$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/955/Nd25uVUfG4HjFC8sj5NU4UlJd-g.roa File: Nd25uVUfG4HjFC8sj5NU4UlJd-g.roa (raw, json) Hash identifier: 02VweOKg5dB+MM975+CFv4hIM4cjvxoDCz8WMYXbhGM= Subject key identifier: 35:DD:B9:B9:55:1F:1B:81:E3:14:2F:2C:8F:93:54:E1:49:49:77:E8 Certificate issuer: /CN=0BBCA90DCB80D622B18884EA1E0B3B7D40C61C52 Certificate serial: 31 Authority key identifier: 0B:BC:A9:0D:CB:80:D6:22:B1:88:84:EA:1E:0B:3B:7D:40:C6:1C:52 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/C7ypDcuA1iKxiITqHgs7fUDGHFI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/955/Nd25uVUfG4HjFC8sj5NU4UlJd-g.roa Signing time: Thu 31 Oct 2024 01:28:28 +0000 ROA not before: Thu 31 Oct 2024 01:28:28 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 55385 IP address blocks: 202.213.64.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/955/C7ypDcuA1iKxiITqHgs7fUDGHFI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/955/C7ypDcuA1iKxiITqHgs7fUDGHFI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/C7ypDcuA1iKxiITqHgs7fUDGHFI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BBCA90DCB80D622B18884EA1E0B3B7D40C61C52 Validity Not Before: Oct 31 01:28:28 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=35DDB9B9551F1B81E3142F2C8F9354E1494977E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:d7:d1:11:3b:f6:93:cb:57:c7:1e:a4:42:a1: 46:89:38:3e:32:75:af:15:35:cd:2e:3a:ea:82:f8: 70:f0:ae:6b:e8:ab:12:d8:c1:69:1b:bc:ba:8a:36: 55:4a:c7:29:2a:a1:ee:21:b4:38:1b:36:12:35:36: a8:12:99:80:ad:49:b0:4b:96:a7:a7:ba:12:ff:f5: 4c:c9:31:51:5b:d8:8c:ee:2a:bb:3d:47:1d:3c:da: d4:c7:00:9d:28:c8:ca:85:2e:4e:1e:cd:05:37:86: 16:70:aa:e8:52:0b:6c:04:5d:1c:12:54:ec:31:b7: d4:52:42:02:a0:c0:86:e0:22:bc:59:a1:93:20:86: 94:67:72:31:52:27:13:3f:96:e8:8a:7f:86:f1:e3: f6:01:44:34:92:42:51:dc:7e:1a:b7:62:3b:bf:4b: 65:f2:f7:da:27:44:16:b9:79:80:64:42:46:83:de: e5:45:7e:e1:87:65:9f:49:a2:2c:0e:09:73:1d:9a: 59:69:ee:83:17:d1:f8:c0:f9:78:3a:58:0f:04:7a: c0:c7:cd:99:68:47:1b:98:30:6e:2b:b2:f1:13:40: 27:41:1f:0b:b9:dc:a7:2f:b4:0b:9f:22:6e:bf:de: ff:46:60:87:cf:25:ea:0a:0a:3f:5d:ca:d8:b6:77: 75:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:DD:B9:B9:55:1F:1B:81:E3:14:2F:2C:8F:93:54:E1:49:49:77:E8 X509v3 Authority Key Identifier: keyid:0B:BC:A9:0D:CB:80:D6:22:B1:88:84:EA:1E:0B:3B:7D:40:C6:1C:52 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/955/C7ypDcuA1iKxiITqHgs7fUDGHFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/C7ypDcuA1iKxiITqHgs7fUDGHFI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/955/Nd25uVUfG4HjFC8sj5NU4UlJd-g.