$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/240/H1PoFYxyy8agoUsU2p5cbEkL5pc.roa File: H1PoFYxyy8agoUsU2p5cbEkL5pc.roa (raw, json) Hash identifier: CgoFs+VqW5AmRwCXCq3uPNw5dPPR0PA8EAwwCUdlCr0= Subject key identifier: 1F:53:E8:15:8C:72:CB:C6:A0:A1:4B:14:DA:9E:5C:6C:49:0B:E6:97 Certificate issuer: /CN=B96964A7CE0A58F4AE3673F47D7A1D425BE4A07D Certificate serial: 20 Authority key identifier: B9:69:64:A7:CE:0A:58:F4:AE:36:73:F4:7D:7A:1D:42:5B:E4:A0:7D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uWlkp84KWPSuNnP0fXodQlvkoH0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/H1PoFYxyy8agoUsU2p5cbEkL5pc.roa Signing time: Sat 03 Aug 2024 02:01:44 +0000 ROA not before: Sat 03 Aug 2024 02:01:44 +0000 ROA not after: Tue 15 Jul 2025 01:30:02 +0000 asID: 9597 IP address blocks: 27.34.160.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/uWlkp84KWPSuNnP0fXodQlvkoH0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/uWlkp84KWPSuNnP0fXodQlvkoH0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uWlkp84KWPSuNnP0fXodQlvkoH0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B96964A7CE0A58F4AE3673F47D7A1D425BE4A07D Validity Not Before: Aug 3 02:01:44 2024 GMT Not After : Jul 15 01:30:02 2025 GMT Subject: CN=1F53E8158C72CBC6A0A14B14DA9E5C6C490BE697 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:5e:90:28:44:65:96:2d:e7:ad:e3:5d:4e:fd: fd:05:27:00:0a:6c:48:7e:8e:a8:c2:4b:8a:84:a9: 7e:0a:05:68:06:fa:58:33:bb:d8:b4:79:a3:81:38: 2f:8f:2f:af:09:1f:c2:39:ff:2f:ae:fd:35:88:ab: 04:a6:3b:60:fc:27:da:48:f6:8b:76:eb:47:70:42: 28:b4:da:51:4c:06:bf:5e:d2:ab:a4:a0:c2:58:67: d5:a3:e2:76:55:1e:e4:a7:92:5c:eb:8a:48:9c:bb: 60:ac:b4:69:5e:4b:4f:13:c2:13:61:a5:d9:9e:2a: 32:82:0a:37:ef:47:be:11:d9:9f:2d:57:3a:94:c4: 4b:35:73:9d:cb:69:3e:c0:84:f9:a0:a9:52:57:22: a0:c4:e5:13:75:83:ae:b6:bf:d8:41:7c:27:8d:88: 04:7d:c0:b6:65:da:ff:b1:1f:e6:03:98:19:73:f8: b9:11:68:eb:b3:0b:09:e3:c4:25:b9:14:1f:4a:bf: 12:da:a7:aa:b2:c9:33:b8:e7:7d:12:60:3c:44:7e: 7f:d1:04:f1:7e:c6:4b:1b:38:76:1d:34:7e:02:da: f8:5c:b5:9c:ee:95:1e:9c:06:3e:76:dd:d0:c0:46: d3:87:e2:74:ea:b3:79:e9:96:ba:f7:8b:8e:6d:28: 20:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:53:E8:15:8C:72:CB:C6:A0:A1:4B:14:DA:9E:5C:6C:49:0B:E6:97 X509v3 Authority Key Identifier: keyid:B9:69:64:A7:CE:0A:58:F4:AE:36:73:F4:7D:7A:1D:42:5B:E4:A0:7D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/uWlkp84KWPSuNnP0fXodQlvkoH0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uWlkp84KWPSuNnP0fXodQlvkoH0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/H1PoFYxyy8agoUsU2p5cbEkL5pc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.34.160.0/21 