$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20075/tG-yGGsSeYqBbc4y9K6XuwXKPdk.roa File: tG-yGGsSeYqBbc4y9K6XuwXKPdk.roa (raw, json) Hash identifier: 8AvFst3NkJ1H2u7edcTp3prZi13T3acCAoHrcy29amo= Subject key identifier: B4:6F:B2:18:6B:12:79:8A:81:6D:CE:32:F4:AE:97:BB:05:CA:3D:D9 Certificate issuer: /CN=B8D07A5A02B1B45993E6CAEFB47D1D5E75DA193C Certificate serial: 26 Authority key identifier: B8:D0:7A:5A:02:B1:B4:59:93:E6:CA:EF:B4:7D:1D:5E:75:DA:19:3C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uNB6WgKxtFmT5srvtH0dXnXaGTw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/tG-yGGsSeYqBbc4y9K6XuwXKPdk.roa Signing time: Wed 18 Sep 2024 08:03:03 +0000 ROA not before: Wed 18 Sep 2024 08:03:03 +0000 ROA not after: Mon 15 Sep 2025 01:30:03 +0000 asID: 146986 IP address blocks: 133.88.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/uNB6WgKxtFmT5srvtH0dXnXaGTw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/uNB6WgKxtFmT5srvtH0dXnXaGTw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uNB6WgKxtFmT5srvtH0dXnXaGTw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Oct 2024 13:49:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38 (0x26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8D07A5A02B1B45993E6CAEFB47D1D5E75DA193C Validity Not Before: Sep 18 08:03:03 2024 GMT Not After : Sep 15 01:30:03 2025 GMT Subject: CN=B46FB2186B12798A816DCE32F4AE97BB05CA3DD9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d9:71:49:b7:68:78:78:f5:27:db:5a:e8:1a: 56:01:8c:24:f9:72:eb:1a:68:1b:e9:18:e9:08:ae: 2c:10:a7:ed:2e:21:3f:73:2e:89:1b:9f:1a:38:15: 83:f6:17:49:77:28:2d:62:dc:07:29:5c:b0:1f:07: 58:9c:ed:43:7d:21:81:18:71:fc:f9:dc:41:ec:b8: 89:cc:1e:c9:96:bb:a5:41:91:6a:26:26:76:f6:99: 88:da:36:ba:55:24:d4:4e:32:f8:de:e1:62:8f:5c: f1:2d:9b:de:53:8e:c5:da:c5:72:ed:d9:17:13:2d: d6:3b:92:42:79:36:19:3b:c9:65:19:50:90:99:07: 4c:34:2a:36:0f:59:d6:b6:bd:e5:43:e0:40:db:24: 20:bd:93:f4:9b:6f:b9:00:d1:bd:ae:89:d1:d1:bb: 3f:6c:4a:86:00:94:55:71:38:72:b9:66:eb:2d:c6: 2f:db:b0:98:6f:95:a8:f6:b0:9f:84:5f:ac:a9:e6: 18:16:f3:41:40:2f:a6:0a:2b:68:af:98:fd:be:1f: b9:13:cd:75:51:47:4d:42:d1:f0:dd:fc:d8:84:ae: 22:c8:ae:a9:58:41:84:05:3c:48:9d:ba:d3:bc:85: 57:df:47:0b:f6:4c:bf:cd:7f:0d:d0:5d:28:24:97: 5e:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:6F:B2:18:6B:12:79:8A:81:6D:CE:32:F4:AE:97:BB:05:CA:3D:D9 X509v3 Authority Key Identifier: keyid:B8:D0:7A:5A:02:B1:B4:59:93:E6:CA:EF:B4:7D:1D:5E:75:DA:19:3C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/uNB6WgKxtFmT5srvtH0dXnXaGTw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uNB6WgKxtFmT5srvtH0dXnXaGTw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20075/tG-yGGsSeYqBbc4y9K6XuwXKPdk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 