$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/68/iIJczi9cRfPI0Lv-6ZR_GBVvAKA.roa File: iIJczi9cRfPI0Lv-6ZR_GBVvAKA.roa (raw, json) Hash identifier: iKL1sh5tTw3zrSAL8FMQ3ApfVsBdnV9PQBJEPcTS2T4= Subject key identifier: 88:82:5C:CE:2F:5C:45:F3:C8:D0:BB:FE:E9:94:7F:18:15:6F:00:A0 Certificate issuer: /CN=65DE52E64BE43E328AA69F3AB2D347F8833EC637 Certificate serial: 4E Authority key identifier: 65:DE:52:E6:4B:E4:3E:32:8A:A6:9F:3A:B2:D3:47:F8:83:3E:C6:37 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/iIJczi9cRfPI0Lv-6ZR_GBVvAKA.roa Signing time: Sat 31 Aug 2024 01:31:46 +0000 ROA not before: Sat 31 Aug 2024 01:31:46 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 9374 IP address blocks: 123.255.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/Zd5S5kvkPjKKpp86stNH-IM-xjc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/Zd5S5kvkPjKKpp86stNH-IM-xjc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65DE52E64BE43E328AA69F3AB2D347F8833EC637 Validity Not Before: Aug 31 01:31:46 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=88825CCE2F5C45F3C8D0BBFEE9947F18156F00A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4b:61:83:2c:bd:87:e1:bc:3e:81:60:a5:a5: f0:30:71:24:ad:e8:da:13:79:6f:79:1c:81:46:49: 14:25:06:63:68:11:ea:cc:1f:50:49:96:d6:3e:2e: cc:54:b2:39:7d:91:28:e1:bf:6f:0c:0a:60:ad:2c: b2:0c:c4:b6:f6:b8:83:d2:63:36:4d:a2:ac:00:c9: a7:b4:c0:4d:f2:12:ee:f5:5f:6a:d4:03:91:77:1c: ea:af:77:4d:3e:c0:e5:44:32:7f:97:ef:b4:ad:23: c7:03:46:e6:af:e9:9d:be:b5:5a:09:d8:9a:f7:a2: f3:65:33:aa:4d:a1:66:f9:84:09:34:9b:99:6a:85: 6c:35:17:39:0e:9e:a8:10:65:eb:f2:0f:c7:56:5f: e9:b4:2b:1c:5c:5e:01:58:6a:bb:2c:84:d8:d9:90: f4:3c:2e:3b:61:45:c7:7e:38:7f:01:8b:b1:f1:e5: 85:32:e3:b8:1a:98:df:8d:08:3d:a5:82:d4:06:d1: d0:5b:17:be:31:16:44:b2:c8:be:ea:ed:ab:fe:26: 5b:e8:6b:57:53:bc:de:5b:00:4a:d1:87:f1:40:69: 32:40:72:8a:c0:7c:ad:e4:9f:d5:f4:52:b4:39:a2: 5d:ca:22:97:83:21:e0:51:1d:e1:7e:26:0c:1f:53: d7:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:82:5C:CE:2F:5C:45:F3:C8:D0:BB:FE:E9:94:7F:18:15:6F:00:A0 X509v3 Authority Key Identifier: keyid:65:DE:52:E6:4B:E4:3E:32:8A:A6:9F:3A:B2:D3:47:F8:83:3E:C6:37 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/Zd5S5kvkPjKKpp86stNH-IM-xjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/iIJczi9cRfPI0Lv-6ZR_GBVvAKA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.255.128.0/18 Signature Algorithm: sha256WithRSAEncryption 