$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/924/BEZM_cLB_pr8wj7vftaFLCyWbek.roa File: BEZM_cLB_pr8wj7vftaFLCyWbek.roa (raw, json) Hash identifier: a3KWm69Ucx7gVWwW6u/CJ4Vo+HVKKkaNiVESuZfoOps= Subject key identifier: 04:46:4C:FD:C2:C1:FE:9A:FC:C2:3E:EF:7E:D6:85:2C:2C:96:6D:E9 Certificate issuer: /CN=4C11E03B4B88F3B90ADB73173864F7005132484F Certificate serial: 32 Authority key identifier: 4C:11:E0:3B:4B:88:F3:B9:0A:DB:73:17:38:64:F7:00:51:32:48:4F Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/TBHgO0uI87kK23MXOGT3AFEySE8.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/924/BEZM_cLB_pr8wj7vftaFLCyWbek.roa Signing time: Wed 10 Apr 2024 05:59:46 +0000 ROA not before: Wed 10 Apr 2024 05:59:46 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 24284 IP address blocks: 157.112.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/924/TBHgO0uI87kK23MXOGT3AFEySE8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/924/TBHgO0uI87kK23MXOGT3AFEySE8.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/TBHgO0uI87kK23MXOGT3AFEySE8.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50 (0x32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4C11E03B4B88F3B90ADB73173864F7005132484F Validity Not Before: Apr 10 05:59:46 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=04464CFDC2C1FE9AFCC23EEF7ED6852C2C966DE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e0:a0:61:bc:5e:f7:11:22:79:7c:34:fc:3c: ad:bd:bb:51:77:50:aa:0a:f0:a1:6d:88:26:5d:0a: de:6a:60:86:29:14:1d:fb:9c:47:ad:52:9e:7b:de: 7a:96:4d:dc:8d:a1:6c:97:ac:e4:30:3f:14:b4:16: 1d:d1:f7:4e:c1:c5:45:84:77:87:74:12:96:43:be: bd:ac:c3:81:55:e0:f6:86:39:76:82:cd:b6:c7:90: 2b:ea:1d:ec:74:79:34:09:ca:81:da:ff:6c:9e:05: bf:9f:79:0c:d3:96:03:4f:20:73:14:6c:de:27:81: 1a:c8:7d:18:f6:28:e9:11:f3:36:c0:3f:dd:80:8c: 2f:59:f3:f0:c5:c3:41:0c:c9:4b:86:40:22:97:78: 48:ba:9d:fb:b6:61:3f:ee:f2:5d:02:30:49:68:00: a8:26:c5:63:9c:2c:f6:81:a6:0f:f2:db:1f:d8:2f: 7a:7a:5f:b3:8f:7f:b9:9c:7c:fe:8a:87:9c:4d:69: b1:9e:09:0d:8e:80:6a:17:67:a7:4d:df:88:a4:d0: 6c:9a:d9:31:cf:f5:f6:c7:57:79:20:ac:da:1e:4d: 45:4b:fa:b2:c6:74:da:88:e3:c7:d6:e6:19:11:cf: 7f:ce:0d:f8:ee:eb:77:1c:bb:6d:42:b5:7a:65:9e: ad:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:46:4C:FD:C2:C1:FE:9A:FC:C2:3E:EF:7E:D6:85:2C:2C:96:6D:E9 X509v3 Authority Key Identifier: keyid:4C:11:E0:3B:4B:88:F3:B9:0A:DB:73:17:38:64:F7:00:51:32:48:4F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/924/TBHgO0uI87kK23MXOGT3AFEySE8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/TBHgO0uI87kK23MXOGT3AFEySE8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/924/BEZM_cLB_pr8wj7vftaFLCyWbek.