$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/sb9798oqgsoAs3w012PZcxSex7o.roa File: sb9798oqgsoAs3w012PZcxSex7o.roa (raw, json) Hash identifier: kdqCXE1PJmiyzcoxal2DeI9nJw6PFlqutq1pV6x4fEQ= Subject key identifier: B1:BF:7B:F7:CA:2A:82:CA:00:B3:7C:34:D7:63:D9:73:14:9E:C7:BA Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 02B5 Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/sb9798oqgsoAs3w012PZcxSex7o.roa Signing time: Sat 31 Aug 2024 01:40:50 +0000 ROA not before: Sat 31 Aug 2024 01:40:50 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 9824 IP address blocks: 223.223.208.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 693 (0x2b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Aug 31 01:40:50 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=B1BF7BF7CA2A82CA00B37C34D763D973149EC7BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:7c:f8:1e:5e:6f:aa:02:ec:75:4c:ac:90:31: df:fd:e7:c8:85:92:e3:2e:90:30:96:3b:bc:b4:29: ed:a0:1c:9d:f9:d2:b6:81:0b:25:ae:db:6d:fd:4a: a3:e8:e6:f7:40:6e:44:bd:12:2a:1e:70:c2:55:3d: 90:b7:e9:de:3c:43:fa:f6:d6:c4:4d:38:ad:c1:ae: f8:4a:5e:41:14:b6:c6:df:fe:8b:2e:bf:43:2c:bb: 09:65:21:86:bb:83:ff:69:3b:3d:6c:b9:76:4b:de: b3:4b:4b:21:cb:2a:ec:aa:b2:e9:1f:a4:52:de:98: b2:79:06:58:d5:86:15:b1:c5:a8:bb:a7:98:7e:69: 0d:c7:8a:9e:8e:f0:98:ab:21:85:a1:9e:62:55:85: 9c:e8:aa:df:20:91:6e:1b:ee:1c:ca:d2:b0:6c:9b: 35:be:56:43:8d:3b:5f:29:cf:15:a5:d8:d2:70:b2: 2e:16:35:ed:0f:3f:61:f5:4b:e8:99:48:f4:25:bc: be:a4:72:b6:1c:33:96:ec:d6:0d:f4:9d:db:72:9c: 55:8e:e0:5b:e3:dc:ae:b3:5b:11:a2:11:56:3a:bf: 14:5a:bd:e9:ba:f8:63:b5:a5:9c:eb:98:38:31:e3: 57:2b:cf:45:e4:3a:64:47:23:86:58:50:33:c4:47: f0:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:BF:7B:F7:CA:2A:82:CA:00:B3:7C:34:D7:63:D9:73:14:9E:C7:BA X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/sb9798oqgsoAs3w012PZcxSex7o.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 223.223.208.0/21 Signature Algorithm: sha256WithRSAEncryption 5c:df:4e:cf:3c:70:36:ba:9a:9a:c3:ce:d0:58:f3:9c:8c:9a: c7:ba:cd:5b:cb:a9:b4:0b:2b:2a:3f:05:6d:0b:92:6d:05:06: 4f:fb:9b:30:75:4f:52:7e:d9:cb:d9:c1:24:6e:55:2e:5b:72: 4b:03:1f:5c:30:30:b3:51:de:e4:21:3f:4d:6e:83:87:0f:d4: 83:05:0d:87:2f:af:e1:31:d1:ca:29:ef:84:42:8b:69:a9:3a: b7:65:4a:03:e2:34:1f:e9:78:a0:bd:e2:17:4e:3a:bb:d9:53: be:f9:dd:c9:f9:98:d0:e7:bd:e3:f6:3d:0d:a3:4f:aa:ab:f4: cb:fc:3c:81:20:e3:c5:26:91:3e:3a:9f:4c:45:16:b5:fd:00: 6f:c3:27:30:d1:89:4d:82:7f:26:d0:1e:28:53:98:c8:44:52: d3:b0:5a:86:45:8d:1c:5f:76:bd:30:5a:70:0b:49:0f:2a:ac: b6:a1:5c:02:4f:78:32:b4:e5:f6:98:56:16:87:84:34:90:65: 9d:90:95:ce:0f:74:f4:97:38:b4:96:3c:08:49:5c:d5:28:18: 85:54:e6:06:d7:60:ed:ad:53:be:72:d5:c8:fa:a0:fc:e6:59: 2c:b6:47:44:ba:ca:86:62:c9:70:ca:4e:bb:94:e0:b2:25:2d: 36:a9:3f:78 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICArUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNDA4MzEw MTQwNTBaFw0yNTA4MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEIxQkY3QkY3Q0EyQTgy Q0EwMEIzN0MzNEQ3NjNEOTczMTQ5RUM3QkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3fPgeXm+qAux1TKyQMd/958iFkuMukDCWO7y0Ke2gHJ350raB CyWu2239SqPo5vdAbkS9EioecMJVPZC36d48Q/r21sRNOK3BrvhKXkEUtsbf/osu v0MsuwllIYa7g/9pOz1suXZL3rNLSyHLKuyqsukfpFLemLJ5BljVhhWxxai7p5h+ aQ3Hip6O8JirIYWhnmJVhZzoqt8gkW4b7hzK0rBsmzW+VkONO18pzxWl2NJwsi4W Ne0PP2H1S+iZSPQlvL6kcrYcM5bs1g30ndtynFWO4Fvj3K6zWxGiEVY6vxRavem6 +GO1pZzrmDgx41crz0XkOmRHI4ZYUDPER/A/AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUsb9798oqgsoAs3w012PZcxSex7owHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxL3NiOTc5OG9xZ3NvQXMzdzAxMlBaY3hTZXg3by5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPf39AwDQYJKoZIhvcNAQELBQADggEBAFzfTs88cDa6mprDztBY85yMmse6 zVvLqbQLKyo/BW0Lkm0FBk/7mzB1T1J+2cvZwSRuVS5bcksDH1wwMLNR3uQhP01u g4cP1IMFDYcvr+Ex0cop74RCi2mpOrdlSgPiNB/peKC94hdOOrvZU7753cn5mNDn veP2PQ2jT6qr9Mv8PIEg48UmkT46n0xFFrX9AG/DJzDRiU2CfybQHihTmMhEUtOw WoZFjRxfdr0wWnALSQ8qrLahXAJPeDK05faYVhaHhDSQZZ2Qlc4PdPSXOLSWPAhJ XNUoGIVU5gbXYO2tU75y1cj6oPzmWSy2R0S6yoZiyXDKTruU4LIlLTapP3g= -----END CERTIFICATE-----Generated at Fri Nov 22 11:45:58 2024 by rpki-client on console-ams.rpki-client.org