$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/826/oc3HzIV2flApZsj04wA5WMsj7Dc.roa File: oc3HzIV2flApZsj04wA5WMsj7Dc.roa (raw, json) Hash identifier: XyXzS3E1xtfD7aAQqHkyZePUOo3hKV6IyVyEGS7H2Bg= Subject key identifier: A1:CD:C7:CC:85:76:7E:50:29:66:C8:F4:E3:00:39:58:CB:23:EC:37 Certificate issuer: /CN=5E708E85B10AC603C06D785B42153DCFE1663AEA Certificate serial: 29 Authority key identifier: 5E:70:8E:85:B1:0A:C6:03:C0:6D:78:5B:42:15:3D:CF:E1:66:3A:EA Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XnCOhbEKxgPAbXhbQhU9z-FmOuo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/826/oc3HzIV2flApZsj04wA5WMsj7Dc.roa Signing time: Thu 29 Feb 2024 01:34:29 +0000 ROA not before: Thu 29 Feb 2024 01:34:29 +0000 ROA not after: Fri 14 Feb 2025 01:30:03 +0000 asID: 23618 IP address blocks: 117.18.24.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/826/XnCOhbEKxgPAbXhbQhU9z-FmOuo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/826/XnCOhbEKxgPAbXhbQhU9z-FmOuo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XnCOhbEKxgPAbXhbQhU9z-FmOuo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5E708E85B10AC603C06D785B42153DCFE1663AEA Validity Not Before: Feb 29 01:34:29 2024 GMT Not After : Feb 14 01:30:03 2025 GMT Subject: CN=A1CDC7CC85767E502966C8F4E3003958CB23EC37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:bf:8d:e1:67:7b:9d:9c:01:31:bd:aa:84:c6: 6e:a1:2f:7c:0f:84:09:14:79:ac:62:49:1d:26:8a: c1:12:73:8b:9c:61:4a:2c:c1:d7:fe:f3:fd:02:e1: 55:33:c9:9c:1f:3b:37:47:4e:44:4c:c2:19:7a:5b: b6:9e:89:be:59:ad:76:c7:f5:a7:34:80:12:7e:de: 9c:58:bf:8e:15:94:c2:96:52:25:e1:f6:1a:81:9f: 0f:d0:1f:8f:2b:6f:c6:a5:87:dd:01:9b:3b:be:be: 83:dd:c7:f3:82:cf:b6:ee:62:b9:10:e3:7e:f1:5c: ef:4e:7b:f1:89:6b:18:26:6a:0f:79:56:36:4b:8a: da:c0:3b:70:91:44:c8:d9:73:af:b7:12:f8:8c:5f: 72:ed:34:71:1e:79:71:b9:a2:b5:9e:9c:c2:69:45: 44:ec:71:86:8c:54:57:f4:13:a0:ec:8f:04:1c:a8: d6:69:6b:3e:24:4a:c6:f3:85:33:cd:a8:90:f7:40: a8:a4:95:c5:73:f2:e1:26:e8:76:cb:97:05:fe:f9: 4c:85:61:8c:aa:45:3d:fa:d4:16:c7:f3:33:c2:1d: a7:a9:ee:c4:99:b6:b6:f1:91:1f:f8:17:57:71:20: 44:1c:92:49:83:a8:ee:3d:a1:95:be:a9:a4:2f:7a: 95:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:CD:C7:CC:85:76:7E:50:29:66:C8:F4:E3:00:39:58:CB:23:EC:37 X509v3 Authority Key Identifier: keyid:5E:70:8E:85:B1:0A:C6:03:C0:6D:78:5B:42:15:3D:CF:E1:66:3A:EA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/826/XnCOhbEKxgPAbXhbQhU9z-FmOuo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XnCOhbEKxgPAbXhbQhU9z-FmOuo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/826/oc3HzIV2flApZsj04wA5WMsj7Dc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.18.24.0/21 