$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/802/ispIXj8PPNowsgPqjAIFb--P5wM.roa File: ispIXj8PPNowsgPqjAIFb--P5wM.roa (raw, json) Hash identifier: drcv5hhX9DMDnq9baQbc4Xb6G1YzXKQ7RGw4dN9SWN8= Subject key identifier: 8A:CA:48:5E:3F:0F:3C:DA:30:B2:03:EA:8C:02:05:6F:EF:8F:E7:03 Certificate issuer: /CN=2362B2E3E478DCBAD6F42A4511290CFC373C24C6 Certificate serial: 1B Authority key identifier: 23:62:B2:E3:E4:78:DC:BA:D6:F4:2A:45:11:29:0C:FC:37:3C:24:C6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/I2Ky4-R43LrW9CpFESkM_Dc8JMY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/802/ispIXj8PPNowsgPqjAIFb--P5wM.roa Signing time: Wed 31 Jul 2024 01:32:40 +0000 ROA not before: Wed 31 Jul 2024 01:32:40 +0000 ROA not after: Tue 15 Jul 2025 01:30:02 +0000 asID: 23791 IP address blocks: 202.170.208.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/802/I2Ky4-R43LrW9CpFESkM_Dc8JMY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/802/I2Ky4-R43LrW9CpFESkM_Dc8JMY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/I2Ky4-R43LrW9CpFESkM_Dc8JMY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2362B2E3E478DCBAD6F42A4511290CFC373C24C6 Validity Not Before: Jul 31 01:32:40 2024 GMT Not After : Jul 15 01:30:02 2025 GMT Subject: CN=8ACA485E3F0F3CDA30B203EA8C02056FEF8FE703 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d5:cf:5a:50:59:23:69:d2:95:95:7c:86:32: 44:f6:e0:c4:3f:d0:b5:e3:dd:78:ee:04:6c:57:92: 17:95:8e:a9:ea:10:ab:45:ab:78:df:9f:a2:7c:7a: ac:5e:1c:8e:ea:b6:b8:eb:44:cc:ad:cf:a2:04:41: d2:f4:d3:ad:4a:03:75:ea:5b:23:1e:4f:e5:9c:5f: e8:aa:ac:af:38:67:c4:65:05:3b:5d:30:e7:9d:f0: 0e:19:86:a8:09:e9:1c:b0:9c:a6:16:ad:92:61:11: 87:e0:14:bc:9c:15:05:9c:38:d8:c9:8e:8f:29:b0: 9a:61:18:b2:db:4f:00:f4:e0:fc:17:86:db:20:7e: 78:89:71:32:d2:fe:cb:52:3b:5a:5c:66:67:5b:bd: 03:76:d9:99:20:d3:a7:4c:cd:29:98:8f:37:8a:7f: 29:fd:d8:ab:a6:1f:4a:3b:f4:d7:e9:67:19:f4:f0: 85:56:71:09:37:a7:8b:83:9c:b8:26:86:43:7a:b9: 86:07:e5:9f:1e:08:52:ea:66:75:f8:67:74:23:78: f8:2c:55:b4:4b:34:83:9d:13:40:c9:8c:c4:21:9f: d1:b2:25:30:4a:67:c0:c3:7b:55:2d:15:d2:87:e6: a7:ca:1b:b7:ca:cd:20:b8:bc:d4:a6:81:ee:e5:0c: 71:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:CA:48:5E:3F:0F:3C:DA:30:B2:03:EA:8C:02:05:6F:EF:8F:E7:03 X509v3 Authority Key Identifier: keyid:23:62:B2:E3:E4:78:DC:BA:D6:F4:2A:45:11:29:0C:FC:37:3C:24:C6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/802/I2Ky4-R43LrW9CpFESkM_Dc8JMY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/I2Ky4-R43LrW9CpFESkM_Dc8JMY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/802/ispIXj8PPNowsgPqjAIFb--P5wM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.170.208.0/21 