$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/884/BGelDCeiwy32u-gVCgw5NxeiAtU.roa File: BGelDCeiwy32u-gVCgw5NxeiAtU.roa (raw, json) Hash identifier: 1F5d3Fj6rY/65JtRFXf+WZb76BrTzJfpjVSgFY1EpCs= Subject key identifier: 04:67:A5:0C:27:A2:C3:2D:F6:BB:E8:15:0A:0C:39:37:17:A2:02:D5 Certificate issuer: /CN=8AF420F19200E11BE4AE8D914EBA2ACB42917B6E Certificate serial: 22 Authority key identifier: 8A:F4:20:F1:92:00:E1:1B:E4:AE:8D:91:4E:BA:2A:CB:42:91:7B:6E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ivQg8ZIA4Rvkro2RTroqy0KRe24.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/884/BGelDCeiwy32u-gVCgw5NxeiAtU.roa Signing time: Fri 31 May 2024 01:29:05 +0000 ROA not before: Fri 31 May 2024 01:29:05 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 23808 IP address blocks: 219.100.132.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/884/ivQg8ZIA4Rvkro2RTroqy0KRe24.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/884/ivQg8ZIA4Rvkro2RTroqy0KRe24.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ivQg8ZIA4Rvkro2RTroqy0KRe24.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 12:46:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AF420F19200E11BE4AE8D914EBA2ACB42917B6E Validity Not Before: May 31 01:29:05 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=0467A50C27A2C32DF6BBE8150A0C393717A202D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:73:61:62:c0:68:ba:64:62:bf:13:4d:4c:c1: 8e:d3:74:f9:c9:b5:ec:00:63:95:9c:dd:af:4a:67: e4:1b:cd:9d:b5:95:3f:4b:64:6f:dc:3c:13:17:0c: b4:31:b2:50:41:eb:aa:33:4c:ae:b1:83:54:ed:d9: 0c:32:42:5b:c2:9e:bc:89:77:0d:8b:9a:43:67:cb: 60:d7:89:dc:b7:5b:22:01:3b:50:86:c9:2f:9c:e6: db:19:a8:6e:a2:ab:e8:5c:9a:04:68:df:14:93:c9: 9a:6c:80:d1:a8:b3:d4:ed:65:b0:fc:1d:cd:53:ba: b1:89:e7:19:1d:5d:aa:d9:30:2a:0d:e0:63:1e:ef: 15:96:94:dd:eb:d3:69:56:5d:de:2f:39:5e:d6:f9: 97:d4:78:58:b5:f3:bc:16:1a:1d:a2:92:a1:2b:3a: 54:4b:99:19:bf:57:9e:7d:58:06:6e:98:1f:e9:99: 20:a3:e2:ec:ae:01:21:7b:2e:6c:96:8d:f3:07:e8: 36:71:85:1d:8d:f8:f5:64:e9:bb:d8:eb:c1:3b:9c: e9:53:ea:fb:1d:6a:c4:7b:ab:6c:6e:78:02:df:54: ea:f9:5d:4e:a2:5b:86:4b:36:72:7d:6c:c9:9b:9a: 61:18:d2:51:32:1b:ac:ac:2e:b8:73:2e:52:4e:f4: 05:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:67:A5:0C:27:A2:C3:2D:F6:BB:E8:15:0A:0C:39:37:17:A2:02:D5 X509v3 Authority Key Identifier: keyid:8A:F4:20:F1:92:00:E1:1B:E4:AE:8D:91:4E:BA:2A:CB:42:91:7B:6E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/884/ivQg8ZIA4Rvkro2RTroqy0KRe24.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ivQg8ZIA4Rvkro2RTroqy0KRe24.