$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/DkEmwS-Eo03_2EWxYV_oT9d_t_A.roa File: DkEmwS-Eo03_2EWxYV_oT9d_t_A.roa (raw, json) Hash identifier: oWw9xJJqzNWLBVwouH3GWHLQ4l18l2t338PR8d/qQhE= Subject key identifier: 0E:41:26:C1:2F:84:A3:4D:FF:D8:45:B1:61:5F:E8:4F:D7:7F:B7:F0 Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 01A4 Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/DkEmwS-Eo03_2EWxYV_oT9d_t_A.roa Signing time: Sun 31 Mar 2024 01:29:01 +0000 ROA not before: Sun 31 Mar 2024 01:29:01 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 4713 IP address blocks: 27.114.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 420 (0x1a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: Mar 31 01:29:01 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=0E4126C12F84A34DFFD845B1615FE84FD77FB7F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:49:bc:3d:55:8b:b5:b6:de:b5:07:8e:7c:ec: 10:22:c7:bf:d9:12:86:6c:7e:3f:53:41:cf:9e:f2: f0:b3:ca:83:7e:ad:ae:7d:e9:06:da:3c:bd:c5:1b: 7a:91:2a:6d:a7:d9:c8:3f:fd:28:e0:f0:10:45:63: 72:99:30:55:f8:4c:8a:0b:af:48:9b:be:1b:36:b5: 9c:78:d9:96:1a:c9:f0:e4:f2:23:1b:df:a0:1c:17: a4:cd:c1:a2:8d:ce:b9:5a:a3:6a:af:5c:a2:a0:3d: 68:d9:88:44:69:8f:49:09:f0:0a:25:9e:0e:6a:b6: 73:c3:67:4e:57:e4:2d:b3:99:29:56:c2:c2:41:f2: 83:9f:d9:6a:9b:20:eb:08:8d:b2:0e:be:de:62:5e: 0d:6e:c0:27:2c:cf:da:4f:c6:0b:32:79:25:ee:80: 80:77:1e:d8:1f:10:42:ff:33:be:e3:de:38:70:c8: 5f:ba:3a:f7:0e:4e:1d:d4:6d:2b:cc:ad:99:8b:e1: 0f:c7:c7:1d:d6:f4:f9:3f:34:e7:60:3c:6a:01:6d: 40:11:21:6b:78:fc:ca:6e:59:ed:c2:a8:2b:42:a6: 98:2e:8f:9c:0f:15:29:ad:f2:24:5e:93:6d:65:d1: 80:b3:4d:98:12:69:84:fc:e3:9c:08:b3:04:5a:ff: 66:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:41:26:C1:2F:84:A3:4D:FF:D8:45:B1:61:5F:E8:4F:D7:7F:B7:F0 X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/DkEmwS-Eo03_2EWxYV_oT9d_t_A.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.114.0.0/17 Signature Algorithm: sha256WithRSAEncryption a7:69:cd:c4:6a:63:b2:9e:05:4c:42:f2:b0:98:88:3b:bf:e8: eb:35:d5:2d:30:6d:29:59:f6:e1:90:56:ee:7d:4d:b9:1b:55: f4:35:ce:16:6c:c9:3c:a0:6d:e9:7a:30:44:8b:3c:c5:14:43: 35:4a:35:d2:0a:38:ea:f0:64:dd:74:e1:91:40:6a:d4:c0:ba: 95:53:e1:fb:43:d3:a5:f4:1d:f1:66:b6:cb:18:cb:de:12:1d: f2:1f:64:8b:f8:ab:43:5d:40:73:44:00:c2:6a:79:e5:d2:cc: cf:ad:7a:02:72:38:e9:46:5c:68:20:21:00:a9:62:ba:d6:09: 71:bc:d0:3f:3f:c2:30:a6:60:85:10:70:9d:8c:39:1c:37:39: a4:f5:23:17:3a:10:f2:73:27:87:17:d0:b5:2b:12:12:b4:b4: 1e:0b:b6:5d:da:a8:b5:c2:9a:c5:d0:b9:e9:9b:94:f5:17:e1: b2:98:2d:10:b9:b1:c1:d8:67:d2:1e:eb:8d:76:0c:19:3a:62: 62:65:07:0a:1b:db:65:6c:a1:da:8d:09:b8:61:88:ea:f0:f2: aa:93:d4:69:03:e4:46:4a:9b:d5:94:1f:58:82:a8:c1:3d:2d: 8e:5d:1c:b0:91:cb:b6:cd:65:6d:6f:9d:db:30:9e:89:f5:b2: f3:8e:aa:1f -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAaQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNDAzMzEw MTI5MDFaFw0yNTAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDBFNDEyNkMxMkY4NEEz NERGRkQ4NDVCMTYxNUZFODRGRDc3RkI3RjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4Sbw9VYu1tt61B4587BAix7/ZEoZsfj9TQc+e8vCzyoN+ra59 6QbaPL3FG3qRKm2n2cg//Sjg8BBFY3KZMFX4TIoLr0ibvhs2tZx42ZYayfDk8iMb 36AcF6TNwaKNzrlao2qvXKKgPWjZiERpj0kJ8Aolng5qtnPDZ05X5C2zmSlWwsJB 8oOf2WqbIOsIjbIOvt5iXg1uwCcsz9pPxgsyeSXugIB3HtgfEEL/M77j3jhwyF+6 OvcOTh3UbSvMrZmL4Q/Hxx3W9Pk/NOdgPGoBbUARIWt4/MpuWe3CqCtCppguj5wP FSmt8iRek21l0YCzTZgSaYT845wIswRa/2aBAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUDkEmwS+Eo03/2EWxYV/oT9d/t/AwHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTMxL0RrRW13Uy1FbzAzXzJFV3hZVl9vVDlkX3RfQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcbcgAwDQYJKoZIhvcNAQELBQADggEBAKdpzcRqY7KeBUxC8rCYiDu/6Os1 1S0wbSlZ9uGQVu59TbkbVfQ1zhZsyTygbel6MESLPMUUQzVKNdIKOOrwZN104ZFA atTAupVT4ftD06X0HfFmtssYy94SHfIfZIv4q0NdQHNEAMJqeeXSzM+tegJyOOlG XGggIQCpYrrWCXG80D8/wjCmYIUQcJ2MORw3OaT1Ixc6EPJzJ4cX0LUrEhK0tB4L tl3aqLXCmsXQuemblPUX4bKYLRC5scHYZ9Ie6412DBk6YmJlBwob22VsodqNCbhh iOrw8qqT1GkD5EZKm9WUH1iCqME9LY5dHLCRy7bNZW1vndswnon1svOOqh8= -----END CERTIFICATE-----Generated at Sun Feb 16 22:12:18 2025 by rpki-client