$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20034/0EPxekVUdNCSgLAgYSGqiDWp45s.roa File: 0EPxekVUdNCSgLAgYSGqiDWp45s.roa (raw, json) Hash identifier: w6dP12HWTU8mG7boR3S9X6TF3CIzrG432kZ3nEcL6QY= Subject key identifier: D0:43:F1:7A:45:54:74:D0:92:80:B0:20:61:21:AA:88:35:A9:E3:9B Certificate issuer: /CN=8D62A86EAB39FC40E319BE7346F22CC8F5B191A3 Certificate serial: 34 Authority key identifier: 8D:62:A8:6E:AB:39:FC:40:E3:19:BE:73:46:F2:2C:C8:F5:B1:91:A3 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jWKobqs5_EDjGb5zRvIsyPWxkaM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20034/0EPxekVUdNCSgLAgYSGqiDWp45s.roa Signing time: Sat 30 Nov 2024 01:29:33 +0000 ROA not before: Sat 30 Nov 2024 01:29:33 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 131923 IP address blocks: 133.88.88.0/22 maxlen: 25 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20034/jWKobqs5_EDjGb5zRvIsyPWxkaM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20034/jWKobqs5_EDjGb5zRvIsyPWxkaM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jWKobqs5_EDjGb5zRvIsyPWxkaM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 20:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D62A86EAB39FC40E319BE7346F22CC8F5B191A3 Validity Not Before: Nov 30 01:29:33 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=D043F17A455474D09280B0206121AA8835A9E39B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:5a:cb:95:4d:09:26:0e:30:b7:59:9d:16:94: 7a:4b:83:a9:c0:74:51:82:74:d4:3b:34:ad:71:05: 65:46:ee:c2:cc:4d:a8:60:f0:a0:78:8c:46:08:e4: 1c:ce:6f:fd:60:3e:7a:e2:9f:c3:96:4e:4b:42:6c: 24:88:bf:f1:33:97:8a:1f:93:f6:14:75:65:09:6d: 6f:05:a7:c8:46:5b:f3:df:e7:88:37:b1:0d:84:83: 5c:0f:f0:7c:50:e3:4f:3d:52:45:70:d4:1e:8f:54: 4d:0a:f3:93:b6:d9:50:2f:da:a7:a0:09:7d:3d:fb: 84:db:4c:33:80:d4:67:92:7b:16:df:f4:90:8d:e6: a2:20:bd:e6:69:86:48:a9:6e:10:4a:ec:e5:ac:67: 2d:04:92:c0:8c:82:54:38:3b:17:4d:c2:6e:e0:0c: d2:22:1c:cc:ce:ca:ad:08:f7:21:81:87:5e:c9:75: b0:75:04:4c:f7:6d:4c:1b:55:d1:67:3b:1e:4d:cc: dd:90:36:14:45:c5:42:9a:49:02:24:6a:c6:48:1b: e1:69:37:dc:f2:a5:31:4f:c0:a7:10:00:2c:0d:e9: 60:df:1a:28:63:bc:11:a7:10:17:10:0e:74:37:62: 22:77:c2:a6:c3:b3:93:b1:18:c6:fd:c6:9d:bc:41: 43:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:43:F1:7A:45:54:74:D0:92:80:B0:20:61:21:AA:88:35:A9:E3:9B X509v3 Authority Key Identifier: keyid:8D:62:A8:6E:AB:39:FC:40:E3:19:BE:73:46:F2:2C:C8:F5:B1:91:A3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20034/jWKobqs5_EDjGb5zRvIsyPWxkaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jWKobqs5_EDjGb5zRvIsyPWxkaM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20034/0EPxekVUdNCSgLAgYSGqiDWp45s.