$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/ISkEM6MK6VK2g-BO8enQU42mNMA.roa File: ISkEM6MK6VK2g-BO8enQU42mNMA.roa (raw, json) Hash identifier: EkSRyzXrdSTecSyW9VN2NtQSU+8yzUXxF5UNadVQFko= Subject key identifier: 21:29:04:33:A3:0A:E9:52:B6:83:E0:4E:F1:E9:D0:53:8D:A6:34:C0 Certificate issuer: /CN=06FA662194FCF1EB983AB44CC913004180770D18 Certificate serial: 58 Authority key identifier: 06:FA:66:21:94:FC:F1:EB:98:3A:B4:4C:C9:13:00:41:80:77:0D:18 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BvpmIZT88euYOrRMyRMAQYB3DRg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/ISkEM6MK6VK2g-BO8enQU42mNMA.roa Signing time: Sat 30 Nov 2024 01:32:01 +0000 ROA not before: Sat 30 Nov 2024 01:32:01 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 2514 IP address blocks: 133.232.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/BvpmIZT88euYOrRMyRMAQYB3DRg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/BvpmIZT88euYOrRMyRMAQYB3DRg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BvpmIZT88euYOrRMyRMAQYB3DRg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06FA662194FCF1EB983AB44CC913004180770D18 Validity Not Before: Nov 30 01:32:01 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=21290433A30AE952B683E04EF1E9D0538DA634C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:86:07:87:38:14:14:21:bf:5d:fe:28:fc:23: 9d:c0:c5:40:8b:84:d7:6b:11:22:64:cc:0b:c6:c0: 90:3f:a5:93:9b:12:0b:2d:0a:95:84:a9:c8:3b:91: 9f:1c:f6:35:17:ac:e9:15:17:9a:ff:59:af:89:9f: d1:6f:f2:cf:a5:2d:83:5e:1c:06:5f:32:4c:cf:c6: fc:2b:0a:a6:d8:76:83:2a:ac:48:b9:45:c6:f4:d5: e3:be:16:bb:ea:a0:9e:72:b1:5c:8b:a3:d8:79:5d: 47:e8:de:5e:7f:34:85:1b:f4:74:8d:59:56:59:3b: d9:3c:ba:3a:c6:89:a4:3c:f7:9d:49:f0:81:1d:73: c1:0a:1e:07:7b:c3:05:88:24:2b:8e:bf:25:3c:3c: 99:93:e1:4a:db:cc:17:54:57:b0:65:1a:5b:8e:2d: 2f:82:aa:91:c4:05:f1:c7:21:3f:99:b7:77:2a:73: b4:21:ca:c0:0f:88:6a:55:bf:0a:f9:b1:32:4c:35: 9d:74:b4:33:91:05:36:44:d7:ef:78:26:5e:a4:47: 12:d3:7c:04:b5:17:29:ef:7f:5d:dc:60:2b:d6:9b: 68:84:05:43:23:c1:22:b4:96:04:e0:0d:6b:21:bc: 57:06:47:87:ab:6f:92:a3:8d:1d:ac:da:4e:ef:c8: 3b:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:29:04:33:A3:0A:E9:52:B6:83:E0:4E:F1:E9:D0:53:8D:A6:34:C0 X509v3 Authority Key Identifier: keyid:06:FA:66:21:94:FC:F1:EB:98:3A:B4:4C:C9:13:00:41:80:77:0D:18 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/BvpmIZT88euYOrRMyRMAQYB3DRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BvpmIZT88euYOrRMyRMAQYB3DRg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/ISkEM6MK6VK2g-BO8enQU42mNMA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 