$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/506/cM-Hmbs4xgDqRIDUqy9SEMc6lHg.roa File: cM-Hmbs4xgDqRIDUqy9SEMc6lHg.roa (raw, json) Hash identifier: +ZKUmfHJlAWNI63aZc2WqlL4M5xlxQ/BUVrmRDoW3sk= Subject key identifier: 70:CF:87:99:BB:38:C6:00:EA:44:80:D4:AB:2F:52:10:C7:3A:94:78 Certificate issuer: /CN=4BEA6BD8A9C7848829141999A016A0C9D19912AF Certificate serial: 36 Authority key identifier: 4B:EA:6B:D8:A9:C7:84:88:29:14:19:99:A0:16:A0:C9:D1:99:12:AF Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/S-pr2KnHhIgpFBmZoBagydGZEq8.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/506/cM-Hmbs4xgDqRIDUqy9SEMc6lHg.roa Signing time: Tue 11 Jun 2024 13:26:47 +0000 ROA not before: Tue 11 Jun 2024 13:26:47 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 14618 IP address blocks: 27.131.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/506/S-pr2KnHhIgpFBmZoBagydGZEq8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/506/S-pr2KnHhIgpFBmZoBagydGZEq8.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/S-pr2KnHhIgpFBmZoBagydGZEq8.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54 (0x36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4BEA6BD8A9C7848829141999A016A0C9D19912AF Validity Not Before: Jun 11 13:26:47 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=70CF8799BB38C600EA4480D4AB2F5210C73A9478 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:b2:aa:02:c4:1a:10:4e:40:5b:df:f4:71:9c: 87:1b:aa:35:d2:86:a3:f7:e7:d4:39:70:2d:2b:79: f4:6d:2c:67:67:5b:4c:61:40:f8:ff:7d:e1:67:30: b7:75:e8:a7:48:da:58:88:49:ec:7d:95:ec:18:5a: a1:b2:03:60:64:69:75:5d:78:9e:a7:c5:69:23:e0: f3:3f:3d:01:6f:0f:c3:c7:3f:0c:4c:ad:14:21:17: 21:aa:0f:47:54:7b:ec:58:47:b1:a1:97:26:24:9d: f9:7f:8f:bd:e3:49:e9:6e:79:d7:b3:dd:50:2e:39: 47:14:06:c4:bb:c7:9f:ca:5f:9a:3f:43:8e:e8:41: 29:89:12:e5:25:6d:38:41:0d:18:ed:4a:6f:73:d6: 06:a8:09:e8:94:33:b3:c4:ce:1e:bb:05:d4:28:02: fb:61:fc:72:84:0d:8e:42:d7:da:ec:45:0c:ec:a9: d7:ad:68:d8:26:91:2a:7d:b2:21:f8:f0:0f:eb:4d: fc:2a:d4:0e:5e:b3:6d:20:06:2c:c6:fb:f0:77:f9: 72:e9:ad:87:98:d4:10:35:16:8b:30:8c:18:b7:45: 29:ba:6f:fd:02:72:a2:31:97:60:a6:03:91:3c:20: 07:d4:da:67:2b:83:47:6e:61:43:0c:f8:76:e7:f1: a1:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:CF:87:99:BB:38:C6:00:EA:44:80:D4:AB:2F:52:10:C7:3A:94:78 X509v3 Authority Key Identifier: keyid:4B:EA:6B:D8:A9:C7:84:88:29:14:19:99:A0:16:A0:C9:D1:99:12:AF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/506/S-pr2KnHhIgpFBmZoBagydGZEq8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/S-pr2KnHhIgpFBmZoBagydGZEq8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/506/cM-Hmbs4xgDqRIDUqy9SEMc6lHg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.131.8.0/24 