$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20128/dJiX0kt9EyCmzYP0ekHc1amQOU4.roa File: dJiX0kt9EyCmzYP0ekHc1amQOU4.roa (raw, json) Hash identifier: 7IVgatC6P93IUddao1KZ5oWTlJvPbjacWz+6BSshN2M= Subject key identifier: 74:98:97:D2:4B:7D:13:20:A6:CD:83:F4:7A:41:DC:D5:A9:90:39:4E Certificate issuer: /CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Certificate serial: 9A Authority key identifier: 8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/dJiX0kt9EyCmzYP0ekHc1amQOU4.roa Signing time: Wed 04 Dec 2024 19:18:49 +0000 ROA not before: Wed 04 Dec 2024 19:18:49 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 2914 IP address blocks: 124.40.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Validity Not Before: Dec 4 19:18:49 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=749897D24B7D1320A6CD83F47A41DCD5A990394E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:1f:75:9d:d8:e0:55:70:8c:e5:93:a6:98:8e: e2:c2:c9:96:24:3a:8d:fb:32:b6:ec:9a:b5:14:5c: 96:56:72:87:bf:ed:36:70:ab:5f:45:29:c3:ca:f6: 96:33:83:2d:6f:50:a2:44:6b:e9:52:65:df:f8:ad: fa:f6:8f:1e:ab:e8:14:01:cc:06:14:f7:e5:7f:65: 3e:cc:ae:81:dd:84:0f:49:aa:e8:d6:34:78:77:aa: 1b:50:52:ad:d8:07:b8:ae:2a:d9:76:3b:11:c8:81: 2f:11:bb:c2:d2:fb:02:90:1f:07:61:5b:dd:45:8e: a0:b6:0e:f5:7d:8a:a0:be:d5:d4:65:26:28:84:e5: 98:32:01:16:ec:91:d4:05:ca:0b:26:2b:16:4b:96: d5:e3:74:c8:97:4b:cf:67:f6:15:05:c1:b2:3b:95: b0:0c:b7:f5:ca:be:fa:84:10:17:ac:01:97:37:09: 38:da:9a:65:0d:5e:db:c4:86:61:54:d4:10:6f:a5: 8b:7f:60:67:55:56:ac:d0:45:69:0a:1a:88:2e:d5: 32:be:80:ce:02:35:16:db:1b:85:e4:ec:fc:92:2b: d5:e1:f4:e6:1f:ab:7c:a3:6d:e2:dd:b7:38:11:46: 6d:d7:fd:dd:ee:21:68:bf:a0:1a:74:d9:5d:e6:a0: 45:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:98:97:D2:4B:7D:13:20:A6:CD:83:F4:7A:41:DC:D5:A9:90:39:4E X509v3 Authority Key Identifier: keyid:8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/dJiX0kt9EyCmzYP0ekHc1amQOU4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.40.0.0/18 Signature Algorithm: sha256WithRSAEncryption 0a:c8:c2:7f:5b:55:3a:ca:6a:da:03:0b:87:63:4d:1b:6f:60: 95:e3:62:8f:11:ad:0b:d1:79:7b:01:4b:99:e6:75:56:1d:f1: ed:a6:86:6b:9c:7c:f6:f5:50:78:ef:e1:27:ce:a6:b3:08:f7: c4:a8:03:43:bb:9b:ed:7e:77:b5:13:8f:07:41:af:e5:55:76: 13:25:1e:ce:57:84:72:cf:ec:30:6a:af:c1:38:84:19:00:e6: 46:10:8e:c9:64:8a:b7:bc:6f:24:a9:59:2b:32:47:bb:c7:75: 5e:14:d6:7e:e1:d1:dd:f9:a4:c1:f3:f2:c8:af:68:46:05:f9: 1d:4a:5e:62:30:c8:15:7c:75:87:0d:9b:2f:8f:4c:f6:33:36: 60:b4:5b:da:41:b5:59:e2:21:fb:15:31:7b:3c:98:e2:87:50: 9c:67:9a:5b:61:8e:50:fd:3b:7a:4b:ff:c7:2b:2f:06:06:b3: 64:0b:e5:f3:81:d8:ce:2a:be:d5:3e:49:5c:5a:8e:23:f1:8a: 59:4d:22:75:4e:f4:f6:50:31:36:f7:41:77:6e:89:36:f8:f0: 2c:8d:de:cc:4f:71:50:ee:6b:92:93:e4:72:f6:3f:f0:2f:5a: 83:fa:4d:a8:bc:d1:67:c0:73:ec:b8:b0:7b:a3:ea:76:1c:d6: 50:d8:f7:79 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAJowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEQ0 NkRERjg4QTQ2RTRFQzJEOUE5QkFCNUZGMTMwNUZEMDU3RjEzODAeFw0yNDEyMDQx OTE4NDlaFw0yNTExMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDc0OTg5N0QyNEI3RDEz MjBBNkNEODNGNDdBNDFEQ0Q1QTk5MDM5NEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZH3Wd2OBVcIzlk6aYjuLCyZYkOo37MrbsmrUUXJZWcoe/7TZw q19FKcPK9pYzgy1vUKJEa+lSZd/4rfr2jx6r6BQBzAYU9+V/ZT7MroHdhA9JqujW NHh3qhtQUq3YB7iuKtl2OxHIgS8Ru8LS+wKQHwdhW91FjqC2DvV9iqC+1dRlJiiE 5ZgyARbskdQFygsmKxZLltXjdMiXS89n9hUFwbI7lbAMt/XKvvqEEBesAZc3CTja mmUNXtvEhmFU1BBvpYt/YGdVVqzQRWkKGogu1TK+gM4CNRbbG4Xk7PySK9Xh9OYf q3yjbeLdtzgRRm3X/d3uIWi/oBp02V3moEVBAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUdJiX0kt9EyCmzYP0ekHc1amQOU4wHwYDVR0jBBgwFoAUjUbd+IpG5Owtmpur X/EwX9BX8TgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMTI4L2pVYmQtSXBHNU93dG1wdXJYX0V3WDlCWDhUZy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2pVYmQtSXBHNU93dG1wdXJYX0V3 WDlCWDhUZy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDEyOC9kSmlYMGt0OUV5Q216WVAwZWtIYzFhbVFPVTQu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGfCgAMA0GCSqGSIb3DQEBCwUAA4IBAQAKyMJ/W1U6ymraAwuHY00b b2CV42KPEa0L0Xl7AUuZ5nVWHfHtpoZrnHz29VB47+EnzqazCPfEqANDu5vtfne1 E48HQa/lVXYTJR7OV4Ryz+wwaq/BOIQZAOZGEI7JZIq3vG8kqVkrMke7x3VeFNZ+ 4dHd+aTB8/LIr2hGBfkdSl5iMMgVfHWHDZsvj0z2MzZgtFvaQbVZ4iH7FTF7PJji h1CcZ5pbYY5Q/Tt6S//HKy8GBrNkC+XzgdjOKr7VPklcWo4j8YpZTSJ1TvT2UDE2 90F3bok2+PAsjd7MT3FQ7muSk+Ry9j/wL1qD+k2ovNFnwHPsuLB7o+p2HNZQ2Pd5 -----END CERTIFICATE-----Generated at Sat Apr 5 23:07:18 2025 by rpki-client