133.88.28.0/24 Signature Algorithm: sha256WithRSAEncryption a3:e6:24:bc:d7:8f:77:fb:53:13:8d:2a:dc:d1:04:e9:3e:3d: 4e:ef:5f:43:d1:29:88:45:5d:32:59:d1:b2:82:34:f1:fd:e6: c2:fa:e3:17:f9:e2:05:49:45:3f:6e:0a:4a:d2:f5:19:7f:9d: f5:21:c8:b8:79:d7:20:27:c0:a1:94:25:97:99:15:60:e5:ff: 50:fe:1a:81:52:bd:89:b3:b7:05:95:e1:49:f7:c6:89:d6:7f: 59:fd:f4:86:fe:64:ed:61:56:d8:89:66:f7:a5:83:c5:89:71: b9:6f:0f:dc:29:34:27:13:8f:8b:d1:19:80:be:1f:17:9f:f0: 7f:db:fb:b9:d3:18:f3:54:ec:b3:89:3e:08:d6:83:b4:30:6a: f0:f6:95:ce:29:3f:1d:6f:30:48:62:ad:c3:2f:c1:04:48:97: 33:eb:ab:b9:82:a6:54:13:1d:c3:3f:33:2a:0c:b4:ec:e9:c3: 62:a4:1d:c3:29:52:c0:a3:74:17:c3:96:dd:cd:60:f6:b6:0b: 9d:ce:e3:fa:b9:c7:d3:f0:fb:17:41:b8:ff:f7:d9:02:ed:25: e7:c3:51:39:77:c8:f3:f4:02:1d:26:a0:8e:0b:9e:4b:37:db: b5:e3:8c:7a:dd:46:74:d0:dd:52:eb:ab:81:dd:ca:83:a7:6d: a8:1b:c9:31 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBJjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCOEQw N0E1QTAyQjFCNDU5OTNFNkNBRUZCNDdEMUQ1RTc1REExOTNDMB4XDTI0MDkxODA4 MDMwM1oXDTI1MDkxNTAxMzAwM1owMzExMC8GA1UEAxMoQjQ2RkIyMTg2QjEyNzk4 QTgxNkRDRTMyRjRBRTk3QkIwNUNBM0REOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKvZcUm3aHh49SfbWugaVgGMJPly6xpoG+kY6QiuLBCn7S4hP3Mu iRufGjgVg/YXSXcoLWLcBylcsB8HWJztQ30hgRhx/PncQey4icweyZa7pUGRaiYm dvaZiNo2ulUk1E4y+N7hYo9c8S2b3lOOxdrFcu3ZFxMt1juSQnk2GTvJZRlQkJkH TDQqNg9Z1ra95UPgQNskIL2T9JtvuQDRva6J0dG7P2xKhgCUVXE4crlm6y3GL9uw mG+VqPawn4RfrKnmGBbzQUAvpgoraK+Y/b4fuRPNdVFHTULR8N382ISuIsiuqVhB hAU8SJ2607yFV99HC/ZMv81/DdBdKCSXXp8CAwEAAaOCAigwggIkMB0GA1UdDgQW BBS0b7IYaxJ5ioFtzjL0rpe7Bco92TAfBgNVHSMEGDAWgBS40HpaArG0WZPmyu+0 fR1eddoZPDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwNzUvdU5CNldnS3h0Rm1UNXNydnRIMGRYblhhR1R3LmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdU5CNldnS3h0Rm1UNXNydnRIMGRY blhhR1R3LmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMDc1L3RHLXlHR3NTZVlxQmJjNHk5SzZYdXdYS1Bkay5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBACFWBwwDQYJKoZIhvcNAQELBQADggEBAKPmJLzXj3f7UxONKtzRBOk+ PU7vX0PRKYhFXTJZ0bKCNPH95sL64xf54gVJRT9uCkrS9Rl/nfUhyLh51yAnwKGU JZeZFWDl/1D+GoFSvYmztwWV4Un3xonWf1n99Ib+ZO1hVtiJZvelg8WJcblvD9wp NCcTj4vRGYC+Hxef8H/b+7nTGPNU7LOJPgjWg7QwavD2lc4pPx1vMEhircMvwQRI lzPrq7mCplQTHcM/MyoMtOzpw2KkHcMpUsCjdBfDlt3NYPa2C53O4/q5x9Pw+xdB uP/32QLtJefDUTl3yPP0Ah0moI4Lnks327XjjHrdRnTQ3VLrq4HdyoOnbagbyTE= -----END CERTIFICATE-----Generated at Tue Oct 22 15:00:01 2024 by rpki-client on console-fra.rpki-client.org