$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20128/8Dyn_xwCDrw8mzaE0Mc73w4ktqg.roa File: 8Dyn_xwCDrw8mzaE0Mc73w4ktqg.roa (raw, json) Hash identifier: APfScJ0WAE2tJJz3S3ZPc9Y04SjtOG8hFjA7Fqsn4wE= Subject key identifier: F0:3C:A7:FF:1C:02:0E:BC:3C:9B:36:84:D0:C7:3B:DF:0E:24:B6:A8 Certificate issuer: /CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Certificate serial: 7F Authority key identifier: 8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/8Dyn_xwCDrw8mzaE0Mc73w4ktqg.roa Signing time: Tue 03 Dec 2024 17:20:26 +0000 ROA not before: Tue 03 Dec 2024 17:20:26 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 55901 IP address blocks: 117.104.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Validity Not Before: Dec 3 17:20:26 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=F03CA7FF1C020EBC3C9B3684D0C73BDF0E24B6A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:a0:8f:98:2a:47:04:8f:40:04:ff:04:e7:32: 32:84:35:ed:45:82:da:0f:31:9b:49:52:ec:bb:4e: 07:59:96:a1:c4:4f:a0:71:ae:26:8e:43:32:74:96: ed:09:10:98:83:ef:4b:6f:c7:38:15:20:4d:bf:f7: a7:aa:9c:87:c4:0d:de:70:3b:b1:e3:c4:07:aa:31: 21:fe:50:20:c9:5a:9a:63:3e:eb:c7:a0:9d:c6:e3: b1:9f:40:43:d3:f8:39:af:b8:1c:af:e4:ec:d6:df: b5:be:63:4f:43:76:aa:c7:eb:72:61:26:72:51:e1: bb:e9:8a:8d:fa:8c:6f:ef:4b:70:47:84:0e:31:e8: 0a:16:6e:01:18:27:06:17:58:51:ff:01:09:c9:a4: ea:15:f6:f4:aa:e5:63:03:bd:a1:7f:d6:be:f5:01: 4c:c9:20:01:fa:c9:11:1e:cd:fd:3a:4b:11:bb:40: 4a:7f:6e:4d:b6:e3:d4:8b:76:47:47:11:2a:50:4e: 4b:9d:80:92:6f:72:3c:78:53:12:4b:4d:ec:4a:59: d8:6a:9f:2b:52:1d:96:f8:f2:77:50:a9:95:40:6b: cb:89:11:aa:88:0a:f9:37:21:44:cc:f6:9c:90:dd: 17:76:26:0c:f8:c2:ac:d2:f9:c2:96:d0:21:24:7a: 59:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:3C:A7:FF:1C:02:0E:BC:3C:9B:36:84:D0:C7:3B:DF:0E:24:B6:A8 X509v3 Authority Key Identifier: keyid:8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/8Dyn_xwCDrw8mzaE0Mc73w4ktqg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.104.134.0/24 Signature Algorithm: sha256WithRSAEncryption 05:c3:9a:77:43:07:48:d5:8a:e9:54:9d:cf:4e:d9:66:9d:c4: 88:9f:a7:03:3c:ad:29:53:e4:59:63:28:f6:89:79:4e:70:ae: 4f:3b:36:6b:77:04:f0:5e:c8:2c:88:86:21:bf:e5:59:ad:ff: ec:6d:a4:ae:66:3f:9f:f6:7e:37:3f:a4:fa:1d:f2:7f:0a:76: 7f:48:81:b7:a3:fc:e0:62:c7:50:3e:18:18:0f:09:f1:ac:9e: 62:bd:ca:3c:f5:d1:4c:c4:30:4c:3e:2a:41:f5:51:bb:a3:f0: 06:d2:1e:8d:92:86:dd:d3:a5:58:f3:26:cd:20:3a:2b:18:f2: 0e:27:0b:58:63:81:08:7a:2f:1c:47:2e:9b:53:51:c2:29:64: 34:d5:36:db:ef:ea:fe:e3:d3:d1:92:b2:aa:80:5c:be:ee:93: 91:22:82:a1:92:cc:df:03:ac:77:46:59:d6:00:c5:83:0a:68: 88:ab:b4:da:ce:4f:b6:7e:85:8f:d8:16:8e:d7:1e:c1:70:84: 7b:eb:de:8d:6a:86:67:94:f7:20:5d:5b:e1:16:9e:7d:af:97: 7d:1c:3c:97:f0:4d:94:5b:67:9d:3f:96:df:8a:e3:86:69:3f: 10:6d:da:c2:e7:35:fb:bc:e2:e8:4b:55:5b:a3:37:e1:b7:d1: d8:3e:17:eb -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBfzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4RDQ2 RERGODhBNDZFNEVDMkQ5QTlCQUI1RkYxMzA1RkQwNTdGMTM4MB4XDTI0MTIwMzE3 MjAyNloXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoRjAzQ0E3RkYxQzAyMEVC QzNDOUIzNjg0RDBDNzNCREYwRTI0QjZBODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOygj5gqRwSPQAT/BOcyMoQ17UWC2g8xm0lS7LtOB1mWocRPoHGu Jo5DMnSW7QkQmIPvS2/HOBUgTb/3p6qch8QN3nA7sePEB6oxIf5QIMlammM+68eg ncbjsZ9AQ9P4Oa+4HK/k7Nbftb5jT0N2qsfrcmEmclHhu+mKjfqMb+9LcEeEDjHo ChZuARgnBhdYUf8BCcmk6hX29KrlYwO9oX/WvvUBTMkgAfrJER7N/TpLEbtASn9u Tbbj1It2R0cRKlBOS52Akm9yPHhTEktN7EpZ2GqfK1Idlvjyd1CplUBry4kRqogK +TchRMz2nJDdF3YmDPjCrNL5wpbQISR6WW0CAwEAAaOCAigwggIkMB0GA1UdDgQW BBTwPKf/HAIOvDybNoTQxzvfDiS2qDAfBgNVHSMEGDAWgBSNRt34ikbk7C2am6tf 8TBf0FfxODAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAxMjgvalViZC1JcEc1T3d0bXB1clhfRXdYOUJYOFRnLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvalViZC1JcEc1T3d0bXB1clhfRXdY OUJYOFRnLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMTI4LzhEeW5feHdDRHJ3OG16YUUwTWM3M3c0a3RxZy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAB1aIYwDQYJKoZIhvcNAQELBQADggEBAAXDmndDB0jViulUnc9O2Wad xIifpwM8rSlT5FljKPaJeU5wrk87Nmt3BPBeyCyIhiG/5Vmt/+xtpK5mP5/2fjc/ pPod8n8Kdn9Igbej/OBix1A+GBgPCfGsnmK9yjz10UzEMEw+KkH1Ubuj8AbSHo2S ht3TpVjzJs0gOisY8g4nC1hjgQh6LxxHLptTUcIpZDTVNtvv6v7j09GSsqqAXL7u k5EigqGSzN8DrHdGWdYAxYMKaIirtNrOT7Z+hY/YFo7XHsFwhHvr3o1qhmeU9yBd W+EWnn2vl30cPJfwTZRbZ50/lt+K44ZpPxBt2sLnNfu84uhLVVujN+G30dg+F+s= -----END CERTIFICATE-----Generated at Sat Apr 5 17:47:40 2025 by rpki-client