$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/783/hav6Kxl7-En8TGdb4hnx219-EhU.roa File: hav6Kxl7-En8TGdb4hnx219-EhU.roa (raw, json) Hash identifier: 8bNOkICIZHswBB5/kekX+uoqo+d7Iet9EwT0zsDoE8M= Subject key identifier: 85:AB:FA:2B:19:7B:F8:49:FC:4C:67:5B:E2:19:F1:DB:5F:7E:12:15 Certificate issuer: /CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Certificate serial: 5F Authority key identifier: CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/hav6Kxl7-En8TGdb4hnx219-EhU.roa Signing time: Sat 31 Aug 2024 01:30:32 +0000 ROA not before: Sat 31 Aug 2024 01:30:32 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 18144 IP address blocks: 222.231.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Validity Not Before: Aug 31 01:30:32 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=85ABFA2B197BF849FC4C675BE219F1DB5F7E1215 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:4c:53:b8:5e:13:9e:7a:01:75:a2:2d:c2:d7: 96:43:32:b4:01:43:7b:7c:a9:36:d7:c5:69:f2:7c: 51:d6:69:d1:5d:f2:0f:2a:4e:0b:54:40:7e:e3:40: 3a:2d:f5:4b:4c:68:67:c7:b3:4e:3a:0c:e0:b2:0c: 03:a6:f9:83:3f:cf:95:cf:d3:ff:fd:f9:4d:e7:b7: 42:ac:c0:15:d2:69:93:fc:e4:0d:e9:96:09:98:cd: 0d:9c:2f:2d:bc:4e:96:6a:5e:94:02:7a:4b:c3:06: ba:73:1e:69:5f:77:33:6b:c2:6f:66:c4:af:9b:11: 2f:a4:e6:73:d7:68:65:20:72:87:8a:0e:22:c6:af: f4:55:d7:46:77:75:4b:56:76:a9:fc:44:99:78:bd: 3d:b0:28:53:d5:78:4b:89:12:4d:0a:c8:f9:35:bc: 6b:e6:18:47:79:f1:36:0b:3f:f6:0c:57:3c:f4:00: dc:c7:76:e8:35:96:53:f5:1f:89:96:c2:0d:a8:03: 54:57:42:b7:aa:be:b4:fe:35:7c:f7:93:8f:51:28: d7:0a:71:00:a0:3d:bc:05:03:2c:24:36:ed:06:1e: c2:f0:48:0b:94:8a:ae:c4:f2:f4:56:15:e8:68:30: 13:85:d6:b3:a7:c4:b0:55:ff:db:56:72:68:0b:9c: 71:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:AB:FA:2B:19:7B:F8:49:FC:4C:67:5B:E2:19:F1:DB:5F:7E:12:15 X509v3 Authority Key Identifier: keyid:CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/hav6Kxl7-En8TGdb4hnx219-EhU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 222.231.64.0/18 Signature Algorithm: sha256WithRSAEncryption 32:a7:74:94:ff:6b:ed:e1:78:80:48:bc:95:f3:06:5e:15:65: 45:fe:5c:bc:18:6d:10:02:bf:7b:31:d2:9a:bb:0a:9d:3e:44: 6d:69:54:2b:19:ea:4f:13:52:f3:2e:1a:c9:7c:e7:d8:e1:a7: 93:92:0e:a7:ce:3c:69:5c:5a:f5:21:d6:ff:33:85:6c:31:e0: 95:8c:4a:ca:a4:61:b9:c8:b8:37:d2:ef:b9:44:67:db:24:f3: 0e:09:6e:6a:e5:bc:6c:07:0a:f5:70:17:05:0a:ba:8c:43:7c: 6e:94:cc:a0:68:0b:89:ec:17:6d:06:c9:e2:a7:f1:3c:75:d6: 7e:fc:34:88:c4:61:b6:b1:41:08:44:ea:49:16:0e:f7:43:4a: 23:22:29:86:85:f5:86:ee:c5:7f:d5:7b:fb:48:ee:70:f3:04: a8:da:cc:d8:f3:7d:ad:4d:0f:ed:15:3d:0a:49:a6:cb:1b:80: 63:0f:01:5d:4f:0d:3b:cd:02:e6:6b:8c:64:bb:d9:d4:e7:93: bc:cf:e4:5e:ec:c3:e7:69:08:82:f9:c4:a2:9e:88:dd:0d:12: 86:29:27:e5:ac:74:0d:bd:ad:ad:14:8c:26:90:3d:ec:57:d8: 01:46:0d:fe:19:bb:19:13:24:6d:80:0b:0e:00:ae:e6:b3:cf: 5a:00:65:c8 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBXzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDQjgz MDBCMjA2NTlCQjk1MTA2MEY2MEIxRjRCQzYwOTFBRjI3NjM5MB4XDTI0MDgzMTAx MzAzMloXDTI1MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoODVBQkZBMkIxOTdCRjg0 OUZDNEM2NzVCRTIxOUYxREI1RjdFMTIxNTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJ9MU7heE556AXWiLcLXlkMytAFDe3ypNtfFafJ8UdZp0V3yDypO C1RAfuNAOi31S0xoZ8ezTjoM4LIMA6b5gz/Plc/T//35Tee3QqzAFdJpk/zkDemW CZjNDZwvLbxOlmpelAJ6S8MGunMeaV93M2vCb2bEr5sRL6Tmc9doZSByh4oOIsav 9FXXRnd1S1Z2qfxEmXi9PbAoU9V4S4kSTQrI+TW8a+YYR3nxNgs/9gxXPPQA3Md2 6DWWU/UfiZbCDagDVFdCt6q+tP41fPeTj1Eo1wpxAKA9vAUDLCQ27QYewvBIC5SK rsTy9FYV6GgwE4XWs6fEsFX/21ZyaAuccRkCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSFq/orGXv4SfxMZ1viGfHbX34SFTAfBgNVHSMEGDAWgBTLgwCyBlm7lRBg9gsf S8YJGvJ2OTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNzgzL3k0TUFzZ1padTVVUVlQWUxIMHZHQ1JyeWRqay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3k0TUFzZ1padTVVUVlQWUxIMHZHQ1Jy eWRqay5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC83ODMvaGF2Nkt4bDctRW44VEdkYjRobngyMTktRWhVLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBt7nQDANBgkqhkiG9w0BAQsFAAOCAQEAMqd0lP9r7eF4gEi8lfMGXhVlRf5c vBhtEAK/ezHSmrsKnT5EbWlUKxnqTxNS8y4ayXzn2OGnk5IOp848aVxa9SHW/zOF bDHglYxKyqRhuci4N9LvuURn2yTzDgluauW8bAcK9XAXBQq6jEN8bpTMoGgLiewX bQbJ4qfxPHXWfvw0iMRhtrFBCETqSRYO90NKIyIphoX1hu7Ff9V7+0jucPMEqNrM 2PN9rU0P7RU9CkmmyxuAYw8BXU8NO80C5muMZLvZ1OeTvM/kXuzD52kIgvnEop6I 3Q0Shikn5ax0Db2trRSMJpA97FfYAUYN/hm7GRMkbYALDgCu5rPPWgBlyA== -----END CERTIFICATE-----Generated at Mon Nov 25 23:59:17 2024 by rpki-client on console-fra.rpki-client.org