$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/881/Ix0EtVTmg7OCAD9Vt1KGYGAPpBI.roa File: Ix0EtVTmg7OCAD9Vt1KGYGAPpBI.roa (raw, json) Hash identifier: z38dvgTru28/Oh5x2IhXdsuYVnfD7pjbOcHY11wJk9E= Subject key identifier: 23:1D:04:B5:54:E6:83:B3:82:00:3F:55:B7:52:86:60:60:0F:A4:12 Certificate issuer: /CN=D00E08393688B04737874ECD63DD8BE78E5EF2D0 Certificate serial: 45 Authority key identifier: D0:0E:08:39:36:88:B0:47:37:87:4E:CD:63:DD:8B:E7:8E:5E:F2:D0 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0A4IOTaIsEc3h07NY92L545e8tA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/881/Ix0EtVTmg7OCAD9Vt1KGYGAPpBI.roa Signing time: Sat 31 Aug 2024 01:30:21 +0000 ROA not before: Sat 31 Aug 2024 01:30:21 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 23805 IP address blocks: 219.100.80.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/881/0A4IOTaIsEc3h07NY92L545e8tA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/881/0A4IOTaIsEc3h07NY92L545e8tA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0A4IOTaIsEc3h07NY92L545e8tA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D00E08393688B04737874ECD63DD8BE78E5EF2D0 Validity Not Before: Aug 31 01:30:21 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=231D04B554E683B382003F55B7528660600FA412 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:4b:6e:6a:c4:a2:7d:d8:9e:2b:4f:e7:e0:e1: a0:07:c0:e0:cc:6a:4a:a6:62:2b:eb:49:f7:9b:fe: 62:9c:3b:bc:4f:31:3a:70:3f:3d:60:b6:62:e4:d8: 94:66:cd:9c:8c:8f:21:a2:8a:d1:89:73:91:bd:f4: ef:01:64:f3:f4:d4:a6:e9:e9:bc:cb:6a:f1:55:35: 7f:87:fa:49:23:18:95:a3:2a:ea:e8:fa:6e:31:9a: ca:92:92:9e:7a:87:69:ab:03:35:30:61:eb:0a:ab: 76:7d:4d:7f:7d:7b:e0:f3:bf:b3:a0:40:a1:2c:c1: b4:d0:61:61:d5:ed:e3:7e:76:1e:10:fa:83:67:fb: fa:f3:d2:cb:d4:ac:24:ee:0c:a8:c9:bf:07:50:e6: d2:0b:d4:e3:8a:74:34:96:23:3f:4c:12:f4:c6:c1: 09:e3:db:e6:ec:88:72:24:50:3f:93:7d:97:0e:3c: 34:d6:43:8c:79:9e:1e:f4:fc:3d:bd:bd:3e:6c:ee: 01:8a:cb:f7:12:8e:d6:a4:ca:1d:ef:1e:84:a7:79: 25:d5:f2:06:73:a0:40:36:ff:85:6e:4b:ff:20:9b: 7c:c1:3d:2b:33:b7:f4:36:cd:b2:ca:8e:cb:c6:84: e1:e9:86:00:e7:dc:88:19:3b:8e:d2:08:a8:3f:32: ee:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:1D:04:B5:54:E6:83:B3:82:00:3F:55:B7:52:86:60:60:0F:A4:12 X509v3 Authority Key Identifier: keyid:D0:0E:08:39:36:88:B0:47:37:87:4E:CD:63:DD:8B:E7:8E:5E:F2:D0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/881/0A4IOTaIsEc3h07NY92L545e8tA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0A4IOTaIsEc3h07NY92L545e8tA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/881/Ix0EtVTmg7OCAD9Vt1KGYGAPpBI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.100.80.0/22 