$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/868/KhEXn3YsOxHZNfFEeUP4wGcjg2E.roa File: KhEXn3YsOxHZNfFEeUP4wGcjg2E.roa (raw, json) Hash identifier: 8e7+GQsVT/BhLB5CPdJ48JwpagnbcXHY30qyR3EP8EM= Subject key identifier: 2A:11:17:9F:76:2C:3B:11:D9:35:F1:44:79:43:F8:C0:67:23:83:61 Certificate issuer: /CN=8D0962EDE0F5E21A7E8F9E1AB006FF940E04ED46 Certificate serial: 38 Authority key identifier: 8D:09:62:ED:E0:F5:E2:1A:7E:8F:9E:1A:B0:06:FF:94:0E:04:ED:46 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jQli7eD14hp-j54asAb_lA4E7UY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/868/KhEXn3YsOxHZNfFEeUP4wGcjg2E.roa Signing time: Wed 20 Nov 2024 08:46:41 +0000 ROA not before: Wed 20 Nov 2024 08:46:41 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 24271 IP address blocks: 218.231.216.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/868/jQli7eD14hp-j54asAb_lA4E7UY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/868/jQli7eD14hp-j54asAb_lA4E7UY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jQli7eD14hp-j54asAb_lA4E7UY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D0962EDE0F5E21A7E8F9E1AB006FF940E04ED46 Validity Not Before: Nov 20 08:46:41 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=2A11179F762C3B11D935F1447943F8C067238361 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:cc:71:39:b5:87:4f:2d:5c:c7:14:56:d9:de: c2:bb:01:df:61:7d:b6:48:ac:30:ce:a5:c1:14:65: 0a:4a:c3:b8:54:ec:fe:fe:62:d3:18:45:12:5a:79: 76:2d:b9:2a:7f:b0:d3:0a:b4:7e:40:37:d1:c4:59: 06:7d:e6:2a:0f:c1:43:c6:f4:16:80:08:af:c8:94: 6a:e4:7c:1d:e8:7b:50:5a:d5:9a:6b:36:31:5c:7b: 3e:56:44:d2:1a:88:a8:9e:fc:ca:01:7a:53:2e:46: de:c9:09:ac:f1:3e:f0:59:22:dc:d8:8a:f7:82:ba: 74:94:d5:68:89:1e:18:45:75:03:fe:ff:d3:b4:e5: 38:cd:b6:9a:cb:b5:2e:b1:a3:ab:a0:de:ef:fd:a4: a7:2f:2f:6f:17:dd:9c:36:b6:97:64:26:1c:bc:b4: 10:cf:f4:3a:71:dc:27:97:b8:46:74:e8:b4:e5:c4: cf:32:84:03:00:61:5a:27:e5:fb:cc:20:05:e2:62: de:7a:dc:f6:24:7a:3c:3e:01:14:9c:90:ae:b7:b8: 70:4f:df:0a:2e:bf:97:ba:77:d0:be:d4:2c:bf:ab: 1d:9f:a3:47:c3:ee:33:70:c5:9c:06:d0:ab:80:4a: d6:82:ca:d0:41:7d:02:a2:ee:0a:9d:21:96:b3:e5: 81:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:11:17:9F:76:2C:3B:11:D9:35:F1:44:79:43:F8:C0:67:23:83:61 X509v3 Authority Key Identifier: keyid:8D:09:62:ED:E0:F5:E2:1A:7E:8F:9E:1A:B0:06:FF:94:0E:04:ED:46 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/868/jQli7eD14hp-j54asAb_lA4E7UY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jQli7eD14hp-j54asAb_lA4E7UY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/868/KhEXn3YsOxHZNfFEeUP4wGcjg2E.