$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/zfKwpW3UBMNzbrb0j0IwsJEmGtI.roa File: zfKwpW3UBMNzbrb0j0IwsJEmGtI.roa (raw, json) Hash identifier: SPys2ZaCul2QndqDowDWiFRmQEI/B3CMccBUP/SYT4o= Subject key identifier: CD:F2:B0:A5:6D:D4:04:C3:73:6E:B6:F4:8F:42:30:B0:91:26:1A:D2 Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 0208 Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/zfKwpW3UBMNzbrb0j0IwsJEmGtI.roa Signing time: Wed 31 Jul 2024 01:29:06 +0000 ROA not before: Wed 31 Jul 2024 01:29:06 +0000 ROA not after: Tue 15 Jul 2025 01:30:02 +0000 asID: 4721 IP address blocks: 114.142.128.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 520 (0x208) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Jul 31 01:29:06 2024 GMT Not After : Jul 15 01:30:02 2025 GMT Subject: CN=CDF2B0A56DD404C3736EB6F48F4230B091261AD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:be:e8:31:ff:e4:16:87:ef:e3:31:be:0a:d9: 45:0f:ac:37:ad:85:d8:26:aa:d5:34:a1:3d:4c:ac: 5f:31:ce:77:8c:01:61:27:8f:0c:bd:3c:9d:08:9b: 5b:ab:cc:a1:2e:4a:e6:9a:7e:76:d7:b4:35:2a:55: 67:9b:3c:2d:7f:ba:01:9e:ff:53:02:6f:f9:69:6b: b4:98:80:c8:13:e1:78:d1:1b:ef:ba:55:bb:10:07: b0:b9:c6:4b:6b:40:82:56:10:f3:7a:da:48:31:df: 31:ba:da:55:f6:4f:3d:3a:e1:d9:00:67:0f:31:dc: 1b:d4:42:92:d8:bd:7b:cf:39:7c:bc:85:58:ce:dc: 2c:6f:0b:a1:84:2e:60:c9:21:0b:d9:54:cb:83:a4: 3d:fe:4e:ee:a2:6d:7e:4f:20:52:8b:50:c7:88:c7: e4:92:5f:0d:ca:13:55:97:40:14:4a:1e:e2:86:06: ee:c3:e7:d3:99:0d:39:a6:86:2a:40:94:74:5c:68: de:68:af:02:03:4b:b7:36:dd:09:7a:87:b9:1c:12: 9e:7e:4b:71:17:1a:e1:51:00:65:01:24:f5:2f:3c: c7:28:65:f2:4f:ff:b7:b5:19:31:a0:09:45:41:a1: 1a:65:54:85:bc:b6:15:06:19:4b:25:e4:6a:74:17: ff:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:F2:B0:A5:6D:D4:04:C3:73:6E:B6:F4:8F:42:30:B0:91:26:1A:D2 X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/zfKwpW3UBMNzbrb0j0IwsJEmGtI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.142.128.0/21 Signature Algorithm: sha256WithRSAEncryption b2:2e:a8:90:10:b1:2e:2e:f3:23:a9:74:0b:d6:bf:48:11:7c: 85:6d:04:7e:47:20:d0:a1:8d:3e:84:45:94:d8:ce:52:fe:2a: b5:61:5b:39:9a:e3:03:27:6f:69:bd:f3:09:51:2e:89:12:b2: 6b:f3:e0:1f:be:3c:93:64:e2:6f:bb:7d:c9:a7:76:76:36:f9: 89:d2:8d:89:b2:c6:03:76:09:ab:55:72:e4:0e:a2:4b:0c:25: 39:3f:97:e0:60:77:74:2a:a4:d0:03:31:5d:ba:8c:ba:73:9f: a1:94:c7:4d:31:3c:49:b8:2e:18:5e:58:ac:e7:ae:dc:99:1d: 4f:83:c1:5a:cf:f9:87:8d:ef:0d:fc:67:f2:c8:c3:55:51:81: 72:d0:3c:95:0e:11:f9:94:09:2e:55:37:85:45:e5:3c:ac:b7: fe:8f:fe:77:63:bc:cc:c1:07:6e:d2:5a:ac:1b:ae:db:6e:dc: 87:ad:fd:e6:34:39:26:17:ae:fa:fb:21:63:98:e3:b1:c4:42: 78:8e:0d:5c:84:5f:6e:70:2a:ee:a9:b1:e4:5f:46:bd:74:76: de:d7:00:81:e4:0c:80:fe:54:05:81:c1:04:3e:20:f9:c1:fd: 5b:c7:e8:2e:7f:b8:20:a6:4c:7d:2c:d7:00:b2:9d:81:b1:d8: b7:f6:f4:d2 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAggwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNDA3MzEw MTI5MDZaFw0yNTA3MTUwMTMwMDJaMDMxMTAvBgNVBAMTKENERjJCMEE1NkRENDA0 QzM3MzZFQjZGNDhGNDIzMEIwOTEyNjFBRDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXvugx/+QWh+/jMb4K2UUPrDethdgmqtU0oT1MrF8xzneMAWEn jwy9PJ0Im1urzKEuSuaafnbXtDUqVWebPC1/ugGe/1MCb/lpa7SYgMgT4XjRG++6 VbsQB7C5xktrQIJWEPN62kgx3zG62lX2Tz064dkAZw8x3BvUQpLYvXvPOXy8hVjO 3CxvC6GELmDJIQvZVMuDpD3+Tu6ibX5PIFKLUMeIx+SSXw3KE1WXQBRKHuKGBu7D 59OZDTmmhipAlHRcaN5orwIDS7c23Ql6h7kcEp5+S3EXGuFRAGUBJPUvPMcoZfJP /7e1GTGgCUVBoRplVIW8thUGGUsl5Gp0F//JAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUzfKwpW3UBMNzbrb0j0IwsJEmGtIwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxL3pmS3dwVzNVQk1OemJyYjBqMEl3c0pFbUd0SS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANyjoAwDQYJKoZIhvcNAQELBQADggEBALIuqJAQsS4u8yOpdAvWv0gRfIVt BH5HINChjT6ERZTYzlL+KrVhWzma4wMnb2m98wlRLokSsmvz4B++PJNk4m+7fcmn dnY2+YnSjYmyxgN2CatVcuQOoksMJTk/l+Bgd3QqpNADMV26jLpzn6GUx00xPEm4 LhheWKznrtyZHU+DwVrP+YeN7w38Z/LIw1VRgXLQPJUOEfmUCS5VN4VF5Tyst/6P /ndjvMzBB27SWqwbrttu3Iet/eY0OSYXrvr7IWOY47HEQniODVyEX25wKu6pseRf Rr10dt7XAIHkDID+VAWBwQQ+IPnB/VvH6C5/uCCmTH0s1wCynYGx2Lf29NI= -----END CERTIFICATE-----Generated at Fri Nov 22 09:31:34 2024 by rpki-client on console-fra.rpki-client.org