$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/KYRLT39bth9ORZE2e7CFn9XlpaQ.roa File: KYRLT39bth9ORZE2e7CFn9XlpaQ.roa (raw, json) Hash identifier: OBn3NH00leg3c5pRfOXIcAg+5LVPxHxYMO6sw3xojls= Subject key identifier: 29:84:4B:4F:7F:5B:B6:1F:4E:45:91:36:7B:B0:85:9F:D5:E5:A5:A4 Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Certificate serial: 04A1 Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/KYRLT39bth9ORZE2e7CFn9XlpaQ.roa Signing time: Thu 29 Feb 2024 01:29:01 +0000 ROA not before: Thu 29 Feb 2024 01:29:01 +0000 ROA not after: Fri 14 Feb 2025 01:30:03 +0000 asID: 10010 IP address blocks: 27.98.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 14:03:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1185 (0x4a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Validity Not Before: Feb 29 01:29:01 2024 GMT Not After : Feb 14 01:30:03 2025 GMT Subject: CN=29844B4F7F5BB61F4E4591367BB0859FD5E5A5A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:d4:bb:70:9a:6c:99:16:eb:30:f6:75:b0:3e: d8:e0:4b:b1:52:a1:28:ea:5e:82:58:3d:54:df:96: 3e:59:ba:d1:d9:21:4c:a0:a0:d0:fd:46:ba:d4:75: 8d:29:13:28:da:4f:30:17:f8:3d:4a:f8:c0:86:a4: a6:8b:ae:fd:ca:e8:96:9c:75:21:c6:4d:bc:c4:12: 30:d0:ed:23:db:cb:73:fe:1e:d6:54:3b:46:c9:16: ec:fc:ba:84:82:83:3b:5f:bc:59:35:3a:cb:d4:e0: 37:00:a5:9f:51:93:11:8f:c1:fe:c2:7a:0b:7c:ed: de:5b:13:f5:7e:62:35:59:d7:2a:e6:68:fc:a7:e9: b9:6e:61:2b:96:09:52:af:b9:3f:3a:3e:8b:1c:e2: 05:ca:54:9e:65:ca:33:ba:91:11:51:a9:a2:15:0a: 10:99:0b:db:ca:d7:11:82:62:22:9c:32:51:db:fe: 1c:bf:9e:08:fe:66:0e:60:5f:ce:c0:db:5d:aa:a5: ec:60:79:b6:2a:ca:f4:05:1f:7d:c6:13:f9:da:e5: 6f:da:38:ad:6f:35:e9:37:12:76:c9:11:04:a4:5f: 87:26:40:bc:78:8b:fa:6e:28:6d:3a:8a:e8:74:8b: 01:66:b8:48:a9:4d:11:c3:ae:1f:51:5a:e3:8b:23: 0e:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:84:4B:4F:7F:5B:B6:1F:4E:45:91:36:7B:B0:85:9F:D5:E5:A5:A4 X509v3 Authority Key Identifier: keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/KYRLT39bth9ORZE2e7CFn9XlpaQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.98.0.0/17 Signature Algorithm: sha256WithRSAEncryption 92:bf:64:2a:1b:68:41:ec:df:4e:63:6a:14:35:d0:1c:31:5f: 1e:b1:1b:7a:77:82:d3:8c:cb:e8:14:92:e0:1c:95:89:3d:ad: 35:9e:94:76:48:89:ca:af:e3:42:55:fb:5e:4f:cb:1a:28:19: 33:d4:88:15:f8:f9:65:cd:35:34:54:39:6f:e2:c7:69:8a:3f: 2e:3b:c3:a5:c3:5d:da:c3:8e:e3:40:79:ba:cb:d5:6a:44:8a: 88:5e:a3:23:14:47:af:21:ff:b1:14:92:af:9e:7c:c4:94:78: 9f:a0:7b:4b:60:01:8b:2a:5c:77:5d:d7:28:76:4c:d9:75:d6: 13:19:49:02:67:7f:fb:fb:98:9c:b7:c9:55:ec:60:9b:80:11: ac:87:ca:93:7a:e5:aa:ac:75:53:61:ec:d8:82:11:5d:77:1d: 38:d1:f9:43:40:15:e9:83:20:71:a2:a5:89:12:db:17:a0:55: ee:54:b7:0d:ea:fe:c8:a4:a7:88:42:10:18:f8:f5:54:65:d8: d9:8f:bc:79:9b:c2:c5:07:2f:5c:b7:0e:b9:8f:00:f5:15:12: 13:35:37:40:10:dc:77:d5:80:82:6b:1b:c0:ce:d4:35:49:6b: a1:f1:cd:67:aa:18:0d:84:22:a2:0e:7a:01:72:d4:aa:b3:68: 5d:72:45:ab -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBKEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkJE Q0Q1MjZCMDlFNzg5N0Y3MUZFMDQ4NThCRTc1QzA2RUM0RjEzQTAeFw0yNDAyMjkw MTI5MDFaFw0yNTAyMTQwMTMwMDNaMDMxMTAvBgNVBAMTKDI5ODQ0QjRGN0Y1QkI2 MUY0RTQ1OTEzNjdCQjA4NTlGRDVFNUE1QTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCc1LtwmmyZFusw9nWwPtjgS7FSoSjqXoJYPVTflj5ZutHZIUyg oND9RrrUdY0pEyjaTzAX+D1K+MCGpKaLrv3K6JacdSHGTbzEEjDQ7SPby3P+HtZU O0bJFuz8uoSCgztfvFk1OsvU4DcApZ9RkxGPwf7Cegt87d5bE/V+YjVZ1yrmaPyn 6bluYSuWCVKvuT86Posc4gXKVJ5lyjO6kRFRqaIVChCZC9vK1xGCYiKcMlHb/hy/ ngj+Zg5gX87A212qpexgebYqyvQFH33GE/na5W/aOK1vNek3EnbJEQSkX4cmQLx4 i/puKG06iuh0iwFmuEipTRHDrh9RWuOLIw5pAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUKYRLT39bth9ORZE2e7CFn9XlpaQwHwYDVR0jBBgwFoAUu9zVJrCeeJf3H+BI WL51wG7E8TowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzU0NS91OXpWSnJDZWVKZjNILUJJV0w1MXdHN0U4VG8uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC91OXpWSnJDZWVKZjNILUJJV0w1MXdH N0U4VG8uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNTQ1L0tZUkxUMzlidGg5T1JaRTJlN0NGbjlYbHBhUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcbYgAwDQYJKoZIhvcNAQELBQADggEBAJK/ZCobaEHs305jahQ10BwxXx6x G3p3gtOMy+gUkuAclYk9rTWelHZIicqv40JV+15PyxooGTPUiBX4+WXNNTRUOW/i x2mKPy47w6XDXdrDjuNAebrL1WpEioheoyMUR68h/7EUkq+efMSUeJ+ge0tgAYsq XHdd1yh2TNl11hMZSQJnf/v7mJy3yVXsYJuAEayHypN65aqsdVNh7NiCEV13HTjR +UNAFemDIHGipYkS2xegVe5Utw3q/sikp4hCEBj49VRl2NmPvHmbwsUHL1y3DrmP APUVEhM1N0AQ3HfVgIJrG8DO1DVJa6HxzWeqGA2EIqIOegFy1KqzaF1yRas= -----END CERTIFICATE-----Generated at Thu Jun 6 14:56:22 2024 by rpki-client on console-fra.rpki-client.org