$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10822/BKm8OJKK4C1kyY6yAOq7TRQjPP0.roa File: BKm8OJKK4C1kyY6yAOq7TRQjPP0.roa (raw, json) Hash identifier: Pc30sbf3YUSZQPlyKU7GT/DLrbEoI6NZv/2kFG9b+ko= Subject key identifier: 04:A9:BC:38:92:8A:E0:2D:64:C9:8E:B2:00:EA:BB:4D:14:23:3C:FD Certificate issuer: /CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Certificate serial: 0D Authority key identifier: 33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/BKm8OJKK4C1kyY6yAOq7TRQjPP0.roa Signing time: Mon 18 Mar 2024 01:41:37 +0000 ROA not before: Mon 18 Mar 2024 01:41:37 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 17698 IP address blocks: 117.18.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Validity Not Before: Mar 18 01:41:37 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=04A9BC38928AE02D64C98EB200EABB4D14233CFD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:de:de:70:9c:3f:03:ca:ce:25:50:cb:52:85: f9:6d:a2:a8:07:ce:c6:61:09:54:f6:ba:9f:ae:8a: f4:24:e8:cb:d8:fd:14:7f:cc:25:4c:63:19:13:05: 52:47:8f:c2:7f:7c:c8:4b:c6:7c:61:49:59:1e:13: d7:3b:ae:7c:7d:ff:81:f5:c7:22:6f:6f:30:2f:65: f9:35:03:82:c6:3c:aa:80:ad:aa:cf:19:6d:a4:37: 2e:07:85:36:12:a4:ee:35:70:35:a5:fd:e9:b4:ff: c6:37:3a:f7:37:57:e9:64:4b:ec:aa:c1:a9:fa:64: b9:ad:0c:ce:9c:82:ad:29:f2:5b:e8:0d:25:9f:f4: 75:6e:cf:d0:1a:af:86:2a:b0:ab:e2:bf:27:13:02: 91:7d:11:79:de:2a:aa:6f:c6:fe:11:1d:e6:d0:f9: 89:46:2f:b6:10:33:a6:f2:22:0e:75:af:db:a0:3a: 12:d5:af:fe:94:42:8f:e5:e8:2f:a6:84:9e:1b:b3: 58:25:9b:54:a7:8c:52:8e:cf:67:9a:02:3c:eb:e5: e2:53:7c:a4:9e:02:ed:63:58:4e:24:a1:81:5a:01: 78:1a:67:6f:f4:0e:66:b4:8a:12:09:3f:28:82:ff: 53:7c:d7:22:24:a2:ea:ca:26:cc:2b:77:a8:3c:e3: 8c:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:A9:BC:38:92:8A:E0:2D:64:C9:8E:B2:00:EA:BB:4D:14:23:3C:FD X509v3 Authority Key Identifier: keyid:33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/BKm8OJKK4C1kyY6yAOq7TRQjPP0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.18.208.0/20 Signature Algorithm: sha256WithRSAEncryption 9c:42:76:48:67:36:24:5f:15:31:b3:5d:65:35:55:cc:2e:99: 0c:6e:9e:1b:1e:5f:07:a9:36:d1:35:32:57:f4:d9:b6:9f:b2: 40:a4:42:5f:a5:f8:d8:55:69:52:67:cd:f3:2e:79:cf:df:4f: 1a:de:93:18:38:de:d3:2d:6d:a4:fa:39:e8:9c:61:28:81:b0: 67:6e:ea:bb:97:5b:ea:8f:56:36:03:fd:59:86:00:6d:08:01: ff:25:82:b4:c6:6b:0e:99:d7:62:b9:08:86:00:d0:c4:8b:cc: 78:8f:bc:66:79:ce:65:20:ce:4b:a6:47:a0:b9:89:0a:4a:21: 8e:68:74:15:71:fd:1b:58:e8:ed:97:16:e0:f8:14:82:75:82: 91:a9:7f:aa:b1:f2:e7:2d:1b:fe:94:5a:b0:1e:6f:05:ce:80: 05:d3:7a:cb:94:40:84:d7:e0:96:56:46:4f:0a:fc:21:78:35: 82:f3:a4:d4:e4:70:b8:09:dc:84:4e:52:26:eb:09:3e:0e:ad: 21:96:35:90:21:af:fe:b2:51:09:81:9e:bc:48:e1:06:e9:4d: ee:b8:19:fa:33:1f:e4:46:ad:97:d2:3b:c0:09:2d:fd:10:f6: 94:14:6b:68:c7:d4:90:b2:05:15:2f:94:66:8e:5c:35:2f:14: a0:84:d6:08 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBDTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzM0RG OUIyNEY1M0JCQ0FDMzQ3QkE1QjVBOEM0OUJGRjQxNjY2QTI2MB4XDTI0MDMxODAx NDEzN1oXDTI1MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoMDRBOUJDMzg5MjhBRTAy RDY0Qzk4RUIyMDBFQUJCNEQxNDIzM0NGRDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANje3nCcPwPKziVQy1KF+W2iqAfOxmEJVPa6n66K9CToy9j9FH/M JUxjGRMFUkePwn98yEvGfGFJWR4T1zuufH3/gfXHIm9vMC9l+TUDgsY8qoCtqs8Z baQ3LgeFNhKk7jVwNaX96bT/xjc69zdX6WRL7KrBqfpkua0MzpyCrSnyW+gNJZ/0 dW7P0Bqvhiqwq+K/JxMCkX0Red4qqm/G/hEd5tD5iUYvthAzpvIiDnWv26A6EtWv /pRCj+XoL6aEnhuzWCWbVKeMUo7PZ5oCPOvl4lN8pJ4C7WNYTiShgVoBeBpnb/QO ZrSKEgk/KIL/U3zXIiSi6somzCt3qDzjjPkCAwEAAaOCAigwggIkMB0GA1UdDgQW BBQEqbw4korgLWTJjrIA6rtNFCM8/TAfBgNVHSMEGDAWgBQz35sk9Tu8rDR7pbWo xJv/QWZqJjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTA4MjIvTTktYkpQVTd2S3cwZTZXMXFNU2JfMEZtYWlZLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvTTktYkpQVTd2S3cwZTZXMXFNU2Jf MEZtYWlZLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzEwODIyL0JLbThPSktLNEMxa3lZNnlBT3E3VFJRalBQMC5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAR1EtAwDQYJKoZIhvcNAQELBQADggEBAJxCdkhnNiRfFTGzXWU1Vcwu mQxunhseXwepNtE1Mlf02bafskCkQl+l+NhVaVJnzfMuec/fTxrekxg43tMtbaT6 OeicYSiBsGdu6ruXW+qPVjYD/VmGAG0IAf8lgrTGaw6Z12K5CIYA0MSLzHiPvGZ5 zmUgzkumR6C5iQpKIY5odBVx/RtY6O2XFuD4FIJ1gpGpf6qx8uctG/6UWrAebwXO gAXTesuUQITX4JZWRk8K/CF4NYLzpNTkcLgJ3IROUibrCT4OrSGWNZAhr/6yUQmB nrxI4QbpTe64GfozH+RGrZfSO8AJLf0Q9pQUa2jH1JCyBRUvlGaOXDUvFKCE1gg= -----END CERTIFICATE-----Generated at Sun Feb 16 22:07:27 2025 by rpki-client