$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20075/ESI5gNYvLHKb8z7SnzISRN1oL_8.roa File: ESI5gNYvLHKb8z7SnzISRN1oL_8.roa (raw, json) Hash identifier: Og5gKlcJq+hjm6MuZ5jmXVawkaLD15jbUdfeYnwyZI8= Subject key identifier: 11:22:39:80:D6:2F:2C:72:9B:F3:3E:D2:9F:32:12:44:DD:68:2F:FF Certificate issuer: /CN=B8D07A5A02B1B45993E6CAEFB47D1D5E75DA193C Certificate serial: 23 Authority key identifier: B8:D0:7A:5A:02:B1:B4:59:93:E6:CA:EF:B4:7D:1D:5E:75:DA:19:3C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uNB6WgKxtFmT5srvtH0dXnXaGTw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/ESI5gNYvLHKb8z7SnzISRN1oL_8.roa Signing time: Wed 18 Sep 2024 08:03:02 +0000 ROA not before: Wed 18 Sep 2024 08:03:02 +0000 ROA not after: Mon 15 Sep 2025 01:30:03 +0000 asID: 131969 IP address blocks: 133.88.20.0/22 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/uNB6WgKxtFmT5srvtH0dXnXaGTw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/uNB6WgKxtFmT5srvtH0dXnXaGTw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uNB6WgKxtFmT5srvtH0dXnXaGTw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Oct 2024 13:49:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8D07A5A02B1B45993E6CAEFB47D1D5E75DA193C Validity Not Before: Sep 18 08:03:02 2024 GMT Not After : Sep 15 01:30:03 2025 GMT Subject: CN=11223980D62F2C729BF33ED29F321244DD682FFF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:c4:81:fd:97:87:eb:81:54:a7:2e:ce:47:1a: f5:a3:55:4e:53:8f:76:e9:1b:6b:53:3b:ca:49:3b: 03:13:a2:56:83:ef:fe:ec:f6:3e:cc:a4:b6:80:cf: f8:1e:ec:6d:c2:7b:d8:aa:a3:d8:03:10:bd:5f:bf: c0:71:ad:94:f0:d5:ff:ec:7a:66:31:22:ca:d0:58: e9:82:f2:64:ce:58:df:db:55:4a:ff:78:55:b8:8d: 3c:9e:a4:08:1b:9c:3d:f2:79:11:2a:dd:55:33:93: f9:be:ac:40:1e:0f:9a:0e:53:a4:96:3a:8d:33:96: d8:fe:27:b4:49:66:76:f8:52:3e:2d:17:e1:5f:43: 87:20:18:da:44:33:e4:fa:40:52:41:c6:35:f4:a2: cc:47:13:cf:4b:30:d1:f9:a5:c2:d4:44:20:00:01: 4d:67:a4:f0:40:2b:58:3c:d7:73:bb:b9:20:65:be: 92:77:a7:96:85:5e:e1:92:06:e3:85:38:d8:24:fc: 16:54:92:e9:f0:f2:48:4a:0d:d6:bf:88:2a:b8:70: 4b:b8:7d:3f:ea:72:5e:ca:11:e5:57:55:a2:7a:b0: 59:67:aa:7c:7a:04:51:4f:81:e6:b1:61:25:fe:16: b1:fc:84:ff:59:a0:37:61:a6:42:e2:30:18:ff:c4: 02:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:22:39:80:D6:2F:2C:72:9B:F3:3E:D2:9F:32:12:44:DD:68:2F:FF X509v3 Authority Key Identifier: keyid:B8:D0:7A:5A:02:B1:B4:59:93:E6:CA:EF:B4:7D:1D:5E:75:DA:19:3C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/uNB6WgKxtFmT5srvtH0dXnXaGTw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uNB6WgKxtFmT5srvtH0dXnXaGTw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/ESI5gNYvLHKb8z7SnzISRN1oL_8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 