$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20128/I62LBbfBvxPr2_9wQ1iB1KYdlNY.roa File: I62LBbfBvxPr2_9wQ1iB1KYdlNY.roa (raw, json) Hash identifier: 5+CR7++MrAws3W2klPBp1JMiJW44lQR6YDbHz0Ck/x0= Subject key identifier: 23:AD:8B:05:B7:C1:BF:13:EB:DB:FF:70:43:58:81:D4:A6:1D:94:D6 Certificate issuer: /CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Certificate serial: B1 Authority key identifier: 8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/I62LBbfBvxPr2_9wQ1iB1KYdlNY.roa Signing time: Wed 04 Dec 2024 19:38:53 +0000 ROA not before: Wed 04 Dec 2024 19:38:53 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 3949 IP address blocks: 61.213.187.0/26 maxlen: 26 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 177 (0xb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Validity Not Before: Dec 4 19:38:53 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=23AD8B05B7C1BF13EBDBFF70435881D4A61D94D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a2:52:40:69:ff:f1:34:25:e3:2d:df:86:8e: fd:60:61:32:2c:1e:d6:36:0d:96:63:78:fb:c4:de: 57:7e:a6:f0:6a:d9:58:1c:d5:1a:fb:1e:9a:f8:ff: 06:1f:19:53:d6:e5:a3:df:c1:69:da:cb:03:8b:9d: bb:b2:b0:13:56:59:c5:f7:83:65:a0:1e:fc:88:16: 8e:09:96:df:30:5f:28:3f:44:dc:a1:11:d7:87:91: b3:04:6e:af:c9:1f:ef:2a:01:b4:d2:6c:3f:51:8f: 9a:57:43:c7:e8:cc:5a:fd:5b:a2:ac:1a:39:5c:4b: fd:c4:2d:56:62:e6:e2:1e:25:ff:12:6f:0a:16:61: d6:35:79:f2:ed:38:63:00:31:b1:be:bf:e0:e2:79: 81:e4:3c:10:e6:12:e6:e9:4c:fe:a0:de:4e:92:e2: ab:78:40:52:45:39:a0:a6:96:e7:2c:eb:65:e7:bf: c5:bb:e1:fa:7e:d5:5d:60:27:76:9a:c8:bd:68:a7: e6:a9:6e:ae:07:d9:dd:1d:bd:04:83:84:c6:20:f9: d8:ed:f9:cd:50:50:1d:cf:ef:bd:91:4d:f0:2a:2a: 87:52:37:44:20:be:4b:74:a8:55:01:7b:d1:93:fc: 4c:9f:b1:9c:4f:12:8d:07:d7:09:d4:f8:c3:ce:c2: 48:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:AD:8B:05:B7:C1:BF:13:EB:DB:FF:70:43:58:81:D4:A6:1D:94:D6 X509v3 Authority Key Identifier: keyid:8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/I62LBbfBvxPr2_9wQ1iB1KYdlNY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.213.187.0/26 Signature Algorithm: sha256WithRSAEncryption 33:79:93:eb:f4:7b:b4:2a:e0:fa:bc:25:90:30:90:ed:1a:50: bc:d1:93:5f:7f:d8:0a:e3:c9:9d:24:5f:da:16:a9:90:d2:83: 6d:cc:57:3b:d1:fe:99:56:8a:df:ad:8e:e9:83:dd:32:56:0a: 4a:9f:fd:98:df:d1:6f:08:b6:a7:20:52:70:d3:c7:dd:07:30: c0:c2:61:78:95:ce:44:70:4e:05:1c:7a:89:7a:8a:f0:f1:dd: e7:1f:87:20:4f:eb:d6:15:d3:d9:2a:e0:97:93:e8:b8:4a:2c: 85:d8:27:5b:55:a1:49:f1:c9:9f:15:38:45:2c:c9:55:9d:06: cb:0f:b0:44:55:6c:cb:06:17:ec:e6:cc:e7:84:b3:b4:30:d9: 8b:86:c8:5a:1b:a8:de:0b:4f:a8:8c:0e:9e:8c:6e:96:74:e7: 20:f5:54:be:d0:8d:b4:e4:ea:ab:89:7a:d4:11:9e:99:26:e3: c5:03:d5:3b:7d:5b:6c:4c:0a:cf:e2:0f:b5:51:6f:91:cf:72: 56:be:41:1a:a6:aa:cd:7d:9e:5d:9c:f3:0c:45:01:f3:c6:cd: 3b:86:56:85:36:c0:ab:10:f2:30:4f:5b:b1:73:14:80:48:32: 9f:f0:e7:80:37:3e:ac:87:65:5f:fe:b5:c7:1c:60:6e:5a:65: f8:a9:e3:df -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgICALEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEQ0 NkRERjg4QTQ2RTRFQzJEOUE5QkFCNUZGMTMwNUZEMDU3RjEzODAeFw0yNDEyMDQx OTM4NTNaFw0yNTExMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDIzQUQ4QjA1QjdDMUJG MTNFQkRCRkY3MDQzNTg4MUQ0QTYxRDk0RDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHolJAaf/xNCXjLd+Gjv1gYTIsHtY2DZZjePvE3ld+pvBq2Vgc 1Rr7Hpr4/wYfGVPW5aPfwWnaywOLnbuysBNWWcX3g2WgHvyIFo4Jlt8wXyg/RNyh EdeHkbMEbq/JH+8qAbTSbD9Rj5pXQ8fozFr9W6KsGjlcS/3ELVZi5uIeJf8SbwoW YdY1efLtOGMAMbG+v+DieYHkPBDmEubpTP6g3k6S4qt4QFJFOaCmlucs62Xnv8W7 4fp+1V1gJ3aayL1op+apbq4H2d0dvQSDhMYg+djt+c1QUB3P772RTfAqKodSN0Qg vkt0qFUBe9GT/EyfsZxPEo0H1wnU+MPOwkg1AgMBAAGjggIpMIICJTAdBgNVHQ4E FgQUI62LBbfBvxPr2/9wQ1iB1KYdlNYwHwYDVR0jBBgwFoAUjUbd+IpG5Owtmpur X/EwX9BX8TgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMTI4L2pVYmQtSXBHNU93dG1wdXJYX0V3WDlCWDhUZy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2pVYmQtSXBHNU93dG1wdXJYX0V3 WDlCWDhUZy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDEyOC9JNjJMQmJmQnZ4UHIyXzl3UTFpQjFLWWRsTlku cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAATAHAwUGPdW7ADANBgkqhkiG9w0BAQsFAAOCAQEAM3mT6/R7tCrg+rwlkDCQ 7RpQvNGTX3/YCuPJnSRf2hapkNKDbcxXO9H+mVaK362O6YPdMlYKSp/9mN/Rbwi2 pyBScNPH3QcwwMJheJXORHBOBRx6iXqK8PHd5x+HIE/r1hXT2Srgl5PouEoshdgn W1WhSfHJnxU4RSzJVZ0Gyw+wRFVsywYX7ObM54SztDDZi4bIWhuo3gtPqIwOnoxu lnTnIPVUvtCNtOTqq4l61BGemSbjxQPVO31bbEwKz+IPtVFvkc9yVr5BGqaqzX2e XZzzDEUB88bNO4ZWhTbAqxDyME9bsXMUgEgyn/DngDc+rIdlX/61xxxgblpl+Knj 3w== -----END CERTIFICATE-----Generated at Sat Apr 5 17:33:13 2025 by rpki-client