$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10822/-bBwK47YfiwwQoy0PBwi088-i_o.roa File: -bBwK47YfiwwQoy0PBwi088-i_o.roa (raw, json) Hash identifier: tpOiocphLkdOSl50CgXzT8xypai2weH1tN76H7smDqQ= Subject key identifier: F9:B0:70:2B:8E:D8:7E:2C:30:42:8C:B4:3C:1C:22:D3:CF:3E:8B:FA Certificate issuer: /CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Certificate serial: 2E Authority key identifier: 33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/-bBwK47YfiwwQoy0PBwi088-i_o.roa Signing time: Fri 31 Jan 2025 01:33:48 +0000 ROA not before: Fri 31 Jan 2025 01:33:48 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 17698 IP address blocks: 119.10.184.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Validity Not Before: Jan 31 01:33:48 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=F9B0702B8ED87E2C30428CB43C1C22D3CF3E8BFA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:75:fb:e0:fa:3a:d6:44:64:b5:44:8d:61:fa: 27:6c:62:b2:ad:9b:83:54:f5:82:f5:54:b9:21:93: 11:33:21:a3:04:db:25:c0:4a:26:85:35:ea:5e:9b: 82:98:31:e1:f1:8b:06:54:ef:57:a2:8e:d7:73:1a: b7:52:36:5c:c9:8f:35:0a:94:b7:fa:c5:c8:1a:8d: ef:90:58:eb:a9:af:c8:5e:d3:e1:a2:00:96:50:8e: 79:b5:3c:eb:59:25:6d:50:1b:5e:0c:a9:39:53:c9: c9:e9:90:fa:99:44:f9:aa:df:20:44:33:59:14:9c: 05:8e:6a:3a:7c:e3:75:ae:06:fe:7a:8a:3c:8c:7e: 46:d4:f2:e9:c8:67:b9:0f:8e:be:fb:04:3d:6c:4c: 02:d0:8e:c6:18:55:e1:89:71:f4:b1:7d:2f:c1:28: 33:fa:ac:a5:8c:5a:3f:ed:88:0d:c6:29:77:c7:25: 06:49:0d:3f:28:96:3d:e6:ab:79:36:8a:83:c6:41: c0:6f:95:0f:c8:1c:a3:31:dd:bc:eb:ea:5e:e8:dc: 46:09:0d:15:73:aa:4c:76:c6:e0:d7:b1:31:75:e4: fa:64:19:c5:44:a8:c3:6d:f9:2c:38:3f:cf:03:6f: 16:de:e3:bd:44:a9:93:74:ba:ad:38:b4:d5:28:47: 51:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:B0:70:2B:8E:D8:7E:2C:30:42:8C:B4:3C:1C:22:D3:CF:3E:8B:FA X509v3 Authority Key Identifier: keyid:33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/-bBwK47YfiwwQoy0PBwi088-i_o.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.10.184.0/21 Signature Algorithm: sha256WithRSAEncryption 8a:48:d5:48:51:f9:32:5f:be:93:c8:a8:53:7d:47:63:47:83: 35:69:7b:3f:fc:2b:a7:1c:5a:5f:e1:66:4c:9c:49:1b:1d:62: a4:fd:fb:aa:a7:3e:47:4b:f7:d0:6b:21:88:c1:9b:f2:01:b1: f4:eb:cd:87:91:f0:92:3e:11:b4:67:d1:01:a6:9c:d5:18:7b: b2:62:b2:37:21:63:07:07:c4:12:2e:9c:13:00:53:05:36:0d: bd:81:49:cf:37:16:99:ca:78:b1:70:b8:ae:8a:9c:1c:48:bc: 46:5a:2f:3e:a5:87:98:ea:38:9b:5a:58:47:d2:34:8c:2b:c7: a4:4f:fe:28:60:9f:ec:34:4f:98:d0:73:43:4d:bf:34:a0:9b: b8:d7:db:6a:0a:1c:0c:d6:c4:b7:8d:85:f2:35:e9:ff:2f:77: 45:1b:40:7f:4f:e9:df:1d:ed:d5:60:d0:83:62:1a:c1:59:cc: 93:c2:bb:08:8b:18:60:f6:8d:e9:0f:ef:1a:a6:fa:09:35:3b: 22:c5:55:81:af:6b:ad:84:be:71:16:e8:58:f1:d9:65:79:2c: f2:89:35:58:6c:e5:54:0a:f1:ea:e4:c2:90:bd:a7:1e:eb:6a: 77:8d:4b:87:80:dd:56:3a:25:19:b2:8f:bc:a5:8a:6d:68:75: c9:4e:21:dd -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBLjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzM0RG OUIyNEY1M0JCQ0FDMzQ3QkE1QjVBOEM0OUJGRjQxNjY2QTI2MB4XDTI1MDEzMTAx MzM0OFoXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoRjlCMDcwMkI4RUQ4N0Uy QzMwNDI4Q0I0M0MxQzIyRDNDRjNFOEJGQTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAM91++D6OtZEZLVEjWH6J2xisq2bg1T1gvVUuSGTETMhowTbJcBK JoU16l6bgpgx4fGLBlTvV6KO13Mat1I2XMmPNQqUt/rFyBqN75BY66mvyF7T4aIA llCOebU861klbVAbXgypOVPJyemQ+plE+arfIEQzWRScBY5qOnzjda4G/nqKPIx+ RtTy6chnuQ+OvvsEPWxMAtCOxhhV4Ylx9LF9L8EoM/qspYxaP+2IDcYpd8clBkkN PyiWPeareTaKg8ZBwG+VD8gcozHdvOvqXujcRgkNFXOqTHbG4NexMXXk+mQZxUSo w235LDg/zwNvFt7jvUSpk3S6rTi01ShHUTkCAwEAAaOCAigwggIkMB0GA1UdDgQW BBT5sHArjth+LDBCjLQ8HCLTzz6L+jAfBgNVHSMEGDAWgBQz35sk9Tu8rDR7pbWo xJv/QWZqJjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTA4MjIvTTktYkpQVTd2S3cwZTZXMXFNU2JfMEZtYWlZLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvTTktYkpQVTd2S3cwZTZXMXFNU2Jf MEZtYWlZLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzEwODIyLy1iQndLNDdZZml3d1FveTBQQndpMDg4LWlfby5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAN3CrgwDQYJKoZIhvcNAQELBQADggEBAIpI1UhR+TJfvpPIqFN9R2NH gzVpez/8K6ccWl/hZkycSRsdYqT9+6qnPkdL99BrIYjBm/IBsfTrzYeR8JI+EbRn 0QGmnNUYe7JisjchYwcHxBIunBMAUwU2Db2BSc83FpnKeLFwuK6KnBxIvEZaLz6l h5jqOJtaWEfSNIwrx6RP/ihgn+w0T5jQc0NNvzSgm7jX22oKHAzWxLeNhfI16f8v d0UbQH9P6d8d7dVg0INiGsFZzJPCuwiLGGD2jekP7xqm+gk1OyLFVYGva62EvnEW 6Fjx2WV5LPKJNVhs5VQK8erkwpC9px7raneNS4eA3VY6JRmyj7ylim1odclOId0= -----END CERTIFICATE-----Generated at Sat Apr 5 17:33:07 2025 by rpki-client