$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20075/I3v4h0IaQ-cxG2ZhlgwnxMmfy0s.roa File: I3v4h0IaQ-cxG2ZhlgwnxMmfy0s.roa (raw, json) Hash identifier: 12WwUxpnWcx9StaWJSOgG2/yHw7jW9cCuv59qwbyRtg= Subject key identifier: 23:7B:F8:87:42:1A:43:E7:31:1B:66:61:96:0C:27:C4:C9:9F:CB:4B Certificate issuer: /CN=B8D07A5A02B1B45993E6CAEFB47D1D5E75DA193C Certificate serial: 25 Authority key identifier: B8:D0:7A:5A:02:B1:B4:59:93:E6:CA:EF:B4:7D:1D:5E:75:DA:19:3C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uNB6WgKxtFmT5srvtH0dXnXaGTw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/I3v4h0IaQ-cxG2ZhlgwnxMmfy0s.roa Signing time: Wed 18 Sep 2024 08:03:02 +0000 ROA not before: Wed 18 Sep 2024 08:03:02 +0000 ROA not after: Mon 15 Sep 2025 01:30:03 +0000 asID: 131969 IP address blocks: 133.88.22.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/uNB6WgKxtFmT5srvtH0dXnXaGTw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/uNB6WgKxtFmT5srvtH0dXnXaGTw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uNB6WgKxtFmT5srvtH0dXnXaGTw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 17:05:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8D07A5A02B1B45993E6CAEFB47D1D5E75DA193C Validity Not Before: Sep 18 08:03:02 2024 GMT Not After : Sep 15 01:30:03 2025 GMT Subject: CN=237BF887421A43E7311B6661960C27C4C99FCB4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:87:44:dc:ad:85:85:25:39:18:14:ce:a3:c1: 12:c2:35:f1:51:cb:b9:68:37:6e:c7:40:5b:79:21: ae:1f:9e:e4:58:88:11:2d:97:94:3c:60:4b:0f:86: 03:41:b7:2a:0b:94:c9:c6:9b:97:6a:38:2f:43:71: 6f:d9:71:98:14:32:eb:2c:0d:3d:3c:7e:93:71:10: 3a:a9:3e:46:4c:df:17:29:a6:a8:15:cd:e0:3f:df: 77:7e:77:57:a3:10:d6:83:d1:c5:74:91:c1:2e:bc: 92:bd:c2:ac:4a:38:f3:ec:53:23:29:d8:4e:91:6f: f3:9c:02:1e:bf:83:9d:c1:d7:f7:31:89:70:b3:fd: 40:d5:98:bf:18:ed:6e:f1:d4:5e:39:a1:0c:be:51: 61:ff:fc:25:c7:13:73:dd:f6:f7:25:74:84:e0:86: 64:0d:7c:d3:27:41:d6:5a:98:90:94:a1:1d:cc:b8: 6d:ad:b4:5c:cd:1f:69:59:86:37:90:13:a9:ec:cb: 5b:3d:91:89:47:bf:d7:78:5c:21:b1:45:4c:c0:b2: 1c:c4:d2:3a:e5:23:fd:ea:e3:7f:b9:c7:74:67:f2: 2b:77:6c:77:24:47:87:be:b3:e8:61:5f:2b:e0:8e: a4:ba:41:ed:65:ef:92:5b:65:84:b2:fc:12:4f:2e: 88:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:7B:F8:87:42:1A:43:E7:31:1B:66:61:96:0C:27:C4:C9:9F:CB:4B X509v3 Authority Key Identifier: keyid:B8:D0:7A:5A:02:B1:B4:59:93:E6:CA:EF:B4:7D:1D:5E:75:DA:19:3C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/uNB6WgKxtFmT5srvtH0dXnXaGTw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uNB6WgKxtFmT5srvtH0dXnXaGTw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/I3v4h0IaQ-cxG2ZhlgwnxMmfy0s.