$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20062/cEs_AIJC_DzlBAp--RDWYNLtbtQ.roa File: cEs_AIJC_DzlBAp--RDWYNLtbtQ.roa (raw, json) Hash identifier: zF2FpLZKBxfqB/LT6rNArDt/Q/IKC89hJgvgOnD2V5U= Subject key identifier: 70:4B:3F:00:82:42:FC:3C:E5:04:0A:7E:F9:10:D6:60:D2:ED:6E:D4 Certificate issuer: /CN=938067C25BCA7D1385BD36C482858F830B5A6E3A Certificate serial: 2F Authority key identifier: 93:80:67:C2:5B:CA:7D:13:85:BD:36:C4:82:85:8F:83:0B:5A:6E:3A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/k4BnwlvKfROFvTbEgoWPgwtabjo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20062/cEs_AIJC_DzlBAp--RDWYNLtbtQ.roa Signing time: Sat 31 Aug 2024 01:33:45 +0000 ROA not before: Sat 31 Aug 2024 01:33:45 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 131929 IP address blocks: 133.247.224.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20062/k4BnwlvKfROFvTbEgoWPgwtabjo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20062/k4BnwlvKfROFvTbEgoWPgwtabjo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/k4BnwlvKfROFvTbEgoWPgwtabjo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=938067C25BCA7D1385BD36C482858F830B5A6E3A Validity Not Before: Aug 31 01:33:45 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=704B3F008242FC3CE5040A7EF910D660D2ED6ED4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d5:43:27:53:9a:0f:52:4b:3b:c0:c6:37:b7: 5c:21:c5:04:df:45:e8:dc:80:a8:80:e5:d0:cd:c1: 61:ec:11:6a:85:76:07:5a:c8:ad:13:81:3a:5f:15: cd:c6:2e:47:0e:7a:85:5e:64:56:ff:94:ce:20:d7: 60:6b:42:01:18:f8:c6:c0:4f:b3:6b:8f:f3:3a:c9: de:e6:00:41:de:06:88:21:f9:e8:f3:06:04:40:d1: 02:ab:f5:6f:c1:2c:2a:95:a9:34:d2:53:46:9e:8f: be:bc:98:31:f4:df:b4:7c:a3:28:f1:34:05:04:aa: 34:97:eb:e2:96:61:3c:7c:44:75:c8:1c:2f:9d:2f: 7f:99:e3:ce:d0:91:41:d0:59:ac:82:5d:a5:1c:69: 75:4f:e1:ad:2a:a2:18:ed:6a:be:a7:3c:b0:8a:6b: 01:8c:15:b2:50:e6:17:09:2b:b1:c3:37:30:38:6a: 2c:04:59:13:19:80:d7:21:f8:d8:c3:dc:27:c9:b4: 85:c4:8f:1e:03:34:8c:6c:6a:b4:78:f8:b7:fa:ce: e6:d1:a4:4a:bb:08:c0:f2:d7:00:c5:5d:f4:0b:a8: b0:00:6e:9b:11:a8:f1:39:43:6e:a1:44:c4:00:4f: 93:3f:bf:b6:bd:b6:6c:c1:72:4f:8b:f5:a1:0c:bc: be:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:4B:3F:00:82:42:FC:3C:E5:04:0A:7E:F9:10:D6:60:D2:ED:6E:D4 X509v3 Authority Key Identifier: keyid:93:80:67:C2:5B:CA:7D:13:85:BD:36:C4:82:85:8F:83:0B:5A:6E:3A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20062/k4BnwlvKfROFvTbEgoWPgwtabjo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/k4BnwlvKfROFvTbEgoWPgwtabjo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20062/cEs_AIJC_DzlBAp--RDWYNLtbtQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 