$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/s43igTy379smdNJEcuSXtxj5V8w.roa File: s43igTy379smdNJEcuSXtxj5V8w.roa (raw, json) Hash identifier: BtG0h6J3AVi70fUj9ulZd3n1uUr8ka1NCkAjWkxNZ/g= Subject key identifier: B3:8D:E2:81:3C:B7:EF:DB:26:74:D2:44:72:E4:97:B7:18:F9:57:CC Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 02E7 Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/s43igTy379smdNJEcuSXtxj5V8w.roa Signing time: Mon 30 Sep 2024 01:28:06 +0000 ROA not before: Mon 30 Sep 2024 01:28:06 +0000 ROA not after: Mon 15 Sep 2025 01:30:03 +0000 asID: 0 IP address blocks: 61.206.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Oct 2024 13:49:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 743 (0x2e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Sep 30 01:28:06 2024 GMT Not After : Sep 15 01:30:03 2025 GMT Subject: CN=B38DE2813CB7EFDB2674D24472E497B718F957CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:d7:97:b4:cf:71:8f:37:f4:dc:78:70:2d:63: ec:45:e4:1d:25:f3:95:62:b4:68:cd:e7:b9:21:23: 0d:2c:9f:9a:2c:a1:6f:94:8a:fe:b2:4a:1c:c0:c7: 83:45:f9:7c:f1:47:ea:90:57:18:96:9f:b2:21:93: 6d:1f:dd:d1:e5:58:0f:f3:11:33:ad:fb:bd:c9:67: d9:86:26:d3:3c:0d:fb:1b:1c:ba:81:10:40:79:92: 69:de:36:b1:f4:e6:8d:32:99:d2:3f:b9:d6:2f:b3: 29:ca:b7:37:4e:83:42:18:54:9c:d3:a6:e6:5e:aa: e4:1d:fd:47:24:c1:78:53:e7:db:d1:fa:7a:9a:12: 81:67:2a:ce:09:e0:c5:7a:0b:7b:dd:e2:9b:bf:d2: 02:6c:84:96:e4:70:de:46:c9:75:c6:78:47:1b:99: 9b:95:8a:a6:ef:ab:72:55:f9:fe:f6:34:dc:02:be: ce:9e:43:a2:e3:a6:1a:d5:2e:91:c1:f3:dc:78:27: 32:ef:e5:37:ff:68:81:56:15:da:a6:ea:f1:6c:f2: 43:16:3a:3c:7b:65:dd:5a:e0:55:fc:f4:d0:ee:e8: 47:3c:7e:aa:22:42:66:96:af:30:ee:e9:5e:cc:36: 85:d0:46:a0:cb:d9:7a:9e:6a:83:88:56:a6:1f:2a: 1b:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:8D:E2:81:3C:B7:EF:DB:26:74:D2:44:72:E4:97:B7:18:F9:57:CC X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/s43igTy379smdNJEcuSXtxj5V8w.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.206.96.0/20 Signature Algorithm: sha256WithRSAEncryption 6a:dd:1f:ae:f3:44:b3:a9:6c:36:1c:37:77:f8:5b:a6:26:10: 4e:82:f6:5d:00:cb:41:8b:1a:10:1d:aa:77:30:9d:4b:3f:47: 4f:af:c7:89:30:bc:60:97:39:3c:80:2d:96:5a:ef:da:e6:79: 37:76:d7:76:be:ef:d2:62:87:7f:8d:bb:d6:2a:d9:9b:3a:bc: b5:f3:01:9e:8c:0e:a6:f1:ff:d4:b1:21:73:a0:fc:c4:33:29: 8b:33:21:7e:a4:f3:b6:8c:1f:d6:78:b0:7f:9f:b8:d6:b2:06: 71:1e:52:45:eb:0e:93:c1:cd:05:d7:e7:aa:f3:2c:35:bf:d2: b0:47:db:3b:ec:d8:e2:4b:bb:26:5b:e2:e1:a2:21:92:56:0e: 33:ec:dc:54:85:69:47:46:38:3c:61:99:ae:cf:1a:b1:e9:29: e4:b9:77:36:f3:b7:47:52:8a:f6:30:01:4d:71:71:d2:38:d8: 37:3a:52:46:51:35:34:6c:75:d8:aa:47:83:56:59:49:ab:b0: 14:14:47:85:f9:f3:fe:f1:9c:6f:e1:a7:35:00:9f:ee:a4:5c: 5e:c1:25:db:a4:1b:c6:6d:44:d3:64:18:79:22:71:5d:79:f7: 66:b1:39:d8:37:51:ce:92:71:1f:f3:28:4f:79:32:c1:90:50: 91:d4:86:ad -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAucwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNDA5MzAw MTI4MDZaFw0yNTA5MTUwMTMwMDNaMDMxMTAvBgNVBAMTKEIzOERFMjgxM0NCN0VG REIyNjc0RDI0NDcyRTQ5N0I3MThGOTU3Q0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDr15e0z3GPN/TceHAtY+xF5B0l85VitGjN57khIw0sn5osoW+U iv6yShzAx4NF+XzxR+qQVxiWn7Ihk20f3dHlWA/zETOt+73JZ9mGJtM8DfsbHLqB EEB5kmneNrH05o0ymdI/udYvsynKtzdOg0IYVJzTpuZequQd/UckwXhT59vR+nqa EoFnKs4J4MV6C3vd4pu/0gJshJbkcN5GyXXGeEcbmZuViqbvq3JV+f72NNwCvs6e Q6LjphrVLpHB89x4JzLv5Tf/aIFWFdqm6vFs8kMWOjx7Zd1a4FX89NDu6Ec8fqoi QmaWrzDu6V7MNoXQRqDL2XqeaoOIVqYfKhtXAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUs43igTy379smdNJEcuSXtxj5V8wwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxL3M0M2lnVHkzNzlzbWROSkVjdVNYdHhqNVY4dy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQ9zmAwDQYJKoZIhvcNAQELBQADggEBAGrdH67zRLOpbDYcN3f4W6YmEE6C 9l0Ay0GLGhAdqncwnUs/R0+vx4kwvGCXOTyALZZa79rmeTd213a+79Jih3+Nu9Yq 2Zs6vLXzAZ6MDqbx/9SxIXOg/MQzKYszIX6k87aMH9Z4sH+fuNayBnEeUkXrDpPB zQXX56rzLDW/0rBH2zvs2OJLuyZb4uGiIZJWDjPs3FSFaUdGODxhma7PGrHpKeS5 dzbzt0dSivYwAU1xcdI42Dc6UkZRNTRsddiqR4NWWUmrsBQUR4X58/7xnG/hpzUA n+6kXF7BJdukG8ZtRNNkGHkicV1592axOdg3Uc6ScR/zKE95MsGQUJHUhq0= -----END CERTIFICATE-----Generated at Tue Oct 22 15:00:12 2024 by rpki-client on console-fra.rpki-client.org