$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20074/WjaTHnzQMBw5VXL9vfH24X92Bo0.roa File: WjaTHnzQMBw5VXL9vfH24X92Bo0.roa (raw, json) Hash identifier: 2Rs3zjaU4GUbqiHpXeQPI+BY3AuzYXVjMNVJtfWRI8k= Subject key identifier: 5A:36:93:1E:7C:D0:30:1C:39:55:72:FD:BD:F1:F6:E1:7F:76:06:8D Certificate issuer: /CN=9E5004D44AF29AD1209AB85A95F160E83D24E588 Certificate serial: 27 Authority key identifier: 9E:50:04:D4:4A:F2:9A:D1:20:9A:B8:5A:95:F1:60:E8:3D:24:E5:88 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/nlAE1ErymtEgmrhalfFg6D0k5Yg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20074/WjaTHnzQMBw5VXL9vfH24X92Bo0.roa Signing time: Sat 31 Aug 2024 01:31:11 +0000 ROA not before: Sat 31 Aug 2024 01:31:11 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 63782 IP address blocks: 133.186.56.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20074/nlAE1ErymtEgmrhalfFg6D0k5Yg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20074/nlAE1ErymtEgmrhalfFg6D0k5Yg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/nlAE1ErymtEgmrhalfFg6D0k5Yg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E5004D44AF29AD1209AB85A95F160E83D24E588 Validity Not Before: Aug 31 01:31:11 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=5A36931E7CD0301C395572FDBDF1F6E17F76068D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:24:50:7b:85:d7:67:71:ef:d4:95:58:3b:b5: 94:d0:0f:6e:76:b9:af:b8:ce:0e:6a:57:04:a2:9d: 9a:32:c5:6d:f6:f7:24:b5:05:b9:a7:10:a8:14:07: 6f:ed:b4:2c:ee:b0:a9:ba:93:9f:47:c9:ca:53:67: be:25:0d:73:b3:17:0e:d7:cc:46:02:f3:56:fd:22: 70:cc:0c:18:93:e2:c2:d3:2f:99:a2:fb:af:44:0d: 8e:78:0e:19:62:38:fc:91:94:2d:56:c4:cf:19:e7: 2d:e8:96:3b:7a:e5:a7:bf:ef:68:78:e3:36:1f:bb: 7e:48:86:95:80:ac:1d:ab:c3:ba:a7:36:f4:18:29: cb:8a:ad:ab:32:19:69:16:54:be:e3:68:9f:71:ce: 4d:79:53:54:fd:00:76:06:4d:34:d4:5d:2e:55:e2: a2:2c:b9:f5:60:b7:9e:34:2e:bc:0c:99:21:5f:da: e5:31:49:f1:45:90:92:e3:6b:a5:78:68:30:16:bc: b4:95:7b:0f:b5:ff:fa:16:c1:98:cf:d9:d2:5a:e9: 82:48:c4:bd:95:26:0b:c1:b9:cb:40:86:df:88:7b: bc:fb:7e:96:10:25:d7:02:0b:01:46:b0:66:6f:ed: 90:fd:d8:27:fd:71:f9:ca:63:23:84:00:d6:3a:e5: ab:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:36:93:1E:7C:D0:30:1C:39:55:72:FD:BD:F1:F6:E1:7F:76:06:8D X509v3 Authority Key Identifier: keyid:9E:50:04:D4:4A:F2:9A:D1:20:9A:B8:5A:95:F1:60:E8:3D:24:E5:88 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20074/nlAE1ErymtEgmrhalfFg6D0k5Yg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/nlAE1ErymtEgmrhalfFg6D0k5Yg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20074/WjaTHnzQMBw5VXL9vfH24X92Bo0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 