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.231.216.0/21 Signature Algorithm: sha256WithRSAEncryption 17:34:17:92:2a:b5:43:3c:ee:ca:75:78:16:3e:b4:4a:db:db: fa:55:45:f9:10:70:5c:6e:d1:06:24:f6:5a:10:4b:74:7c:74: 88:5c:e9:bf:51:ac:67:be:06:be:6d:47:a8:fb:63:1d:61:6a: 15:34:b2:23:a0:cd:f0:d6:1f:8e:7e:be:b1:45:3e:83:b9:89: 6b:7d:63:54:66:8e:e9:60:43:62:f8:2e:06:9d:ac:72:5e:43: 85:7a:f0:70:7d:53:d7:40:dc:c0:92:e2:5a:8b:24:35:ab:18: 9d:cc:33:1a:e1:c8:89:d2:0b:bd:c8:45:86:81:eb:40:6d:47: 13:c2:6f:9f:58:6d:34:be:84:32:91:65:95:0a:b1:80:97:8e: d2:e0:7a:77:3c:31:85:88:e0:7b:b1:6e:aa:05:ce:d6:e4:c2: 85:84:3d:af:32:f2:1d:6c:e5:ae:24:3d:31:d5:2c:98:fd:e1: 33:05:6f:c9:dd:9e:62:21:a8:f6:14:df:32:c8:00:cc:16:2e: 9b:c1:62:f5:2b:95:1f:b7:11:cb:84:92:42:ba:f5:8e:e6:08: 62:72:7f:95:11:2e:5b:12:03:5b:55:8c:76:bc:71:59:d5:e6: b5:d4:82:1d:5e:b3:9f:5f:67:a9:9e:90:d4:87:2d:cd:84:5e: a6:67:f6:88 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBODANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4RDA5 NjJFREUwRjVFMjFBN0U4RjlFMUFCMDA2RkY5NDBFMDRFRDQ2MB4XDTI0MTEyMDA4 NDY0MVoXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoMkExMTE3OUY3NjJDM0Ix MUQ5MzVGMTQ0Nzk0M0Y4QzA2NzIzODM2MTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAN7McTm1h08tXMcUVtnewrsB32F9tkisMM6lwRRlCkrDuFTs/v5i 0xhFElp5di25Kn+w0wq0fkA30cRZBn3mKg/BQ8b0FoAIr8iUauR8Heh7UFrVmms2 MVx7PlZE0hqIqJ78ygF6Uy5G3skJrPE+8Fki3NiK94K6dJTVaIkeGEV1A/7/07Tl OM22msu1LrGjq6De7/2kpy8vbxfdnDa2l2QmHLy0EM/0OnHcJ5e4RnTotOXEzzKE AwBhWifl+8wgBeJi3nrc9iR6PD4BFJyQrre4cE/fCi6/l7p30L7ULL+rHZ+jR8Pu M3DFnAbQq4BK1oLK0EF9AqLuCp0hlrPlgV0CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQqERefdiw7Edk18UR5Q/jAZyODYTAfBgNVHSMEGDAWgBSNCWLt4PXiGn6Pnhqw Bv+UDgTtRjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODY4L2pRbGk3ZUQxNGhwLWo1NGFzQWJfbEE0RTdVWS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2pRbGk3ZUQxNGhwLWo1NGFzQWJfbEE0 RTdVWS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84NjgvS2hFWG4zWXNPeEhaTmZGRWVVUDR3R2NqZzJFLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA9rn2DANBgkqhkiG9w0BAQsFAAOCAQEAFzQXkiq1QzzuynV4Fj60Stvb+lVF +RBwXG7RBiT2WhBLdHx0iFzpv1GsZ74Gvm1HqPtjHWFqFTSyI6DN8NYfjn6+sUU+ g7mJa31jVGaO6WBDYvguBp2scl5DhXrwcH1T10DcwJLiWoskNasYncwzGuHIidIL vchFhoHrQG1HE8Jvn1htNL6EMpFllQqxgJeO0uB6dzwxhYjge7FuqgXO1uTChYQ9 rzLyHWzlriQ9MdUsmP3hMwVvyd2eYiGo9hTfMsgAzBYum8Fi9SuVH7cRy4SSQrr1 juYIYnJ/lREuWxIDW1WMdrxxWdXmtdSCHV6zn19nqZ6Q1IctzYRepmf2iA== -----END CERTIFICATE-----Generated at Fri Nov 22 16:45:49 2024 by rpki-client on console-ams.rpki-client.org