$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/tiQhEGFjXRzWOX7o9F8-3uFNVBQ.roa File: tiQhEGFjXRzWOX7o9F8-3uFNVBQ.roa (raw, json) Hash identifier: cK4Bm3WFXXZkKqLo5vK57nMq9pwevN+eB9vlIhXGxiI= Subject key identifier: B6:24:21:10:61:63:5D:1C:D6:39:7E:E8:F4:5F:3E:DE:E1:4D:54:14 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 02CF Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/tiQhEGFjXRzWOX7o9F8-3uFNVBQ.roa Signing time: Sat 31 Aug 2024 01:43:03 +0000 ROA not before: Sat 31 Aug 2024 01:43:03 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 9824 IP address blocks: 211.135.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 719 (0x2cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Aug 31 01:43:03 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=B624211061635D1CD6397EE8F45F3EDEE14D5414 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:3c:6f:82:0c:39:f8:e6:c2:ea:c1:cd:b3:02: bf:b9:5e:55:c3:ce:c2:85:8a:84:cb:ee:a5:b5:28: 66:59:bb:2b:a3:da:58:b1:d6:21:6d:b8:06:40:0d: bf:23:9d:ad:2b:75:b2:cb:52:2b:46:7e:2c:43:48: 8b:de:ad:42:c4:29:a8:96:05:08:bf:15:88:eb:02: 59:39:bd:7d:42:8b:1c:b0:55:18:6d:88:0f:f0:b9: cb:84:9b:1f:f9:71:92:ef:07:35:9e:81:68:ff:13: d5:5d:93:19:ed:69:4e:58:a4:a7:c5:13:2c:4d:30: 85:0a:97:aa:04:9e:a5:c5:11:ab:ce:0a:d3:8f:c0: f1:3c:1d:77:ea:6a:71:f1:08:7d:ec:6d:3d:e4:d6: 4c:8e:c2:ad:3b:92:c9:fc:e7:e4:d9:31:ba:bd:a5: 01:fa:2b:a6:02:54:d4:2d:90:47:d3:69:19:f1:e1: 08:49:cf:5b:93:7a:8a:d2:8c:2e:d7:3c:45:95:5a: b2:30:39:69:44:9b:1b:cb:9a:3d:a7:a6:a2:ce:ba: 43:5b:20:2d:c6:b6:81:d0:9e:27:22:c2:01:8e:3a: d4:85:fa:23:2c:ef:04:ac:1e:63:1a:97:ee:59:58: 22:40:04:71:91:72:dd:af:61:35:41:0c:61:89:24: 98:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:24:21:10:61:63:5D:1C:D6:39:7E:E8:F4:5F:3E:DE:E1:4D:54:14 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/tiQhEGFjXRzWOX7o9F8-3uFNVBQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.135.0.0/17 Signature Algorithm: sha256WithRSAEncryption 13:34:d6:2f:63:60:3b:d9:09:b7:eb:76:8f:63:4c:a6:6e:39: a5:25:98:e3:43:ed:d0:f5:92:f0:ae:ba:e5:81:d2:f7:5c:a3: 2d:5e:90:be:a7:40:9b:ec:2c:35:b5:21:83:50:df:bf:e9:81: f2:66:66:72:75:f0:10:dd:94:ca:b0:98:21:17:25:2c:b6:84: 72:8f:5d:e9:69:9a:f2:22:dc:9d:c8:cd:02:f7:8a:a3:f1:c4: 52:19:24:b0:88:16:b4:f9:08:79:e2:1a:8b:f3:12:be:8d:c8: 7a:ec:54:cc:69:20:96:a1:94:9f:b7:3c:3b:17:62:76:80:b4: 7a:3a:46:1c:8b:28:a9:bf:10:9b:1c:9e:29:bc:83:40:d4:a7: f0:4e:20:6c:3e:9a:a4:14:ec:9d:1c:d5:80:bc:87:45:0d:c0: 0d:0d:17:64:7e:75:df:65:7a:0c:b9:bd:85:39:e2:c0:88:8f: 93:b9:93:1e:5a:35:3c:4a:b3:2c:74:0c:b5:15:d1:e6:97:c9: c4:2a:91:54:06:76:ec:1b:b0:c0:48:65:d9:11:36:d9:d3:3e: 25:30:dc:5b:cf:e8:0d:1f:a9:f5:c2:13:e5:98:2e:7f:e6:96: 3d:27:11:49:2b:a9:18:b1:c3:4b:fb:e6:0e:3b:c1:7f:70:09: eb:48:02:09 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAs8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNDA4MzEw MTQzMDNaFw0yNTA4MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEI2MjQyMTEwNjE2MzVE MUNENjM5N0VFOEY0NUYzRURFRTE0RDU0MTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDaPG+CDDn45sLqwc2zAr+5XlXDzsKFioTL7qW1KGZZuyuj2lix 1iFtuAZADb8jna0rdbLLUitGfixDSIverULEKaiWBQi/FYjrAlk5vX1CixywVRht iA/wucuEmx/5cZLvBzWegWj/E9VdkxntaU5YpKfFEyxNMIUKl6oEnqXFEavOCtOP wPE8HXfqanHxCH3sbT3k1kyOwq07ksn85+TZMbq9pQH6K6YCVNQtkEfTaRnx4QhJ z1uTeorSjC7XPEWVWrIwOWlEmxvLmj2npqLOukNbIC3GtoHQniciwgGOOtSF+iMs 7wSsHmMal+5ZWCJABHGRct2vYTVBDGGJJJgpAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUtiQhEGFjXRzWOX7o9F8+3uFNVBQwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxL3RpUWhFR0ZqWFJ6V09YN285RjgtM3VGTlZCUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAfThwAwDQYJKoZIhvcNAQELBQADggEBABM01i9jYDvZCbfrdo9jTKZuOaUl mOND7dD1kvCuuuWB0vdcoy1ekL6nQJvsLDW1IYNQ37/pgfJmZnJ18BDdlMqwmCEX JSy2hHKPXelpmvIi3J3IzQL3iqPxxFIZJLCIFrT5CHniGovzEr6NyHrsVMxpIJah lJ+3PDsXYnaAtHo6RhyLKKm/EJscnim8g0DUp/BOIGw+mqQU7J0c1YC8h0UNwA0N F2R+dd9legy5vYU54sCIj5O5kx5aNTxKsyx0DLUV0eaXycQqkVQGduwbsMBIZdkR NtnTPiUw3FvP6A0fqfXCE+WYLn/mlj0nEUkrqRixw0v75g47wX9wCetIAgk= -----END CERTIFICATE-----Generated at Fri Nov 22 11:45:58 2024 by rpki-client on console-ams.rpki-client.org