$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/783/XcDuiW6knlB7-sz-XP9xuMH8F7M.roa File: XcDuiW6knlB7-sz-XP9xuMH8F7M.roa (raw, json) Hash identifier: EoJA/Y/Mh9QFhrwA1ske3xr5+5nlbp0SXy1EqdtoAC8= Subject key identifier: 5D:C0:EE:89:6E:A4:9E:50:7B:FA:CC:FE:5C:FF:71:B8:C1:FC:17:B3 Certificate issuer: /CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Certificate serial: 54 Authority key identifier: CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/XcDuiW6knlB7-sz-XP9xuMH8F7M.roa Signing time: Sat 31 Aug 2024 01:30:28 +0000 ROA not before: Sat 31 Aug 2024 01:30:28 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 18144 IP address blocks: 110.74.224.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Validity Not Before: Aug 31 01:30:28 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=5DC0EE896EA49E507BFACCFE5CFF71B8C1FC17B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:cd:70:66:88:9d:d0:a2:55:3f:31:b0:ab:f6: 69:ee:66:17:94:d5:be:31:7d:91:92:d7:79:58:82: 64:d5:5e:ae:28:6b:40:bf:91:48:f1:61:c8:55:8f: 14:93:a4:6f:8b:72:35:77:cc:26:04:9f:a9:4c:fc: ae:93:41:0b:8b:6e:55:34:8b:72:c6:f4:69:50:96: b9:f6:8a:35:99:d4:59:c8:f6:21:58:e1:33:54:a7: b8:fb:fc:b3:1e:67:d4:4b:5f:57:1d:b2:ff:db:f2: c6:14:8e:ce:b9:6d:df:bc:fe:18:80:59:17:c6:34: 9b:a3:e5:80:46:cc:15:bb:12:82:db:48:8d:bd:bc: a9:4e:52:de:9f:3d:67:ee:f5:f4:f1:1f:9f:34:8e: 27:77:60:f1:37:07:8d:00:f5:16:d7:ee:ce:09:b9: 8e:5c:d1:9c:d7:6c:af:71:74:ef:38:14:4f:fa:01: 48:8b:d0:1f:fc:7a:d7:44:ef:75:a5:37:2a:ca:bd: 14:8a:19:02:10:c9:ed:a6:6e:99:99:bd:a5:df:98: 05:46:38:4c:6e:b0:f1:06:71:b8:d6:3d:d3:8e:39: aa:ed:b8:45:99:cc:14:e4:4b:d3:89:48:b8:7e:b7: 7c:21:d5:d6:5f:04:a5:78:32:c0:71:57:9e:d9:8d: e4:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:C0:EE:89:6E:A4:9E:50:7B:FA:CC:FE:5C:FF:71:B8:C1:FC:17:B3 X509v3 Authority Key Identifier: keyid:CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/XcDuiW6knlB7-sz-XP9xuMH8F7M.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.74.224.0/21 Signature Algorithm: sha256WithRSAEncryption 65:ae:f4:87:c4:9f:dd:bf:d4:3f:28:65:1d:6f:14:9f:ce:0b: f5:9c:de:88:8a:83:cd:e4:15:eb:1a:e4:33:e0:99:72:04:2e: d4:d4:77:42:86:fd:45:e6:4c:d3:05:80:79:65:e1:eb:7f:6a: 49:6e:7a:6d:1d:b0:5a:cd:02:9b:c3:b6:3a:f8:68:80:12:3c: 84:c9:ce:e5:9e:ed:5a:00:90:08:d1:c3:dc:ea:83:d7:75:69: e3:ca:60:5b:5e:46:39:01:cc:2b:2c:4d:bf:b8:00:c7:7b:57: b3:2b:aa:57:cd:4a:10:02:74:65:8a:d8:62:b7:96:dc:a3:b2: 47:fa:df:1c:03:80:20:b4:29:a2:35:cf:f5:77:83:1a:d6:4b: 98:fb:d7:de:90:09:e1:71:11:7a:d2:2b:d6:06:09:a1:7e:9d: be:40:ad:bd:94:4e:15:f9:a3:9f:02:a5:90:56:d6:5d:0a:c7: 41:e5:11:d2:8f:05:aa:ef:25:2d:e2:19:b9:38:fc:9b:a0:3f: 44:a7:6a:77:0b:56:59:39:40:7c:a0:3e:88:a1:c9:47:6a:65: e0:3d:23:6b:d6:a0:7c:64:b9:55:6e:2b:ae:50:dc:30:de:ef: 3e:78:34:75:32:9e:31:65:61:62:4a:c7:38:da:9e:ce:5b:70: e5:71:3d:d9 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBVDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDQjgz MDBCMjA2NTlCQjk1MTA2MEY2MEIxRjRCQzYwOTFBRjI3NjM5MB4XDTI0MDgzMTAx MzAyOFoXDTI1MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoNURDMEVFODk2RUE0OUU1 MDdCRkFDQ0ZFNUNGRjcxQjhDMUZDMTdCMzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMPNcGaIndCiVT8xsKv2ae5mF5TVvjF9kZLXeViCZNVerihrQL+R SPFhyFWPFJOkb4tyNXfMJgSfqUz8rpNBC4tuVTSLcsb0aVCWufaKNZnUWcj2IVjh M1SnuPv8sx5n1EtfVx2y/9vyxhSOzrlt37z+GIBZF8Y0m6PlgEbMFbsSgttIjb28 qU5S3p89Z+719PEfnzSOJ3dg8TcHjQD1Ftfuzgm5jlzRnNdsr3F07zgUT/oBSIvQ H/x610TvdaU3Ksq9FIoZAhDJ7aZumZm9pd+YBUY4TG6w8QZxuNY90445qu24RZnM FORL04lIuH63fCHV1l8EpXgywHFXntmN5BECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRdwO6JbqSeUHv6zP5c/3G4wfwXszAfBgNVHSMEGDAWgBTLgwCyBlm7lRBg9gsf S8YJGvJ2OTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNzgzL3k0TUFzZ1padTVVUVlQWUxIMHZHQ1JyeWRqay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3k0TUFzZ1padTVVUVlQWUxIMHZHQ1Jy eWRqay5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC83ODMvWGNEdWlXNmtubEI3LXN6LVhQOXh1TUg4RjdNLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA25K4DANBgkqhkiG9w0BAQsFAAOCAQEAZa70h8Sf3b/UPyhlHW8Un84L9Zze iIqDzeQV6xrkM+CZcgQu1NR3Qob9ReZM0wWAeWXh639qSW56bR2wWs0Cm8O2Ovho gBI8hMnO5Z7tWgCQCNHD3OqD13Vp48pgW15GOQHMKyxNv7gAx3tXsyuqV81KEAJ0 ZYrYYreW3KOyR/rfHAOAILQpojXP9XeDGtZLmPvX3pAJ4XERetIr1gYJoX6dvkCt vZROFfmjnwKlkFbWXQrHQeUR0o8Fqu8lLeIZuTj8m6A/RKdqdwtWWTlAfKA+iKHJ R2pl4D0ja9agfGS5VW4rrlDcMN7vPng0dTKeMWVhYkrHONqezltw5XE92Q== -----END CERTIFICATE-----Generated at Mon Nov 25 23:54:48 2024 by rpki-client on console-ams.rpki-client.org