$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/173/yRwo7eBFIGi8pOGoXVIJ4YGS_Ag.roa File: yRwo7eBFIGi8pOGoXVIJ4YGS_Ag.roa (raw, json) Hash identifier: 2tKNG6svpV59eVTRpTo8opyrnZ2QnKws69jMVntxGxA= Subject key identifier: C9:1C:28:ED:E0:45:20:68:BC:A4:E1:A8:5D:52:09:E1:81:92:FC:08 Certificate issuer: /CN=CD312427F800B8296DA11540C8B86E5CE12FC6C5 Certificate serial: CF Authority key identifier: CD:31:24:27:F8:00:B8:29:6D:A1:15:40:C8:B8:6E:5C:E1:2F:C6:C5 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/yRwo7eBFIGi8pOGoXVIJ4YGS_Ag.roa Signing time: Fri 31 Jan 2025 01:31:25 +0000 ROA not before: Fri 31 Jan 2025 01:31:25 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 18126 IP address blocks: 202.150.48.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CD312427F800B8296DA11540C8B86E5CE12FC6C5 Validity Not Before: Jan 31 01:31:25 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=C91C28EDE0452068BCA4E1A85D5209E18192FC08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:32:85:2d:dc:21:af:3d:42:cd:65:e0:94:1f: e8:37:7e:af:4e:65:25:3c:4f:0a:b6:b0:13:78:b9: e5:0c:4b:70:2a:45:02:1e:bc:86:d0:2f:0b:d5:6a: 35:a0:16:10:91:cb:fd:c3:1a:fa:b9:a2:4b:f5:49: 20:30:21:d0:04:89:0c:16:ef:cc:a6:3d:09:02:23: d5:40:f0:5a:e2:33:9b:79:8b:1e:4e:72:e4:7b:08: 8a:99:06:b6:9c:18:f5:02:cd:7c:22:9d:6d:45:2a: f0:d1:52:4d:55:25:06:9d:c9:87:99:aa:0c:f0:48: e9:70:35:2a:50:5a:94:db:7b:12:c3:ac:aa:2b:c1: ca:1d:40:ad:6d:4e:05:6e:2b:df:4a:f8:60:d2:91: e3:49:10:ff:e9:e2:cc:47:1b:b8:b1:ef:5a:81:92: 5c:d1:0c:18:14:31:2d:93:9f:95:26:af:e2:3e:5c: d3:e7:ca:75:b5:17:f5:43:2e:aa:cc:37:47:dc:6b: 9b:ef:b8:ad:7e:9f:7c:54:f5:13:67:83:64:3e:f8: ba:1a:20:94:d5:b2:36:6d:b1:4c:83:05:ce:62:7f: 0e:56:03:f7:11:4f:56:66:71:d4:dc:78:7b:af:47: 76:96:17:09:66:6f:49:68:12:0a:ea:87:5c:5e:de: 43:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:1C:28:ED:E0:45:20:68:BC:A4:E1:A8:5D:52:09:E1:81:92:FC:08 X509v3 Authority Key Identifier: keyid:CD:31:24:27:F8:00:B8:29:6D:A1:15:40:C8:B8:6E:5C:E1:2F:C6:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/yRwo7eBFIGi8pOGoXVIJ4YGS_Ag.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.150.48.0/21 Signature Algorithm: sha256WithRSAEncryption 8e:0d:ca:49:72:8e:d0:6b:d6:d8:03:81:a0:ae:df:8e:53:43: 95:b2:6c:d0:01:2f:1b:53:c6:4e:e6:8a:e0:15:74:ae:21:cc: b4:86:b1:24:ab:30:9a:21:79:6d:7d:b7:2b:55:c0:90:83:3b: 0a:65:02:8b:f7:47:dc:a0:79:88:4f:fd:f5:c3:3a:e4:4a:fd: b5:41:ba:50:f4:18:37:1c:11:f1:6a:a5:08:3d:c2:bb:ca:ea: 8a:dd:c6:0f:af:4c:24:ec:b1:c9:99:2b:52:2c:ec:fa:cc:58: cc:f0:b7:76:3a:6c:b3:5a:d1:d9:f6:10:96:4e:3c:cb:7c:f4: bd:28:e0:f9:8f:0f:a4:f7:b7:b5:ae:d0:bf:3b:de:b1:d9:54: 52:c8:ae:44:59:e6:8f:72:cb:95:eb:cb:dd:30:11:47:30:96: fa:2d:b2:e6:29:27:19:7f:51:4e:be:0d:9f:07:5d:02:40:44: 76:b0:58:e1:51:ae:b8:72:6d:00:9d:25:12:94:f5:8c:24:cc: 7d:3e:f9:d0:a8:0a:67:cf:c3:3f:c3:3b:41:32:8b:c1:9f:ab: 86:bf:71:a4:2c:d5:59:ec:fd:b4:88:32:95:43:39:b8:ac:b9: 6d:bc:f6:78:ff:a6:7f:b9:17:46:2c:31:f1:d7:3f:35:95:8b: 69:2b:05:31 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0Qz MTI0MjdGODAwQjgyOTZEQTExNTQwQzhCODZFNUNFMTJGQzZDNTAeFw0yNTAxMzEw MTMxMjVaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEM5MUMyOEVERTA0NTIw NjhCQ0E0RTFBODVENTIwOUUxODE5MkZDMDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDiMoUt3CGvPULNZeCUH+g3fq9OZSU8Twq2sBN4ueUMS3AqRQIe vIbQLwvVajWgFhCRy/3DGvq5okv1SSAwIdAEiQwW78ymPQkCI9VA8FriM5t5ix5O cuR7CIqZBracGPUCzXwinW1FKvDRUk1VJQadyYeZqgzwSOlwNSpQWpTbexLDrKor wcodQK1tTgVuK99K+GDSkeNJEP/p4sxHG7ix71qBklzRDBgUMS2Tn5Umr+I+XNPn ynW1F/VDLqrMN0fca5vvuK1+n3xU9RNng2Q++LoaIJTVsjZtsUyDBc5ifw5WA/cR T1ZmcdTceHuvR3aWFwlmb0loEgrqh1xe3kM7AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUyRwo7eBFIGi8pOGoXVIJ4YGS/AgwHwYDVR0jBBgwFoAUzTEkJ/gAuCltoRVA yLhuXOEvxsUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzE3My96VEVrSl9nQXVDbHRvUlZBeUxodVhPRXZ4c1UuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC96VEVrSl9nQXVDbHRvUlZBeUxodVhP RXZ4c1UuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTczL3lSd283ZUJGSUdpOHBPR29YVklKNFlHU19BZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPKljAwDQYJKoZIhvcNAQELBQADggEBAI4NyklyjtBr1tgDgaCu345TQ5Wy bNABLxtTxk7miuAVdK4hzLSGsSSrMJoheW19tytVwJCDOwplAov3R9ygeYhP/fXD OuRK/bVBulD0GDccEfFqpQg9wrvK6ordxg+vTCTsscmZK1Is7PrMWMzwt3Y6bLNa 0dn2EJZOPMt89L0o4PmPD6T3t7Wu0L873rHZVFLIrkRZ5o9yy5Xry90wEUcwlvot suYpJxl/UU6+DZ8HXQJARHawWOFRrrhybQCdJRKU9YwkzH0++dCoCmfPwz/DO0Ey i8Gfq4a/caQs1Vns/bSIMpVDObisuW289nj/pn+5F0YsMfHXPzWVi2krBTE= -----END CERTIFICATE-----Generated at Sat Apr 5 23:11:11 2025 by rpki-client