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/884/BGelDCeiwy32u-gVCgw5NxeiAtU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.100.132.0/22 Signature Algorithm: sha256WithRSAEncryption 40:e6:21:08:a1:ea:76:42:6b:1e:3e:3f:e3:de:d2:c2:0d:97: 68:c2:09:9d:ac:36:13:ce:73:3f:dd:2c:cf:61:9b:94:07:3f: 48:ad:22:40:54:94:56:8d:ca:40:4b:ab:25:89:bd:46:6c:90: 27:2b:4d:46:8f:f6:1e:ae:ed:c7:19:3f:eb:6a:de:8f:d2:d6: 28:ba:0d:7d:97:94:43:29:d3:53:fe:1a:94:c3:d5:0b:df:e8: 00:3e:9a:e5:27:5e:8d:73:bc:9e:d1:90:85:0d:29:d2:8c:f9: 63:6b:b5:b0:5f:a9:d8:a4:0a:f0:c8:39:88:11:ec:1d:d0:8b: ee:5b:4e:ad:b3:9f:77:7e:ae:fb:be:96:19:76:9f:d3:1f:a1: 7b:4a:47:6c:5f:2e:68:bd:88:2e:db:1a:cf:5f:be:29:4d:50: 8a:d8:60:ea:24:26:f0:b8:81:93:86:5c:54:5b:5a:90:e7:c6: e1:95:f6:31:17:d1:f0:b0:c6:60:ed:27:3b:51:0d:ad:a5:dd: ca:61:a1:96:91:6d:de:1e:58:33:57:53:39:24:c2:ab:cb:71: ea:4a:e1:04:ad:52:69:86:d2:87:bc:3b:ba:e7:8e:66:be:7d: f2:b1:f4:13:60:6e:fc:61:2e:95:15:2e:ac:8c:40:de:4b:94: c6:ba:fb:43 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBIjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4QUY0 MjBGMTkyMDBFMTFCRTRBRThEOTE0RUJBMkFDQjQyOTE3QjZFMB4XDTI0MDUzMTAx MjkwNVoXDTI1MDUxNTAxMzAwM1owMzExMC8GA1UEAxMoMDQ2N0E1MEMyN0EyQzMy REY2QkJFODE1MEEwQzM5MzcxN0EyMDJENTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALVzYWLAaLpkYr8TTUzBjtN0+cm17ABjlZzdr0pn5BvNnbWVP0tk b9w8ExcMtDGyUEHrqjNMrrGDVO3ZDDJCW8KevIl3DYuaQ2fLYNeJ3LdbIgE7UIbJ L5zm2xmobqKr6FyaBGjfFJPJmmyA0aiz1O1lsPwdzVO6sYnnGR1dqtkwKg3gYx7v FZaU3evTaVZd3i85Xtb5l9R4WLXzvBYaHaKSoSs6VEuZGb9Xnn1YBm6YH+mZIKPi 7K4BIXsubJaN8wfoNnGFHY349WTpu9jrwTuc6VPq+x1qxHurbG54At9U6vldTqJb hks2cn1syZuaYRjSUTIbrKwuuHMuUk70BXsCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQEZ6UMJ6LDLfa76BUKDDk3F6IC1TAfBgNVHSMEGDAWgBSK9CDxkgDhG+SujZFO uirLQpF7bjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODg0L2l2UWc4WklBNFJ2a3JvMlJUcm9xeTBLUmUyNC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2l2UWc4WklBNFJ2a3JvMlJUcm9xeTBL UmUyNC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84ODQvQkdlbERDZWl3eTMydS1nVkNndzVOeGVpQXRVLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAttkhDANBgkqhkiG9w0BAQsFAAOCAQEAQOYhCKHqdkJrHj4/497Swg2XaMIJ naw2E85zP90sz2GblAc/SK0iQFSUVo3KQEurJYm9RmyQJytNRo/2Hq7txxk/62re j9LWKLoNfZeUQynTU/4alMPVC9/oAD6a5SdejXO8ntGQhQ0p0oz5Y2u1sF+p2KQK 8Mg5iBHsHdCL7ltOrbOfd36u+76WGXaf0x+he0pHbF8uaL2ILtsaz1++KU1Qithg 6iQm8LiBk4ZcVFtakOfG4ZX2MRfR8LDGYO0nO1ENraXdymGhlpFt3h5YM1dTOSTC q8tx6krhBK1SaYbSh7w7uueOZr598rH0E2Bu/GEulRUurIxA3kuUxrr7Qw== -----END CERTIFICATE-----Generated at Fri Nov 22 13:33:25 2024 by rpki-client on console-fra.rpki-client.org