Signature Algorithm: sha256WithRSAEncryption 26:af:0f:72:0c:7a:14:36:52:70:01:1d:29:4f:a6:a2:96:0d: 4c:bf:d8:f3:36:6e:0b:b2:b7:71:09:08:15:bc:c5:95:6e:57: 81:e6:33:6d:8a:a3:3e:b0:c5:b6:64:dd:7c:3c:4c:ac:38:77: 04:6e:12:3d:b0:d4:40:26:82:12:5a:66:a4:79:35:a6:f6:31: a2:06:84:d7:20:ed:09:d6:fe:a8:26:84:f0:e6:c4:f0:04:3e: 58:43:a6:9c:4e:3c:13:af:4c:a2:a8:90:a1:43:d6:87:09:30: 76:59:3b:fc:00:6d:d5:3b:47:b6:bd:22:b3:b9:4a:5d:df:fa: b6:93:06:ec:76:0e:59:f6:99:c4:0d:a2:28:82:dc:d5:21:05: 89:75:1a:9f:0d:3c:75:6b:71:55:f9:29:ca:d3:c7:bc:7f:00: 53:95:2a:54:71:67:39:af:68:54:43:ab:13:a2:c7:c1:76:d3: 6d:27:06:ec:85:fd:16:c8:b8:51:a8:ac:bf:fa:91:b7:de:03: f9:57:87:30:0e:5e:c8:8d:d2:4c:fa:93:71:95:8a:c1:ca:72: 75:a1:5b:92:5a:0c:e9:11:11:5c:42:b4:48:fc:1c:d8:ea:00: a8:b6:c3:bf:41:fa:30:9e:19:5e:62:75:5c:3f:44:ea:4e:a7: 9f:bc:f5:96 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBNjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0QkVB NkJEOEE5Qzc4NDg4MjkxNDE5OTlBMDE2QTBDOUQxOTkxMkFGMB4XDTI0MDYxMTEz MjY0N1oXDTI1MDUxNTAxMzAwM1owMzExMC8GA1UEAxMoNzBDRjg3OTlCQjM4QzYw MEVBNDQ4MEQ0QUIyRjUyMTBDNzNBOTQ3ODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKSyqgLEGhBOQFvf9HGchxuqNdKGo/fn1DlwLSt59G0sZ2dbTGFA +P994Wcwt3Xop0jaWIhJ7H2V7BhaobIDYGRpdV14nqfFaSPg8z89AW8Pw8c/DEyt FCEXIaoPR1R77FhHsaGXJiSd+X+PveNJ6W5517PdUC45RxQGxLvHn8pfmj9DjuhB KYkS5SVtOEENGO1Kb3PWBqgJ6JQzs8TOHrsF1CgC+2H8coQNjkLX2uxFDOyp161o 2CaRKn2yIfjwD+tN/CrUDl6zbSAGLMb78Hf5cumth5jUEDUWizCMGLdFKbpv/QJy ojGXYKYDkTwgB9TaZyuDR25hQwz4dufxoYUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRwz4eZuzjGAOpEgNSrL1IQxzqUeDAfBgNVHSMEGDAWgBRL6mvYqceEiCkUGZmg FqDJ0ZkSrzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTA2L1MtcHIyS25IaElncEZCbVpvQmFneWRHWkVxOC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1MtcHIyS25IaElncEZCbVpvQmFneWRH WkVxOC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81MDYvY00tSG1iczR4Z0RxUklEVXF5OVNFTWM2bEhnLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEABuDCDANBgkqhkiG9w0BAQsFAAOCAQEAJq8Pcgx6FDZScAEdKU+mopYNTL/Y 8zZuC7K3cQkIFbzFlW5XgeYzbYqjPrDFtmTdfDxMrDh3BG4SPbDUQCaCElpmpHk1 pvYxogaE1yDtCdb+qCaE8ObE8AQ+WEOmnE48E69MoqiQoUPWhwkwdlk7/ABt1TtH tr0is7lKXd/6tpMG7HYOWfaZxA2iKILc1SEFiXUanw08dWtxVfkpytPHvH8AU5Uq VHFnOa9oVEOrE6LHwXbTbScG7IX9Fsi4Uaisv/qRt94D+VeHMA5eyI3STPqTcZWK wcpydaFbkloM6RERXEK0SPwc2OoAqLbDv0H6MJ4ZXmJ1XD9E6k6nn7z1lg== -----END CERTIFICATE-----Generated at Sun Feb 16 15:40:40 2025 by rpki-client