$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/173/U7OuapokLIQZ76REfj_eM1YXuME.roa File: U7OuapokLIQZ76REfj_eM1YXuME.roa (raw, json) Hash identifier: ddYJO8WAE3h9G3iJMRZE7kaNZ1npm5UxxKpl9z0UxXs= Subject key identifier: 53:B3:AE:6A:9A:24:2C:84:19:EF:A4:44:7E:3F:DE:33:56:17:B8:C1 Certificate issuer: /CN=CD312427F800B8296DA11540C8B86E5CE12FC6C5 Certificate serial: CB Authority key identifier: CD:31:24:27:F8:00:B8:29:6D:A1:15:40:C8:B8:6E:5C:E1:2F:C6:C5 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/U7OuapokLIQZ76REfj_eM1YXuME.roa Signing time: Fri 31 Jan 2025 01:31:23 +0000 ROA not before: Fri 31 Jan 2025 01:31:23 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 18126 IP address blocks: 112.137.56.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CD312427F800B8296DA11540C8B86E5CE12FC6C5 Validity Not Before: Jan 31 01:31:23 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=53B3AE6A9A242C8419EFA4447E3FDE335617B8C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:13:c2:66:87:fe:66:56:c9:ed:cb:84:2a:03: 76:fa:e0:a1:9b:b6:ff:1c:72:23:1b:87:af:d6:56: de:dd:d7:a9:f3:4c:d1:07:87:cf:33:5e:1c:08:8c: b0:3e:12:dc:aa:fb:7f:ed:3b:7b:4a:e6:91:6d:54: 55:b3:5f:3e:b5:02:85:85:31:11:81:9f:ed:86:fb: 17:d2:84:f6:2f:a9:ec:3f:6c:0c:a2:5b:13:4a:1d: 85:dd:d5:a2:36:e6:14:9c:7e:7b:ac:40:5d:95:e3: 6e:4a:a0:dc:0f:c5:a6:7b:97:3e:40:49:17:65:53: bf:fc:b5:2e:80:0f:16:22:83:97:ae:5d:16:a3:dc: 18:95:5f:72:c1:98:24:90:f0:88:06:0a:c1:d2:95: 08:6e:f0:38:f0:3b:cd:ce:b8:98:13:f4:d3:93:83: 9e:1b:0d:e1:f9:95:ce:62:35:1c:89:8e:85:ec:2b: 9f:0b:e3:70:32:4a:d2:4b:25:e4:47:e9:84:6b:8f: c7:ef:cd:71:b6:f3:24:c9:5b:85:de:8c:8f:6a:2a: 89:20:d7:02:81:8d:9a:9f:4a:32:e1:2f:fa:61:eb: 44:c9:0b:83:ac:56:82:60:04:89:ec:da:e8:a7:21: 09:c2:15:d3:91:3f:75:93:e6:b9:ac:5c:fb:fd:5f: e0:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:B3:AE:6A:9A:24:2C:84:19:EF:A4:44:7E:3F:DE:33:56:17:B8:C1 X509v3 Authority Key Identifier: keyid:CD:31:24:27:F8:00:B8:29:6D:A1:15:40:C8:B8:6E:5C:E1:2F:C6:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/U7OuapokLIQZ76REfj_eM1YXuME.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 112.137.56.0/21 Signature Algorithm: sha256WithRSAEncryption a2:40:1e:65:89:ed:bb:f9:cd:c1:bd:20:44:42:d0:30:8e:72: 70:0e:b7:eb:91:33:7d:1b:76:48:ad:34:6f:82:f9:7c:0f:8a: 4a:fe:e6:03:47:2c:2d:cd:ff:52:df:58:8e:fa:cf:4a:c7:10: ea:9a:ef:84:bd:e9:7e:bd:3e:f3:55:63:38:61:da:8f:55:27: 4b:71:81:d0:34:6c:90:78:ec:58:f9:51:44:da:c1:c7:00:30: e6:e8:ef:f0:0a:f6:1c:4d:32:f8:19:ae:4e:1f:81:7d:76:c2: 4f:34:cb:76:4e:3d:5a:ab:a9:f0:7e:7c:67:8b:ef:c4:92:ec: c8:2b:1d:22:d6:89:2e:fa:c4:c4:7e:4d:5f:a8:2a:52:7b:7e: 0c:2b:e3:ce:56:53:c8:ca:f6:c5:ed:ca:cc:bc:2c:2e:7f:85: af:0e:2a:06:cc:87:89:fd:43:b3:b9:88:b4:3a:47:d0:56:03: 82:a9:51:9c:23:04:8c:69:09:8e:e8:34:48:c5:47:ad:d9:18: 4e:29:41:81:be:21:a2:ae:6d:ad:1d:40:52:a1:76:06:52:6a: 50:14:2d:e9:92:c1:e4:c7:ee:0b:b1:1a:23:67:a2:80:f0:b6: ed:d2:e0:84:d4:6a:e5:7d:b1:6b:ab:e0:e9:3c:de:9b:ec:86: 24:f3:36:21 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAMswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0Qz MTI0MjdGODAwQjgyOTZEQTExNTQwQzhCODZFNUNFMTJGQzZDNTAeFw0yNTAxMzEw MTMxMjNaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDUzQjNBRTZBOUEyNDJD ODQxOUVGQTQ0NDdFM0ZERTMzNTYxN0I4QzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwE8Jmh/5mVsnty4QqA3b64KGbtv8cciMbh6/WVt7d16nzTNEH h88zXhwIjLA+Etyq+3/tO3tK5pFtVFWzXz61AoWFMRGBn+2G+xfShPYvqew/bAyi WxNKHYXd1aI25hScfnusQF2V425KoNwPxaZ7lz5ASRdlU7/8tS6ADxYig5euXRaj 3BiVX3LBmCSQ8IgGCsHSlQhu8DjwO83OuJgT9NOTg54bDeH5lc5iNRyJjoXsK58L 43AyStJLJeRH6YRrj8fvzXG28yTJW4XejI9qKokg1wKBjZqfSjLhL/ph60TJC4Os VoJgBIns2uinIQnCFdORP3WT5rmsXPv9X+CLAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUU7OuapokLIQZ76REfj/eM1YXuMEwHwYDVR0jBBgwFoAUzTEkJ/gAuCltoRVA yLhuXOEvxsUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE3My96VEVrSl9nQXVDbHRvUlZBeUxodVhPRXZ4c1UuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC96VEVrSl9nQXVDbHRvUlZBeUxodVhP RXZ4c1UuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTczL1U3T3VhcG9rTElRWjc2UkVmal9lTTFZWHVNRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANwiTgwDQYJKoZIhvcNAQELBQADggEBAKJAHmWJ7bv5zcG9IERC0DCOcnAO t+uRM30bdkitNG+C+XwPikr+5gNHLC3N/1LfWI76z0rHEOqa74S96X69PvNVYzhh 2o9VJ0txgdA0bJB47Fj5UUTawccAMObo7/AK9hxNMvgZrk4fgX12wk80y3ZOPVqr qfB+fGeL78SS7MgrHSLWiS76xMR+TV+oKlJ7fgwr485WU8jK9sXtysy8LC5/ha8O KgbMh4n9Q7O5iLQ6R9BWA4KpUZwjBIxpCY7oNEjFR63ZGE4pQYG+IaKuba0dQFKh dgZSalAULemSweTH7guxGiNnooDwtu3S4ITUauV9sWur4Ok83pvshiTzNiE= -----END CERTIFICATE-----Generated at Sat Apr 5 23:07:41 2025 by rpki-client