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 133.88.22.0/23 Signature Algorithm: sha256WithRSAEncryption 4d:db:c5:70:5e:5f:a8:67:3d:30:ef:59:cc:7f:15:a3:ec:b7: 9a:7b:93:ca:71:b8:8c:38:26:b5:d0:d5:36:86:c4:da:8d:0a: 52:49:8a:f1:03:9d:85:83:14:7e:f6:39:7c:e4:15:81:67:72: 79:5d:d3:60:46:88:c0:8d:02:2e:95:c0:e2:fd:20:89:22:27: 1a:c4:97:ed:4f:9a:b2:cc:d9:2f:f1:48:44:6f:0d:51:fe:e2: f4:9c:d8:cf:86:bc:75:1e:99:ee:a8:d0:94:38:86:de:56:7a: 6c:c2:44:e9:c3:0b:a6:ae:e1:1f:b4:62:ee:35:7f:aa:c5:8c: c9:f4:ac:a9:a8:36:45:33:dd:ee:29:fe:28:f8:d4:a1:b1:1a: 71:20:5b:dc:36:cb:88:f3:55:8e:fa:1f:5e:08:89:53:10:00: bd:20:7b:9e:ab:05:bc:52:2a:20:d6:cf:35:6a:db:71:cb:43: a0:81:dd:9d:d1:4e:bb:22:e2:18:73:c5:17:4f:54:2b:37:0c: 8f:cf:dd:97:88:ed:58:28:ec:12:e4:32:7a:b1:73:66:3f:ec: 51:45:9f:07:1f:29:0c:3f:0f:80:90:c8:cb:62:65:a6:b3:81: 2a:ad:99:7b:50:82:52:e5:32:d3:d6:57:d3:af:00:65:01:d9: f0:5b:64:dc -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBJTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCOEQw N0E1QTAyQjFCNDU5OTNFNkNBRUZCNDdEMUQ1RTc1REExOTNDMB4XDTI0MDkxODA4 MDMwMloXDTI1MDkxNTAxMzAwM1owMzExMC8GA1UEAxMoMjM3QkY4ODc0MjFBNDNF NzMxMUI2NjYxOTYwQzI3QzRDOTlGQ0I0QjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMKHRNythYUlORgUzqPBEsI18VHLuWg3bsdAW3khrh+e5FiIES2X lDxgSw+GA0G3KguUycabl2o4L0Nxb9lxmBQy6ywNPTx+k3EQOqk+RkzfFymmqBXN 4D/fd353V6MQ1oPRxXSRwS68kr3CrEo48+xTIynYTpFv85wCHr+DncHX9zGJcLP9 QNWYvxjtbvHUXjmhDL5RYf/8JccTc9329yV0hOCGZA180ydB1lqYkJShHcy4ba20 XM0faVmGN5ATqezLWz2RiUe/13hcIbFFTMCyHMTSOuUj/erjf7nHdGfyK3dsdyRH h76z6GFfK+COpLpB7WXvkltlhLL8Ek8uiEUCAwEAAaOCAigwggIkMB0GA1UdDgQW BBQje/iHQhpD5zEbZmGWDCfEyZ/LSzAfBgNVHSMEGDAWgBS40HpaArG0WZPmyu+0 fR1eddoZPDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwNzUvdU5CNldnS3h0Rm1UNXNydnRIMGRYblhhR1R3LmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdU5CNldnS3h0Rm1UNXNydnRIMGRY blhhR1R3LmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMDc1L0kzdjRoMElhUS1jeEcyWmhsZ3dueE1tZnkwcy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGFWBYwDQYJKoZIhvcNAQELBQADggEBAE3bxXBeX6hnPTDvWcx/FaPs t5p7k8pxuIw4JrXQ1TaGxNqNClJJivEDnYWDFH72OXzkFYFncnld02BGiMCNAi6V wOL9IIkiJxrEl+1PmrLM2S/xSERvDVH+4vSc2M+GvHUeme6o0JQ4ht5WemzCROnD C6au4R+0Yu41f6rFjMn0rKmoNkUz3e4p/ij41KGxGnEgW9w2y4jzVY76H14IiVMQ AL0ge56rBbxSKiDWzzVq23HLQ6CB3Z3RTrsi4hhzxRdPVCs3DI/P3ZeI7Vgo7BLk Mnqxc2Y/7FFFnwcfKQw/D4CQyMtiZaazgSqtmXtQglLlMtPWV9OvAGUB2fBbZNw= -----END CERTIFICATE-----Generated at Mon Nov 25 18:44:46 2024 by rpki-client on console-ams.rpki-client.org