2e:f3:c8:e5:b1:a9:12:aa:17:2f:21:54:b8:51:27:19:0d:86: a1:e1:02:58:c3:68:03:59:12:90:97:f6:80:f9:39:53:70:51: cf:0b:e6:d3:47:54:4f:2b:6c:3b:4d:94:15:84:6e:d2:ec:99: 71:bc:e0:4e:04:08:44:40:76:41:75:a1:12:ba:da:8b:93:f2: e6:3e:e8:b8:79:1a:0f:e2:44:d2:ac:ab:b4:76:f7:70:d5:77: be:7e:72:71:8d:39:3f:f6:16:fd:da:90:f5:39:43:ab:06:95: 1d:42:41:2c:f8:e1:5b:2f:2f:3c:5f:2d:b5:58:62:88:a0:27: bf:63:77:dc:43:c2:6f:33:21:23:f9:4c:3c:0d:f5:a9:d1:69: 5d:91:1e:22:8d:54:d8:09:b5:26:33:32:68:b3:1f:b8:6d:40: e9:c8:1e:a3:89:5a:1e:c6:d8:85:10:11:2d:78:6c:48:0b:95: 8b:60:56:9a:46:3e:38:ca:bd:d7:8b:a3:94:ff:33:1c:70:70: b2:a3:d0:98:74:91:08:3f:88:53:6e:b0:a4:f2:59:56:a1:d3: e0:ec:be:7f:84:20:e8:ee:79:a9:b2:43:b1:e2:75:44:5c:aa: 2c:19:d0:86:b6:b0:98:1e:30:85:99:a4:95:40:48:35:05:a7: ac:ea:26:38 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBTjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2NURF NTJFNjRCRTQzRTMyOEFBNjlGM0FCMkQzNDdGODgzM0VDNjM3MB4XDTI0MDgzMTAx MzE0NloXDTI1MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoODg4MjVDQ0UyRjVDNDVG M0M4RDBCQkZFRTk5NDdGMTgxNTZGMDBBMDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALlLYYMsvYfhvD6BYKWl8DBxJK3o2hN5b3kcgUZJFCUGY2gR6swf UEmW1j4uzFSyOX2RKOG/bwwKYK0ssgzEtva4g9JjNk2irADJp7TATfIS7vVfatQD kXcc6q93TT7A5UQyf5fvtK0jxwNG5q/pnb61WgnYmvei82Uzqk2hZvmECTSbmWqF bDUXOQ6eqBBl6/IPx1Zf6bQrHFxeAVhquyyE2NmQ9DwuO2FFx344fwGLsfHlhTLj uBqY340IPaWC1AbR0FsXvjEWRLLIvurtq/4mW+hrV1O83lsAStGH8UBpMkByisB8 reSf1fRStDmiXcoil4Mh4FEd4X4mDB9T13cCAwEAAaOCAiIwggIeMB0GA1UdDgQW BBSIglzOL1xF88jQu/7plH8YFW8AoDAfBgNVHSMEGDAWgBRl3lLmS+Q+Moqmnzqy 00f4gz7GNzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjgvWmQ1UzVrdmtQaktLcHA4NnN0TkgtSU0teGpjLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvWmQ1UzVrdmtQaktLcHA4NnN0TkgtSU0t eGpjLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzY4L2lJSmN6aTljUmZQSTBMdi02WlJfR0JWdkFLQS5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAZ7/4AwDQYJKoZIhvcNAQELBQADggEBAC7zyOWxqRKqFy8hVLhRJxkNhqHhAljD aANZEpCX9oD5OVNwUc8L5tNHVE8rbDtNlBWEbtLsmXG84E4ECERAdkF1oRK62ouT 8uY+6Lh5Gg/iRNKsq7R293DVd75+cnGNOT/2Fv3akPU5Q6sGlR1CQSz44VsvLzxf LbVYYoigJ79jd9xDwm8zISP5TDwN9anRaV2RHiKNVNgJtSYzMmizH7htQOnIHqOJ Wh7G2IUQES14bEgLlYtgVppGPjjKvdeLo5T/MxxwcLKj0Jh0kQg/iFNusKTyWVah 0+Dsvn+EIOjueamyQ7HidURcqiwZ0Ia2sJgeMIWZpJVASDUFp6zqJjg= -----END CERTIFICATE-----Generated at Mon Nov 25 23:59:17 2024 by rpki-client on console-fra.rpki-client.org