$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1169/U2nFppC68ZjAXNcLdhuTAZfdx90.roa File: U2nFppC68ZjAXNcLdhuTAZfdx90.roa (raw, json) Hash identifier: hFQcUEcCJ4qoEZDptInb/UYMsDb8MTZmN3/9x++60vw= Subject key identifier: 53:69:C5:A6:90:BA:F1:98:C0:5C:D7:0B:76:1B:93:01:97:DD:C7:DD Certificate issuer: /CN=28F396983C332842FDDAB617595A30A83C333464 Certificate serial: 02 Authority key identifier: 28:F3:96:98:3C:33:28:42:FD:DA:B6:17:59:5A:30:A8:3C:33:34:64 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KPOWmDwzKEL92rYXWVowqDwzNGQ.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1169/U2nFppC68ZjAXNcLdhuTAZfdx90.roa Signing time: Fri 27 Dec 2024 01:13:53 +0000 ROA not before: Fri 27 Dec 2024 01:13:53 +0000 ROA not after: Sat 27 Dec 2025 01:00:42 +0000 asID: 0 IP address blocks: 136.198.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1169/KPOWmDwzKEL92rYXWVowqDwzNGQ.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1169/KPOWmDwzKEL92rYXWVowqDwzNGQ.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KPOWmDwzKEL92rYXWVowqDwzNGQ.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28F396983C332842FDDAB617595A30A83C333464 Validity Not Before: Dec 27 01:13:53 2024 GMT Not After : Dec 27 01:00:42 2025 GMT Subject: CN=5369C5A690BAF198C05CD70B761B930197DDC7DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:01:59:b5:0e:ea:48:fd:d7:57:03:41:a8:ef: 00:21:55:4a:df:58:3d:4b:9c:0a:3d:99:a4:5b:a4: 8b:11:7d:f8:82:09:91:75:ae:26:95:ed:88:e5:1e: b1:ea:b4:70:77:93:22:1b:de:3e:0b:5c:dd:f3:ed: 5e:f9:14:46:97:44:0c:ca:fa:97:0f:3e:78:be:de: 06:a7:3f:19:f3:56:28:9c:99:bd:b1:ec:bc:3c:9c: 69:1a:74:09:7d:d1:75:b1:52:51:8f:d9:6a:58:04: d0:78:8e:89:75:39:f2:67:33:b3:f4:4c:21:9e:4c: fc:3b:9f:e2:f8:86:73:88:7b:2a:05:5f:60:bd:4a: ca:52:e0:4c:f0:df:71:47:a5:04:dc:84:ac:79:7b: b9:11:41:bd:bb:d4:67:ba:43:5f:30:a6:51:0e:a0: 8f:ff:b5:ff:59:30:02:b2:c7:0b:1e:da:13:5e:1c: 1c:cc:38:00:86:ea:b7:3d:2e:b2:ea:2c:4e:e2:39: db:78:b1:8a:47:8a:86:71:1c:55:3e:a2:99:d7:e3: a6:61:e4:51:de:06:3f:92:78:92:cb:87:f3:d8:7d: 43:68:04:a1:f3:11:81:ae:86:b4:5b:82:a8:82:03: 97:e7:c5:8a:86:87:09:36:09:8d:3d:05:9d:da:75: 15:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:69:C5:A6:90:BA:F1:98:C0:5C:D7:0B:76:1B:93:01:97:DD:C7:DD X509v3 Authority Key Identifier: keyid:28:F3:96:98:3C:33:28:42:FD:DA:B6:17:59:5A:30:A8:3C:33:34:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1169/KPOWmDwzKEL92rYXWVowqDwzNGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KPOWmDwzKEL92rYXWVowqDwzNGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1169/U2nFppC68ZjAXNcLdhuTAZfdx90.