$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/MXI3Y8Fqovr-Oc5MwIedLGMCw8Q.roa File: MXI3Y8Fqovr-Oc5MwIedLGMCw8Q.roa (raw, json) Hash identifier: WVTlv1kZoNTZd+GOh44WUDCCzNJe7BdQzuGnbxFKh5M= Subject key identifier: 31:72:37:63:C1:6A:A2:FA:FE:39:CE:4C:C0:87:9D:2C:63:02:C3:C4 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 02E9 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/MXI3Y8Fqovr-Oc5MwIedLGMCw8Q.roa Signing time: Thu 10 Oct 2024 01:20:24 +0000 ROA not before: Thu 10 Oct 2024 01:20:24 +0000 ROA not after: Mon 15 Sep 2025 01:30:03 +0000 asID: 10013 IP address blocks: 27.135.74.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 745 (0x2e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Oct 10 01:20:24 2024 GMT Not After : Sep 15 01:30:03 2025 GMT Subject: CN=31723763C16AA2FAFE39CE4CC0879D2C6302C3C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:4b:4c:de:87:88:ab:02:70:51:a2:93:ec:de: 42:a7:fb:1f:e0:49:15:7f:20:cf:03:4d:2d:5d:a3: b4:16:1e:2b:3f:4c:cb:0f:82:59:05:a1:08:f6:6b: f2:37:3a:e2:1c:05:05:9b:c5:60:99:f7:c6:05:d4: a2:89:a4:9b:63:fb:25:52:5d:d5:fa:a9:9e:56:f5: d2:60:23:ee:11:71:8e:1d:73:79:db:85:4a:ec:99: 3e:72:0a:85:97:48:d9:29:f1:59:00:54:73:14:27: 00:49:17:41:5f:d5:f4:fb:ad:62:4a:e5:92:53:76: 29:b7:30:2b:8a:55:38:32:66:7d:dd:12:a2:ef:a3: 93:f0:5c:1f:e4:71:aa:1a:ca:99:5c:7a:d4:5a:87: 64:b2:c3:e5:44:e0:01:7d:c3:3d:ac:42:77:a0:0b: 63:ef:f0:3b:b5:05:41:6d:b8:9b:e6:68:6b:f3:c2: 2b:7a:b3:7b:f5:2d:3e:77:dd:b0:ec:aa:89:ab:5c: f4:6c:88:c1:ef:ad:5e:be:eb:8b:66:eb:01:86:dc: 98:b4:f5:cf:0b:f5:ec:5d:df:ae:75:ee:54:9e:39: c2:f9:22:8c:c4:14:ee:8b:78:de:bc:c9:93:f9:ba: 94:35:8d:2a:22:b0:52:20:07:42:3b:33:ee:09:2e: e7:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:72:37:63:C1:6A:A2:FA:FE:39:CE:4C:C0:87:9D:2C:63:02:C3:C4 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/MXI3Y8Fqovr-Oc5MwIedLGMCw8Q.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.135.74.0/23 Signature Algorithm: sha256WithRSAEncryption 2a:d8:03:2d:3d:43:48:64:8c:4e:19:c8:4d:47:7a:99:f6:67: ac:c0:c1:df:a5:2f:42:c7:9f:da:7b:c3:a1:9a:2f:68:5d:c2: d7:5a:94:9d:64:3c:ba:80:a2:de:ba:ec:0f:6f:3b:ec:0a:d7: 6c:1a:ce:ee:58:6f:3f:36:b0:bf:b9:ff:2c:ef:08:69:37:8a: 27:c6:26:01:d6:f2:ad:c2:ae:5f:b1:4c:7e:0d:52:4c:42:aa: 55:b9:49:1c:f2:04:a8:5a:76:5d:62:b2:f6:cc:e2:cf:2b:6f: d6:24:43:5d:40:ec:92:36:1f:aa:c9:5b:16:df:14:af:84:8a: af:56:ac:14:f6:41:1e:99:9d:df:8b:c9:31:c9:34:56:bc:26: 1f:87:79:a9:8d:00:08:5e:71:0a:b8:a6:78:6b:16:6a:1f:8e: a1:78:b6:a1:7e:c7:1e:0b:74:4e:49:01:ca:65:b2:81:a3:da: 10:4e:31:a1:07:e0:7a:d2:d8:53:6c:d9:8b:34:1c:1c:8e:a7: 07:aa:e8:a8:e0:18:cf:5f:b5:aa:30:bd:8a:0f:e6:ab:2f:8b: 71:5b:e5:58:4e:ce:08:43:f5:92:c8:a0:81:be:a2:d4:7d:2e: 77:de:94:32:af:fd:ff:86:88:cc:96:76:8c:a6:07:bb:a5:c5: da:e2:4a:99 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAukwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNDEwMTAw MTIwMjRaFw0yNTA5MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDMxNzIzNzYzQzE2QUEy RkFGRTM5Q0U0Q0MwODc5RDJDNjMwMkMzQzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBS0zeh4irAnBRopPs3kKn+x/gSRV/IM8DTS1do7QWHis/TMsP glkFoQj2a/I3OuIcBQWbxWCZ98YF1KKJpJtj+yVSXdX6qZ5W9dJgI+4RcY4dc3nb hUrsmT5yCoWXSNkp8VkAVHMUJwBJF0Ff1fT7rWJK5ZJTdim3MCuKVTgyZn3dEqLv o5PwXB/kcaoayplcetRah2Syw+VE4AF9wz2sQnegC2Pv8Du1BUFtuJvmaGvzwit6 s3v1LT533bDsqomrXPRsiMHvrV6+64tm6wGG3Ji09c8L9exd36517lSeOcL5IozE FO6LeN68yZP5upQ1jSoisFIgB0I7M+4JLucTAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUMXI3Y8Fqovr+Oc5MwIedLGMCw8QwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L01YSTNZOEZxb3ZyLU9jNU13SWVkTEdNQ3c4US5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEbh0owDQYJKoZIhvcNAQELBQADggEBACrYAy09Q0hkjE4ZyE1Hepn2Z6zA wd+lL0LHn9p7w6GaL2hdwtdalJ1kPLqAot667A9vO+wK12wazu5Ybz82sL+5/yzv CGk3iifGJgHW8q3Crl+xTH4NUkxCqlW5SRzyBKhadl1isvbM4s8rb9YkQ11A7JI2 H6rJWxbfFK+Eiq9WrBT2QR6Znd+LyTHJNFa8Jh+HeamNAAhecQq4pnhrFmofjqF4 tqF+xx4LdE5JAcplsoGj2hBOMaEH4HrS2FNs2Ys0HByOpweq6KjgGM9ftaowvYoP 5qsvi3Fb5VhOzghD9ZLIoIG+otR9LnfelDKv/f+GiMyWdoymB7ulxdriSpk= -----END CERTIFICATE-----Generated at Sun Feb 16 22:18:21 2025 by rpki-client