$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1611/AYAThmql9n-pepRmVAGtvI_8jZY.roa File: AYAThmql9n-pepRmVAGtvI_8jZY.roa (raw, json) Hash identifier: cVGbJD6nyguMRBg01f/692NxMMoP1CiKH+yNGvU0IY0= Subject key identifier: 01:80:13:86:6A:A5:F6:7F:A9:7A:94:66:54:01:AD:BC:8F:FC:8D:96 Certificate issuer: /CN=741CB8DC001400597BBCB21D31E491D7F55A2C80 Certificate serial: 49 Authority key identifier: 74:1C:B8:DC:00:14:00:59:7B:BC:B2:1D:31:E4:91:D7:F5:5A:2C:80 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/dBy43AAUAFl7vLIdMeSR1_VaLIA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1611/AYAThmql9n-pepRmVAGtvI_8jZY.roa Signing time: Fri 31 Jan 2025 01:32:22 +0000 ROA not before: Fri 31 Jan 2025 01:32:22 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 0 IP address blocks: 160.14.0.0/16 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1611/dBy43AAUAFl7vLIdMeSR1_VaLIA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1611/dBy43AAUAFl7vLIdMeSR1_VaLIA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/dBy43AAUAFl7vLIdMeSR1_VaLIA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=741CB8DC001400597BBCB21D31E491D7F55A2C80 Validity Not Before: Jan 31 01:32:22 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=018013866AA5F67FA97A94665401ADBC8FFC8D96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:09:7c:89:c6:87:f4:70:ab:ca:30:d7:e4:f1: 96:54:2f:c3:ee:ce:0c:af:b1:74:ca:85:bf:c5:f4: 51:cf:e2:ac:f5:fe:a1:0d:bd:0b:76:7f:33:c4:31: ba:95:95:40:b8:b8:5c:5d:03:aa:81:bc:00:79:39: 9a:ed:a0:7e:7b:11:3e:2a:63:c4:40:f8:54:c5:fd: 6b:27:b5:0b:ed:7b:04:fb:dd:80:0c:5e:83:74:0f: 01:23:10:77:3c:a8:1c:24:b0:a5:7e:ae:88:49:b6: 23:69:9a:32:48:16:e3:48:34:b4:25:24:8d:30:5f: 66:3c:c2:c0:41:ad:9b:bd:ae:20:fa:65:e9:61:f3: b7:14:49:31:b7:bb:11:b0:a4:ff:70:e7:39:30:d9: ef:4a:bf:1d:e1:8b:aa:fa:28:e9:58:82:71:b3:4d: 78:20:78:6e:1f:f9:df:30:76:e4:f7:cc:0c:52:99: e5:bd:2a:d9:88:20:6f:d6:bf:fb:81:c0:98:9e:90: 9b:9d:49:97:37:f8:c6:8e:b0:d0:8a:ef:35:ab:0d: 31:bc:6d:ff:91:89:a0:4d:33:d8:82:f0:18:a3:35: d8:49:83:a8:af:57:3b:7c:3d:0b:9b:91:3c:6b:a6: 6b:bc:f7:44:9e:2d:82:69:4c:ce:ca:a5:95:b3:74: 86:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:80:13:86:6A:A5:F6:7F:A9:7A:94:66:54:01:AD:BC:8F:FC:8D:96 X509v3 Authority Key Identifier: keyid:74:1C:B8:DC:00:14:00:59:7B:BC:B2:1D:31:E4:91:D7:F5:5A:2C:80 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1611/dBy43AAUAFl7vLIdMeSR1_VaLIA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/dBy43AAUAFl7vLIdMeSR1_VaLIA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1611/AYAThmql9n-pepRmVAGtvI_8jZY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.14.0.0/16 