$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/173/khTcXRwJSZ8-d9ltCCcB4a1j_q8.roa File: khTcXRwJSZ8-d9ltCCcB4a1j_q8.roa (raw, json) Hash identifier: Ayt9Ct6XWzRiPl0MN4LL8ZSLV9Zclv7K1gqQJOUK5x8= Subject key identifier: 92:14:DC:5D:1C:09:49:9F:3E:77:D9:6D:08:27:01:E1:AD:63:FE:AF Certificate issuer: /CN=CD312427F800B8296DA11540C8B86E5CE12FC6C5 Certificate serial: CD Authority key identifier: CD:31:24:27:F8:00:B8:29:6D:A1:15:40:C8:B8:6E:5C:E1:2F:C6:C5 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/khTcXRwJSZ8-d9ltCCcB4a1j_q8.roa Signing time: Fri 31 Jan 2025 01:31:24 +0000 ROA not before: Fri 31 Jan 2025 01:31:24 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 18126 IP address blocks: 202.41.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 21:47:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CD312427F800B8296DA11540C8B86E5CE12FC6C5 Validity Not Before: Jan 31 01:31:24 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=9214DC5D1C09499F3E77D96D082701E1AD63FEAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b6:4a:b7:3d:df:ea:90:f0:22:3e:38:2f:4e: 2e:6f:8c:74:3c:67:34:99:64:88:ca:ad:d5:06:11: cb:16:ec:a4:72:29:e1:98:34:83:16:48:d8:0e:23: c0:35:f0:c5:bf:de:c5:eb:19:99:e1:3c:89:57:a1: 70:05:6d:ff:a8:f1:f4:d3:37:c5:94:be:0e:32:ab: f8:7f:3e:2b:11:33:bf:f6:9c:a5:01:26:b2:f4:5e: 28:7d:c9:fc:09:e8:a2:71:80:b6:38:07:6b:5a:cf: 1a:48:24:ad:32:7b:6c:a7:3f:5f:43:da:d5:e8:ea: 6c:f0:8b:1f:2d:a3:8b:7e:94:dd:76:3c:e7:f6:2c: 32:9a:8d:18:d6:cb:32:4b:6b:f1:19:cd:4f:0f:21: 5b:cf:d1:48:d0:10:c4:23:66:41:c1:41:b3:af:9a: c8:14:32:c5:95:31:13:57:4e:22:6c:5b:e9:50:5d: 28:9c:29:2b:cb:49:5f:2e:c6:64:29:b0:be:cc:2f: d7:06:4b:98:5c:d0:d1:64:f1:10:c8:e8:b5:c2:d0: ff:4a:02:a5:35:07:47:f5:f3:7b:c2:61:d8:0c:dc: a2:db:88:dc:9f:71:7b:62:74:27:de:36:97:8e:23: 91:89:64:3a:f6:49:8b:16:39:32:50:fc:b4:fd:a0: 99:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:14:DC:5D:1C:09:49:9F:3E:77:D9:6D:08:27:01:E1:AD:63:FE:AF X509v3 Authority Key Identifier: keyid:CD:31:24:27:F8:00:B8:29:6D:A1:15:40:C8:B8:6E:5C:E1:2F:C6:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/khTcXRwJSZ8-d9ltCCcB4a1j_q8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.41.208.0/20 Signature Algorithm: sha256WithRSAEncryption 52:15:2e:cb:fb:ab:32:5d:a2:c3:22:26:d1:ce:29:19:03:e4: ea:3a:6d:ad:b0:f1:6a:a5:26:87:95:22:14:d5:ce:e7:56:29: 70:50:4b:b8:1d:b4:8b:3f:3a:1e:29:ed:2e:7d:54:f4:ff:68: d7:e0:bc:63:56:90:7b:96:80:6b:19:60:10:29:71:f4:b9:1e: ff:0e:6c:11:b5:92:08:d8:38:2f:54:60:be:51:52:cb:eb:87: 71:35:8a:aa:01:15:db:d6:cf:e8:b8:37:86:33:8d:1d:99:b3: 5d:c4:57:c4:2a:29:ff:b1:04:4a:6c:3b:1d:5f:b1:58:a1:30: b1:25:32:47:fa:62:1f:9b:e8:e1:4d:20:5b:0d:f7:6f:84:c6: 5c:84:79:25:b2:4d:a9:c5:0a:6e:76:3f:84:ed:39:90:97:45: 8b:92:42:90:f7:25:70:b1:f7:0c:25:a3:8b:f1:fc:8f:1b:d8: 03:de:72:29:07:0b:b1:2c:ae:22:e2:33:da:10:04:74:46:d3: 5a:66:0a:36:ad:01:54:eb:f5:cb:7a:b6:14:4b:55:30:f4:2d: b5:42:4e:88:af:68:c7:38:81:b8:b8:0c:4c:05:df:be:5b:26: 2b:3d:d9:74:a4:83:a3:cb:39:d9:8f:60:85:06:b9:62:7c:71: a0:f3:36:c9 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0Qz MTI0MjdGODAwQjgyOTZEQTExNTQwQzhCODZFNUNFMTJGQzZDNTAeFw0yNTAxMzEw MTMxMjRaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDkyMTREQzVEMUMwOTQ5 OUYzRTc3RDk2RDA4MjcwMUUxQUQ2M0ZFQUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCytkq3Pd/qkPAiPjgvTi5vjHQ8ZzSZZIjKrdUGEcsW7KRyKeGY NIMWSNgOI8A18MW/3sXrGZnhPIlXoXAFbf+o8fTTN8WUvg4yq/h/PisRM7/2nKUB JrL0Xih9yfwJ6KJxgLY4B2tazxpIJK0ye2ynP19D2tXo6mzwix8to4t+lN12POf2 LDKajRjWyzJLa/EZzU8PIVvP0UjQEMQjZkHBQbOvmsgUMsWVMRNXTiJsW+lQXSic KSvLSV8uxmQpsL7ML9cGS5hc0NFk8RDI6LXC0P9KAqU1B0f183vCYdgM3KLbiNyf cXtidCfeNpeOI5GJZDr2SYsWOTJQ/LT9oJnnAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUkhTcXRwJSZ8+d9ltCCcB4a1j/q8wHwYDVR0jBBgwFoAUzTEkJ/gAuCltoRVA yLhuXOEvxsUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE3My96VEVrSl9nQXVDbHRvUlZBeUxodVhPRXZ4c1UuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC96VEVrSl9nQXVDbHRvUlZBeUxodVhP RXZ4c1UuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTczL2toVGNYUndKU1o4LWQ5bHRDQ2NCNGExal9xOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATKKdAwDQYJKoZIhvcNAQELBQADggEBAFIVLsv7qzJdosMiJtHOKRkD5Oo6 ba2w8WqlJoeVIhTVzudWKXBQS7gdtIs/Oh4p7S59VPT/aNfgvGNWkHuWgGsZYBAp cfS5Hv8ObBG1kgjYOC9UYL5RUsvrh3E1iqoBFdvWz+i4N4YzjR2Zs13EV8QqKf+x BEpsOx1fsVihMLElMkf6Yh+b6OFNIFsN92+ExlyEeSWyTanFCm52P4TtOZCXRYuS QpD3JXCx9wwlo4vx/I8b2APecikHC7EsriLiM9oQBHRG01pmCjatAVTr9ct6thRL VTD0LbVCToivaMc4gbi4DEwF375bJis92XSkg6PLOdmPYIUGuWJ8caDzNsk= -----END CERTIFICATE-----Generated at Sat Apr 12 01:28:42 2025 by rpki-client