Signature Algorithm: sha256WithRSAEncryption 7d:f7:53:c1:f3:fa:04:97:e4:77:5f:76:c0:1f:0d:46:a2:5f: a8:8e:92:ab:56:fc:5e:c2:12:a1:a1:f3:ff:48:70:d2:09:f7: 45:3e:0c:80:37:1e:e7:d0:5a:a3:77:a8:cc:ef:d1:3e:86:11: 15:b3:1d:6f:74:ae:d2:1c:d6:9e:34:fb:9a:f7:20:c9:d2:ea: ad:15:8e:5b:af:f0:d7:92:ed:de:5d:8e:21:94:ad:3d:89:d9: f4:89:ec:6f:c5:3b:1a:0e:ec:95:97:95:5a:03:a4:45:ec:8e: 38:a8:1c:b9:9a:29:6d:68:85:25:5c:aa:eb:e7:7c:40:2c:65: 79:96:5e:60:3e:76:b2:db:35:e2:e2:69:8f:f0:8e:27:56:80: 56:5f:38:f3:cb:cb:29:fe:e9:43:79:7d:99:b0:95:0c:e7:24: bd:b6:e4:f3:62:51:02:f9:60:30:ec:fd:16:36:6b:b9:8d:3d: ba:88:83:d4:05:6a:a2:ca:86:d6:0e:07:4f:b9:b9:cc:f4:3c: 41:6b:c1:66:cb:fb:4c:11:d2:42:ba:04:86:54:e7:07:f8:34: 55:95:ee:df:de:c7:4c:14:24:45:e2:a8:3c:01:11:97:a2:b0: c8:b6:68:c8:b3:e1:34:1a:b1:69:3c:7e:9b:52:06:af:15:76: a6:48:58:eb -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBRTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMDBF MDgzOTM2ODhCMDQ3Mzc4NzRFQ0Q2M0REOEJFNzhFNUVGMkQwMB4XDTI0MDgzMTAx MzAyMVoXDTI1MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoMjMxRDA0QjU1NEU2ODNC MzgyMDAzRjU1Qjc1Mjg2NjA2MDBGQTQxMjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMJLbmrEon3YnitP5+DhoAfA4MxqSqZiK+tJ95v+Ypw7vE8xOnA/ PWC2YuTYlGbNnIyPIaKK0Ylzkb307wFk8/TUpunpvMtq8VU1f4f6SSMYlaMq6uj6 bjGaypKSnnqHaasDNTBh6wqrdn1Nf3174PO/s6BAoSzBtNBhYdXt4352HhD6g2f7 +vPSy9SsJO4MqMm/B1Dm0gvU44p0NJYjP0wS9MbBCePb5uyIciRQP5N9lw48NNZD jHmeHvT8Pb29PmzuAYrL9xKO1qTKHe8ehKd5JdXyBnOgQDb/hW5L/yCbfME9KzO3 9DbNssqOy8aE4emGAOfciBk7jtIIqD8y7m8CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQjHQS1VOaDs4IAP1W3UoZgYA+kEjAfBgNVHSMEGDAWgBTQDgg5NoiwRzeHTs1j 3Yvnjl7y0DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODgxLzBBNElPVGFJc0VjM2gwN05ZOTJMNTQ1ZTh0QS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzBBNElPVGFJc0VjM2gwN05ZOTJMNTQ1 ZTh0QS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84ODEvSXgwRXRWVG1nN09DQUQ5VnQxS0dZR0FQcEJJLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAttkUDANBgkqhkiG9w0BAQsFAAOCAQEAffdTwfP6BJfkd192wB8NRqJfqI6S q1b8XsISoaHz/0hw0gn3RT4MgDce59Bao3eozO/RPoYRFbMdb3Su0hzWnjT7mvcg ydLqrRWOW6/w15Lt3l2OIZStPYnZ9Insb8U7Gg7slZeVWgOkReyOOKgcuZopbWiF JVyq6+d8QCxleZZeYD52sts14uJpj/COJ1aAVl8488vLKf7pQ3l9mbCVDOckvbbk 82JRAvlgMOz9FjZruY09uoiD1AVqosqG1g4HT7m5zPQ8QWvBZsv7TBHSQroEhlTn B/g0VZXu397HTBQkReKoPAERl6KwyLZoyLPhNBqxaTx+m1IGrxV2pkhY6w== -----END CERTIFICATE-----Generated at Sun Feb 16 22:13:34 2025 by rpki-client