$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20075/sPqygdd4ZsiA_SQ4MNMRgXCe0jg.roa File: sPqygdd4ZsiA_SQ4MNMRgXCe0jg.roa (raw, json) Hash identifier: MGCzxrG4UeG7Q5fnp1EHjSfK22cPuGpbtEzP8m5kB8U= Subject key identifier: B0:FA:B2:81:D7:78:66:C8:80:FD:24:38:30:D3:11:81:70:9E:D2:38 Certificate issuer: /CN=B8D07A5A02B1B45993E6CAEFB47D1D5E75DA193C Certificate serial: 22 Authority key identifier: B8:D0:7A:5A:02:B1:B4:59:93:E6:CA:EF:B4:7D:1D:5E:75:DA:19:3C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uNB6WgKxtFmT5srvtH0dXnXaGTw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/sPqygdd4ZsiA_SQ4MNMRgXCe0jg.roa Signing time: Wed 18 Sep 2024 07:59:03 +0000 ROA not before: Wed 18 Sep 2024 07:59:03 +0000 ROA not after: Mon 15 Sep 2025 01:30:03 +0000 asID: 18068 IP address blocks: 133.88.12.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/uNB6WgKxtFmT5srvtH0dXnXaGTw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/uNB6WgKxtFmT5srvtH0dXnXaGTw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uNB6WgKxtFmT5srvtH0dXnXaGTw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Oct 2024 13:49:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8D07A5A02B1B45993E6CAEFB47D1D5E75DA193C Validity Not Before: Sep 18 07:59:03 2024 GMT Not After : Sep 15 01:30:03 2025 GMT Subject: CN=B0FAB281D77866C880FD243830D31181709ED238 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f7:cb:81:6d:b1:7d:a5:6b:cf:ae:e0:09:48: 60:e3:96:08:ff:21:89:8c:97:f9:e1:64:19:66:46: 3f:7c:fa:a3:8c:49:fb:1f:df:26:af:ed:36:a8:7f: d7:2e:c5:aa:0a:57:d7:37:ce:a6:9d:a6:02:fc:32: 67:81:6c:0e:1c:62:b7:53:1d:ee:9b:09:68:46:1d: 43:b1:b8:ca:18:47:61:10:fd:37:ba:17:82:23:79: f0:7d:fe:f2:be:93:96:29:ae:0b:79:a1:88:df:90: 10:55:c6:75:a9:51:da:e5:06:02:6d:ff:6b:60:98: 7d:97:df:ac:96:7d:12:65:31:02:46:6a:76:66:ce: 06:9b:13:4a:a1:1b:f0:91:45:81:92:bb:9b:4c:14: 64:20:c9:f1:f8:4a:55:24:ec:85:48:0c:b0:cf:ca: fe:b2:77:3a:33:4c:c3:e7:20:04:ea:f6:6c:f2:15: b4:fc:8b:b3:c1:15:0c:6d:57:14:00:7a:d2:f3:e7: 89:e6:b8:d2:dd:69:00:e5:7a:8b:dc:8a:eb:ad:2e: 95:e6:ee:f1:a1:a7:1f:61:b9:77:35:39:be:a2:53: 09:15:4c:d6:5d:50:b6:2a:86:47:76:75:11:3f:0a: f0:66:05:da:96:6b:e6:ec:ea:a2:fc:07:a2:13:93: 9e:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:FA:B2:81:D7:78:66:C8:80:FD:24:38:30:D3:11:81:70:9E:D2:38 X509v3 Authority Key Identifier: keyid:B8:D0:7A:5A:02:B1:B4:59:93:E6:CA:EF:B4:7D:1D:5E:75:DA:19:3C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/uNB6WgKxtFmT5srvtH0dXnXaGTw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uNB6WgKxtFmT5srvtH0dXnXaGTw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/sPqygdd4ZsiA_SQ4MNMRgXCe0jg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 