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 136.198.0.0/16 Signature Algorithm: sha256WithRSAEncryption b8:9a:b0:e4:d0:09:f0:bd:f5:ab:cc:6f:9b:0d:7b:68:54:be: 0c:38:1e:47:d1:2f:1e:23:88:01:cd:10:6a:03:0b:dc:c5:eb: 85:80:0a:2f:b5:bd:7a:39:f2:7f:2d:8e:6a:41:46:4d:01:5f: b2:3b:4a:d1:83:f7:b3:98:a7:a5:78:44:55:f8:05:8a:d0:83: e4:0b:02:21:5c:d4:a4:bb:51:bc:83:db:75:29:98:be:93:6b: 6a:a2:59:c4:07:e7:be:1f:54:89:55:48:2c:35:24:5b:3a:cb: 8a:f6:df:3f:db:c7:82:74:02:20:dc:a4:32:3f:c8:b2:f0:f8: e4:9a:98:0a:63:e1:13:a2:d7:d4:c8:06:b5:89:4a:db:c4:94: 72:64:48:fe:5e:dc:13:e7:ab:67:e3:2a:3b:ef:62:2f:7b:9f: fd:df:0b:b9:f8:a2:47:cb:4e:1c:3d:6d:e4:ce:f7:c9:bb:1c: a5:2a:aa:31:e9:f0:ca:46:f4:89:57:cc:c4:fe:18:d3:45:54: 8c:68:96:7d:3f:40:37:e4:33:94:6b:79:45:a6:41:4a:27:cb: 7b:2f:e5:69:e4:d9:3b:53:a0:0e:eb:c8:cc:fb:80:48:ab:26: 6c:0e:57:ff:64:64:f2:27:76:80:01:d0:b3:b4:83:a3:a0:75: b1:22:23:17 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgIBAjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyOEYz OTY5ODNDMzMyODQyRkREQUI2MTc1OTVBMzBBODNDMzMzNDY0MB4XDTI0MTIyNzAx MTM1M1oXDTI1MTIyNzAxMDA0MlowMzExMC8GA1UEAxMoNTM2OUM1QTY5MEJBRjE5 OEMwNUNENzBCNzYxQjkzMDE5N0REQzdERDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMsBWbUO6kj911cDQajvACFVSt9YPUucCj2ZpFukixF9+IIJkXWu JpXtiOUeseq0cHeTIhvePgtc3fPtXvkURpdEDMr6lw8+eL7eBqc/GfNWKJyZvbHs vDycaRp0CX3RdbFSUY/ZalgE0HiOiXU58mczs/RMIZ5M/Duf4viGc4h7KgVfYL1K ylLgTPDfcUelBNyErHl7uRFBvbvUZ7pDXzCmUQ6gj/+1/1kwArLHCx7aE14cHMw4 AIbqtz0usuosTuI523ixikeKhnEcVT6imdfjpmHkUd4GP5J4ksuH89h9Q2gEofMR ga6GtFuCqIIDl+fFioaHCTYJjT0Fndp1FTcCAwEAAaOCAiUwggIhMB0GA1UdDgQW BBRTacWmkLrxmMBc1wt2G5MBl93H3TAfBgNVHSMEGDAWgBQo85aYPDMoQv3athdZ WjCoPDM0ZDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTE2OS9LUE9XbUR3ektFTDkycllYV1Zvd3FEd3pOR1EuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9LUE9XbUR3ektFTDkycllYV1Zvd3FE d3pOR1EuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTE2OS9VMm5GcHBDNjhaakFYTmNMZGh1VEFaZmR4OTAucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIA ATAFAwMAiMYwDQYJKoZIhvcNAQELBQADggEBALiasOTQCfC99avMb5sNe2hUvgw4 HkfRLx4jiAHNEGoDC9zF64WACi+1vXo58n8tjmpBRk0BX7I7StGD97OYp6V4RFX4 BYrQg+QLAiFc1KS7UbyD23UpmL6Ta2qiWcQH574fVIlVSCw1JFs6y4r23z/bx4J0 AiDcpDI/yLLw+OSamApj4ROi19TIBrWJStvElHJkSP5e3BPnq2fjKjvvYi97n/3f C7n4okfLThw9beTO98m7HKUqqjHp8MpG9IlXzMT+GNNFVIxoln0/QDfkM5RreUWm QUony3sv5Wnk2TtToA7ryMz7gEirJmwOV/9kZPIndoAB0LO0g6OgdbEiIxc= -----END CERTIFICATE-----Generated at Sat Apr 5 17:40:34 2025 by rpki-client