133.232.128.0/17 Signature Algorithm: sha256WithRSAEncryption 12:90:db:07:13:cc:77:38:f3:a3:b1:78:cc:9a:3c:66:a6:d8: 07:9b:63:c0:5b:10:94:22:14:a9:b9:17:08:a3:e7:9f:6b:dd: 8f:c0:63:b4:2c:51:b7:db:ea:35:b1:ad:10:6e:b3:0d:e7:b6: c1:4f:a6:1e:48:4b:6f:c7:66:d5:12:a7:5c:12:86:65:ae:e3: 67:65:5e:9c:3f:6c:19:59:db:89:ac:ff:c4:5e:67:37:c4:ff: 5c:2b:83:54:b4:11:90:17:a5:62:b3:2c:ad:2e:5f:a3:61:d2: 88:79:ca:7c:b1:55:b2:03:d2:df:3d:16:7b:bd:55:84:65:7e: 12:22:03:dc:ec:70:45:41:32:4d:df:ce:1f:52:e1:38:b0:ca: 5e:9b:3a:85:6e:e9:8b:f3:9d:95:a5:a9:48:7e:2a:c9:b4:a9: d2:f4:bf:2b:f9:53:d4:de:d2:fd:64:ce:22:15:31:14:65:1f: 98:90:71:ff:9d:68:d4:fd:d6:3c:ec:e2:83:9d:47:eb:10:ee: 8b:f3:fc:c6:63:7d:92:dd:5e:da:e8:ab:38:3e:bc:01:6d:04: d9:f0:26:d8:22:32:5a:97:bc:fc:bb:5b:5c:53:ff:4a:dc:6e: d5:40:d5:90:7e:5f:9a:29:07:36:f6:ab:4e:3c:54:c0:8d:a5: 64:7a:84:c2 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBWDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwNkZB NjYyMTk0RkNGMUVCOTgzQUI0NENDOTEzMDA0MTgwNzcwRDE4MB4XDTI0MTEzMDAx MzIwMVoXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoMjEyOTA0MzNBMzBBRTk1 MkI2ODNFMDRFRjFFOUQwNTM4REE2MzRDMDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAM6GB4c4FBQhv13+KPwjncDFQIuE12sRImTMC8bAkD+lk5sSCy0K lYSpyDuRnxz2NRes6RUXmv9Zr4mf0W/yz6Utg14cBl8yTM/G/CsKpth2gyqsSLlF xvTV474Wu+qgnnKxXIuj2HldR+jeXn80hRv0dI1ZVlk72Ty6OsaJpDz3nUnwgR1z wQoeB3vDBYgkK46/JTw8mZPhStvMF1RXsGUaW44tL4KqkcQF8cchP5m3dypztCHK wA+IalW/CvmxMkw1nXS0M5EFNkTX73gmXqRHEtN8BLUXKe9/XdxgK9abaIQFQyPB IrSWBOANayG8VwZHh6tvkqONHazaTu/IO5sCAwEAAaOCAiIwggIeMB0GA1UdDgQW BBQhKQQzowrpUraD4E7x6dBTjaY0wDAfBgNVHSMEGDAWgBQG+mYhlPzx65g6tEzJ EwBBgHcNGDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjkvQnZwbUlaVDg4ZXVZT3JSTXlSTUFRWUIzRFJnLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvQnZwbUlaVDg4ZXVZT3JSTXlSTUFRWUIz RFJnLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzI5L0lTa0VNNk1LNlZLMmctQk84ZW5RVTQybU5NQS5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAeF6IAwDQYJKoZIhvcNAQELBQADggEBABKQ2wcTzHc486OxeMyaPGam2AebY8Bb EJQiFKm5Fwij559r3Y/AY7QsUbfb6jWxrRBusw3ntsFPph5IS2/HZtUSp1wShmWu 42dlXpw/bBlZ24ms/8ReZzfE/1wrg1S0EZAXpWKzLK0uX6Nh0oh5ynyxVbID0t89 Fnu9VYRlfhIiA9zscEVBMk3fzh9S4Tiwyl6bOoVu6YvznZWlqUh+Ksm0qdL0vyv5 U9Te0v1kziIVMRRlH5iQcf+daNT91jzs4oOdR+sQ7ovz/MZjfZLdXtroqzg+vAFt BNnwJtgiMlqXvPy7W1xT/0rcbtVA1ZB+X5opBzb2q048VMCNpWR6hMI= -----END CERTIFICATE-----Generated at Wed Feb 19 22:44:21 2025 by rpki-client