$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10247/ZSI9Dyt-sFHuZOS8SsGVwoCKYtY.roa File: ZSI9Dyt-sFHuZOS8SsGVwoCKYtY.roa (raw, json) Hash identifier: OgHVwGppZC8JaV3/+7mY/PzXtak+hTHM5YGkLsizrvs= Subject key identifier: 65:22:3D:0F:2B:7E:B0:51:EE:64:E4:BC:4A:C1:95:C2:80:8A:62:D6 Certificate issuer: /CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A Certificate serial: 020B Authority key identifier: 20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/ZSI9Dyt-sFHuZOS8SsGVwoCKYtY.roa Signing time: Mon 30 Sep 2024 01:30:01 +0000 ROA not before: Mon 30 Sep 2024 01:30:01 +0000 ROA not after: Mon 15 Sep 2025 01:30:03 +0000 asID: 7684 IP address blocks: 49.212.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 523 (0x20b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A Validity Not Before: Sep 30 01:30:01 2024 GMT Not After : Sep 15 01:30:03 2025 GMT Subject: CN=65223D0F2B7EB051EE64E4BC4AC195C2808A62D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9e:78:0a:95:5b:c0:13:a6:a7:73:0e:0d:dd: 87:f4:e8:e0:c9:70:e8:1c:5e:da:05:25:3b:58:d4: 8b:4c:c0:3d:7b:00:16:04:7d:2d:bb:aa:6e:ca:e2: 33:9b:e3:c9:65:73:ac:22:8f:84:6b:ac:be:4a:a8: 88:1a:26:70:46:72:de:46:e0:07:99:1f:21:de:2f: 63:38:ef:31:95:df:80:4b:25:6c:ce:10:f4:72:53: 4b:cd:02:60:57:bf:48:17:c9:12:bd:ba:fc:2c:df: 0b:85:e5:4c:0e:26:0d:2e:1c:e1:5b:28:3b:a6:90: 78:94:db:97:ca:de:da:34:cd:01:e3:90:c1:ea:87: d3:ae:e8:1c:60:5f:52:4b:8b:c6:3c:40:68:4a:e4: 7a:4c:1f:e9:cb:e6:67:8f:03:be:62:0b:ff:cb:21: 46:1e:f0:e2:a1:08:16:ac:30:9a:a0:73:ec:67:da: 77:ad:af:a6:9b:d5:7e:60:e8:d6:6a:a1:d3:3b:8f: 13:cc:c6:c4:3b:d0:7e:b9:fa:7a:3c:9f:1f:53:07: f6:fd:de:b5:34:3a:5a:ad:e0:96:86:69:9d:b3:ff: b9:dc:8e:c7:d9:c7:1f:6a:e5:91:9c:d5:b9:71:da: c3:a4:2c:09:76:9d:b8:3b:4a:55:9d:60:1d:c9:63: 3c:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:22:3D:0F:2B:7E:B0:51:EE:64:E4:BC:4A:C1:95:C2:80:8A:62:D6 X509v3 Authority Key Identifier: keyid:20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/ZSI9Dyt-sFHuZOS8SsGVwoCKYtY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.212.78.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:54:d8:17:79:12:6e:c7:6d:40:b0:cd:29:36:34:ec:2e:5b: 2a:6e:dc:c7:ed:ff:37:9e:24:2c:37:8e:40:cc:62:57:1e:82: 54:1f:fd:24:32:81:3d:0a:dc:fb:57:5e:8d:ac:91:86:83:cb: 22:17:23:1c:12:cf:60:f3:ab:56:eb:17:1a:0f:b1:bf:87:70: 0c:71:74:81:4f:d8:77:33:9a:db:97:a7:b0:ab:ef:a8:62:ce: 0e:11:80:36:55:08:61:e1:19:55:71:a2:3f:5e:ed:1d:83:54: a8:c3:0b:f5:e9:33:5d:d8:1d:0e:3e:9b:ea:af:e2:ae:04:cc: 6e:f4:c4:b4:fd:61:4c:cd:5f:38:ef:a0:d1:e5:82:5c:b9:5a: 7b:4e:03:47:f0:d5:03:57:93:d0:13:c7:11:76:13:e6:ac:25: 69:3a:43:f7:b5:6c:d6:b0:6f:32:bb:69:50:91:9d:44:62:e2: ce:4d:a6:08:99:96:67:33:90:c3:af:a7:17:83:d7:11:b7:18: e0:55:92:23:52:03:d0:44:94:35:2c:b4:1a:08:a3:02:0c:fd: 10:81:d9:11:fc:f8:1d:22:1a:1d:1c:aa:87:e0:40:32:9d:e6: 0a:93:f9:13:3a:18:c4:b4:5a:90:78:25:dc:53:14:dc:f7:c6: 14:95:27:8b -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAgswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjAz MjBGNkQwOURCMThDMEY3MEIzNTRBM0Q4NzQ1MEY3MEU2RDcxQTAeFw0yNDA5MzAw MTMwMDFaFw0yNTA5MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDY1MjIzRDBGMkI3RUIw NTFFRTY0RTRCQzRBQzE5NUMyODA4QTYyRDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0nngKlVvAE6ancw4N3Yf06ODJcOgcXtoFJTtY1ItMwD17ABYE fS27qm7K4jOb48llc6wij4RrrL5KqIgaJnBGct5G4AeZHyHeL2M47zGV34BLJWzO EPRyU0vNAmBXv0gXyRK9uvws3wuF5UwOJg0uHOFbKDumkHiU25fK3to0zQHjkMHq h9Ou6BxgX1JLi8Y8QGhK5HpMH+nL5mePA75iC//LIUYe8OKhCBasMJqgc+xn2net r6ab1X5g6NZqodM7jxPMxsQ70H65+no8nx9TB/b93rU0Olqt4JaGaZ2z/7ncjsfZ xx9q5ZGc1blx2sOkLAl2nbg7SlWdYB3JYzxvAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUZSI9Dyt+sFHuZOS8SsGVwoCKYtYwHwYDVR0jBBgwFoAUIDIPbQnbGMD3CzVK PYdFD3Dm1xowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEwMjQ3L0lESVBiUW5iR01EM0N6VktQWWRGRDNEbTF4by5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0lESVBiUW5iR01EM0N6VktQWWRG RDNEbTF4by5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8xMDI0Ny9aU0k5RHl0LXNGSHVaT1M4U3NHVndvQ0tZdFku cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAMdROMA0GCSqGSIb3DQEBCwUAA4IBAQBfVNgXeRJux21AsM0pNjTs LlsqbtzH7f83niQsN45AzGJXHoJUH/0kMoE9Ctz7V16NrJGGg8siFyMcEs9g86tW 6xcaD7G/h3AMcXSBT9h3M5rbl6ewq++oYs4OEYA2VQhh4RlVcaI/Xu0dg1Sowwv1 6TNd2B0OPpvqr+KuBMxu9MS0/WFMzV8476DR5YJcuVp7TgNH8NUDV5PQE8cRdhPm rCVpOkP3tWzWsG8yu2lQkZ1EYuLOTaYImZZnM5DDr6cXg9cRtxjgVZIjUgPQRJQ1 LLQaCKMCDP0QgdkR/PgdIhodHKqH4EAyneYKk/kTOhjEtFqQeCXcUxTc98YUlSeL -----END CERTIFICATE-----Generated at Sat Apr 5 17:41:47 2025 by rpki-client