$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/699/we8vFBEgXa-i25P1we_0jFNIUkM.roa File: we8vFBEgXa-i25P1we_0jFNIUkM.roa (raw, json) Hash identifier: oI0Wf7yybGQ1L2sjm383sMG7kzjvFcX5p8F3NbRyiI4= Subject key identifier: C1:EF:2F:14:11:20:5D:AF:A2:DB:93:F5:C1:EF:F4:8C:53:48:52:43 Certificate issuer: /CN=6522E2C3EF4D93F13E758A807A40A8E1BF9AB130 Certificate serial: 322E Authority key identifier: 65:22:E2:C3:EF:4D:93:F1:3E:75:8A:80:7A:40:A8:E1:BF:9A:B1:30 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZSLiw-9Nk_E-dYqAekCo4b-asTA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/699/we8vFBEgXa-i25P1we_0jFNIUkM.roa Signing time: Thu 29 Feb 2024 01:29:49 +0000 ROA not before: Thu 29 Feb 2024 01:29:49 +0000 ROA not after: Fri 14 Feb 2025 01:30:03 +0000 asID: 7671 IP address blocks: 210.233.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/699/ZSLiw-9Nk_E-dYqAekCo4b-asTA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/699/ZSLiw-9Nk_E-dYqAekCo4b-asTA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZSLiw-9Nk_E-dYqAekCo4b-asTA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12846 (0x322e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6522E2C3EF4D93F13E758A807A40A8E1BF9AB130 Validity Not Before: Feb 29 01:29:49 2024 GMT Not After : Feb 14 01:30:03 2025 GMT Subject: CN=C1EF2F1411205DAFA2DB93F5C1EFF48C53485243 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:02:7d:77:4b:ed:4a:07:0a:cc:e1:26:ff:b5: a8:bf:75:68:c7:e0:9b:68:bc:24:37:f4:56:2f:a5: 69:ee:45:b0:17:e3:79:72:cc:44:a9:67:27:61:66: a8:c1:ee:9b:d2:cf:aa:6b:9d:85:1e:53:64:ac:9c: 40:b2:e5:a5:55:f5:06:c7:dd:2d:b4:90:81:ee:5f: 49:c4:7e:d0:1c:8d:e2:1d:60:a1:52:22:14:e5:20: 2b:76:66:ca:44:d2:21:67:db:2f:55:b6:6a:40:20: 59:9b:0f:30:ff:ba:dd:73:8f:54:de:0c:41:3f:14: b8:dd:f0:32:ce:76:35:5d:56:44:bf:b7:18:7a:6b: 88:e7:b7:ab:53:25:34:ca:00:aa:0c:a3:e6:a3:57: 07:31:bf:a8:b6:21:5c:27:49:54:ad:42:fe:fc:72: ca:d7:26:7d:e1:0d:ae:8d:de:7a:65:26:a8:f1:71: f6:1d:54:4f:ce:b7:f5:7c:2d:b8:f5:4f:1e:f9:5e: a6:1b:b3:56:e9:2d:7c:a6:af:10:a6:6d:1c:2d:93: 21:71:24:b0:ba:8d:36:37:14:b4:f0:9d:1d:90:f0: e0:09:a4:05:1e:65:13:7a:2c:c4:e1:14:5f:96:4c: 24:b3:b2:db:68:0a:a0:a3:b5:de:42:e5:3d:93:d8: 70:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:EF:2F:14:11:20:5D:AF:A2:DB:93:F5:C1:EF:F4:8C:53:48:52:43 X509v3 Authority Key Identifier: keyid:65:22:E2:C3:EF:4D:93:F1:3E:75:8A:80:7A:40:A8:E1:BF:9A:B1:30 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/699/ZSLiw-9Nk_E-dYqAekCo4b-asTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZSLiw-9Nk_E-dYqAekCo4b-asTA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/699/we8vFBEgXa-i25P1we_0jFNIUkM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.233.240.0/20 