Signature Algorithm: sha256WithRSAEncryption 72:11:34:4d:09:d5:f1:4e:0d:98:a3:3b:a6:0d:72:38:bc:25: 02:7e:8c:f5:ba:67:80:c2:5e:bd:33:8e:2c:83:31:5a:f0:a5: 11:75:53:24:52:dc:52:68:a2:05:b5:42:3d:f3:4e:d1:9d:59: 6b:48:4c:77:28:d0:8c:76:f2:08:fa:b1:48:b9:d6:d9:cf:d2: 6b:1f:75:a3:12:0c:67:88:93:4f:4d:f4:5e:8d:f5:9b:ce:16: 9e:4b:6b:f0:9f:8a:18:f8:94:23:45:b7:eb:7e:74:77:d2:6e: 63:29:c8:46:40:b8:51:f4:9a:d3:fa:0e:38:78:bc:6b:7d:20: c8:9f:07:dd:d6:73:5b:41:24:39:83:e7:52:33:ac:b4:27:55: a7:e5:4c:e1:a2:09:74:1b:c4:b7:4c:9a:d2:fa:5d:25:9f:fa: be:57:e4:bb:c1:95:ff:bb:2e:3e:7e:d3:17:79:10:80:73:41: 30:0f:d4:3f:68:5a:a5:79:14:8e:26:66:70:f9:54:dc:f9:00: 46:03:01:ce:6d:9d:83:00:7c:c3:b2:cb:17:a5:f2:e5:26:11: 1f:84:90:c7:e7:5d:a5:b0:8f:85:2f:c2:1a:5c:44:13:54:35: 92:50:95:04:f1:2d:76:12:7c:af:4b:d1:55:16:93:f6:7f:87: 95:95:8e:1f -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgIBSTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3NDFD QjhEQzAwMTQwMDU5N0JCQ0IyMUQzMUU0OTFEN0Y1NUEyQzgwMB4XDTI1MDEzMTAx MzIyMloXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoMDE4MDEzODY2QUE1RjY3 RkE5N0E5NDY2NTQwMUFEQkM4RkZDOEQ5NjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALwJfInGh/Rwq8ow1+TxllQvw+7ODK+xdMqFv8X0Uc/irPX+oQ29 C3Z/M8QxupWVQLi4XF0DqoG8AHk5mu2gfnsRPipjxED4VMX9aye1C+17BPvdgAxe g3QPASMQdzyoHCSwpX6uiEm2I2maMkgW40g0tCUkjTBfZjzCwEGtm72uIPpl6WHz txRJMbe7EbCk/3DnOTDZ70q/HeGLqvoo6ViCcbNNeCB4bh/53zB25PfMDFKZ5b0q 2Yggb9a/+4HAmJ6Qm51Jlzf4xo6w0IrvNasNMbxt/5GJoE0z2ILwGKM12EmDqK9X O3w9C5uRPGuma7z3RJ4tgmlMzsqllbN0hvUCAwEAAaOCAiUwggIhMB0GA1UdDgQW BBQBgBOGaqX2f6l6lGZUAa28j/yNljAfBgNVHSMEGDAWgBR0HLjcABQAWXu8sh0x 5JHX9VosgDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTYxMS9kQnk0M0FBVUFGbDd2TElkTWVTUjFfVmFMSUEuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9kQnk0M0FBVUFGbDd2TElkTWVTUjFf VmFMSUEuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTYxMS9BWUFUaG1xbDluLXBlcFJtVkFHdHZJXzhqWlkucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIA ATAFAwMAoA4wDQYJKoZIhvcNAQELBQADggEBAHIRNE0J1fFODZijO6YNcji8JQJ+ jPW6Z4DCXr0zjiyDMVrwpRF1UyRS3FJoogW1Qj3zTtGdWWtITHco0Ix28gj6sUi5 1tnP0msfdaMSDGeIk09N9F6N9ZvOFp5La/Cfihj4lCNFt+t+dHfSbmMpyEZAuFH0 mtP6Djh4vGt9IMifB93Wc1tBJDmD51IzrLQnVaflTOGiCXQbxLdMmtL6XSWf+r5X 5LvBlf+7Lj5+0xd5EIBzQTAP1D9oWqV5FI4mZnD5VNz5AEYDAc5tnYMAfMOyyxel 8uUmER+EkMfnXaWwj4UvwhpcRBNUNZJQlQTxLXYSfK9L0VUWk/Z/h5WVjh8= -----END CERTIFICATE-----Generated at Sun Apr 6 09:12:05 2025 by rpki-client