$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/12207/lX3lQvqjlitCPdnWE92t2XEVzSA.roa File: lX3lQvqjlitCPdnWE92t2XEVzSA.roa (raw, json) Hash identifier: LKDeo8Gh4IqfXxu8hyr+xLpjLeeDKHPmrYTz+Al4NyU= Subject key identifier: 95:7D:E5:42:FA:A3:96:2B:42:3D:D9:D6:13:DD:AD:D9:71:15:CD:20 Certificate issuer: /CN=C3941FA221377E9A206102B848EBB972A8709DD5 Certificate serial: 5C Authority key identifier: C3:94:1F:A2:21:37:7E:9A:20:61:02:B8:48:EB:B9:72:A8:70:9D:D5 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/w5QfoiE3fpogYQK4SOu5cqhwndU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/12207/lX3lQvqjlitCPdnWE92t2XEVzSA.roa Signing time: Fri 31 Jan 2025 01:30:44 +0000 ROA not before: Fri 31 Jan 2025 01:30:44 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 55392 IP address blocks: 103.2.252.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/12207/w5QfoiE3fpogYQK4SOu5cqhwndU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/12207/w5QfoiE3fpogYQK4SOu5cqhwndU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/w5QfoiE3fpogYQK4SOu5cqhwndU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 22:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3941FA221377E9A206102B848EBB972A8709DD5 Validity Not Before: Jan 31 01:30:44 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=957DE542FAA3962B423DD9D613DDADD97115CD20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:27:ee:75:01:a0:5e:88:d3:bb:67:41:ec:78: ff:ce:82:72:e7:1d:3b:35:cd:7e:f8:51:d1:06:08: 57:de:e2:89:ee:b9:1c:57:4c:80:37:2d:70:16:93: 90:36:bf:21:37:cc:ef:88:15:12:66:5b:5a:63:e3: 69:42:0c:42:0e:ef:f7:2c:49:55:83:15:b5:ae:05: 58:b1:4b:b7:cf:18:24:32:4f:e8:a3:22:25:18:e2: cb:ea:46:54:ec:d6:dd:26:bf:07:31:86:10:5c:9c: 50:d2:e7:c0:ef:9e:15:62:18:2a:4e:a5:fc:5e:08: 00:75:45:52:34:7e:42:39:4a:4c:a4:67:fc:a3:cb: 33:81:b3:02:59:26:ce:ea:f4:d8:1f:50:64:7e:d0: c3:e6:d2:d2:0d:25:99:c9:0f:45:2a:09:8f:a8:1b: 1a:dc:e0:34:98:e2:a9:7a:ec:c0:06:d3:ad:72:ad: 7f:e3:12:e4:7f:8c:0a:b4:c8:d0:15:86:11:79:33: 4d:21:3f:74:ba:2e:23:41:1d:53:49:82:49:45:01: 0c:32:18:09:6a:e6:d0:b4:36:63:35:94:2c:28:84: 87:ac:ec:57:f6:bd:30:4d:78:a9:4b:16:b7:f8:8f: 44:75:c9:9c:31:40:48:a7:0d:16:03:b4:4a:7c:82: 22:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:7D:E5:42:FA:A3:96:2B:42:3D:D9:D6:13:DD:AD:D9:71:15:CD:20 X509v3 Authority Key Identifier: keyid:C3:94:1F:A2:21:37:7E:9A:20:61:02:B8:48:EB:B9:72:A8:70:9D:D5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/12207/w5QfoiE3fpogYQK4SOu5cqhwndU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/w5QfoiE3fpogYQK4SOu5cqhwndU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/12207/lX3lQvqjlitCPdnWE92t2XEVzSA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.2.252.0/22 