$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/siNvWrfB4nCN-oIvwLLeioq1L1k.roa File: siNvWrfB4nCN-oIvwLLeioq1L1k.roa (raw, json) Hash identifier: A60KKReoCjIlAJIBFea6XzNhPe5SmiVkFbjj8ZnOrKY= Subject key identifier: B2:23:6F:5A:B7:C1:E2:70:8D:FA:82:2F:C0:B2:DE:8A:8A:B5:2F:59 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 02E2 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/siNvWrfB4nCN-oIvwLLeioq1L1k.roa Signing time: Thu 10 Oct 2024 01:16:22 +0000 ROA not before: Thu 10 Oct 2024 01:16:22 +0000 ROA not after: Mon 15 Sep 2025 01:30:03 +0000 asID: 10013 IP address blocks: 27.133.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 738 (0x2e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Oct 10 01:16:22 2024 GMT Not After : Sep 15 01:30:03 2025 GMT Subject: CN=B2236F5AB7C1E2708DFA822FC0B2DE8A8AB52F59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:22:18:e5:91:86:97:d3:58:91:21:96:9c:ac: a2:88:94:a7:dc:89:a5:71:02:51:d3:ae:56:d9:bc: 84:db:c2:47:15:ac:d2:bd:db:d9:3d:eb:f3:51:8d: ca:67:05:ad:bf:e8:35:00:b2:eb:25:4c:5e:98:c5: 77:b0:de:47:b7:7c:b7:30:87:e4:cc:cf:72:a2:88: 78:d5:f7:15:be:fe:13:41:5b:36:bc:e7:f3:7d:49: 9a:db:eb:75:bb:ff:d9:5f:45:2a:c7:8d:a9:81:2e: 24:dc:d5:6f:dc:24:81:0f:d7:a9:ed:09:38:05:1a: 43:90:7a:fc:1c:d5:b2:23:ca:7a:8c:98:bc:23:7f: 0b:18:28:81:2a:48:06:a7:e4:50:f7:a0:5b:e8:41: 17:4b:74:fa:bb:80:d0:55:0a:fa:bc:c1:bb:cd:d8: ec:45:ac:37:61:1a:46:3a:ff:20:dd:53:20:0a:a0: 5c:d1:c3:fe:2b:ba:1c:0f:1a:f0:ea:35:5b:f0:0c: cd:68:fd:b9:07:0e:76:5f:1e:a5:da:e6:68:50:a6: aa:81:83:2c:a0:f4:13:32:c1:4c:45:9d:55:b0:af: fd:85:fb:53:64:20:51:01:2f:74:78:1b:77:40:77: fe:94:fc:e0:53:87:01:24:66:33:50:01:38:06:f8: 1b:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:23:6F:5A:B7:C1:E2:70:8D:FA:82:2F:C0:B2:DE:8A:8A:B5:2F:59 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/siNvWrfB4nCN-oIvwLLeioq1L1k.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.133.0.0/21 Signature Algorithm: sha256WithRSAEncryption 1b:0c:68:58:28:00:ed:dc:78:bd:e5:86:ef:3d:e1:36:1a:73: 30:bf:47:4b:25:8d:e2:f7:38:f1:76:ea:88:ec:7e:c1:41:f0: 2d:f2:1f:e0:5a:7b:fb:ec:6f:94:87:06:b0:49:68:53:53:c5: 78:73:45:53:e9:73:3e:0d:73:ad:62:30:cc:3c:ae:25:4d:4e: a0:00:a2:86:4b:f5:11:38:ff:09:6c:d9:60:db:c0:cc:8b:0f: b5:06:61:0b:9d:c2:28:b2:25:7d:b9:71:4e:9c:fa:3c:fd:69: 7e:8d:e0:d5:1d:e0:fe:7f:9a:71:e0:44:e8:10:51:28:d4:df: db:41:49:4d:e0:ae:3c:20:7e:e5:88:11:b2:fb:38:a5:b0:fc: 03:1f:61:e6:0e:34:ad:c0:4d:a7:43:90:35:15:db:c4:f0:7d: c6:8e:2a:0c:47:3f:60:9b:f1:f8:99:ba:55:ad:76:4f:d2:1e: 79:a2:bb:1d:f4:21:6f:bd:87:72:64:40:ee:62:3e:e4:23:27: a7:8a:c9:56:72:45:9e:45:6e:0b:d5:f0:5f:7d:e6:22:f0:fa: 35:82:16:db:bd:ba:b2:9a:9f:73:b9:ad:4d:81:bb:2c:9d:d0: b0:52:a3:ce:8a:cd:2a:86:17:9f:b7:84:33:69:dc:d3:21:de: fb:d5:65:6c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAuIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNDEwMTAw MTE2MjJaFw0yNTA5MTUwMTMwMDNaMDMxMTAvBgNVBAMTKEIyMjM2RjVBQjdDMUUy NzA4REZBODIyRkMwQjJERThBOEFCNTJGNTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCeIhjlkYaX01iRIZacrKKIlKfciaVxAlHTrlbZvITbwkcVrNK9 29k96/NRjcpnBa2/6DUAsuslTF6YxXew3ke3fLcwh+TMz3KiiHjV9xW+/hNBWza8 5/N9SZrb63W7/9lfRSrHjamBLiTc1W/cJIEP16ntCTgFGkOQevwc1bIjynqMmLwj fwsYKIEqSAan5FD3oFvoQRdLdPq7gNBVCvq8wbvN2OxFrDdhGkY6/yDdUyAKoFzR w/4ruhwPGvDqNVvwDM1o/bkHDnZfHqXa5mhQpqqBgyyg9BMywUxFnVWwr/2F+1Nk IFEBL3R4G3dAd/6U/OBThwEkZjNQATgG+BvrAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUsiNvWrfB4nCN+oIvwLLeioq1L1kwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L3NpTnZXcmZCNG5DTi1vSXZ3TExlaW9xMUwxay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMbhQAwDQYJKoZIhvcNAQELBQADggEBABsMaFgoAO3ceL3lhu894TYaczC/ R0sljeL3OPF26ojsfsFB8C3yH+Bae/vsb5SHBrBJaFNTxXhzRVPpcz4Nc61iMMw8 riVNTqAAooZL9RE4/wls2WDbwMyLD7UGYQudwiiyJX25cU6c+jz9aX6N4NUd4P5/ mnHgROgQUSjU39tBSU3grjwgfuWIEbL7OKWw/AMfYeYONK3ATadDkDUV28TwfcaO KgxHP2Cb8fiZulWtdk/SHnmiux30IW+9h3JkQO5iPuQjJ6eKyVZyRZ5FbgvV8F99 5iLw+jWCFtu9urKan3O5rU2Buyyd0LBSo86KzSqGF5+3hDNp3NMh3vvVZWw= -----END CERTIFICATE-----Generated at Sun Feb 16 22:26:35 2025 by rpki-client