$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/2251/An9Bxl9jKtpgzT5G-300c2-tkkw.roa File: An9Bxl9jKtpgzT5G-300c2-tkkw.roa (raw, json) Hash identifier: +A4wK24gqpDhxKvwfim+ZKJTDTPVko95hu832NEp8JY= Subject key identifier: 02:7F:41:C6:5F:63:2A:DA:60:CD:3E:46:FB:7D:34:73:6F:AD:92:4C Certificate issuer: /CN=85FE0FA704460AA4FAEF8FA8CA609F00C4CDE008 Certificate serial: 1F Authority key identifier: 85:FE:0F:A7:04:46:0A:A4:FA:EF:8F:A8:CA:60:9F:00:C4:CD:E0:08 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/hf4PpwRGCqT674-oymCfAMTN4Ag.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2251/An9Bxl9jKtpgzT5G-300c2-tkkw.roa Signing time: Sat 31 Aug 2024 01:29:35 +0000 ROA not before: Sat 31 Aug 2024 01:29:35 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 2518 IP address blocks: 133.200.0.0/13 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2251/hf4PpwRGCqT674-oymCfAMTN4Ag.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2251/hf4PpwRGCqT674-oymCfAMTN4Ag.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/hf4PpwRGCqT674-oymCfAMTN4Ag.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85FE0FA704460AA4FAEF8FA8CA609F00C4CDE008 Validity Not Before: Aug 31 01:29:35 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=027F41C65F632ADA60CD3E46FB7D34736FAD924C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:52:91:68:d8:06:63:15:e7:b3:c4:b1:3c:e3: cc:df:8f:95:11:eb:b8:cd:8b:37:af:de:ed:ac:b7: 8b:2c:66:cf:65:ec:31:ad:58:aa:f5:db:eb:2a:6b: fc:c0:78:15:b5:b9:74:78:e4:2a:a7:2d:f3:59:b4: 91:f9:9d:2d:38:8b:33:bd:d0:3f:e4:7a:db:59:b7: cc:8a:4e:bd:a4:05:da:c6:b8:b6:ed:6f:ca:bf:ba: 8b:43:5a:2a:0f:e9:c9:fd:38:f1:5b:60:38:c5:88: b8:b3:a9:42:34:e0:8c:f0:6e:dd:75:47:b1:6e:02: f0:ab:14:7b:4e:82:9a:6a:b8:58:f2:d4:f9:c0:e5: 7f:08:1e:e7:e0:0e:fa:fc:ad:3b:b4:09:f1:88:16: 0b:8d:ed:4b:ba:bf:15:cb:cc:82:78:f2:e9:8d:e8: b2:9e:3a:df:10:69:dc:42:f3:22:90:5c:ca:ad:ed: 76:05:7c:89:99:03:b7:38:2a:61:5f:f7:9e:87:45: b5:56:b6:c5:e4:21:6e:f9:50:19:4f:1a:c9:03:9e: 66:85:e3:af:12:34:7b:14:b7:92:ca:c2:59:27:98: c1:ea:09:d1:23:8e:30:49:fc:b0:ec:89:4a:8c:5a: 39:b0:f5:c9:8a:40:b2:92:95:26:21:82:eb:87:2e: f9:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:7F:41:C6:5F:63:2A:DA:60:CD:3E:46:FB:7D:34:73:6F:AD:92:4C X509v3 Authority Key Identifier: keyid:85:FE:0F:A7:04:46:0A:A4:FA:EF:8F:A8:CA:60:9F:00:C4:CD:E0:08 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2251/hf4PpwRGCqT674-oymCfAMTN4Ag.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/hf4PpwRGCqT674-oymCfAMTN4Ag.