$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/506/xkONwkrUDH7R6g3nC2yXilS4xY0.roa File: xkONwkrUDH7R6g3nC2yXilS4xY0.roa (raw, json) Hash identifier: ypSj+Akdnouagi4xy7ko0WfWckjb8Ew3LebxjJFphoI= Subject key identifier: C6:43:8D:C2:4A:D4:0C:7E:D1:EA:0D:E7:0B:6C:97:8A:54:B8:C5:8D Certificate issuer: /CN=4BEA6BD8A9C7848829141999A016A0C9D19912AF Certificate serial: 3E Authority key identifier: 4B:EA:6B:D8:A9:C7:84:88:29:14:19:99:A0:16:A0:C9:D1:99:12:AF Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/S-pr2KnHhIgpFBmZoBagydGZEq8.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/506/xkONwkrUDH7R6g3nC2yXilS4xY0.roa Signing time: Fri 02 Aug 2024 08:28:46 +0000 ROA not before: Fri 02 Aug 2024 08:28:46 +0000 ROA not after: Tue 15 Jul 2025 01:30:02 +0000 asID: 16509 IP address blocks: 27.131.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/506/S-pr2KnHhIgpFBmZoBagydGZEq8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/506/S-pr2KnHhIgpFBmZoBagydGZEq8.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/S-pr2KnHhIgpFBmZoBagydGZEq8.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4BEA6BD8A9C7848829141999A016A0C9D19912AF Validity Not Before: Aug 2 08:28:46 2024 GMT Not After : Jul 15 01:30:02 2025 GMT Subject: CN=C6438DC24AD40C7ED1EA0DE70B6C978A54B8C58D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:9d:1b:c2:c5:d0:64:c8:d5:86:c5:39:f9:bc: 78:31:6b:ad:7c:e3:32:34:70:f9:ec:8a:40:80:23: f6:81:55:d9:c0:6a:99:5f:8e:a2:93:20:40:70:eb: cc:9e:86:6c:c7:c9:45:5a:04:57:37:bd:29:e8:b7: a4:00:1d:98:e2:ec:0e:58:b1:12:67:fe:9b:b2:2d: e6:4e:be:ed:88:6f:30:6d:7d:21:ab:94:7f:68:6e: d8:a5:49:a3:e7:f9:d1:61:0e:e3:00:15:c4:69:f3: d9:a9:13:4d:e2:cb:43:fb:ac:6a:ae:bd:8a:c3:92: 36:a2:f1:6b:43:15:c5:c0:5b:bf:f7:fc:2f:5a:06: 13:09:c6:5e:e3:06:76:9b:6b:74:6c:dc:aa:61:4a: af:a4:73:a9:96:e4:f6:76:69:5d:29:9c:22:05:0b: 3d:1b:7d:a3:96:2e:45:3c:46:7e:90:d5:87:e9:1d: 9b:f3:85:82:25:a4:ce:54:83:a8:9d:a2:65:9d:be: b5:d3:84:9e:7e:ea:d2:3d:4d:e1:99:85:f0:11:ca: e1:60:ca:4a:3a:8b:c6:49:7e:f5:6e:0e:74:03:c5: a7:dc:f4:10:7f:ae:35:15:99:4c:dc:a6:8f:80:91: 9b:15:2c:f9:af:0a:be:7d:fa:d4:44:05:a0:3c:ec: a9:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:43:8D:C2:4A:D4:0C:7E:D1:EA:0D:E7:0B:6C:97:8A:54:B8:C5:8D X509v3 Authority Key Identifier: keyid:4B:EA:6B:D8:A9:C7:84:88:29:14:19:99:A0:16:A0:C9:D1:99:12:AF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/506/S-pr2KnHhIgpFBmZoBagydGZEq8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/S-pr2KnHhIgpFBmZoBagydGZEq8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/506/xkONwkrUDH7R6g3nC2yXilS4xY0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.131.10.0/24 