$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/783/JQ9EARuYTCuM70UeLQ7K2Prf9BQ.roa File: JQ9EARuYTCuM70UeLQ7K2Prf9BQ.roa (raw, json) Hash identifier: HyBkifo7w+bDcnpeoicyHZhIp/IC2IL9isTJWLe+JBk= Subject key identifier: 25:0F:44:01:1B:98:4C:2B:8C:EF:45:1E:2D:0E:CA:D8:FA:DF:F4:14 Certificate issuer: /CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Certificate serial: 4B Authority key identifier: CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/JQ9EARuYTCuM70UeLQ7K2Prf9BQ.roa Signing time: Sat 31 Aug 2024 01:30:23 +0000 ROA not before: Sat 31 Aug 2024 01:30:23 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 18144 IP address blocks: 27.133.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB8300B20659BB951060F60B1F4BC6091AF27639 Validity Not Before: Aug 31 01:30:23 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=250F44011B984C2B8CEF451E2D0ECAD8FADFF414 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:bb:99:f1:27:aa:f4:92:cc:63:d6:19:2e:95: d4:e3:ad:39:91:64:90:a7:64:1e:fd:4f:97:a9:7d: a5:35:6c:14:c4:e4:81:31:ba:ca:d5:ac:64:fe:35: 98:51:9b:5c:84:a4:1b:fb:5e:17:7c:68:db:2a:5b: 69:1b:01:d5:3e:52:44:0c:4f:b3:c5:32:98:f0:10: 96:03:64:bf:54:c2:be:64:bb:c4:3b:68:79:77:27: f7:f6:a7:53:a1:97:50:80:f4:68:33:d8:8d:9b:56: 4f:f4:c2:b0:d1:85:24:9b:c0:71:73:6d:c7:fe:0d: f3:28:57:3d:04:b9:20:ef:c9:86:27:e9:7a:e4:ce: ff:4f:36:53:68:8f:0d:30:b8:96:96:44:72:10:ed: 0a:f7:d6:f2:9c:0b:b2:49:f0:c2:66:4c:59:ec:1f: 95:a6:67:ab:cc:ef:5a:f4:c9:d4:1d:93:25:7c:fd: 9c:50:d5:89:e0:32:fe:6d:9b:8f:78:21:e1:27:40: fc:c3:b7:3f:6e:68:47:25:ec:59:4e:af:b6:90:12: 12:d1:39:13:88:9a:64:a6:a3:fa:9c:3d:19:54:9c: c9:6b:31:97:3b:89:e2:e4:bd:a9:b0:55:95:1a:e4: a7:b7:e5:da:b5:c7:4a:eb:67:22:7e:50:02:77:c8: b1:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:0F:44:01:1B:98:4C:2B:8C:EF:45:1E:2D:0E:CA:D8:FA:DF:F4:14 X509v3 Authority Key Identifier: keyid:CB:83:00:B2:06:59:BB:95:10:60:F6:0B:1F:4B:C6:09:1A:F2:76:39 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/y4MAsgZZu5UQYPYLH0vGCRrydjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/y4MAsgZZu5UQYPYLH0vGCRrydjk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/783/JQ9EARuYTCuM70UeLQ7K2Prf9BQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.133.176.0/21 Signature Algorithm: sha256WithRSAEncryption 8f:c4:8b:6f:5a:b2:9d:05:f9:16:b6:48:a7:b7:d7:08:3e:c2: 58:fd:53:9a:8c:25:71:70:ca:c3:1e:76:3b:a3:8a:ae:d8:51: 5d:2f:4f:7c:2f:ee:04:7e:32:37:52:15:2d:d1:56:61:25:fa: 6b:3d:d8:8f:17:eb:8b:df:96:b6:bc:89:9f:2d:ee:c1:6e:0a: 80:04:db:c1:5d:0a:7e:3e:6b:6b:2c:45:61:1b:82:e1:f9:c0: d5:1d:08:28:2d:f1:b9:fa:fe:14:c0:d4:4f:79:14:bc:cd:78: 58:83:f5:a3:b9:6c:1c:21:08:01:86:fe:f8:54:a5:20:c8:48: bf:c9:ce:2b:19:08:e8:a0:ea:ce:c3:86:e9:d0:be:19:4f:e3: e9:09:e1:e6:19:3a:d7:72:41:e2:13:be:68:ee:18:ac:95:19: 20:17:88:cd:f2:3c:de:08:40:a5:35:a0:7c:ab:23:cb:ab:89: 20:90:73:a3:43:30:af:9e:ae:3c:9d:71:33:b1:23:d1:d6:41: 9b:ae:9a:6a:e3:1c:87:2b:58:b8:aa:9b:d0:0f:22:da:62:2b: ac:4b:d3:25:c5:8f:dd:4e:45:6a:17:99:10:45:bd:21:6c:6d: b3:f3:ea:5e:0d:f9:78:af:df:8b:cd:68:28:f6:d3:99:4c:4f: 52:c0:fc:fb -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBSzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDQjgz MDBCMjA2NTlCQjk1MTA2MEY2MEIxRjRCQzYwOTFBRjI3NjM5MB4XDTI0MDgzMTAx MzAyM1oXDTI1MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoMjUwRjQ0MDExQjk4NEMy QjhDRUY0NTFFMkQwRUNBRDhGQURGRjQxNDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOO7mfEnqvSSzGPWGS6V1OOtOZFkkKdkHv1Pl6l9pTVsFMTkgTG6 ytWsZP41mFGbXISkG/teF3xo2ypbaRsB1T5SRAxPs8UymPAQlgNkv1TCvmS7xDto eXcn9/anU6GXUID0aDPYjZtWT/TCsNGFJJvAcXNtx/4N8yhXPQS5IO/JhifpeuTO /082U2iPDTC4lpZEchDtCvfW8pwLsknwwmZMWewflaZnq8zvWvTJ1B2TJXz9nFDV ieAy/m2bj3gh4SdA/MO3P25oRyXsWU6vtpASEtE5E4iaZKaj+pw9GVScyWsxlzuJ 4uS9qbBVlRrkp7fl2rXHSutnIn5QAnfIsfUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQlD0QBG5hMK4zvRR4tDsrY+t/0FDAfBgNVHSMEGDAWgBTLgwCyBlm7lRBg9gsf S8YJGvJ2OTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNzgzL3k0TUFzZ1padTVVUVlQWUxIMHZHQ1JyeWRqay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3k0TUFzZ1padTVVUVlQWUxIMHZHQ1Jy eWRqay5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC83ODMvSlE5RUFSdVlUQ3VNNzBVZUxRN0syUHJmOUJRLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAxuFsDANBgkqhkiG9w0BAQsFAAOCAQEAj8SLb1qynQX5FrZIp7fXCD7CWP1T mowlcXDKwx52O6OKrthRXS9PfC/uBH4yN1IVLdFWYSX6az3Yjxfri9+WtryJny3u wW4KgATbwV0Kfj5rayxFYRuC4fnA1R0IKC3xufr+FMDUT3kUvM14WIP1o7lsHCEI AYb++FSlIMhIv8nOKxkI6KDqzsOG6dC+GU/j6Qnh5hk613JB4hO+aO4YrJUZIBeI zfI83ghApTWgfKsjy6uJIJBzo0Mwr56uPJ1xM7Ej0dZBm66aauMchytYuKqb0A8i 2mIrrEvTJcWP3U5FaheZEEW9IWxts/PqXg35eK/fi81oKPbTmUxPUsD8+w== -----END CERTIFICATE-----Generated at Fri Nov 22 15:24:06 2024 by rpki-client on console-fra.rpki-client.org