$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/173/5Ol2j2-zoC0T0kW7IYjRGDtlo3g.roa File: 5Ol2j2-zoC0T0kW7IYjRGDtlo3g.roa (raw, json) Hash identifier: l1ZvvVenXGwjv81tLI7yddUYXEHmaiJI4owjl7rrO9M= Subject key identifier: E4:E9:76:8F:6F:B3:A0:2D:13:D2:45:BB:21:88:D1:18:3B:65:A3:78 Certificate issuer: /CN=CD312427F800B8296DA11540C8B86E5CE12FC6C5 Certificate serial: C9 Authority key identifier: CD:31:24:27:F8:00:B8:29:6D:A1:15:40:C8:B8:6E:5C:E1:2F:C6:C5 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/5Ol2j2-zoC0T0kW7IYjRGDtlo3g.roa Signing time: Fri 31 Jan 2025 01:31:23 +0000 ROA not before: Fri 31 Jan 2025 01:31:23 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 18126 IP address blocks: 223.29.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CD312427F800B8296DA11540C8B86E5CE12FC6C5 Validity Not Before: Jan 31 01:31:23 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=E4E9768F6FB3A02D13D245BB2188D1183B65A378 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:5a:56:8b:c2:8f:20:29:aa:46:31:c9:a5:17: c8:b6:16:7a:24:87:77:24:a2:a0:3f:09:d2:54:81: e1:53:09:fc:17:09:42:98:f8:c4:7d:bf:96:83:cd: e5:af:a4:e9:36:ce:05:9b:25:96:e3:7b:07:5b:f3: 75:c8:07:fa:59:cc:a9:1a:00:78:cd:6d:c3:f7:b2: 7e:7a:d7:b9:f1:4c:77:37:40:1c:93:8f:46:a1:d4: 07:2b:b6:c6:97:64:ae:a9:d6:f8:9e:3f:38:aa:c7: 8c:3e:a5:ce:de:77:06:8c:e4:a0:e5:7a:e9:3c:7c: 15:0a:ad:e9:c4:7a:00:b5:94:90:29:9c:20:d3:10: 7e:ed:8c:02:e8:1d:5f:8d:20:56:09:37:10:30:98: dc:60:9c:c5:5c:29:7b:b0:d2:9c:2c:fe:83:10:4c: 8e:b1:49:e4:96:75:c2:43:24:b4:25:4c:58:8f:74: 84:21:f9:c4:58:3f:df:90:ec:38:d1:f0:74:63:13: 10:2e:44:8a:80:46:94:22:78:e6:77:20:cb:a9:eb: 26:14:84:5f:26:e0:ef:8c:c8:6c:fe:55:e4:ff:2e: 56:f1:7b:37:41:ba:d5:fe:67:8b:5d:3f:1a:5c:04: 49:47:45:53:4e:02:9f:da:41:de:59:3b:d6:bc:e7: 3d:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:E9:76:8F:6F:B3:A0:2D:13:D2:45:BB:21:88:D1:18:3B:65:A3:78 X509v3 Authority Key Identifier: keyid:CD:31:24:27:F8:00:B8:29:6D:A1:15:40:C8:B8:6E:5C:E1:2F:C6:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/5Ol2j2-zoC0T0kW7IYjRGDtlo3g.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 223.29.0.0/17 Signature Algorithm: sha256WithRSAEncryption 41:a7:09:5f:a4:d9:e6:16:18:77:62:af:0a:0b:35:98:f2:a1: 80:1f:5c:d1:8d:66:b3:5d:d0:58:2e:2e:7c:75:ce:99:9e:4b: 9a:33:86:f6:3b:41:87:85:7f:0e:99:45:3e:3c:95:8c:d6:19: a4:cd:21:a0:e1:55:75:5f:31:65:c8:aa:0a:aa:4e:a2:93:3f: 1e:6d:e1:72:bf:f2:fe:46:5a:05:8f:9d:ff:de:85:66:d4:37: c3:3e:4a:20:97:42:bf:d0:1e:f5:d7:ca:95:bd:02:23:d9:2b: e4:70:20:74:89:d3:e5:fa:3f:45:4a:40:13:5b:91:6a:15:67: 5c:1f:c8:75:1b:49:ab:6f:5f:76:f0:06:81:80:5b:48:99:ba: b9:9f:34:9e:9c:a5:92:8b:6d:ec:63:79:af:62:80:d0:d2:ec: 05:99:68:32:0f:1d:94:85:12:cd:f6:36:3c:7a:29:1d:9a:9c: 4c:a5:ca:02:93:c9:42:2f:9d:18:b1:c9:fa:63:55:1f:12:28: f3:0f:ef:00:7b:01:b6:39:ab:f6:ca:b3:24:c2:f5:16:fe:58: 0b:bb:03:fd:8f:2d:5a:bc:9e:81:f3:cc:cc:f2:80:2b:21:ae: aa:dc:5c:e8:c5:de:43:ab:d1:3a:53:11:44:d6:db:c1:9c:3b: 4d:ea:55:fd -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0Qz MTI0MjdGODAwQjgyOTZEQTExNTQwQzhCODZFNUNFMTJGQzZDNTAeFw0yNTAxMzEw MTMxMjNaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEU0RTk3NjhGNkZCM0Ew MkQxM0QyNDVCQjIxODhEMTE4M0I2NUEzNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCWlaLwo8gKapGMcmlF8i2Fnokh3ckoqA/CdJUgeFTCfwXCUKY +MR9v5aDzeWvpOk2zgWbJZbjewdb83XIB/pZzKkaAHjNbcP3sn5617nxTHc3QByT j0ah1AcrtsaXZK6p1viePziqx4w+pc7edwaM5KDleuk8fBUKrenEegC1lJApnCDT EH7tjALoHV+NIFYJNxAwmNxgnMVcKXuw0pws/oMQTI6xSeSWdcJDJLQlTFiPdIQh +cRYP9+Q7DjR8HRjExAuRIqARpQieOZ3IMup6yYUhF8m4O+MyGz+VeT/LlbxezdB utX+Z4tdPxpcBElHRVNOAp/aQd5ZO9a85z0rAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU5Ol2j2+zoC0T0kW7IYjRGDtlo3gwHwYDVR0jBBgwFoAUzTEkJ/gAuCltoRVA yLhuXOEvxsUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE3My96VEVrSl9nQXVDbHRvUlZBeUxodVhPRXZ4c1UuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC96VEVrSl9nQXVDbHRvUlZBeUxodVhP RXZ4c1UuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTczLzVPbDJqMi16b0MwVDBrVzdJWWpSR0R0bG8zZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAffHQAwDQYJKoZIhvcNAQELBQADggEBAEGnCV+k2eYWGHdirwoLNZjyoYAf XNGNZrNd0FguLnx1zpmeS5ozhvY7QYeFfw6ZRT48lYzWGaTNIaDhVXVfMWXIqgqq TqKTPx5t4XK/8v5GWgWPnf/ehWbUN8M+SiCXQr/QHvXXypW9AiPZK+RwIHSJ0+X6 P0VKQBNbkWoVZ1wfyHUbSatvX3bwBoGAW0iZurmfNJ6cpZKLbexjea9igNDS7AWZ aDIPHZSFEs32Njx6KR2anEylygKTyUIvnRixyfpjVR8SKPMP7wB7AbY5q/bKsyTC 9Rb+WAu7A/2PLVq8noHzzMzygCshrqrcXOjF3kOr0TpTEUTW28GcO03qVf0= -----END CERTIFICATE-----Generated at Sat Apr 5 17:22:47 2025 by rpki-client