Signature Algorithm: sha256WithRSAEncryption 78:a9:59:d1:96:69:fa:82:58:d6:3c:72:c5:be:4a:9e:ef:9e: fe:38:61:64:2c:3f:fa:a1:77:ee:a6:4b:bb:9c:08:2b:5f:63: ee:c6:21:df:86:99:da:83:e4:74:c4:a7:1a:ac:97:94:6b:67: cd:7c:5c:aa:0b:14:20:5c:49:36:df:7c:07:1a:26:4a:88:20: d1:b9:8a:a5:37:87:ea:0b:02:a3:a4:27:e0:f1:f7:a6:a0:7f: 52:3c:cf:f8:6f:03:e0:c1:33:d1:d3:6d:e0:15:a8:e7:41:78: 50:27:47:e6:6e:36:85:62:d0:81:79:e5:53:b0:a8:14:eb:d4: fc:16:77:9b:69:40:47:40:a5:94:b9:45:c6:1f:75:f1:5c:d5: de:52:f6:da:b5:c6:ca:0e:2c:f3:2d:51:9c:da:79:16:9f:0e: e6:ab:e6:95:b1:a8:46:5c:58:aa:1b:49:36:75:8f:ae:91:e0: 87:ec:31:1f:4e:27:2f:4c:f0:6e:7f:ad:a7:83:af:a7:41:28: 22:af:14:d9:18:86:17:57:ee:90:ef:cb:30:2d:63:cb:08:2a: dd:af:a2:08:9d:ea:38:c7:ee:88:9f:c3:01:7c:0b:12:2f:7b: 88:01:32:ac:12:b1:46:ca:5f:21:3c:41:f6:2c:89:ee:80:03: ca:c3:f8:ae -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBPjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0QkVB NkJEOEE5Qzc4NDg4MjkxNDE5OTlBMDE2QTBDOUQxOTkxMkFGMB4XDTI0MDgwMjA4 Mjg0NloXDTI1MDcxNTAxMzAwMlowMzExMC8GA1UEAxMoQzY0MzhEQzI0QUQ0MEM3 RUQxRUEwREU3MEI2Qzk3OEE1NEI4QzU4RDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALKdG8LF0GTI1YbFOfm8eDFrrXzjMjRw+eyKQIAj9oFV2cBqmV+O opMgQHDrzJ6GbMfJRVoEVze9Kei3pAAdmOLsDlixEmf+m7It5k6+7YhvMG19IauU f2hu2KVJo+f50WEO4wAVxGnz2akTTeLLQ/usaq69isOSNqLxa0MVxcBbv/f8L1oG EwnGXuMGdptrdGzcqmFKr6RzqZbk9nZpXSmcIgULPRt9o5YuRTxGfpDVh+kdm/OF giWkzlSDqJ2iZZ2+tdOEnn7q0j1N4ZmF8BHK4WDKSjqLxkl+9W4OdAPFp9z0EH+u NRWZTNymj4CRmxUs+a8Kvn361EQFoDzsqccCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTGQ43CStQMftHqDecLbJeKVLjFjTAfBgNVHSMEGDAWgBRL6mvYqceEiCkUGZmg FqDJ0ZkSrzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTA2L1MtcHIyS25IaElncEZCbVpvQmFneWRHWkVxOC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1MtcHIyS25IaElncEZCbVpvQmFneWRH WkVxOC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81MDYveGtPTndrclVESDdSNmczbkMyeVhpbFM0eFkwLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEABuDCjANBgkqhkiG9w0BAQsFAAOCAQEAeKlZ0ZZp+oJY1jxyxb5Knu+e/jhh ZCw/+qF37qZLu5wIK19j7sYh34aZ2oPkdMSnGqyXlGtnzXxcqgsUIFxJNt98Bxom Sogg0bmKpTeH6gsCo6Qn4PH3pqB/UjzP+G8D4MEz0dNt4BWo50F4UCdH5m42hWLQ gXnlU7CoFOvU/BZ3m2lAR0CllLlFxh918VzV3lL22rXGyg4s8y1RnNp5Fp8O5qvm lbGoRlxYqhtJNnWPrpHgh+wxH04nL0zwbn+tp4Ovp0EoIq8U2RiGF1fukO/LMC1j ywgq3a+iCJ3qOMfuiJ/DAXwLEi97iAEyrBKxRspfITxB9iyJ7oADysP4rg== -----END CERTIFICATE-----Generated at Sun Feb 16 15:37:25 2025 by rpki-client