133.186.56.0/21 Signature Algorithm: sha256WithRSAEncryption 17:b9:4c:78:6a:51:92:8f:5c:62:65:04:62:00:3b:8a:a4:ef: 29:27:7c:71:1a:63:f5:91:0c:da:f7:e3:37:84:c8:29:0d:06: 42:38:e8:da:4d:3e:4e:aa:29:ce:2d:6e:05:03:de:10:11:b3: 3c:ec:f1:45:f5:c7:e7:79:c1:ab:3a:96:bd:70:8f:19:5b:ca: 92:e2:bc:58:78:09:a3:c9:ac:27:8d:0c:a8:59:e8:87:4f:d5: be:2d:df:30:cd:8f:52:1e:be:ec:b8:3f:c7:93:cd:e0:29:cd: 80:bc:24:9b:7d:6b:fb:ff:40:d9:32:aa:4d:30:52:dc:93:7d: 29:11:c4:b5:4f:2c:6a:fb:00:cb:43:76:d0:ff:59:2c:d6:93: b3:2d:4f:9e:06:1c:12:80:24:5a:4c:59:66:61:de:b4:57:72: 0d:6b:e2:a5:cd:7f:fe:d0:6d:90:be:27:88:11:61:f2:2c:a0: b9:c5:09:5b:cb:4f:0c:44:47:7c:78:b6:4b:f0:2d:98:34:ea: a8:df:40:6e:dc:40:eb:cf:15:ad:47:fd:06:bf:a5:fa:a6:ae: 38:dc:8f:4f:22:ad:ea:5f:06:04:71:38:10:ed:ff:74:dd:cf: 59:65:30:7f:b9:14:9f:4e:86:41:91:68:cb:9a:d9:c1:2f:12: 56:89:ad:54 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBJzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5RTUw MDRENDRBRjI5QUQxMjA5QUI4NUE5NUYxNjBFODNEMjRFNTg4MB4XDTI0MDgzMTAx MzExMVoXDTI1MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoNUEzNjkzMUU3Q0QwMzAx QzM5NTU3MkZEQkRGMUY2RTE3Rjc2MDY4RDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKkkUHuF12dx79SVWDu1lNAPbna5r7jODmpXBKKdmjLFbfb3JLUF uacQqBQHb+20LO6wqbqTn0fJylNnviUNc7MXDtfMRgLzVv0icMwMGJPiwtMvmaL7 r0QNjngOGWI4/JGULVbEzxnnLeiWO3rlp7/vaHjjNh+7fkiGlYCsHavDuqc29Bgp y4qtqzIZaRZUvuNon3HOTXlTVP0AdgZNNNRdLlXioiy59WC3njQuvAyZIV/a5TFJ 8UWQkuNrpXhoMBa8tJV7D7X/+hbBmM/Z0lrpgkjEvZUmC8G5y0CG34h7vPt+lhAl 1wILAUawZm/tkP3YJ/1x+cpjI4QA1jrlq4UCAwEAAaOCAigwggIkMB0GA1UdDgQW BBRaNpMefNAwHDlVcv298fbhf3YGjTAfBgNVHSMEGDAWgBSeUATUSvKa0SCauFqV 8WDoPSTliDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwNzQvbmxBRTFFcnltdEVnbXJoYWxmRmc2RDBrNVlnLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvbmxBRTFFcnltdEVnbXJoYWxmRmc2 RDBrNVlnLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMDc0L1dqYVRIbnpRTUJ3NVZYTDl2ZkgyNFg5MkJvMC5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAOFujgwDQYJKoZIhvcNAQELBQADggEBABe5THhqUZKPXGJlBGIAO4qk 7yknfHEaY/WRDNr34zeEyCkNBkI46NpNPk6qKc4tbgUD3hARszzs8UX1x+d5was6 lr1wjxlbypLivFh4CaPJrCeNDKhZ6IdP1b4t3zDNj1Ievuy4P8eTzeApzYC8JJt9 a/v/QNkyqk0wUtyTfSkRxLVPLGr7AMtDdtD/WSzWk7MtT54GHBKAJFpMWWZh3rRX cg1r4qXNf/7QbZC+J4gRYfIsoLnFCVvLTwxER3x4tkvwLZg06qjfQG7cQOvPFa1H /Qa/pfqmrjjcj08irepfBgRxOBDt/3Tdz1llMH+5FJ9OhkGRaMua2cEvElaJrVQ= -----END CERTIFICATE-----Generated at Sun Feb 16 22:27:54 2025 by rpki-client