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.213.64.0/21 Signature Algorithm: sha256WithRSAEncryption b3:14:8c:ca:37:0d:6b:63:a5:99:d9:76:3b:58:2b:3e:05:c1: 45:ba:12:39:6b:d9:45:81:57:7b:53:ac:cf:76:e4:85:4b:f2: 1f:f5:b6:5f:6f:01:61:ac:20:76:3f:1d:f9:b8:13:91:c9:80: d0:9f:7d:cd:a3:89:ba:11:a2:24:6e:37:ea:a8:a5:7f:fb:5f: 83:d8:be:7a:eb:11:8b:c2:2a:c1:4d:01:7d:8c:1f:5a:0e:dd: df:21:7d:d2:91:86:57:e7:ed:3c:ce:b7:15:ae:3d:a7:ea:bf: f3:30:c1:a5:d8:3d:65:08:ce:5a:a5:ee:35:1f:06:71:75:b5: 53:be:d0:43:2f:7c:1b:06:e0:a9:30:5e:fe:c6:9b:64:1f:e0: 3f:cd:f9:94:89:99:73:2d:8c:24:ad:7d:8b:c7:37:66:08:05: 9f:9e:ae:03:f7:f5:87:38:c2:70:a8:c3:02:df:4e:ab:c9:8c: 6b:40:bd:aa:0f:d4:56:7e:be:a9:91:48:63:e1:6b:34:83:e1: 6a:ac:2f:14:eb:33:ff:3f:de:38:04:d6:f9:4c:6d:ac:ed:5b: ec:58:94:19:62:46:55:81:f9:3e:41:d7:98:92:db:a8:79:b4: 43:6b:81:99:4a:71:65:90:05:88:b4:f6:90:93:d4:b5:d7:73: 0e:3d:07:7c -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBMTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwQkJD QTkwRENCODBENjIyQjE4ODg0RUExRTBCM0I3RDQwQzYxQzUyMB4XDTI0MTAzMTAx MjgyOFoXDTI1MTAxNTAxMzAwMlowMzExMC8GA1UEAxMoMzVEREI5Qjk1NTFGMUI4 MUUzMTQyRjJDOEY5MzU0RTE0OTQ5NzdFODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKPX0RE79pPLV8cepEKhRok4PjJ1rxU1zS466oL4cPCua+irEtjB aRu8uoo2VUrHKSqh7iG0OBs2EjU2qBKZgK1JsEuWp6e6Ev/1TMkxUVvYjO4quz1H HTza1McAnSjIyoUuTh7NBTeGFnCq6FILbARdHBJU7DG31FJCAqDAhuAivFmhkyCG lGdyMVInEz+W6Ip/hvHj9gFENJJCUdx+GrdiO79LZfL32idEFrl5gGRCRoPe5UV+ 4Ydln0miLA4Jcx2aWWnugxfR+MD5eDpYDwR6wMfNmWhHG5gwbiuy8RNAJ0EfC7nc py+0C58ibr/e/0Zgh88l6goKP13K2LZ3dXcCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQ13bm5VR8bgeMULyyPk1ThSUl36DAfBgNVHSMEGDAWgBQLvKkNy4DWIrGIhOoe Czt9QMYcUjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTU1L0M3eXBEY3VBMWlLeGlJVHFIZ3M3ZlVER0hGSS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0M3eXBEY3VBMWlLeGlJVHFIZ3M3ZlVE R0hGSS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85NTUvTmQyNXVWVWZHNEhqRkM4c2o1TlU0VWxKZC1nLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA8rVQDANBgkqhkiG9w0BAQsFAAOCAQEAsxSMyjcNa2Olmdl2O1grPgXBRboS OWvZRYFXe1Osz3bkhUvyH/W2X28BYawgdj8d+bgTkcmA0J99zaOJuhGiJG436qil f/tfg9i+eusRi8IqwU0BfYwfWg7d3yF90pGGV+ftPM63Fa49p+q/8zDBpdg9ZQjO WqXuNR8GcXW1U77QQy98GwbgqTBe/sabZB/gP835lImZcy2MJK19i8c3ZggFn56u A/f1hzjCcKjDAt9Oq8mMa0C9qg/UVn6+qZFIY+FrNIPhaqwvFOsz/z/eOATW+Uxt rO1b7FiUGWJGVYH5PkHXmJLbqHm0Q2uBmUpxZZAFiLT2kJPUtddzDj0HfA== -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:07 2024 by rpki-client on console-fra.rpki-client.org