$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10699/ou0GNvu-m1q5NlzfY8h17M5bq0k.roa File: ou0GNvu-m1q5NlzfY8h17M5bq0k.roa (raw, json) Hash identifier: zMUGF42chmo67VBf5+c6Yf1rdZa+7rQpzxeDziw0ZnI= Subject key identifier: A2:ED:06:36:FB:BE:9B:5A:B9:36:5C:DF:63:C8:75:EC:CE:5B:AB:49 Certificate issuer: /CN=CFEA2C2AAD63BCCA4D4AC96A852140D4261597B8 Certificate serial: 66 Authority key identifier: CF:EA:2C:2A:AD:63:BC:CA:4D:4A:C9:6A:85:21:40:D4:26:15:97:B8 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/z-osKq1jvMpNSslqhSFA1CYVl7g.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10699/ou0GNvu-m1q5NlzfY8h17M5bq0k.roa Signing time: Fri 31 Jan 2025 01:31:03 +0000 ROA not before: Fri 31 Jan 2025 01:31:03 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 7671 IP address blocks: 124.245.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10699/z-osKq1jvMpNSslqhSFA1CYVl7g.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10699/z-osKq1jvMpNSslqhSFA1CYVl7g.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/z-osKq1jvMpNSslqhSFA1CYVl7g.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CFEA2C2AAD63BCCA4D4AC96A852140D4261597B8 Validity Not Before: Jan 31 01:31:03 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=A2ED0636FBBE9B5AB9365CDF63C875ECCE5BAB49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ad:99:0a:89:cc:00:99:15:cf:18:da:0b:e8: fa:45:4d:52:42:50:3b:5e:3c:63:76:e8:fd:d9:37: 7d:3e:aa:d9:10:0c:c7:a8:25:18:d1:35:d0:c1:bd: f6:54:23:1d:56:29:63:64:38:87:cd:8b:e0:8d:cc: 7a:2c:21:65:c2:1c:23:b1:04:f9:09:ca:1b:91:65: f1:bb:b4:d7:0a:8c:26:48:97:16:cf:fe:f2:40:94: 5e:d6:0f:47:3f:78:55:c0:f7:9e:ab:f3:f0:c0:8e: 49:f1:80:e7:53:8a:99:a6:6e:0e:18:5b:f0:94:78: 16:fb:11:a1:e4:4e:dd:70:83:08:42:76:d7:c4:8e: f9:53:1f:77:cf:ce:fd:01:8f:e2:4d:a8:e7:f2:1c: 0f:91:c4:38:5b:93:fa:f0:49:fd:90:dd:83:51:45: ff:b6:09:09:c6:5a:87:a0:b9:c5:ec:77:cb:a8:b7: c1:44:ce:3c:35:19:b4:6e:17:c7:e7:65:e9:35:1b: 27:9f:e9:ff:78:c4:09:1f:c5:92:ea:4d:ec:db:f2: 2b:3f:be:c2:51:b3:df:4c:ee:4f:2c:51:a4:f4:30: ec:5e:90:d6:2d:85:72:e9:3c:21:ec:3c:db:9a:3e: 0b:26:6e:b2:1c:61:93:6e:e2:f6:a0:3d:9f:cf:eb: 2e:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:ED:06:36:FB:BE:9B:5A:B9:36:5C:DF:63:C8:75:EC:CE:5B:AB:49 X509v3 Authority Key Identifier: keyid:CF:EA:2C:2A:AD:63:BC:CA:4D:4A:C9:6A:85:21:40:D4:26:15:97:B8 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10699/z-osKq1jvMpNSslqhSFA1CYVl7g.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/z-osKq1jvMpNSslqhSFA1CYVl7g.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10699/ou0GNvu-m1q5NlzfY8h17M5bq0k.