$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10247/dKfeJuxLuYLpHmwHqk4CTmnGHeE.roa File: dKfeJuxLuYLpHmwHqk4CTmnGHeE.roa (raw, json) Hash identifier: gWp4obOmHndLsRAHahEUhSZwJd4FgwiL6VTU7k3+1gw= Subject key identifier: 74:A7:DE:26:EC:4B:B9:82:E9:1E:6C:07:AA:4E:02:4E:69:C6:1D:E1 Certificate issuer: /CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A Certificate serial: 01F4 Authority key identifier: 20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/dKfeJuxLuYLpHmwHqk4CTmnGHeE.roa Signing time: Sun 30 Jun 2024 01:29:04 +0000 ROA not before: Sun 30 Jun 2024 01:29:04 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 7684 IP address blocks: 112.78.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 500 (0x1f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A Validity Not Before: Jun 30 01:29:04 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=74A7DE26EC4BB982E91E6C07AA4E024E69C61DE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:3e:f0:de:58:4c:de:a2:04:a2:47:17:26:d3: 14:d9:66:23:a7:ee:5b:ff:45:5b:5e:54:10:e7:53: ab:b5:c3:74:75:28:3c:99:a1:f4:25:7a:ae:3f:5a: 74:12:1e:e2:5f:02:d5:b6:c6:13:66:ba:e8:80:24: ff:ae:d9:61:f7:54:d7:f7:0b:3b:7c:b6:03:b6:ee: 9b:68:81:fe:94:d9:7d:0b:3c:0a:e2:4d:ad:58:4d: 8d:f7:ab:3b:d3:77:fe:4c:3c:23:ae:e3:9a:a8:e6: b6:02:87:56:1c:ae:50:65:c2:be:7d:3b:40:19:12: a1:73:21:4b:e1:50:66:3a:8b:b8:40:84:b1:d6:1d: ef:09:fc:e1:c3:dc:b7:96:17:fb:9a:dc:52:af:c4: f4:50:5c:19:7e:bf:e3:7c:b6:0e:6d:74:ae:6d:f0: fa:06:fc:c6:dc:59:bd:19:13:07:97:07:dd:75:a4: 1b:48:e5:06:fb:02:cf:a8:8e:c1:89:c1:29:c6:17: ae:f6:ad:32:e0:42:88:aa:28:d9:5a:3d:43:79:d3: bc:c3:f5:61:0a:46:7a:f3:13:68:75:5c:31:9c:ec: 39:8e:00:98:ba:d3:70:b7:7e:36:4d:8b:cb:e0:a8: 44:d8:3d:77:6e:09:07:20:b0:e9:a2:5c:11:cf:2f: cb:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:A7:DE:26:EC:4B:B9:82:E9:1E:6C:07:AA:4E:02:4E:69:C6:1D:E1 X509v3 Authority Key Identifier: keyid:20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/dKfeJuxLuYLpHmwHqk4CTmnGHeE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 112.78.203.0/24 Signature Algorithm: sha256WithRSAEncryption 46:fa:17:75:21:8b:6f:48:0f:f8:eb:e0:6b:1c:c8:1f:78:59: 8f:46:87:68:e3:99:9e:6b:6b:b3:36:ec:2e:ae:a7:70:4b:a2: 05:dc:1d:3c:a5:b9:21:b0:d5:0c:21:ac:35:14:24:c7:ff:19: 53:0e:26:ab:7f:2d:53:a8:e1:7b:b4:13:59:d3:0c:d2:6f:6f: 95:74:90:58:64:2e:fb:be:1a:36:db:cd:75:04:7e:bd:67:5c: ba:1c:9e:32:0c:ea:08:34:49:b5:be:d2:3b:fe:19:4c:2b:ab: 37:50:8b:58:18:7f:2f:00:6a:dc:d7:62:50:3a:9b:4e:82:c9: 5f:83:e2:05:4b:7c:05:05:c7:73:0f:6b:1a:ed:e9:2b:5b:8b: 86:0d:e1:71:4a:e7:8c:b1:30:ff:6e:bf:6c:fa:97:2a:0a:6f: fd:a9:c8:11:e4:2a:28:27:ab:93:04:cd:a5:57:8f:7d:1d:52: 23:aa:ed:02:13:af:51:bd:c3:8f:fe:2a:93:72:9d:26:3a:a4: a2:9c:e2:20:a9:cb:54:9d:9e:07:1e:19:42:96:64:b3:ae:e9: 29:f3:cb:4c:75:ca:04:45:0e:86:c3:98:e1:47:9a:d6:b1:ef: 6b:e9:a2:21:ff:da:72:a9:a9:d4:02:ff:af:a6:d2:7f:a7:b2: 68:0c:54:ec -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAfQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjAz MjBGNkQwOURCMThDMEY3MEIzNTRBM0Q4NzQ1MEY3MEU2RDcxQTAeFw0yNDA2MzAw MTI5MDRaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDc0QTdERTI2RUM0QkI5 ODJFOTFFNkMwN0FBNEUwMjRFNjlDNjFERTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3PvDeWEzeogSiRxcm0xTZZiOn7lv/RVteVBDnU6u1w3R1KDyZ ofQleq4/WnQSHuJfAtW2xhNmuuiAJP+u2WH3VNf3Czt8tgO27ptogf6U2X0LPAri Ta1YTY33qzvTd/5MPCOu45qo5rYCh1YcrlBlwr59O0AZEqFzIUvhUGY6i7hAhLHW He8J/OHD3LeWF/ua3FKvxPRQXBl+v+N8tg5tdK5t8PoG/MbcWb0ZEweXB911pBtI 5Qb7As+ojsGJwSnGF672rTLgQoiqKNlaPUN507zD9WEKRnrzE2h1XDGc7DmOAJi6 03C3fjZNi8vgqETYPXduCQcgsOmiXBHPL8s9AgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUdKfeJuxLuYLpHmwHqk4CTmnGHeEwHwYDVR0jBBgwFoAUIDIPbQnbGMD3CzVK PYdFD3Dm1xowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEwMjQ3L0lESVBiUW5iR01EM0N6VktQWWRGRDNEbTF4by5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0lESVBiUW5iR01EM0N6VktQWWRG RDNEbTF4by5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8xMDI0Ny9kS2ZlSnV4THVZTHBIbXdIcWs0Q1RtbkdIZUUu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAcE7LMA0GCSqGSIb3DQEBCwUAA4IBAQBG+hd1IYtvSA/46+BrHMgf eFmPRodo45mea2uzNuwurqdwS6IF3B08pbkhsNUMIaw1FCTH/xlTDiarfy1TqOF7 tBNZ0wzSb2+VdJBYZC77vho22811BH69Z1y6HJ4yDOoINEm1vtI7/hlMK6s3UItY GH8vAGrc12JQOptOgslfg+IFS3wFBcdzD2sa7ekrW4uGDeFxSueMsTD/br9s+pcq Cm/9qcgR5CooJ6uTBM2lV499HVIjqu0CE69RvcOP/iqTcp0mOqSinOIgqctUnZ4H HhlClmSzrukp88tMdcoERQ6Gw5jhR5rWse9r6aIh/9pyqanUAv+vptJ/p7JoDFTs -----END CERTIFICATE-----Generated at Sat Apr 5 17:35:52 2025 by rpki-client