1:c7:52:9a:d6:1c:56:ad:44:af:12: 02:4b:20:0e:be:3f:1e:22:f6:73:c9:94:0d:c3:ea: 57:28:b8:a8:a9:36:f8:9d:b0:b5:29:dc:98:e8:ee: 58:1b:ec:7c:b9:15:d3:3b:c9:b0:d7:bc:ac:01:81: 98:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:3C:C9:00:64:B8:7F:72:5D:8B:47:21:3A:D3:EA:6A:8A:4F:4C:D0 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/kDzJAGS4f3Jdi0chOtPqaopPTNA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.53.32.0/21 Signature Algorithm: sha256WithRSAEncryption c1:ed:bb:63:e6:71:c3:96:fb:1d:fd:65:af:bc:fd:b7:5d:f3: 81:6b:d5:e6:95:c8:94:e0:ac:49:9b:10:5d:43:c6:c4:51:28: 4c:2c:74:ec:5e:e0:b2:b3:65:9f:4c:42:35:cb:83:7a:82:a7: 0e:48:b0:00:53:20:57:35:d5:8f:d1:ea:d6:ce:98:51:e1:51: 40:bb:4f:ed:40:4c:f2:a2:cd:34:e6:dc:4e:c1:7e:3e:fe:f3: a5:3d:cc:b9:a5:25:48:1e:15:01:c6:45:95:f9:1d:39:e0:83: 82:eb:85:d7:bb:27:1d:98:80:6e:9a:d6:8d:eb:39:34:68:77: f7:cd:3a:fe:72:72:5d:b6:0f:cb:e0:94:13:4a:55:f1:2f:09: 5e:a9:6f:07:b0:66:f3:b5:d0:1f:aa:dd:9a:27:46:a1:82:47: ab:81:80:c9:c2:c3:b9:1c:db:88:90:c6:0e:18:e2:0b:43:1e: c7:db:07:4a:01:78:20:6b:dc:3f:0d:53:66:bc:19:02:03:61: ed:55:3e:6a:db:2f:34:4d:23:5e:0f:ea:cd:a2:4f:12:ee:e3: ca:a2:87:c1:ed:98:16:f3:da:e9:ce:4b:1e:bd:fe:2d:4a:b1: 10:2e:c7:b4:73:f3:35:8c:dd:17:9f:9c:67:69:5d:b2:3e:03: 0e:93:e5:cc -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAk0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNDA4MzEw MTM2MzZaFw0yNTA4MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDkwM0NDOTAwNjRCODdG NzI1RDhCNDcyMTNBRDNFQTZBOEE0RjRDRDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClpukzhTqjxAqnzv+sdNv5CCawhSWHC+tu/CEOW0g1dMroBbh5 sQEmWubrAZJlZkJBl1L4BNz6yUXic5u5woOvTv/Kj70ESQHWeKpD72LOy0edrMBe Nkdb04s2kIbns05L8uWNiFyGE2EydkG2Bw9ibcIAVpicDV9Aij4au02wmfHncfF0 8ue2oTbK5zKYG0rnMtLtqtMjh+fF5kSmTYmNSO3jaWzTMRIPi9CRDwjA6mZgKOnD FWL4kKDaPy4T12RDjRgcyeDRx1Ka1hxWrUSvEgJLIA6+Px4i9nPJlA3D6lcouKip NvidsLUp3Jjo7lgb7Hy5FdM7ybDXvKwBgZiJAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUkDzJAGS4f3Jdi0chOtPqaopPTNAwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxL2tEekpBR1M0ZjNKZGkwY2hPdFBxYW9wUFROQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAN1NSAwDQYJKoZIhvcNAQELBQADggEBAMHtu2PmccOW+x39Za+8/bdd84Fr 1eaVyJTgrEmbEF1DxsRRKEwsdOxe4LKzZZ9MQjXLg3qCpw5IsABTIFc11Y/R6tbO mFHhUUC7T+1ATPKizTTm3E7Bfj7+86U9zLmlJUgeFQHGRZX5HTngg4Lrhde7Jx2Y gG6a1o3rOTRod/fNOv5ycl22D8vglBNKVfEvCV6pbwewZvO10B+q3ZonRqGCR6uB gMnCw7kc24iQxg4Y4gtDHsfbB0oBeCBr3D8NU2a8GQIDYe1VPmrbLzRNI14P6s2i TxLu48qih8HtmBbz2unOSx69/i1KsRAux7Rz8zWM3RefnGdpXbI+Aw6T5cw= -----END CERTIFICATE-----Generated at Fri Nov 22 11:45:58 2024 by rpki-client on console-ams.rpki-client.org