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 133.88.88.0/22 Signature Algorithm: sha256WithRSAEncryption 72:c2:3a:98:15:db:db:0b:7e:e5:21:6a:1f:02:83:15:53:f1: 27:f6:14:48:88:70:04:1f:8a:d2:59:d4:88:bd:22:93:e1:e6: 32:12:0f:0a:b4:4d:18:b2:20:bf:4d:6d:55:30:6a:3b:69:a9: 40:2b:e9:dd:1d:ca:25:82:d6:60:d8:3e:b9:14:dd:a6:43:21: 97:ea:73:96:ea:5b:97:08:64:70:87:60:81:bd:81:e3:25:21: 16:53:84:58:cd:3d:72:eb:d7:0a:27:77:b6:55:10:5d:9d:8c: 4e:50:2c:29:c1:64:b0:fd:cd:fa:65:cb:ab:06:bf:e5:1c:47: 18:d8:43:d5:66:45:68:3c:dc:c9:dd:56:24:f2:7a:50:75:97: af:fa:e7:0b:bf:4e:76:31:a9:7d:91:63:88:86:ed:b1:d7:f6: 70:11:eb:fe:8e:fe:fd:b6:3b:d2:db:01:d5:f5:79:ad:13:dd: 95:2d:97:fd:c0:f7:0f:6b:7b:2a:d9:86:cf:b1:e8:7d:6c:57: c8:6d:ef:8c:94:9b:e2:ba:e9:97:58:0e:fa:a5:5c:74:5c:08: da:43:f5:c8:5a:67:7a:c7:df:23:a9:27:74:5a:60:f3:96:03: 52:ea:76:bb:fe:77:96:a2:ab:19:95:71:16:b1:6d:16:ba:a6: 44:59:6f:33 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBNDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4RDYy QTg2RUFCMzlGQzQwRTMxOUJFNzM0NkYyMkNDOEY1QjE5MUEzMB4XDTI0MTEzMDAx MjkzM1oXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoRDA0M0YxN0E0NTU0NzRE MDkyODBCMDIwNjEyMUFBODgzNUE5RTM5QjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMday5VNCSYOMLdZnRaUekuDqcB0UYJ01Ds0rXEFZUbuwsxNqGDw oHiMRgjkHM5v/WA+euKfw5ZOS0JsJIi/8TOXih+T9hR1ZQltbwWnyEZb89/niDex DYSDXA/wfFDjTz1SRXDUHo9UTQrzk7bZUC/ap6AJfT37hNtMM4DUZ5J7Ft/0kI3m oiC95mmGSKluEErs5axnLQSSwIyCVDg7F03CbuAM0iIczM7KrQj3IYGHXsl1sHUE TPdtTBtV0Wc7Hk3M3ZA2FEXFQppJAiRqxkgb4Wk33PKlMU/ApxAALA3pYN8aKGO8 EacQFxAOdDdiInfCpsOzk7EYxv3GnbxBQwUCAwEAAaOCAigwggIkMB0GA1UdDgQW BBTQQ/F6RVR00JKAsCBhIaqINanjmzAfBgNVHSMEGDAWgBSNYqhuqzn8QOMZvnNG 8izI9bGRozAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwMzQvaldLb2JxczVfRURqR2I1elJ2SXN5UFd4a2FNLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvaldLb2JxczVfRURqR2I1elJ2SXN5 UFd4a2FNLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMDM0LzBFUHhla1ZVZE5DU2dMQWdZU0dxaURXcDQ1cy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAKFWFgwDQYJKoZIhvcNAQELBQADggEBAHLCOpgV29sLfuUhah8CgxVT 8Sf2FEiIcAQfitJZ1Ii9IpPh5jISDwq0TRiyIL9NbVUwajtpqUAr6d0dyiWC1mDY PrkU3aZDIZfqc5bqW5cIZHCHYIG9geMlIRZThFjNPXLr1wond7ZVEF2djE5QLCnB ZLD9zfply6sGv+UcRxjYQ9VmRWg83MndViTyelB1l6/65wu/TnYxqX2RY4iG7bHX 9nAR6/6O/v22O9LbAdX1ea0T3ZUtl/3A9w9reyrZhs+x6H1sV8ht74yUm+K66ZdY DvqlXHRcCNpD9chaZ3rH3yOpJ3RaYPOWA1Lqdrv+d5aiqxmVcRaxbRa6pkRZbzM= -----END CERTIFICATE-----Generated at Wed Feb 19 22:33:43 2025 by rpki-client