133.88.20.0/22 Signature Algorithm: sha256WithRSAEncryption 27:0d:e9:2b:81:fa:f9:42:fd:aa:4b:4e:c8:9d:07:10:60:d4: f9:d6:7e:af:23:f2:67:3d:0c:09:8d:5d:49:10:6f:66:73:76: e7:e0:fb:a9:4b:fa:c4:55:17:a2:2d:e0:e9:b5:6a:40:eb:81: 24:bb:3c:55:19:eb:53:13:d8:71:4e:c6:3c:06:58:d3:ca:97: a8:b1:ce:cb:6a:72:b8:87:4f:8d:86:0d:7c:d7:1b:f7:ba:29: 17:45:b2:cb:06:64:14:0c:54:5d:d5:c8:e1:a2:b3:7b:f7:e2: aa:72:4a:fd:d7:b9:9d:49:41:40:d0:76:ad:e5:39:db:f9:4f: 8e:57:9b:f7:b5:25:5c:c0:be:49:83:55:0d:75:56:10:28:a5: 22:ef:66:b8:06:30:35:83:c3:b6:19:8f:6a:84:45:2c:0a:e5: bb:7f:5a:53:8d:8b:98:9f:63:57:fd:48:f0:fe:23:db:86:33: 4f:d0:0e:b8:3c:a5:ba:9d:a9:7c:d1:0f:e5:a6:54:4a:55:fd: c0:63:51:f3:49:ac:d7:0f:ae:2a:98:53:b6:50:60:d1:c5:04: 70:32:b4:34:e6:ce:7c:7c:7c:65:d3:4c:2b:58:23:21:60:77: 0d:cf:29:cc:03:e1:79:3f:77:65:d5:c9:10:8c:75:cc:11:0d: 74:01:1b:61 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBIzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCOEQw N0E1QTAyQjFCNDU5OTNFNkNBRUZCNDdEMUQ1RTc1REExOTNDMB4XDTI0MDkxODA4 MDMwMloXDTI1MDkxNTAxMzAwM1owMzExMC8GA1UEAxMoMTEyMjM5ODBENjJGMkM3 MjlCRjMzRUQyOUYzMjEyNDRERDY4MkZGRjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANXEgf2Xh+uBVKcuzkca9aNVTlOPdukba1M7ykk7AxOiVoPv/uz2 PsyktoDP+B7sbcJ72Kqj2AMQvV+/wHGtlPDV/+x6ZjEiytBY6YLyZM5Y39tVSv94 VbiNPJ6kCBucPfJ5ESrdVTOT+b6sQB4Pmg5TpJY6jTOW2P4ntElmdvhSPi0X4V9D hyAY2kQz5PpAUkHGNfSizEcTz0sw0fmlwtREIAABTWek8EArWDzXc7u5IGW+knen loVe4ZIG44U42CT8FlSS6fDySEoN1r+IKrhwS7h9P+pyXsoR5VdVonqwWWeqfHoE UU+B5rFhJf4WsfyE/1mgN2GmQuIwGP/EAh8CAwEAAaOCAigwggIkMB0GA1UdDgQW BBQRIjmA1i8scpvzPtKfMhJE3Wgv/zAfBgNVHSMEGDAWgBS40HpaArG0WZPmyu+0 fR1eddoZPDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwNzUvdU5CNldnS3h0Rm1UNXNydnRIMGRYblhhR1R3LmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdU5CNldnS3h0Rm1UNXNydnRIMGRY blhhR1R3LmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMDc1L0VTSTVnTll2TEhLYjh6N1NueklTUk4xb0xfOC5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAKFWBQwDQYJKoZIhvcNAQELBQADggEBACcN6SuB+vlC/apLTsidBxBg 1PnWfq8j8mc9DAmNXUkQb2Zzdufg+6lL+sRVF6It4Om1akDrgSS7PFUZ61MT2HFO xjwGWNPKl6ixzstqcriHT42GDXzXG/e6KRdFsssGZBQMVF3VyOGis3v34qpySv3X uZ1JQUDQdq3lOdv5T45Xm/e1JVzAvkmDVQ11VhAopSLvZrgGMDWDw7YZj2qERSwK 5bt/WlONi5ifY1f9SPD+I9uGM0/QDrg8pbqdqXzRD+WmVEpV/cBjUfNJrNcPriqY U7ZQYNHFBHAytDTmznx8fGXTTCtYIyFgdw3PKcwD4Xk/d2XVyRCMdcwRDXQBG2E= -----END CERTIFICATE-----Generated at Tue Oct 22 15:30:30 2024 by rpki-client on console-ams.rpki-client.org