Signature Algorithm: sha256WithRSAEncryption 88:2f:14:c2:5e:7d:e5:f0:22:ee:02:a9:c0:58:4a:2c:3b:e8: ec:6b:24:74:1d:22:5e:ac:ac:9e:64:bf:e7:74:76:39:e7:ed: aa:03:d6:71:95:22:85:04:67:4a:e1:4c:56:95:49:e7:1b:b3: b8:48:f7:eb:c7:0d:c5:49:8a:bc:fb:f7:59:54:3a:8e:3e:e9: 20:4d:e1:6a:e0:89:56:bb:be:65:9e:98:4a:a6:f3:3d:7d:dd: a0:42:af:de:00:33:ce:ba:2a:9a:9a:2e:df:65:0c:55:c4:65: 25:4b:4f:1e:6e:12:9d:a6:02:84:93:58:78:be:14:56:2c:3b: a3:e0:cd:ca:07:4c:d0:0e:4e:1f:3c:4e:12:fa:94:52:83:4a: 57:cd:b8:0f:84:5f:b4:54:5c:de:3c:a3:73:58:90:60:b9:bb: ba:59:6c:e5:74:ef:fb:62:1d:88:da:90:90:88:3e:84:61:0d: c7:e1:92:d2:e2:d0:1c:a6:5c:19:9e:46:31:d4:05:0d:3e:e3: 04:37:e9:7e:cb:23:5e:9b:56:23:5c:7b:a2:3e:c5:c7:72:43: e2:72:6f:b5:11:98:af:f2:2c:e7:99:ef:5d:f3:ba:e4:22:79: 93:68:38:3f:02:4d:1a:ea:d4:df:7d:8c:84:f3:8a:be:49:4f: a1:1c:a3:a0 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBXDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDMzk0 MUZBMjIxMzc3RTlBMjA2MTAyQjg0OEVCQjk3MkE4NzA5REQ1MB4XDTI1MDEzMTAx MzA0NFoXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoOTU3REU1NDJGQUEzOTYy QjQyM0REOUQ2MTNEREFERDk3MTE1Q0QyMDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAM8n7nUBoF6I07tnQex4/86CcucdOzXNfvhR0QYIV97iie65HFdM gDctcBaTkDa/ITfM74gVEmZbWmPjaUIMQg7v9yxJVYMVta4FWLFLt88YJDJP6KMi JRjiy+pGVOzW3Sa/BzGGEFycUNLnwO+eFWIYKk6l/F4IAHVFUjR+QjlKTKRn/KPL M4GzAlkmzur02B9QZH7Qw+bS0g0lmckPRSoJj6gbGtzgNJjiqXrswAbTrXKtf+MS 5H+MCrTI0BWGEXkzTSE/dLouI0EdU0mCSUUBDDIYCWrm0LQ2YzWULCiEh6zsV/a9 ME14qUsWt/iPRHXJnDFASKcNFgO0SnyCIrECAwEAAaOCAigwggIkMB0GA1UdDgQW BBSVfeVC+qOWK0I92dYT3a3ZcRXNIDAfBgNVHSMEGDAWgBTDlB+iITd+miBhArhI 67lyqHCd1TAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTIyMDcvdzVRZm9pRTNmcG9nWVFLNFNPdTVjcWh3bmRVLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdzVRZm9pRTNmcG9nWVFLNFNPdTVj cWh3bmRVLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzEyMjA3L2xYM2xRdnFqbGl0Q1BkbldFOTJ0MlhFVnpTQS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAJnAvwwDQYJKoZIhvcNAQELBQADggEBAIgvFMJefeXwIu4CqcBYSiw7 6OxrJHQdIl6srJ5kv+d0djnn7aoD1nGVIoUEZ0rhTFaVSecbs7hI9+vHDcVJirz7 91lUOo4+6SBN4WrgiVa7vmWemEqm8z193aBCr94AM866KpqaLt9lDFXEZSVLTx5u Ep2mAoSTWHi+FFYsO6PgzcoHTNAOTh88ThL6lFKDSlfNuA+EX7RUXN48o3NYkGC5 u7pZbOV07/tiHYjakJCIPoRhDcfhktLi0BymXBmeRjHUBQ0+4wQ36X7LI16bViNc e6I+xcdyQ+Jyb7URmK/yLOeZ713zuuQieZNoOD8CTRrq1N99jITzir5JT6Eco6A= -----END CERTIFICATE-----Generated at Mon Apr 14 06:41:52 2025 by rpki-client