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2251/An9Bxl9jKtpgzT5G-300c2-tkkw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 133.200.0.0/13 Signature Algorithm: sha256WithRSAEncryption 48:2d:67:4a:56:ed:d5:fd:b4:b7:be:16:f2:d2:f5:85:59:11: d4:bc:d3:cd:42:43:6f:03:50:c5:08:8c:48:0f:82:69:54:1d: e6:fd:44:f4:ac:f9:7a:0c:77:c5:ff:3e:01:34:c5:bd:b0:a9: b1:c8:4f:7f:6e:d3:26:0a:a5:ed:01:08:02:37:a6:35:50:9c: 12:07:3c:c0:0e:31:d0:d1:73:d2:93:6b:d2:25:1e:c2:99:4a: 7f:05:f7:e3:78:a2:87:f1:50:81:ae:cd:86:e2:06:15:31:ef: 7d:31:dd:66:d9:ee:f8:9d:0e:b3:2a:f2:89:d5:f2:6f:63:97: 10:83:be:3d:d8:7a:23:40:6e:7c:d1:46:29:79:68:15:51:e2: f9:ed:58:ee:72:ee:51:94:5c:90:e9:d5:a4:91:a2:4c:0d:13: 1e:6a:05:d4:a0:35:7f:fd:ef:7f:a5:e2:8a:5f:0c:1a:d9:4a: d2:dd:2d:1c:50:89:b7:02:35:de:d8:ad:61:0f:ca:c7:90:a7: c0:e8:1e:43:56:b3:93:e0:4b:4d:c3:4f:f1:a9:30:72:5e:8c: 28:04:48:a7:17:ae:59:19:41:aa:8e:a2:24:51:4d:1b:c8:7d: 02:67:f5:0a:2a:cd:96:0d:8e:50:ba:77:d1:ca:e9:79:c4:92: 5f:4b:8c:14 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgIBHzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4NUZF MEZBNzA0NDYwQUE0RkFFRjhGQThDQTYwOUYwMEM0Q0RFMDA4MB4XDTI0MDgzMTAx MjkzNVoXDTI1MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoMDI3RjQxQzY1RjYzMkFE QTYwQ0QzRTQ2RkI3RDM0NzM2RkFEOTI0QzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAN5SkWjYBmMV57PEsTzjzN+PlRHruM2LN6/e7ay3iyxmz2XsMa1Y qvXb6ypr/MB4FbW5dHjkKqct81m0kfmdLTiLM73QP+R621m3zIpOvaQF2sa4tu1v yr+6i0NaKg/pyf048VtgOMWIuLOpQjTgjPBu3XVHsW4C8KsUe06Cmmq4WPLU+cDl fwge5+AO+vytO7QJ8YgWC43tS7q/FcvMgnjy6Y3osp463xBp3ELzIpBcyq3tdgV8 iZkDtzgqYV/3nodFtVa2xeQhbvlQGU8ayQOeZoXjrxI0exS3ksrCWSeYweoJ0SOO MEn8sOyJSoxaObD1yYpAspKVJiGC64cu+e8CAwEAAaOCAiUwggIhMB0GA1UdDgQW BBQCf0HGX2Mq2mDNPkb7fTRzb62STDAfBgNVHSMEGDAWgBSF/g+nBEYKpPrvj6jK YJ8AxM3gCDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjI1MS9oZjRQcHdSR0NxVDY3NC1veW1DZkFNVE40QWcuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9oZjRQcHdSR0NxVDY3NC1veW1DZkFN VE40QWcuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMjI1MS9BbjlCeGw5akt0cGd6VDVHLTMwMGMyLXRra3cucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIA ATAFAwMDhcgwDQYJKoZIhvcNAQELBQADggEBAEgtZ0pW7dX9tLe+FvLS9YVZEdS8 081CQ28DUMUIjEgPgmlUHeb9RPSs+XoMd8X/PgE0xb2wqbHIT39u0yYKpe0BCAI3 pjVQnBIHPMAOMdDRc9KTa9IlHsKZSn8F9+N4oofxUIGuzYbiBhUx730x3WbZ7vid DrMq8onV8m9jlxCDvj3YeiNAbnzRRil5aBVR4vntWO5y7lGUXJDp1aSRokwNEx5q BdSgNX/973+l4opfDBrZStLdLRxQibcCNd7YrWEPyseQp8DoHkNWs5PgS03DT/Gp MHJejCgESKcXrlkZQaqOoiRRTRvIfQJn9QoqzZYNjlC6d9HK6XnEkl9LjBQ= -----END CERTIFICATE-----Generated at Sun Feb 16 22:05:11 2025 by rpki-client