$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/173/oaqOZtiJriEHWHXqnoZTl_F__DM.roa File: oaqOZtiJriEHWHXqnoZTl_F__DM.roa (raw, json) Hash identifier: c52Lj/veFVLwmqsK2maVaTqJyiOt6AC9Ml2c51eIapk= Subject key identifier: A1:AA:8E:66:D8:89:AE:21:07:58:75:EA:9E:86:53:97:F1:7F:FC:33 Certificate issuer: /CN=CD312427F800B8296DA11540C8B86E5CE12FC6C5 Certificate serial: CE Authority key identifier: CD:31:24:27:F8:00:B8:29:6D:A1:15:40:C8:B8:6E:5C:E1:2F:C6:C5 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/oaqOZtiJriEHWHXqnoZTl_F__DM.roa Signing time: Fri 31 Jan 2025 01:31:24 +0000 ROA not before: Fri 31 Jan 2025 01:31:24 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 18126 IP address blocks: 103.2.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CD312427F800B8296DA11540C8B86E5CE12FC6C5 Validity Not Before: Jan 31 01:31:24 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=A1AA8E66D889AE21075875EA9E865397F17FFC33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:13:59:32:16:4b:cb:5a:54:ba:5d:19:57:cd: 90:b2:2c:b1:bb:84:b1:01:c9:fb:c4:c8:8f:c0:a5: ff:d5:96:75:db:7b:f5:50:95:91:29:a7:a3:54:88: 26:02:2d:b5:04:b7:14:92:81:2a:aa:66:d7:f5:79: 68:68:75:79:c6:ec:30:3b:db:a6:c3:0b:fc:51:2d: 16:49:2e:f6:87:cd:06:ce:79:da:b3:3b:0a:64:c3: 98:dd:12:23:cb:23:42:9b:03:09:96:53:9d:19:6f: ed:c3:f6:2a:30:b4:dd:a8:c0:13:d5:96:4f:b5:61: d1:89:ce:58:9f:46:57:a1:71:63:63:d9:ae:e7:06: ce:4f:4d:b4:87:d7:a7:f0:76:b6:3a:18:de:43:42: 98:58:28:08:73:d2:a4:75:af:b5:cb:b4:ec:6e:a9: 16:b2:d7:19:a8:9a:e7:83:51:bd:44:43:81:58:12: 5d:b2:aa:56:3d:58:d2:20:b1:6f:0f:bb:2f:7e:82: 47:17:ab:57:23:a0:60:ee:14:bf:5b:71:7c:19:24: 74:45:ef:2b:06:63:e1:f3:0f:c5:9a:08:1e:33:57: 98:a1:86:b7:a4:4e:02:34:9e:e0:4c:cb:63:75:f3: 3a:36:8d:78:2e:a3:c1:7e:94:6c:5d:85:2e:2f:98: ec:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:AA:8E:66:D8:89:AE:21:07:58:75:EA:9E:86:53:97:F1:7F:FC:33 X509v3 Authority Key Identifier: keyid:CD:31:24:27:F8:00:B8:29:6D:A1:15:40:C8:B8:6E:5C:E1:2F:C6:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/oaqOZtiJriEHWHXqnoZTl_F__DM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.2.20.0/22 Signature Algorithm: sha256WithRSAEncryption 6d:f8:a0:da:57:82:f5:0f:10:00:57:9f:0a:cd:d8:3b:7b:4f: 06:bf:0a:64:84:b3:e2:49:f3:b7:4f:bc:d5:52:be:42:5c:5a: f8:ac:36:f3:b5:2e:da:4f:95:eb:ac:66:32:d9:21:a3:ea:f1: 12:5d:37:99:d4:17:ae:ec:9d:59:09:a1:60:91:50:3d:85:33: 0b:d1:61:c5:33:fb:cb:71:14:68:22:22:77:7d:1a:99:b4:de: 40:ff:c6:76:55:35:1a:29:8f:49:ee:e8:37:b2:bf:81:d9:fd: f7:0b:40:d0:70:b2:28:eb:b9:fd:4f:53:21:6c:9b:bd:56:5a: 77:b1:04:0e:cc:33:78:e8:5c:b5:ae:48:5b:2f:35:8c:f5:a6: c4:18:77:48:56:0e:35:eb:fb:a1:f5:a0:a4:a9:02:cc:1e:ad: 31:f9:d1:be:01:c7:1c:27:3a:bb:71:a4:80:c0:18:fb:6e:dd: 6d:dd:b6:28:0c:2d:d8:b5:c5:25:c2:51:cd:5b:b5:2c:55:05: 9c:e9:0b:2f:d8:d9:cb:bc:1c:da:3d:0a:a6:3c:e3:95:72:50: c9:c7:8d:43:fb:09:ba:7f:8b:bc:40:df:d7:ea:c5:54:ad:d1: 7f:55:47:60:59:53:7e:b1:de:94:4f:7f:80:bf:91:d2:dc:0e: 67:6d:aa:9e -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0Qz MTI0MjdGODAwQjgyOTZEQTExNTQwQzhCODZFNUNFMTJGQzZDNTAeFw0yNTAxMzEw MTMxMjRaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEExQUE4RTY2RDg4OUFF MjEwNzU4NzVFQTlFODY1Mzk3RjE3RkZDMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCE1kyFkvLWlS6XRlXzZCyLLG7hLEByfvEyI/Apf/VlnXbe/VQ lZEpp6NUiCYCLbUEtxSSgSqqZtf1eWhodXnG7DA726bDC/xRLRZJLvaHzQbOedqz Owpkw5jdEiPLI0KbAwmWU50Zb+3D9iowtN2owBPVlk+1YdGJzlifRlehcWNj2a7n Bs5PTbSH16fwdrY6GN5DQphYKAhz0qR1r7XLtOxuqRay1xmomueDUb1EQ4FYEl2y qlY9WNIgsW8Puy9+gkcXq1cjoGDuFL9bcXwZJHRF7ysGY+HzD8WaCB4zV5ihhrek TgI0nuBMy2N18zo2jXguo8F+lGxdhS4vmOwlAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUoaqOZtiJriEHWHXqnoZTl/F//DMwHwYDVR0jBBgwFoAUzTEkJ/gAuCltoRVA yLhuXOEvxsUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE3My96VEVrSl9nQXVDbHRvUlZBeUxodVhPRXZ4c1UuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC96VEVrSl9nQXVDbHRvUlZBeUxodVhP RXZ4c1UuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTczL29hcU9adGlKcmlFSFdIWHFub1pUbF9GX19ETS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJnAhQwDQYJKoZIhvcNAQELBQADggEBAG34oNpXgvUPEABXnwrN2Dt7Twa/ CmSEs+JJ87dPvNVSvkJcWvisNvO1LtpPleusZjLZIaPq8RJdN5nUF67snVkJoWCR UD2FMwvRYcUz+8txFGgiInd9Gpm03kD/xnZVNRopj0nu6Deyv4HZ/fcLQNBwsijr uf1PUyFsm71WWnexBA7MM3joXLWuSFsvNYz1psQYd0hWDjXr+6H1oKSpAswerTH5 0b4BxxwnOrtxpIDAGPtu3W3dtigMLdi1xSXCUc1btSxVBZzpCy/Y2cu8HNo9CqY8 45VyUMnHjUP7Cbp/i7xA39fqxVSt0X9VR2BZU36x3pRPf4C/kdLcDmdtqp4= -----END CERTIFICATE-----Generated at Sat Apr 5 17:33:47 2025 by rpki-client