133.247.224.0/21 Signature Algorithm: sha256WithRSAEncryption 81:d4:1b:f3:f5:20:7f:95:2b:09:36:6c:5a:54:fc:7a:73:e0: 88:8a:37:f8:ce:ac:f8:ed:36:5c:f9:7d:87:55:ea:5e:8a:f2: 69:9b:bc:fa:6c:9f:b2:80:30:0d:6d:ee:06:8a:ae:d8:11:df: 47:f8:fd:1f:29:5b:f4:73:44:7b:75:1b:1d:18:3d:5e:d2:29: 75:c9:3e:08:cb:aa:b7:39:bc:99:91:7b:21:65:7b:15:73:22: a0:d6:ef:b9:97:a6:e0:aa:5e:f3:4e:f8:9c:fb:42:97:09:71: f8:a3:42:03:fc:1d:e0:f0:f5:b4:21:08:c2:59:7e:21:04:11: ec:55:27:b7:99:24:d4:ac:69:fe:df:3f:97:27:94:0e:05:e1: 32:0d:d8:b0:be:dc:25:c3:bb:15:f3:01:9a:f1:61:f9:88:1f: 14:67:15:ad:84:e2:0d:b4:ba:ad:73:a2:56:09:0e:06:6e:7a: 2c:57:1e:cf:a1:29:8e:3c:33:03:71:99:45:8e:9a:99:18:6f: c3:6e:ce:5c:78:c5:07:02:01:32:7b:b7:60:94:78:4c:b4:cc: 8c:3c:e8:23:4c:00:7a:54:4e:ec:6d:43:af:67:ca:ac:8d:be: 61:67:b1:a4:96:53:30:c9:fc:79:9a:56:1e:fb:3a:b9:6a:45: 52:36:88:4c -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBLzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5Mzgw NjdDMjVCQ0E3RDEzODVCRDM2QzQ4Mjg1OEY4MzBCNUE2RTNBMB4XDTI0MDgzMTAx MzM0NVoXDTI1MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoNzA0QjNGMDA4MjQyRkMz Q0U1MDQwQTdFRjkxMEQ2NjBEMkVENkVENDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALPVQydTmg9SSzvAxje3XCHFBN9F6NyAqIDl0M3BYewRaoV2B1rI rROBOl8VzcYuRw56hV5kVv+UziDXYGtCARj4xsBPs2uP8zrJ3uYAQd4GiCH56PMG BEDRAqv1b8EsKpWpNNJTRp6PvryYMfTftHyjKPE0BQSqNJfr4pZhPHxEdcgcL50v f5njztCRQdBZrIJdpRxpdU/hrSqiGO1qvqc8sIprAYwVslDmFwkrscM3MDhqLARZ ExmA1yH42MPcJ8m0hcSPHgM0jGxqtHj4t/rO5tGkSrsIwPLXAMVd9AuosABumxGo 8TlDbqFExABPkz+/tr22bMFyT4v1oQy8vo8CAwEAAaOCAigwggIkMB0GA1UdDgQW BBRwSz8AgkL8POUECn75ENZg0u1u1DAfBgNVHSMEGDAWgBSTgGfCW8p9E4W9NsSC hY+DC1puOjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwNjIvazRCbndsdktmUk9GdlRiRWdvV1Bnd3RhYmpvLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvazRCbndsdktmUk9GdlRiRWdvV1Bn d3RhYmpvLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMDYyL2NFc19BSUpDX0R6bEJBcC0tUkRXWU5MdGJ0US5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAOF9+AwDQYJKoZIhvcNAQELBQADggEBAIHUG/P1IH+VKwk2bFpU/Hpz 4IiKN/jOrPjtNlz5fYdV6l6K8mmbvPpsn7KAMA1t7gaKrtgR30f4/R8pW/RzRHt1 Gx0YPV7SKXXJPgjLqrc5vJmReyFlexVzIqDW77mXpuCqXvNO+Jz7QpcJcfijQgP8 HeDw9bQhCMJZfiEEEexVJ7eZJNSsaf7fP5cnlA4F4TIN2LC+3CXDuxXzAZrxYfmI HxRnFa2E4g20uq1zolYJDgZueixXHs+hKY48MwNxmUWOmpkYb8Nuzlx4xQcCATJ7 t2CUeEy0zIw86CNMAHpUTuxtQ69nyqyNvmFnsaSWUzDJ/HmaVh77OrlqRVI2iEw= -----END CERTIFICATE-----Generated at Sun Feb 16 22:33:05 2025 by rpki-client