$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/506/KTWPVOdMb7TNq15KWwrCCbxLFNQ.roa File: KTWPVOdMb7TNq15KWwrCCbxLFNQ.roa (raw, json) Hash identifier: 1clce5wDUHRWgNQEdVHiOTCZA1+Jk8It5zcLpPw6hc8= Subject key identifier: 29:35:8F:54:E7:4C:6F:B4:CD:AB:5E:4A:5B:0A:C2:09:BC:4B:14:D4 Certificate issuer: /CN=4BEA6BD8A9C7848829141999A016A0C9D19912AF Certificate serial: 37 Authority key identifier: 4B:EA:6B:D8:A9:C7:84:88:29:14:19:99:A0:16:A0:C9:D1:99:12:AF Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/S-pr2KnHhIgpFBmZoBagydGZEq8.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/506/KTWPVOdMb7TNq15KWwrCCbxLFNQ.roa Signing time: Tue 11 Jun 2024 13:26:52 +0000 ROA not before: Tue 11 Jun 2024 13:26:52 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 16509 IP address blocks: 27.131.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/506/S-pr2KnHhIgpFBmZoBagydGZEq8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/506/S-pr2KnHhIgpFBmZoBagydGZEq8.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/S-pr2KnHhIgpFBmZoBagydGZEq8.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4BEA6BD8A9C7848829141999A016A0C9D19912AF Validity Not Before: Jun 11 13:26:52 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=29358F54E74C6FB4CDAB5E4A5B0AC209BC4B14D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:88:82:d2:2f:9b:eb:87:f8:52:c6:d1:46:fa: 7f:0b:f6:b1:83:78:98:68:a6:ed:05:fb:1b:4f:44: 1c:7e:4e:7d:15:c4:5d:60:4e:3a:40:fc:59:a7:63: 56:50:20:03:35:22:38:2f:78:d5:63:c7:06:55:69: d9:e9:27:f7:62:7a:30:bd:89:24:61:2d:81:5a:6d: d8:24:df:db:5b:ef:02:b7:8e:0f:9c:18:81:1e:b9: 97:ae:ac:4b:ac:29:a1:17:05:d3:e9:a8:94:a2:4d: e8:84:78:49:dd:f3:28:bd:a8:a9:10:92:17:e0:5e: 41:9c:58:26:bd:68:df:78:b2:57:96:9a:2c:c7:6b: 0f:05:41:33:a8:93:39:aa:36:b3:b7:f7:d0:a7:92: f1:01:60:fe:be:07:d4:30:f7:da:25:d8:8b:7e:40: 36:1c:f4:bb:54:17:61:52:da:89:39:d3:70:fa:51: 4d:fe:63:a0:5d:62:e8:81:ca:ac:8a:7e:14:5c:32: 7e:81:34:0a:7d:0d:bd:0b:9f:f9:73:43:af:c2:2f: d1:78:50:d3:a7:58:02:e6:1b:44:76:08:d9:7a:bf: 27:a0:d7:e8:e0:51:c9:ea:62:0e:4b:e8:0e:73:6a: 92:55:77:8e:ef:42:00:78:68:a3:49:55:ac:9b:17: cb:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:35:8F:54:E7:4C:6F:B4:CD:AB:5E:4A:5B:0A:C2:09:BC:4B:14:D4 X509v3 Authority Key Identifier: keyid:4B:EA:6B:D8:A9:C7:84:88:29:14:19:99:A0:16:A0:C9:D1:99:12:AF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/506/S-pr2KnHhIgpFBmZoBagydGZEq8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/S-pr2KnHhIgpFBmZoBagydGZEq8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/506/KTWPVOdMb7TNq15KWwrCCbxLFNQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.131.8.0/24 