$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10822/TbKR-h-X0tTN2j8dZU2WLMpSzZs.roa File: TbKR-h-X0tTN2j8dZU2WLMpSzZs.roa (raw, json) Hash identifier: qBTHV9EEcYllNHr3m99RuSuutrP+IwsoAcAIbQq2yzs= Subject key identifier: 4D:B2:91:FA:1F:97:D2:D4:CD:DA:3F:1D:65:4D:96:2C:CA:52:CD:9B Certificate issuer: /CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Certificate serial: 18 Authority key identifier: 33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/TbKR-h-X0tTN2j8dZU2WLMpSzZs.roa Signing time: Mon 18 Mar 2024 05:17:44 +0000 ROA not before: Mon 18 Mar 2024 05:17:44 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 17698 IP address blocks: 203.174.192.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Validity Not Before: Mar 18 05:17:44 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=4DB291FA1F97D2D4CDDA3F1D654D962CCA52CD9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f5:bf:f8:28:62:ac:57:dc:ba:ce:53:94:cc: cd:5b:58:cc:8f:f8:39:69:a4:65:bd:04:68:7a:95: 25:ae:63:e4:ee:40:07:6c:46:00:6f:9a:21:22:3d: cf:21:3b:d5:e2:de:25:86:10:65:30:a5:16:93:13: c3:0f:ab:3b:88:04:a5:c6:4f:0d:f2:60:91:2b:98: 9f:da:01:a6:f6:50:b6:a9:a4:79:b2:5b:35:7c:72: d8:31:b8:05:7e:30:16:6e:64:12:c6:6f:95:18:0c: 95:e4:05:1d:1c:d3:f1:85:dd:5e:8b:9f:4c:25:4a: 09:fa:7c:32:3f:76:c2:25:45:69:8d:10:3f:c9:4e: 0a:ae:2c:8e:10:64:c7:ae:37:86:b5:89:65:aa:4e: 27:2f:b0:dd:b2:aa:00:a1:1c:88:2e:9c:ef:fb:b1: ed:0d:a5:c5:9c:44:2a:bf:de:56:8c:13:01:12:9a: 85:7f:ad:3b:53:c1:aa:19:dc:9e:74:ae:b6:6b:7d: 0d:11:52:09:5c:37:b3:61:cd:da:ee:90:81:ec:8a: 82:d2:8c:a2:d6:fe:aa:18:14:2c:39:98:13:23:9f: 99:d0:e7:14:21:f4:9c:dc:12:12:71:2a:6f:52:1e: ee:97:ab:44:12:5a:fc:0e:41:e7:44:ad:2a:53:a6: 68:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:B2:91:FA:1F:97:D2:D4:CD:DA:3F:1D:65:4D:96:2C:CA:52:CD:9B X509v3 Authority Key Identifier: keyid:33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/TbKR-h-X0tTN2j8dZU2WLMpSzZs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.174.192.0/19 Signature Algorithm: sha256WithRSAEncryption d9:b2:dc:f2:c0:4d:8c:35:53:7a:27:df:af:df:b5:dc:74:ff: 1e:ca:0e:d5:29:c0:99:b9:5f:60:64:1f:d4:c3:df:7e:57:b8: aa:4d:44:da:ca:65:ad:fd:72:ff:7b:dc:17:56:76:49:0d:bb: b8:7e:fa:45:3c:da:3e:62:a1:65:db:17:02:33:b9:40:b0:05: dd:46:95:08:e7:3e:3d:45:db:87:62:f2:91:42:f1:d1:3e:11: 30:29:d1:62:e6:c3:2a:5c:42:86:2f:27:05:df:8d:70:e6:e0: 3f:9c:c5:f5:6f:70:8c:1f:fc:90:41:e1:02:ad:51:d6:86:2d: 8b:9f:80:b5:cc:ed:8b:4b:48:57:7c:46:0b:99:ea:96:c5:b1: cd:08:db:d9:4e:47:91:1a:cb:8e:22:3a:81:ca:7f:e8:17:d3: cf:c2:77:e1:9e:17:6d:9f:6b:ec:37:6b:26:39:de:f3:49:e8: eb:13:5a:53:ba:8e:7d:37:42:45:86:90:b7:3e:9e:06:63:4b: 2a:8f:61:96:b7:cf:ae:8d:0b:a0:b7:90:51:05:fc:61:c0:1d: d4:6c:c1:7e:44:66:2d:af:62:85:5c:51:40:1e:10:4d:ab:e5: 16:53:0b:ee:a4:5f:18:41:4b:9b:30:95:4c:bd:c0:d3:71:97: 4a:87:5a:f3 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBGDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzM0RG OUIyNEY1M0JCQ0FDMzQ3QkE1QjVBOEM0OUJGRjQxNjY2QTI2MB4XDTI0MDMxODA1 MTc0NFoXDTI1MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoNERCMjkxRkExRjk3RDJE NENEREEzRjFENjU0RDk2MkNDQTUyQ0Q5QjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALj1v/goYqxX3LrOU5TMzVtYzI/4OWmkZb0EaHqVJa5j5O5AB2xG AG+aISI9zyE71eLeJYYQZTClFpMTww+rO4gEpcZPDfJgkSuYn9oBpvZQtqmkebJb NXxy2DG4BX4wFm5kEsZvlRgMleQFHRzT8YXdXoufTCVKCfp8Mj92wiVFaY0QP8lO Cq4sjhBkx643hrWJZapOJy+w3bKqAKEciC6c7/ux7Q2lxZxEKr/eVowTARKahX+t O1PBqhncnnSutmt9DRFSCVw3s2HN2u6QgeyKgtKMotb+qhgULDmYEyOfmdDnFCH0 nNwSEnEqb1Ie7perRBJa/A5B50StKlOmaFECAwEAAaOCAigwggIkMB0GA1UdDgQW BBRNspH6H5fS1M3aPx1lTZYsylLNmzAfBgNVHSMEGDAWgBQz35sk9Tu8rDR7pbWo xJv/QWZqJjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTA4MjIvTTktYkpQVTd2S3cwZTZXMXFNU2JfMEZtYWlZLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvTTktYkpQVTd2S3cwZTZXMXFNU2Jf MEZtYWlZLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzEwODIyL1RiS1ItaC1YMHRUTjJqOGRaVTJXTE1wU3pacy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAXLrsAwDQYJKoZIhvcNAQELBQADggEBANmy3PLATYw1U3on36/ftdx0 /x7KDtUpwJm5X2BkH9TD335XuKpNRNrKZa39cv973BdWdkkNu7h++kU82j5ioWXb FwIzuUCwBd1GlQjnPj1F24di8pFC8dE+ETAp0WLmwypcQoYvJwXfjXDm4D+cxfVv cIwf/JBB4QKtUdaGLYufgLXM7YtLSFd8RguZ6pbFsc0I29lOR5Eay44iOoHKf+gX 08/Cd+GeF22fa+w3ayY53vNJ6OsTWlO6jn03QkWGkLc+ngZjSyqPYZa3z66NC6C3 kFEF/GHAHdRswX5EZi2vYoVcUUAeEE2r5RZTC+6kXxhBS5swlUy9wNNxl0qHWvM= -----END CERTIFICATE-----Generated at Sun Feb 16 22:24:49 2025 by rpki-client