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.112.64.0/20 Signature Algorithm: sha256WithRSAEncryption 94:cc:81:fe:1c:18:c1:ed:61:5c:a1:c7:a1:7f:e1:57:3c:7b: 3a:81:96:ef:3d:2b:f1:fc:ef:99:96:bb:27:62:83:72:59:44: 6a:c1:f8:2e:da:f0:db:ae:af:ac:af:d6:1c:0b:db:ba:7d:dc: 36:20:d0:c3:18:2a:35:95:39:ce:cf:b1:21:17:c9:8d:8a:88: cc:58:4d:28:7a:1a:32:95:06:14:1c:50:f2:8f:0a:4c:aa:63: bd:09:7b:0f:5e:df:96:25:90:a9:93:a5:30:2b:09:6f:f7:61: 7c:bf:a1:93:c4:09:89:4c:b2:51:ab:57:c0:53:00:d0:b2:d6: d8:ce:f2:28:88:6b:38:4c:e4:53:c6:27:6c:c6:b5:22:03:3d: b8:39:32:d2:d7:88:df:12:68:3b:ac:72:c4:e6:79:e1:fe:95: b2:8f:df:71:05:d8:a4:12:42:ce:b6:58:a4:a9:cb:57:a5:45: 17:8a:a0:90:7c:96:1d:48:62:41:a1:6b:9c:5c:8b:25:a5:eb: 07:a0:ca:36:5a:e6:36:20:cf:e5:ea:e1:58:c9:07:9f:ae:19: 07:08:bb:c7:6c:77:af:45:86:e7:4c:2d:f7:31:e9:a9:50:25: bd:e0:99:75:42:f5:e0:ed:e7:9f:4c:8d:fb:fb:a5:62:66:71: f5:df:a5:27 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBMjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0QzEx RTAzQjRCODhGM0I5MEFEQjczMTczODY0RjcwMDUxMzI0ODRGMB4XDTI0MDQxMDA1 NTk0NloXDTI1MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoMDQ0NjRDRkRDMkMxRkU5 QUZDQzIzRUVGN0VENjg1MkMyQzk2NkRFOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMXgoGG8XvcRInl8NPw8rb27UXdQqgrwoW2IJl0K3mpghikUHfuc R61SnnveepZN3I2hbJes5DA/FLQWHdH3TsHFRYR3h3QSlkO+vazDgVXg9oY5doLN tseQK+od7HR5NAnKgdr/bJ4Fv595DNOWA08gcxRs3ieBGsh9GPYo6RHzNsA/3YCM L1nz8MXDQQzJS4ZAIpd4SLqd+7ZhP+7yXQIwSWgAqCbFY5ws9oGmD/LbH9gvenpf s49/uZx8/oqHnE1psZ4JDY6Aahdnp03fiKTQbJrZMc/19sdXeSCs2h5NRUv6ssZ0 2ojjx9bmGRHPf84N+O7rdxy7bUK1emWerdcCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQERkz9wsH+mvzCPu9+1oUsLJZt6TAfBgNVHSMEGDAWgBRMEeA7S4jzuQrbcxc4 ZPcAUTJITzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTI0L1RCSGdPMHVJODdrSzIzTVhPR1QzQUZFeVNFOC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1RCSGdPMHVJODdrSzIzTVhPR1QzQUZF eVNFOC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85MjQvQkVaTV9jTEJfcHI4d2o3dmZ0YUZMQ3lXYmVrLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBJ1wQDANBgkqhkiG9w0BAQsFAAOCAQEAlMyB/hwYwe1hXKHHoX/hVzx7OoGW 7z0r8fzvmZa7J2KDcllEasH4Ltrw266vrK/WHAvbun3cNiDQwxgqNZU5zs+xIRfJ jYqIzFhNKHoaMpUGFBxQ8o8KTKpjvQl7D17fliWQqZOlMCsJb/dhfL+hk8QJiUyy UatXwFMA0LLW2M7yKIhrOEzkU8YnbMa1IgM9uDky0teI3xJoO6xyxOZ54f6Vso/f cQXYpBJCzrZYpKnLV6VFF4qgkHyWHUhiQaFrnFyLJaXrB6DKNlrmNiDP5erhWMkH n64ZBwi7x2x3r0WG50wt9zHpqVAlveCZdUL14O3nn0yN+/ulYmZx9d+lJw== -----END CERTIFICATE-----Generated at Mon Nov 25 23:54:49 2024 by rpki-client on console-ams.rpki-client.org