$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/ybBmZb1NXWauyoue-GMflaQ73ow.roa File: ybBmZb1NXWauyoue-GMflaQ73ow.roa (raw, json) Hash identifier: +YvmVpBnK/Tc5ZPQxhzA3ypZ48obEjBOJGpzo6lwGQg= Subject key identifier: C9:B0:66:65:BD:4D:5D:66:AE:CA:8B:9E:F8:63:1F:95:A4:3B:DE:8C Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 025C Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/ybBmZb1NXWauyoue-GMflaQ73ow.roa Signing time: Sat 31 Aug 2024 01:36:43 +0000 ROA not before: Sat 31 Aug 2024 01:36:43 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 23788 IP address blocks: 202.162.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 604 (0x25c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Aug 31 01:36:43 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=C9B06665BD4D5D66AECA8B9EF8631F95A43BDE8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:fc:90:f0:fe:2d:95:bb:72:3e:62:8f:39:e8: 13:42:39:94:76:f2:f3:91:79:72:ad:f5:4a:28:5a: 3c:3b:cb:e9:b8:c5:d3:f5:b4:48:83:0c:1f:1e:af: d6:2f:50:56:eb:73:ea:b3:45:57:9d:fd:43:9f:91: 70:81:8a:e4:d8:b9:6b:54:2d:3e:48:0a:38:65:69: 53:1e:87:dc:48:94:36:80:23:db:71:4a:a9:32:26: fa:4a:3d:fe:c6:a8:54:b7:46:2e:c5:44:60:36:e8: 3b:50:da:42:c3:84:5d:80:a5:c6:64:d8:84:17:2f: 38:1f:59:30:a2:c9:04:b4:9e:30:f8:23:12:56:b6: dc:58:80:6b:f9:09:b9:04:5b:b0:d4:e8:b9:ff:3d: b6:8f:ea:9f:62:32:59:a0:9e:fe:30:9c:81:d6:ac: ce:aa:c2:13:af:81:9d:9f:e8:c8:a7:d1:3a:c2:09: f7:ed:fb:df:0e:46:f9:8d:75:71:ba:00:fd:85:98: 9d:54:c3:52:d0:f0:76:75:e2:79:1f:41:46:ea:81: c8:12:75:35:b5:19:32:92:0b:93:7d:41:58:10:da: 91:23:30:58:d0:cc:09:43:91:f1:58:48:7a:f3:46: 9d:b6:9a:0d:a6:fa:88:0b:80:85:54:4e:c6:fc:d7: 19:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:B0:66:65:BD:4D:5D:66:AE:CA:8B:9E:F8:63:1F:95:A4:3B:DE:8C X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/ybBmZb1NXWauyoue-GMflaQ73ow.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.162.128.0/19 Signature Algorithm: sha256WithRSAEncryption b1:19:cc:20:69:bb:46:27:21:6c:a9:9f:68:94:ef:e6:45:8a: 00:e4:02:fc:b6:a1:c1:1f:58:52:42:da:65:a1:0c:f5:37:bc: 51:ee:03:19:c5:f6:e0:f1:a9:41:8f:d8:45:23:15:b1:88:98: f6:d7:36:d4:b0:8b:6e:a2:b5:be:bd:66:6a:41:d0:38:7a:d2: c6:8a:8a:55:4f:63:ce:a2:ab:eb:81:6e:9a:ed:6e:3e:68:ff: a9:d0:c5:56:25:ea:c6:76:11:3d:18:b0:a7:bd:71:92:bb:6a: ea:06:1d:c1:cd:69:48:c6:f1:7e:c4:40:09:57:45:d1:81:6d: 4c:cf:d6:81:0e:bb:5e:3d:de:6b:5e:d1:77:7f:6d:b8:d2:c4: bf:53:10:25:57:d9:0d:b4:e0:21:3e:ec:53:43:f1:3c:af:17: 0d:ad:fa:37:ed:1c:8e:1a:b6:04:c5:e6:bd:a8:f3:f5:05:a1: 86:c0:c9:2d:80:42:f2:66:9c:9a:39:7d:9c:5f:cd:ff:00:fa: ab:f9:aa:10:96:11:51:e5:f1:06:0c:43:88:fe:6d:d6:d4:d1: c1:ad:4e:da:ed:ec:18:c8:96:47:bf:00:59:d6:6d:90:5a:ad: c0:35:e4:24:81:79:37:41:10:2e:ae:f6:45:aa:ef:fa:83:31: 43:aa:a2:51 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAlwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNDA4MzEw MTM2NDNaFw0yNTA4MTUwMTMwMDJaMDMxMTAvBgNVBAMTKEM5QjA2NjY1QkQ0RDVE NjZBRUNBOEI5RUY4NjMxRjk1QTQzQkRFOEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCe/JDw/i2Vu3I+Yo856BNCOZR28vOReXKt9UooWjw7y+m4xdP1 tEiDDB8er9YvUFbrc+qzRVed/UOfkXCBiuTYuWtULT5ICjhlaVMeh9xIlDaAI9tx SqkyJvpKPf7GqFS3Ri7FRGA26DtQ2kLDhF2ApcZk2IQXLzgfWTCiyQS0njD4IxJW ttxYgGv5CbkEW7DU6Ln/PbaP6p9iMlmgnv4wnIHWrM6qwhOvgZ2f6Min0TrCCfft +98ORvmNdXG6AP2FmJ1Uw1LQ8HZ14nkfQUbqgcgSdTW1GTKSC5N9QVgQ2pEjMFjQ zAlDkfFYSHrzRp22mg2m+ogLgIVUTsb81xltAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUybBmZb1NXWauyoue+GMflaQ73owwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxL3liQm1aYjFOWFdhdXlvdWUtR01mbGFRNzNvdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXKooAwDQYJKoZIhvcNAQELBQADggEBALEZzCBpu0YnIWypn2iU7+ZFigDk Avy2ocEfWFJC2mWhDPU3vFHuAxnF9uDxqUGP2EUjFbGImPbXNtSwi26itb69ZmpB 0Dh60saKilVPY86iq+uBbprtbj5o/6nQxVYl6sZ2ET0YsKe9cZK7auoGHcHNaUjG 8X7EQAlXRdGBbUzP1oEOu1493mte0Xd/bbjSxL9TECVX2Q204CE+7FND8TyvFw2t +jftHI4atgTF5r2o8/UFoYbAyS2AQvJmnJo5fZxfzf8A+qv5qhCWEVHl8QYMQ4j+ bdbU0cGtTtrt7BjIlke/AFnWbZBarcA15CSBeTdBEC6u9kWq7/qDMUOqolE= -----END CERTIFICATE-----Generated at Fri Nov 22 09:31:34 2024 by rpki-client on console-fra.rpki-client.org