$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20116/NliAs-GDQe5cyhdxn7vLVcGJrE0.roa File: NliAs-GDQe5cyhdxn7vLVcGJrE0.roa (raw, json) Hash identifier: SX+iBZkY+GGv5ox9KW1krcFWhndIyTkakWcgfAZGLbE= Subject key identifier: 36:58:80:B3:E1:83:41:EE:5C:CA:17:71:9F:BB:CB:55:C1:89:AC:4D Certificate issuer: /CN=C49E64FB7C8C7C6B5CD7C7701882E8597C42838E Certificate serial: 73 Authority key identifier: C4:9E:64:FB:7C:8C:7C:6B:5C:D7:C7:70:18:82:E8:59:7C:42:83:8E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xJ5k-3yMfGtc18dwGILoWXxCg44.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/NliAs-GDQe5cyhdxn7vLVcGJrE0.roa Signing time: Tue 12 Nov 2024 01:24:54 +0000 ROA not before: Tue 12 Nov 2024 01:24:54 +0000 ROA not after: Fri 07 Nov 2025 10:27:51 +0000 asID: 131898 IP address blocks: 219.100.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/xJ5k-3yMfGtc18dwGILoWXxCg44.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/xJ5k-3yMfGtc18dwGILoWXxCg44.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xJ5k-3yMfGtc18dwGILoWXxCg44.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:13:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E64FB7C8C7C6B5CD7C7701882E8597C42838E Validity Not Before: Nov 12 01:24:54 2024 GMT Not After : Nov 7 10:27:51 2025 GMT Subject: CN=365880B3E18341EE5CCA17719FBBCB55C189AC4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a5:39:24:78:29:ee:c2:bb:14:60:a9:28:23: cb:8d:99:aa:60:c6:82:88:f5:61:20:81:a7:33:6f: 1b:a0:e5:fd:98:14:9a:69:39:ee:51:b2:b6:6b:6a: 35:ed:ff:73:af:18:7b:b2:6a:ce:8e:ff:56:98:74: e9:17:6f:4e:ae:7a:2f:86:48:b4:2e:2b:e7:de:5d: 37:2f:aa:2a:76:10:df:23:c2:15:10:d0:c6:ae:82: 99:69:6a:91:e4:20:f2:9e:77:a1:a1:5a:11:0f:f8: 70:83:41:5e:92:51:d2:19:d4:49:20:3b:2c:cc:ba: 51:3e:f6:c3:ab:8d:03:22:91:46:5e:c5:70:81:ab: 96:14:ff:c8:f1:6e:f7:48:ac:b8:e9:25:fe:c2:86: 52:fe:b9:5a:eb:e2:15:e3:79:1c:0f:ec:96:f4:f8: ce:7f:96:c7:0e:26:07:26:d7:3c:5b:38:bf:96:7d: 61:69:33:b6:82:c2:89:c2:7e:94:b3:79:8a:9f:83: 23:ed:36:82:74:21:c5:ad:94:2b:47:6b:83:50:be: 75:80:6e:53:8e:0f:30:7c:a3:12:6e:52:fe:c4:0e: 7b:1d:55:87:e8:83:ed:38:64:5a:11:43:69:23:52: d2:d6:22:47:ea:85:9e:b9:28:2d:ea:f5:e9:d6:6d: 42:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:58:80:B3:E1:83:41:EE:5C:CA:17:71:9F:BB:CB:55:C1:89:AC:4D X509v3 Authority Key Identifier: keyid:C4:9E:64:FB:7C:8C:7C:6B:5C:D7:C7:70:18:82:E8:59:7C:42:83:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/xJ5k-3yMfGtc18dwGILoWXxCg44.