Signature Algorithm: sha256WithRSAEncryption 41:b2:0a:92:65:54:3c:19:f9:83:c4:98:a7:3d:72:27:16:83: 55:5e:a3:2f:2f:9f:38:1b:fd:a5:2f:3c:11:39:f8:fb:1e:4f: 20:a4:cb:83:72:75:f1:20:47:94:29:e4:96:3f:32:50:5f:7e: 1f:da:0e:cf:39:c8:cd:23:98:c4:ca:e9:5a:bf:84:c8:9a:3a: 34:6d:d0:90:27:9f:f3:57:76:95:d9:f5:8e:47:24:c0:9c:89: ec:b8:20:9f:7f:fa:9a:f9:92:cc:24:6b:d4:c5:b5:e3:71:68: a8:cc:fa:99:35:9b:a1:04:d0:0e:3b:8c:02:a2:3e:9d:9b:89: 10:52:32:45:24:09:73:56:cf:08:7d:ef:20:cd:d8:62:b8:a3: ba:e1:98:25:cf:3b:6b:14:eb:0b:bf:59:84:ce:a7:4a:8c:64: 6e:6e:e7:82:28:7a:c6:d1:01:09:a9:1e:c6:10:aa:4f:c5:99: 14:bd:db:23:dc:ab:4b:ad:06:13:20:ff:ea:19:34:5e:01:1d: 24:25:2c:95:7e:01:46:ca:5b:31:91:61:46:98:75:cc:a9:5c: 58:b1:53:c5:f2:4d:98:2b:9a:ca:1b:bb:83:59:73:d3:79:41: 1a:83:9b:13:e7:c5:cc:06:55:2c:15:ed:e5:0c:35:5f:9a:05: 5b:d4:20:5d -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBGzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyMzYy QjJFM0U0NzhEQ0JBRDZGNDJBNDUxMTI5MENGQzM3M0MyNEM2MB4XDTI0MDczMTAx MzI0MFoXDTI1MDcxNTAxMzAwMlowMzExMC8GA1UEAxMoOEFDQTQ4NUUzRjBGM0NE QTMwQjIwM0VBOEMwMjA1NkZFRjhGRTcwMzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALnVz1pQWSNp0pWVfIYyRPbgxD/QtePdeO4EbFeSF5WOqeoQq0Wr eN+fonx6rF4cjuq2uOtEzK3PogRB0vTTrUoDdepbIx5P5Zxf6KqsrzhnxGUFO10w 553wDhmGqAnpHLCcphatkmERh+AUvJwVBZw42MmOjymwmmEYsttPAPTg/BeG2yB+ eIlxMtL+y1I7WlxmZ1u9A3bZmSDTp0zNKZiPN4p/Kf3Yq6YfSjv01+lnGfTwhVZx CTeni4OcuCaGQ3q5hgflnx4IUupmdfhndCN4+CxVtEs0g50TQMmMxCGf0bIlMEpn wMN7VS0V0ofmp8obt8rNILi81KaB7uUMcYkCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSKykhePw882jCyA+qMAgVv74/nAzAfBgNVHSMEGDAWgBQjYrLj5Hjcutb0KkUR KQz8NzwkxjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODAyL0kyS3k0LVI0M0xyVzlDcEZFU2tNX0RjOEpNWS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0kyS3k0LVI0M0xyVzlDcEZFU2tNX0Rj OEpNWS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84MDIvaXNwSVhqOFBQTm93c2dQcWpBSUZiLS1QNXdNLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA8qq0DANBgkqhkiG9w0BAQsFAAOCAQEAQbIKkmVUPBn5g8SYpz1yJxaDVV6j Ly+fOBv9pS88ETn4+x5PIKTLg3J18SBHlCnklj8yUF9+H9oOzznIzSOYxMrpWr+E yJo6NG3QkCef81d2ldn1jkckwJyJ7Lggn3/6mvmSzCRr1MW143FoqMz6mTWboQTQ DjuMAqI+nZuJEFIyRSQJc1bPCH3vIM3YYrijuuGYJc87axTrC79ZhM6nSoxkbm7n gih6xtEBCakexhCqT8WZFL3bI9yrS60GEyD/6hk0XgEdJCUslX4BRspbMZFhRph1 zKlcWLFTxfJNmCuayhu7g1lz03lBGoObE+fFzAZVLBXt5Qw1X5oFW9QgXQ== -----END CERTIFICATE-----Generated at Sun Feb 16 22:16:34 2025 by rpki-client