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.245.0.0/16 Signature Algorithm: sha256WithRSAEncryption a8:7a:47:b0:45:59:46:06:3d:59:4f:94:78:9d:31:7e:57:74: 8d:ef:5c:b5:33:72:ca:b0:93:a9:1c:d0:c5:13:b1:eb:6c:f0: c9:d4:0c:8d:20:ec:91:68:95:1a:ac:59:79:c0:6e:1b:eb:68: b3:b0:6d:4d:4a:7e:4b:f5:c0:55:ce:81:fa:8d:15:de:3e:c1: 6f:3f:cc:53:aa:32:91:1b:e2:4b:06:e6:d7:98:ff:67:47:41: a7:57:fb:80:f0:bb:63:2d:2c:2f:c2:2b:ad:2e:a1:3a:06:66: b0:e8:55:7e:6b:73:55:5e:fb:a4:a5:fc:75:58:38:33:5a:bb: 57:ed:e1:4c:26:6b:a5:c8:f1:ea:e9:cc:98:0b:89:e6:eb:f1: eb:fa:df:8b:d1:dd:98:de:4c:17:f9:19:07:bc:4b:52:06:83: 3e:16:db:d2:22:86:a4:d8:84:0b:da:e1:99:1e:9e:9c:5e:96: bb:9c:70:59:b7:03:9d:9c:52:44:fd:2b:fe:a9:21:a0:25:18: 74:6f:ba:4e:56:2b:6f:ce:fb:d8:de:66:41:a5:e4:be:d2:85: 78:29:e8:5c:e2:5a:02:74:e1:00:34:58:9b:29:83:a8:d6:6d: cb:d1:48:76:3d:25:43:bc:ed:6d:77:98:bc:5d:40:d4:fa:95: 88:bb:b6:09 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIBZjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDRkVB MkMyQUFENjNCQ0NBNEQ0QUM5NkE4NTIxNDBENDI2MTU5N0I4MB4XDTI1MDEzMTAx MzEwM1oXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoQTJFRDA2MzZGQkJFOUI1 QUI5MzY1Q0RGNjNDODc1RUNDRTVCQUI0OTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKetmQqJzACZFc8Y2gvo+kVNUkJQO148Y3bo/dk3fT6q2RAMx6gl GNE10MG99lQjHVYpY2Q4h82L4I3MeiwhZcIcI7EE+QnKG5Fl8bu01wqMJkiXFs/+ 8kCUXtYPRz94VcD3nqvz8MCOSfGA51OKmaZuDhhb8JR4FvsRoeRO3XCDCEJ218SO +VMfd8/O/QGP4k2o5/IcD5HEOFuT+vBJ/ZDdg1FF/7YJCcZah6C5xex3y6i3wUTO PDUZtG4Xx+dl6TUbJ5/p/3jECR/FkupN7NvyKz++wlGz30zuTyxRpPQw7F6Q1i2F cuk8Iew825o+CyZushxhk27i9qA9n8/rLqkCAwEAAaOCAicwggIjMB0GA1UdDgQW BBSi7QY2+76bWrk2XN9jyHXszlurSTAfBgNVHSMEGDAWgBTP6iwqrWO8yk1KyWqF IUDUJhWXuDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTA2OTkvei1vc0txMWp2TXBOU3NscWhTRkExQ1lWbDdnLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvei1vc0txMWp2TXBOU3NscWhTRkEx Q1lWbDdnLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzEwNjk5L291MEdOdnUtbTFxNU5semZZOGgxN001YnEway5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsE AgABMAUDAwB89TANBgkqhkiG9w0BAQsFAAOCAQEAqHpHsEVZRgY9WU+UeJ0xfld0 je9ctTNyyrCTqRzQxROx62zwydQMjSDskWiVGqxZecBuG+tos7BtTUp+S/XAVc6B +o0V3j7Bbz/MU6oykRviSwbm15j/Z0dBp1f7gPC7Yy0sL8IrrS6hOgZmsOhVfmtz VV77pKX8dVg4M1q7V+3hTCZrpcjx6unMmAuJ5uvx6/rfi9HdmN5MF/kZB7xLUgaD Phbb0iKGpNiEC9rhmR6enF6Wu5xwWbcDnZxSRP0r/qkhoCUYdG+6TlYrb8772N5m QaXkvtKFeCnoXOJaAnThADRYmymDqNZty9FIdj0lQ7ztbXeYvF1A1PqViLu2CQ== -----END CERTIFICATE-----Generated at Sat Apr 5 20:01:34 2025 by rpki-client