133.88.12.0/22 Signature Algorithm: sha256WithRSAEncryption 6f:b0:fa:65:06:47:84:ef:44:68:b4:7a:4e:51:12:11:18:ba: 64:02:a2:c3:6e:e3:1b:7f:d0:a8:dd:cb:57:a4:8c:a0:29:75: 6d:91:8f:07:b8:ac:0f:81:e4:50:c3:12:9c:5e:20:38:83:1d: 4d:7d:79:a1:1f:6a:ae:90:bf:2f:65:55:29:20:23:5e:3e:53: d1:0b:a6:ff:7a:c4:10:94:e2:9b:84:21:16:93:df:7e:17:6e: b9:5b:a2:a8:47:27:b9:85:5e:ef:fd:40:4b:06:ab:5d:4b:6e: 32:96:f0:a0:0a:45:0e:7f:5c:2d:71:0a:47:ee:23:2a:df:26: 0d:05:8f:a4:cc:56:bb:d5:b7:c9:27:83:f1:3d:fb:f1:28:6e: 02:96:ef:36:6f:24:90:c1:a6:3a:bd:b9:89:75:dc:ac:86:d3: 48:60:b1:b4:98:64:8e:c5:6d:6a:91:2d:a7:4c:60:1f:3d:06: 24:4a:e5:45:26:05:83:81:e7:5e:d0:4e:c7:11:8e:c3:eb:1c: 7e:64:f8:b2:98:eb:75:19:9e:c9:c7:bf:bd:f2:61:7e:2f:38: 1d:f0:52:8a:28:5d:df:07:c3:51:0f:fc:24:60:32:e5:03:00: db:19:50:c8:e0:f7:6e:59:95:9b:b9:e0:eb:55:34:22:d8:3e: 05:96:3d:ee -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBIjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCOEQw N0E1QTAyQjFCNDU5OTNFNkNBRUZCNDdEMUQ1RTc1REExOTNDMB4XDTI0MDkxODA3 NTkwM1oXDTI1MDkxNTAxMzAwM1owMzExMC8GA1UEAxMoQjBGQUIyODFENzc4NjZD ODgwRkQyNDM4MzBEMzExODE3MDlFRDIzODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMH3y4FtsX2la8+u4AlIYOOWCP8hiYyX+eFkGWZGP3z6o4xJ+x/f Jq/tNqh/1y7FqgpX1zfOpp2mAvwyZ4FsDhxit1Md7psJaEYdQ7G4yhhHYRD9N7oX giN58H3+8r6TlimuC3mhiN+QEFXGdalR2uUGAm3/a2CYfZffrJZ9EmUxAkZqdmbO BpsTSqEb8JFFgZK7m0wUZCDJ8fhKVSTshUgMsM/K/rJ3OjNMw+cgBOr2bPIVtPyL s8EVDG1XFAB60vPniea40t1pAOV6i9yK660ulebu8aGnH2G5dzU5vqJTCRVM1l1Q tiqGR3Z1ET8K8GYF2pZr5uzqovwHohOTnv8CAwEAAaOCAigwggIkMB0GA1UdDgQW BBSw+rKB13hmyID9JDgw0xGBcJ7SODAfBgNVHSMEGDAWgBS40HpaArG0WZPmyu+0 fR1eddoZPDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwNzUvdU5CNldnS3h0Rm1UNXNydnRIMGRYblhhR1R3LmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdU5CNldnS3h0Rm1UNXNydnRIMGRY blhhR1R3LmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMDc1L3NQcXlnZGQ0WnNpQV9TUTRNTk1SZ1hDZTBqZy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAKFWAwwDQYJKoZIhvcNAQELBQADggEBAG+w+mUGR4TvRGi0ek5REhEY umQCosNu4xt/0Kjdy1ekjKApdW2Rjwe4rA+B5FDDEpxeIDiDHU19eaEfaq6Qvy9l VSkgI14+U9ELpv96xBCU4puEIRaT334XbrlboqhHJ7mFXu/9QEsGq11LbjKW8KAK RQ5/XC1xCkfuIyrfJg0Fj6TMVrvVt8kng/E9+/EobgKW7zZvJJDBpjq9uYl13KyG 00hgsbSYZI7FbWqRLadMYB89BiRK5UUmBYOB517QTscRjsPrHH5k+LKY63UZnsnH v73yYX4vOB3wUoooXd8Hw1EP/CRgMuUDANsZUMjg925ZlZu54OtVNCLYPgWWPe4= -----END CERTIFICATE-----Generated at Tue Oct 22 15:00:01 2024 by rpki-client on console-fra.rpki-client.org