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xJ5k-3yMfGtc18dwGILoWXxCg44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/NliAs-GDQe5cyhdxn7vLVcGJrE0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.100.144.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:e7:21:28:2a:e6:ee:27:1c:f1:74:8b:01:69:ef:1a:e1:5c: 79:11:84:bf:1f:0f:c7:b6:16:bf:8b:a8:c6:97:ff:fa:39:6e: 2d:a9:65:14:07:38:92:fa:91:e0:af:f2:46:e8:cf:51:55:d3: 48:50:43:c9:ab:56:71:5b:59:f8:d1:a7:09:91:87:70:63:4d: c0:b3:f6:30:f5:02:20:c0:d4:10:6f:36:ef:8b:8a:af:c2:a9: 4e:9a:c5:e8:48:bd:ab:cf:44:c2:56:3d:33:c0:b0:78:a4:6a: 9d:8d:43:55:ce:47:5e:97:44:15:ba:d1:af:50:96:5a:4d:20: 27:b9:22:12:29:1b:4b:cb:c6:a5:93:9e:22:21:3f:75:63:f2: 9d:01:2e:df:f9:0b:94:54:3b:db:dc:f9:23:90:c6:e2:d2:e5: 1e:22:7b:a5:a5:c0:33:88:e6:4d:a7:44:28:49:7b:85:8b:c3: 28:82:f2:23:73:c5:17:df:5e:db:0c:62:74:86:cf:15:2a:18: d4:4d:1a:78:29:81:fe:40:89:ce:d9:be:2b:b4:6d:25:33:83: be:ab:d9:7e:fe:41:2c:43:73:06:88:48:71:97:1b:90:7d:cf: 8b:1c:45:74:78:db:77:45:5d:72:9d:a6:9a:f5:74:25:36:20: cf:d3:70:66 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBczANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDNDlF NjRGQjdDOEM3QzZCNUNEN0M3NzAxODgyRTg1OTdDNDI4MzhFMB4XDTI0MTExMjAx MjQ1NFoXDTI1MTEwNzEwMjc1MVowMzExMC8GA1UEAxMoMzY1ODgwQjNFMTgzNDFF RTVDQ0ExNzcxOUZCQkNCNTVDMTg5QUM0RDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANmlOSR4Ke7CuxRgqSgjy42ZqmDGgoj1YSCBpzNvG6Dl/ZgUmmk5 7lGytmtqNe3/c68Ye7Jqzo7/Vph06RdvTq56L4ZItC4r595dNy+qKnYQ3yPCFRDQ xq6CmWlqkeQg8p53oaFaEQ/4cINBXpJR0hnUSSA7LMy6UT72w6uNAyKRRl7FcIGr lhT/yPFu90isuOkl/sKGUv65WuviFeN5HA/slvT4zn+Wxw4mBybXPFs4v5Z9YWkz toLCicJ+lLN5ip+DI+02gnQhxa2UK0drg1C+dYBuU44PMHyjEm5S/sQOex1Vh+iD 7ThkWhFDaSNS0tYiR+qFnrkoLer16dZtQpECAwEAAaOCAigwggIkMB0GA1UdDgQW BBQ2WICz4YNB7lzKF3Gfu8tVwYmsTTAfBgNVHSMEGDAWgBTEnmT7fIx8a1zXx3AY guhZfEKDjjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAxMTYveEo1ay0zeU1mR3RjMThkd0dJTG9XWHhDZzQ0LmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAveEo1ay0zeU1mR3RjMThkd0dJTG9X WHhDZzQ0LmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMTE2L05saUFzLUdEUWU1Y3loZHhuN3ZMVmNHSnJFMC5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBADbZJAwDQYJKoZIhvcNAQELBQADggEBAH/nISgq5u4nHPF0iwFp7xrh XHkRhL8fD8e2Fr+LqMaX//o5bi2pZRQHOJL6keCv8kboz1FV00hQQ8mrVnFbWfjR pwmRh3BjTcCz9jD1AiDA1BBvNu+Liq/CqU6axehIvavPRMJWPTPAsHikap2NQ1XO R16XRBW60a9QllpNICe5IhIpG0vLxqWTniIhP3Vj8p0BLt/5C5RUO9vc+SOQxuLS 5R4ie6WlwDOI5k2nRChJe4WLwyiC8iNzxRffXtsMYnSGzxUqGNRNGngpgf5Aic7Z viu0bSUzg76r2X7+QSxDcwaISHGXG5B9z4scRXR423dFXXKdppr1dCU2IM/TcGY= -----END CERTIFICATE-----Generated at Sat Apr 5 11:59:15 2025 by rpki-client