$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/924/G_S0Gz3KTyh-MqzAOua6wLduGAI.roa File: G_S0Gz3KTyh-MqzAOua6wLduGAI.roa (raw, json) Hash identifier: 9XGjozh1G2Anp7EXh+cJlebAWIWL1XDMHThLmfGh8ck= Subject key identifier: 1B:F4:B4:1B:3D:CA:4F:28:7E:32:AC:C0:3A:E6:BA:C0:B7:6E:18:02 Certificate issuer: /CN=06A8484DF4FBAFE5C48D988A046B6AB6A81B2DF3 Certificate serial: 3C Authority key identifier: 06:A8:48:4D:F4:FB:AF:E5:C4:8D:98:8A:04:6B:6A:B6:A8:1B:2D:F3 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BqhITfT7r-XEjZiKBGtqtqgbLfM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/924/G_S0Gz3KTyh-MqzAOua6wLduGAI.roa Signing time: Tue 23 Jul 2024 10:30:46 +0000 ROA not before: Tue 23 Jul 2024 10:30:46 +0000 ROA not after: Tue 15 Jul 2025 01:30:02 +0000 asID: 16509 IP address blocks: 103.167.206.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/924/BqhITfT7r-XEjZiKBGtqtqgbLfM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/924/BqhITfT7r-XEjZiKBGtqtqgbLfM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BqhITfT7r-XEjZiKBGtqtqgbLfM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06A8484DF4FBAFE5C48D988A046B6AB6A81B2DF3 Validity Not Before: Jul 23 10:30:46 2024 GMT Not After : Jul 15 01:30:02 2025 GMT Subject: CN=1BF4B41B3DCA4F287E32ACC03AE6BAC0B76E1802 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:33:38:1e:82:83:e0:9d:76:92:29:d8:b7:42: b9:61:55:4d:fe:5b:92:43:43:4f:00:6e:2f:4d:63: 37:dc:9a:3f:c2:85:ac:f3:bd:8a:cc:50:d2:f5:a2: 60:69:09:cc:61:e1:2c:e3:e7:17:d0:13:6c:92:b9: 6b:69:69:95:9b:10:1d:47:d4:c4:1a:9b:7b:18:94: d2:c9:1d:a9:98:85:46:1c:cb:bb:71:35:59:0a:aa: 66:ab:64:4e:fd:44:a8:94:99:58:52:27:c5:de:27: c0:a7:38:72:26:5d:20:a9:80:70:8b:d0:29:99:c7: f7:c8:a0:69:43:e2:aa:0f:fd:6d:0b:f0:7c:55:33: 26:3c:d4:cf:31:b9:06:ca:62:8c:e8:47:6a:39:2f: 32:89:13:02:44:c1:22:ac:f7:d7:16:55:96:87:12: 26:d1:a8:1f:de:43:75:45:0a:5b:ef:7a:07:03:57: bc:6e:e2:50:48:aa:79:6e:47:81:88:a0:23:83:43: ba:bd:c0:9b:c3:30:ad:af:12:29:0a:0d:c6:d4:d1: ab:42:69:17:2d:da:6f:55:04:08:a6:3d:9f:2a:a5: f2:ae:5b:d1:78:a2:00:cb:13:30:8b:ef:d1:78:e4: f1:78:5a:a4:9e:8f:11:98:a5:93:93:c5:61:d1:b3: a7:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:F4:B4:1B:3D:CA:4F:28:7E:32:AC:C0:3A:E6:BA:C0:B7:6E:18:02 X509v3 Authority Key Identifier: keyid:06:A8:48:4D:F4:FB:AF:E5:C4:8D:98:8A:04:6B:6A:B6:A8:1B:2D:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/924/BqhITfT7r-XEjZiKBGtqtqgbLfM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BqhITfT7r-XEjZiKBGtqtqgbLfM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/924/G_S0Gz3KTyh-MqzAOua6wLduGAI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.206.0/23 