Signature Algorithm: sha256WithRSAEncryption 39:b4:47:8e:aa:d7:c5:3d:8f:27:93:8b:af:c2:1b:7b:d4:57: 8c:48:ac:5e:ec:ac:f8:56:37:89:a5:41:4d:04:cf:17:5d:0d: 63:73:15:20:f0:ca:90:88:73:b4:c9:61:da:0f:3a:1a:0d:6c: 08:9c:ae:05:4a:82:4e:99:27:82:63:86:d6:b1:64:20:20:9b: a9:61:e2:93:19:5c:0d:70:e2:a2:4c:b4:5f:1f:5a:44:3a:fe: 58:60:71:69:30:f8:df:dc:03:a6:5b:e3:1e:83:70:28:f6:9c: 8b:d8:04:be:9c:1c:fd:26:81:1d:e3:56:2b:1b:29:5d:d0:c4: 2f:9e:47:8e:be:9f:ad:3d:d3:b5:55:0a:92:f7:d6:d1:8f:ef: 1b:e6:e3:1d:4c:ff:df:d1:0d:c8:70:d5:8b:b2:24:90:6d:6f: bf:e5:3e:4d:5c:37:b1:45:4b:7e:05:3b:7f:2a:38:3f:3a:60: 21:66:bf:54:20:5b:b4:c3:d5:41:dd:84:39:a8:06:a2:7a:41: 81:db:97:6f:18:05:5c:90:77:db:6f:e2:04:6a:eb:c1:f7:c1: e5:f8:87:67:50:75:34:64:26:02:2a:42:c2:fe:7e:fc:97:6d: df:fd:b4:73:43:02:5f:98:7c:b0:28:94:2a:03:ec:41:6f:1a: cd:7e:44:b1 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBIDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCOTY5 NjRBN0NFMEE1OEY0QUUzNjczRjQ3RDdBMUQ0MjVCRTRBMDdEMB4XDTI0MDgwMzAy MDE0NFoXDTI1MDcxNTAxMzAwMlowMzExMC8GA1UEAxMoMUY1M0U4MTU4QzcyQ0JD NkEwQTE0QjE0REE5RTVDNkM0OTBCRTY5NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKZekChEZZYt563jXU79/QUnAApsSH6OqMJLioSpfgoFaAb6WDO7 2LR5o4E4L48vrwkfwjn/L679NYirBKY7YPwn2kj2i3brR3BCKLTaUUwGv17Sq6Sg wlhn1aPidlUe5KeSXOuKSJy7YKy0aV5LTxPCE2Gl2Z4qMoIKN+9HvhHZny1XOpTE SzVznctpPsCE+aCpUlcioMTlE3WDrra/2EF8J42IBH3AtmXa/7Ef5gOYGXP4uRFo 67MLCePEJbkUH0q/EtqnqrLJM7jnfRJgPER+f9EE8X7GSxs4dh00fgLa+Fy1nO6V HpwGPnbd0MBG04fidOqzeemWuveLjm0oIDsCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQfU+gVjHLLxqChSxTanlxsSQvmlzAfBgNVHSMEGDAWgBS5aWSnzgpY9K42c/R9 eh1CW+SgfTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjQwL3VXbGtwODRLV1BTdU5uUDBmWG9kUWx2a29IMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3VXbGtwODRLV1BTdU5uUDBmWG9kUWx2 a29IMC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yNDAvSDFQb0ZZeHl5OGFnb1VzVTJwNWNiRWtMNXBjLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAxsioDANBgkqhkiG9w0BAQsFAAOCAQEAObRHjqrXxT2PJ5OLr8Ibe9RXjEis Xuys+FY3iaVBTQTPF10NY3MVIPDKkIhztMlh2g86Gg1sCJyuBUqCTpkngmOG1rFk ICCbqWHikxlcDXDioky0Xx9aRDr+WGBxaTD439wDplvjHoNwKPaci9gEvpwc/SaB HeNWKxspXdDEL55Hjr6frT3TtVUKkvfW0Y/vG+bjHUz/39ENyHDVi7IkkG1vv+U+ TVw3sUVLfgU7fyo4PzpgIWa/VCBbtMPVQd2EOagGonpBgduXbxgFXJB322/iBGrr wffB5fiHZ1B1NGQmAipCwv5+/Jdt3/20c0MCX5h8sCiUKgPsQW8azX5EsQ== -----END CERTIFICATE-----Generated at Sat Apr 5 17:42:19 2025 by rpki-client