Signature Algorithm: sha256WithRSAEncryption 73:17:53:f4:f6:cb:bd:62:f6:e6:1e:dc:0d:05:d3:64:1c:db: 66:18:81:ba:e2:48:3d:71:e0:56:ec:8a:34:8f:ce:90:3c:8d: 74:6e:43:95:5e:7f:eb:d0:46:dc:72:e6:ca:e7:ea:0b:e9:3a: 21:ab:72:13:e9:f2:10:9b:ff:06:68:d3:d2:87:c3:30:97:aa: 25:38:6e:07:9b:e1:ce:3d:15:4f:48:1e:b8:09:a3:8b:0e:e3: 06:90:6c:e3:56:9f:84:e7:a9:e9:62:5c:57:9f:94:39:3c:88: 38:47:84:70:b9:11:dd:2f:e1:8b:21:4c:b2:82:fa:53:45:40: 60:fe:dd:bd:47:95:fb:43:36:10:77:78:33:57:fd:f7:7b:d9: 90:04:29:d1:91:9a:49:16:73:a3:fd:c9:e0:d9:54:61:97:55: 2f:cb:3a:3d:f7:20:19:ab:df:a1:ad:47:d1:c5:7b:48:cf:e1: 31:63:fc:ce:e3:28:1d:73:4b:73:20:3a:d3:a7:23:b4:e3:bb: 3a:32:27:20:a4:81:48:16:01:d6:9f:da:7a:8b:e8:24:90:9f: e3:96:25:b9:d9:a3:16:2a:3b:63:f5:3e:d1:1b:21:4f:76:27: 7f:40:2b:47:59:fd:01:25:c8:09:31:f7:55:ef:cf:25:a7:b9: b9:0a:01:6c -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBKTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1RTcw OEU4NUIxMEFDNjAzQzA2RDc4NUI0MjE1M0RDRkUxNjYzQUVBMB4XDTI0MDIyOTAx MzQyOVoXDTI1MDIxNDAxMzAwM1owMzExMC8GA1UEAxMoQTFDREM3Q0M4NTc2N0U1 MDI5NjZDOEY0RTMwMDM5NThDQjIzRUMzNzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL6/jeFne52cATG9qoTGbqEvfA+ECRR5rGJJHSaKwRJzi5xhSizB 1/7z/QLhVTPJnB87N0dOREzCGXpbtp6Jvlmtdsf1pzSAEn7enFi/jhWUwpZSJeH2 GoGfD9AfjytvxqWH3QGbO76+g93H84LPtu5iuRDjfvFc70578YlrGCZqD3lWNkuK 2sA7cJFEyNlzr7cS+Ixfcu00cR55cbmitZ6cwmlFROxxhoxUV/QToOyPBByo1mlr PiRKxvOFM82okPdAqKSVxXPy4SbodsuXBf75TIVhjKpFPfrUFsfzM8Idp6nuxJm2 tvGRH/gXV3EgRBySSYOo7j2hlb6ppC96la8CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBShzcfMhXZ+UClmyPTjADlYyyPsNzAfBgNVHSMEGDAWgBRecI6FsQrGA8BteFtC FT3P4WY66jAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODI2L1huQ09oYkVLeGdQQWJYaGJRaFU5ei1GbU91by5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1huQ09oYkVLeGdQQWJYaGJRaFU5ei1G bU91by5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84MjYvb2MzSHpJVjJmbEFwWnNqMDR3QTVXTXNqN0RjLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA3USGDANBgkqhkiG9w0BAQsFAAOCAQEAcxdT9PbLvWL25h7cDQXTZBzbZhiB uuJIPXHgVuyKNI/OkDyNdG5DlV5/69BG3HLmyufqC+k6IatyE+nyEJv/BmjT0ofD MJeqJThuB5vhzj0VT0geuAmjiw7jBpBs41afhOep6WJcV5+UOTyIOEeEcLkR3S/h iyFMsoL6U0VAYP7dvUeV+0M2EHd4M1f993vZkAQp0ZGaSRZzo/3J4NlUYZdVL8s6 PfcgGavfoa1H0cV7SM/hMWP8zuMoHXNLcyA606cjtOO7OjInIKSBSBYB1p/aeovo JJCf45YludmjFio7Y/U+0RshT3Ynf0ArR1n9ASXICTH3Ve/PJae5uQoBbA== -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:06 2024 by rpki-client on console-fra.rpki-client.org