$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/S1EE5zaXjoM5r4Em_IsgEXn2qQw.roa File: S1EE5zaXjoM5r4Em_IsgEXn2qQw.roa (raw, json) Hash identifier: Ld2cpchq/ksSTEqtp2oLqLqHSQt+vN1vSsaEnD9xSrY= Subject key identifier: 4B:51:04:E7:36:97:8E:83:39:AF:81:26:FC:8B:20:11:79:F6:A9:0C Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Certificate serial: 022D Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/S1EE5zaXjoM5r4Em_IsgEXn2qQw.roa Signing time: Sat 31 Aug 2024 01:33:23 +0000 ROA not before: Sat 31 Aug 2024 01:33:23 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 9824 IP address blocks: 27.116.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 557 (0x22d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB Validity Not Before: Aug 31 01:33:23 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=4B5104E736978E8339AF8126FC8B201179F6A90C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:50:02:12:e7:a0:06:c5:e8:08:86:82:d3:b8: e2:b7:db:7a:48:c4:61:d6:f7:56:1d:fb:ad:2c:77: f3:9b:56:b6:73:a8:80:38:74:02:79:42:89:af:d3: 31:7f:3d:03:07:3f:8b:d4:88:a8:87:d1:2d:f7:ed: d2:93:76:b3:96:bd:fd:ec:a7:6a:5b:fc:47:12:77: e0:8f:92:12:0a:48:b0:c2:73:29:9b:16:7a:2f:fe: 85:78:b1:d0:df:52:79:2b:59:25:d2:ae:8d:80:02: 93:fc:9d:53:ca:22:ab:08:4e:cb:05:e0:11:1e:3f: 57:ec:d2:80:23:9e:a0:ce:1d:a3:55:50:01:6f:93: 3a:f3:cb:68:5c:e4:2f:eb:59:b9:c0:56:2c:56:09: 5f:80:c6:2d:cb:b3:11:c6:3b:3e:a3:d8:f2:47:46: 8b:ba:52:3f:99:58:0c:1a:be:6a:46:6f:94:5f:7a: 2d:80:82:fa:5c:18:64:8e:da:28:5e:71:1f:b5:d6: e9:62:d6:e4:74:2f:af:9b:95:cb:8c:12:77:8c:f0: 49:a8:27:13:05:56:b0:8a:e6:70:b7:98:83:30:e0: b8:b9:ab:3e:04:96:2d:6c:36:ef:6d:58:21:7c:b3: 9c:14:bd:15:a2:38:84:74:0a:b7:85:a1:7a:17:cc: f1:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:51:04:E7:36:97:8E:83:39:AF:81:26:FC:8B:20:11:79:F6:A9:0C X509v3 Authority Key Identifier: keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/S1EE5zaXjoM5r4Em_IsgEXn2qQw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.116.0.0/20 Signature Algorithm: sha256WithRSAEncryption 26:8c:7f:4e:09:73:36:29:5d:d8:94:73:b0:6d:1d:89:01:8c: b4:33:d8:6e:09:78:1f:96:69:28:96:d0:87:91:48:bc:47:3c: 61:91:7e:2a:56:ac:cb:32:c6:af:2c:65:10:58:dd:74:f9:38: 08:1f:04:30:c5:7f:2d:b7:9b:d7:b1:9c:7e:2b:f8:fe:60:01: 55:f4:f3:62:00:09:f3:8c:24:2e:a0:96:4b:f5:4b:bb:c7:86: 48:3e:82:0f:ea:69:1d:bf:ae:56:9e:40:40:f6:9d:71:42:d5: 88:1c:3e:7b:8c:42:6f:af:0d:f2:80:91:b3:c0:d1:f2:f5:be: 45:cf:ef:b2:33:b5:7b:ca:f5:85:40:90:49:f3:54:96:19:e4: 43:d0:a7:37:b4:44:0b:64:e2:85:a0:32:9b:b7:95:17:da:e0: ba:9f:0c:3d:25:dd:42:9a:38:87:59:54:d4:ab:1f:82:51:4b: b0:76:d2:5d:fa:ad:81:56:3a:cd:56:58:ba:ac:82:8b:f8:a2: 68:dc:de:c1:de:ce:c3:7b:ae:0b:ae:59:34:31:b0:8e:ba:0c: 3d:97:eb:27:ed:f3:ae:f9:49:d1:e0:96:ca:5a:0d:b8:f4:8d: a2:c3:92:73:bb:7b:98:8b:2b:e6:9d:d1:f4:bd:d1:73:e2:51: 28:08:33:b3 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAi0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yNDA4MzEw MTMzMjNaFw0yNTA4MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDRCNTEwNEU3MzY5NzhF ODMzOUFGODEyNkZDOEIyMDExNzlGNkE5MEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXUAIS56AGxegIhoLTuOK323pIxGHW91Yd+60sd/ObVrZzqIA4 dAJ5Qomv0zF/PQMHP4vUiKiH0S337dKTdrOWvf3sp2pb/EcSd+CPkhIKSLDCcymb Fnov/oV4sdDfUnkrWSXSro2AApP8nVPKIqsITssF4BEeP1fs0oAjnqDOHaNVUAFv kzrzy2hc5C/rWbnAVixWCV+Axi3LsxHGOz6j2PJHRou6Uj+ZWAwavmpGb5Rfei2A gvpcGGSO2ihecR+11uli1uR0L6+blcuMEneM8EmoJxMFVrCK5nC3mIMw4Li5qz4E li1sNu9tWCF8s5wUvRWiOIR0CreFoXoXzPGPAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUS1EE5zaXjoM5r4Em/IsgEXn2qQwwHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjcxL1MxRUU1emFYam9NNXI0RW1fSXNnRVhuMnFRdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQbdAAwDQYJKoZIhvcNAQELBQADggEBACaMf04JczYpXdiUc7BtHYkBjLQz 2G4JeB+WaSiW0IeRSLxHPGGRfipWrMsyxq8sZRBY3XT5OAgfBDDFfy23m9exnH4r +P5gAVX082IACfOMJC6glkv1S7vHhkg+gg/qaR2/rlaeQED2nXFC1YgcPnuMQm+v DfKAkbPA0fL1vkXP77IztXvK9YVAkEnzVJYZ5EPQpze0RAtk4oWgMpu3lRfa4Lqf DD0l3UKaOIdZVNSrH4JRS7B20l36rYFWOs1WWLqsgov4omjc3sHezsN7rguuWTQx sI66DD2X6yft8675SdHglspaDbj0jaLDknO7e5iLK+ad0fS90XPiUSgIM7M= -----END CERTIFICATE-----Generated at Fri Nov 22 09:31:34 2024 by rpki-client on console-fra.rpki-client.org