Signature Algorithm: sha256WithRSAEncryption 8f:ad:14:52:f6:1c:3d:25:ce:50:2e:91:6a:96:c7:e2:89:da: 94:68:c9:36:20:a9:f0:4d:c8:36:51:06:1a:f8:1c:59:bc:66: b2:7b:34:47:35:a7:20:bf:81:cb:55:3f:6c:f1:1e:9a:64:78: b7:92:cf:1e:0c:d8:a7:f5:d2:2c:42:3f:81:49:a3:46:e3:50: 9b:0e:90:6c:85:0a:7e:9a:34:9d:8b:1a:45:22:74:c7:9e:f0: 25:57:de:53:fe:f2:06:91:36:44:39:bf:87:ab:d3:61:b4:92: e3:95:02:e9:e8:f0:27:28:89:86:18:9d:4d:2b:81:88:53:aa: 28:3f:37:89:24:07:c1:d4:84:c0:35:40:0e:4a:95:f9:92:93: e0:b6:23:07:9e:ec:27:c0:69:20:ae:bd:07:d6:09:3e:dc:9d: 7b:96:fd:46:27:b1:25:31:ed:41:dd:be:05:91:b5:73:08:18: c9:58:a8:bc:80:35:e4:1f:dc:e3:cf:fc:6e:2c:ee:6f:62:49: f8:4e:66:dc:56:e8:50:70:c2:ad:1f:b5:aa:30:42:96:71:d2: 57:e1:b1:cc:10:00:42:f4:72:97:90:af:08:17:d5:59:08:fd: e8:b7:be:f3:ab:e4:f6:03:d8:90:27:b5:dd:d3:c0:3e:35:fe: 22:61:0c:1d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICMi4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjUy MkUyQzNFRjREOTNGMTNFNzU4QTgwN0E0MEE4RTFCRjlBQjEzMDAeFw0yNDAyMjkw MTI5NDlaFw0yNTAyMTQwMTMwMDNaMDMxMTAvBgNVBAMTKEMxRUYyRjE0MTEyMDVE QUZBMkRCOTNGNUMxRUZGNDhDNTM0ODUyNDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVAn13S+1KBwrM4Sb/tai/dWjH4JtovCQ39FYvpWnuRbAX43ly zESpZydhZqjB7pvSz6prnYUeU2SsnECy5aVV9QbH3S20kIHuX0nEftAcjeIdYKFS IhTlICt2ZspE0iFn2y9VtmpAIFmbDzD/ut1zj1TeDEE/FLjd8DLOdjVdVkS/txh6 a4jnt6tTJTTKAKoMo+ajVwcxv6i2IVwnSVStQv78csrXJn3hDa6N3nplJqjxcfYd VE/Ot/V8Lbj1Tx75XqYbs1bpLXymrxCmbRwtkyFxJLC6jTY3FLTwnR2Q8OAJpAUe ZRN6LMThFF+WTCSzsttoCqCjtd5C5T2T2HBlAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUwe8vFBEgXa+i25P1we/0jFNIUkMwHwYDVR0jBBgwFoAUZSLiw+9Nk/E+dYqA ekCo4b+asTAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY5OS9aU0xpdy05TmtfRS1kWXFBZWtDbzRiLWFzVEEuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9aU0xpdy05TmtfRS1kWXFBZWtDbzRi LWFzVEEuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjk5L3dlOHZGQkVnWGEtaTI1UDF3ZV8wakZOSVVrTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATS6fAwDQYJKoZIhvcNAQELBQADggEBAI+tFFL2HD0lzlAukWqWx+KJ2pRo yTYgqfBNyDZRBhr4HFm8ZrJ7NEc1pyC/gctVP2zxHppkeLeSzx4M2Kf10ixCP4FJ o0bjUJsOkGyFCn6aNJ2LGkUidMee8CVX3lP+8gaRNkQ5v4er02G0kuOVAuno8Cco iYYYnU0rgYhTqig/N4kkB8HUhMA1QA5KlfmSk+C2Iwee7CfAaSCuvQfWCT7cnXuW /UYnsSUx7UHdvgWRtXMIGMlYqLyANeQf3OPP/G4s7m9iSfhOZtxW6FBwwq0ftaow QpZx0lfhscwQAEL0cpeQrwgX1VkI/ei3vvOr5PYD2JAntd3TwD41/iJhDB0= -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:47 2024 by rpki-client on console-ams.rpki-client.org