Signature Algorithm: sha256WithRSAEncryption 08:f4:b8:3c:77:32:07:17:1a:85:df:02:bd:5e:fb:b6:6c:71: ce:4c:37:15:df:75:17:20:3a:e9:6f:2b:f1:c4:13:f3:e5:41: 07:da:33:1d:5c:57:04:6e:ed:05:16:9c:5e:91:27:01:7b:e5: 54:84:db:0b:56:f0:33:1b:39:e5:18:0b:31:30:7e:6f:f3:8a: f6:06:5e:f0:2d:1a:dd:a0:2b:fa:eb:bf:cb:0f:0e:39:04:37: 59:82:9d:cd:e9:3a:f4:a7:cb:7c:b6:cb:a7:30:75:de:d8:b4: 63:b2:36:f2:c2:e8:7f:63:89:24:14:e4:c5:e8:cb:4b:21:49: e0:6e:bb:f1:4a:ac:8e:11:90:e0:92:a2:1e:be:fe:53:f2:4a: bf:5b:35:7c:11:d4:08:20:af:f1:b9:d3:8f:0e:56:68:8d:4e: 39:d7:66:41:e2:ae:e4:e6:d1:c9:20:90:11:7f:24:e1:0d:17: 48:ac:9d:31:c1:fa:ef:14:0c:96:1b:34:0e:8b:9e:13:3f:a3: dd:ee:e3:1a:ae:33:91:88:7a:f7:0a:f6:90:cc:f1:bb:09:7e: 30:4f:e9:c3:3b:6f:00:c3:67:35:43:8a:39:b9:ed:dc:29:47: 20:f9:f9:a2:ec:47:4e:2f:a1:f2:8d:88:ce:53:4b:15:f7:4f: fd:0e:e6:18 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBNzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0QkVB NkJEOEE5Qzc4NDg4MjkxNDE5OTlBMDE2QTBDOUQxOTkxMkFGMB4XDTI0MDYxMTEz MjY1MloXDTI1MDUxNTAxMzAwM1owMzExMC8GA1UEAxMoMjkzNThGNTRFNzRDNkZC NENEQUI1RTRBNUIwQUMyMDlCQzRCMTRENDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMuIgtIvm+uH+FLG0Ub6fwv2sYN4mGim7QX7G09EHH5OfRXEXWBO OkD8WadjVlAgAzUiOC941WPHBlVp2ekn92J6ML2JJGEtgVpt2CTf21vvAreOD5wY gR65l66sS6wpoRcF0+molKJN6IR4Sd3zKL2oqRCSF+BeQZxYJr1o33iyV5aaLMdr DwVBM6iTOao2s7f30KeS8QFg/r4H1DD32iXYi35ANhz0u1QXYVLaiTnTcPpRTf5j oF1i6IHKrIp+FFwyfoE0Cn0NvQuf+XNDr8Iv0XhQ06dYAuYbRHYI2Xq/J6DX6OBR yepiDkvoDnNqklV3ju9CAHhoo0lVrJsXy30CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQpNY9U50xvtM2rXkpbCsIJvEsU1DAfBgNVHSMEGDAWgBRL6mvYqceEiCkUGZmg FqDJ0ZkSrzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTA2L1MtcHIyS25IaElncEZCbVpvQmFneWRHWkVxOC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1MtcHIyS25IaElncEZCbVpvQmFneWRH WkVxOC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81MDYvS1RXUFZPZE1iN1ROcTE1S1d3ckNDYnhMRk5RLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEABuDCDANBgkqhkiG9w0BAQsFAAOCAQEACPS4PHcyBxcahd8CvV77tmxxzkw3 Fd91FyA66W8r8cQT8+VBB9ozHVxXBG7tBRacXpEnAXvlVITbC1bwMxs55RgLMTB+ b/OK9gZe8C0a3aAr+uu/yw8OOQQ3WYKdzek69KfLfLbLpzB13ti0Y7I28sLof2OJ JBTkxejLSyFJ4G678UqsjhGQ4JKiHr7+U/JKv1s1fBHUCCCv8bnTjw5WaI1OOddm QeKu5ObRySCQEX8k4Q0XSKydMcH67xQMlhs0DoueEz+j3e7jGq4zkYh69wr2kMzx uwl+ME/pwztvAMNnNUOKObnt3ClHIPn5ouxHTi+h8o2IzlNLFfdP/Q7mGA== -----END CERTIFICATE-----Generated at Sun Feb 16 15:24:39 2025 by rpki-client