Signature Algorithm: sha256WithRSAEncryption 74:0e:6a:5b:46:df:62:5c:bf:96:c2:a5:ed:4a:d2:61:da:7d: a8:15:25:4f:7a:d9:06:da:64:0a:cf:dc:96:ee:77:ed:5c:0e: 57:46:d5:4f:1b:d5:40:0f:22:30:ef:a3:a0:7b:1a:65:8d:ee: 97:b0:0e:c6:ee:47:ab:81:2d:4a:2f:a1:b6:56:42:d2:04:ff: 9e:ce:73:82:5f:fd:b9:a5:21:c5:0e:63:8c:dd:0b:29:b4:4f: 14:cf:02:08:31:07:6b:13:5d:8a:7e:b3:0b:d4:11:a0:2d:1c: d7:7c:a5:b9:7e:b8:e9:b3:73:b6:c1:fc:14:3b:7e:bf:75:0a: 77:b2:c7:e8:8b:52:a7:f9:8c:ff:b1:6b:90:f1:57:7a:8b:b0: d3:cc:61:c2:f1:af:d4:a7:3c:24:7b:d9:10:07:7c:4f:0a:b0: 4b:78:81:a2:ee:10:d9:a5:66:df:1b:6c:3a:9a:ff:c7:73:7c: 98:5e:b6:27:08:97:db:2e:ba:a0:ec:e7:9b:e2:b8:95:f3:12: d8:a5:bb:e4:08:07:b4:75:fe:19:a5:ce:ff:25:d9:7d:c6:69: 50:43:6c:bd:89:50:8a:5a:29:55:87:26:ab:41:90:f3:b0:37: 20:41:0d:77:7a:fe:dc:21:ed:04:64:04:ba:33:c6:28:38:00: f1:9c:2c:3a -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBPDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwNkE4 NDg0REY0RkJBRkU1QzQ4RDk4OEEwNDZCNkFCNkE4MUIyREYzMB4XDTI0MDcyMzEw MzA0NloXDTI1MDcxNTAxMzAwMlowMzExMC8GA1UEAxMoMUJGNEI0MUIzRENBNEYy ODdFMzJBQ0MwM0FFNkJBQzBCNzZFMTgwMjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAM8zOB6Cg+CddpIp2LdCuWFVTf5bkkNDTwBuL01jN9yaP8KFrPO9 isxQ0vWiYGkJzGHhLOPnF9ATbJK5a2lplZsQHUfUxBqbexiU0skdqZiFRhzLu3E1 WQqqZqtkTv1EqJSZWFInxd4nwKc4ciZdIKmAcIvQKZnH98igaUPiqg/9bQvwfFUz JjzUzzG5BspijOhHajkvMokTAkTBIqz31xZVlocSJtGoH95DdUUKW+96BwNXvG7i UEiqeW5HgYigI4NDur3Am8Mwra8SKQoNxtTRq0JpFy3ab1UECKY9nyql8q5b0Xii AMsTMIvv0Xjk8XhapJ6PEZilk5PFYdGzpwECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQb9LQbPcpPKH4yrMA65rrAt24YAjAfBgNVHSMEGDAWgBQGqEhN9Puv5cSNmIoE a2q2qBst8zAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTI0L0JxaElUZlQ3ci1YRWpaaUtCR3RxdHFnYkxmTS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0JxaElUZlQ3ci1YRWpaaUtCR3RxdHFn YkxmTS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85MjQvR19TMEd6M0tUeWgtTXF6QU91YTZ3TGR1R0FJLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAWenzjANBgkqhkiG9w0BAQsFAAOCAQEAdA5qW0bfYly/lsKl7UrSYdp9qBUl T3rZBtpkCs/clu537VwOV0bVTxvVQA8iMO+joHsaZY3ul7AOxu5Hq4EtSi+htlZC 0gT/ns5zgl/9uaUhxQ5jjN0LKbRPFM8CCDEHaxNdin6zC9QRoC0c13yluX646bNz tsH8FDt+v3UKd7LH6ItSp/mM/7FrkPFXeouw08xhwvGv1Kc8JHvZEAd8TwqwS3iB ou4Q2aVm3xtsOpr/x3N8mF62JwiX2y66oOznm+K4lfMS2KW75AgHtHX+GaXO/yXZ fcZpUENsvYlQilopVYcmq0GQ87A3IEENd3r+3CHtBGQEujPGKDgA8ZwsOg== -----END CERTIFICATE-----Generated at Sun Feb 16 15:49:33 2025 by rpki-client