$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20128/er86xkeH8kuTEPRMzTUgpZQ4Nv4.roa File: er86xkeH8kuTEPRMzTUgpZQ4Nv4.roa (raw, json) Hash identifier: tsgrsy0Q7cnVx4PSUdZgKwCDIVikSOQ9WiQK4jpLdiw= Subject key identifier: 7A:BF:3A:C6:47:87:F2:4B:93:10:F4:4C:CD:35:20:A5:94:38:36:FE Certificate issuer: /CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Certificate serial: BA Authority key identifier: 8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/er86xkeH8kuTEPRMzTUgpZQ4Nv4.roa Signing time: Thu 05 Dec 2024 16:43:25 +0000 ROA not before: Thu 05 Dec 2024 16:43:25 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 2914 IP address blocks: 120.29.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 186 (0xba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Validity Not Before: Dec 5 16:43:25 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=7ABF3AC64787F24B9310F44CCD3520A5943836FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:31:58:e6:24:ab:62:72:a4:d2:fb:3d:e7:b0: 00:3b:5e:db:db:6c:fc:c9:49:08:64:f6:69:67:d9: 71:b7:22:70:21:cf:4a:d7:09:8c:c1:73:72:f1:d9: ca:4f:64:8b:e4:a9:46:f5:c0:87:e9:f9:11:6c:ad: 19:07:90:f6:5b:4e:b2:c2:71:30:8b:07:99:ac:1a: f3:0d:0d:a6:5b:35:d9:5e:f0:03:4e:a6:5b:f7:6a: d2:f0:08:26:ea:80:cf:17:b6:73:0b:e3:83:70:26: 8b:e9:39:1a:63:a2:77:c6:b1:d3:5b:4e:e7:37:eb: 29:4e:e6:b6:ee:8c:04:63:f4:cb:9b:2d:b8:30:33: 7b:d0:f4:25:21:6c:cc:06:52:ef:c2:a3:9f:60:e1: 89:59:27:ad:e7:55:ca:5c:5d:e7:f9:6b:92:25:12: bd:fe:a9:a9:84:34:57:b9:71:14:7e:ce:d2:b5:29: 25:49:1e:09:d4:38:d0:f7:af:1f:f4:26:0d:2d:69: 2a:ce:f6:9c:8c:3c:e9:3e:5a:c2:1c:03:67:05:79: f4:75:28:08:cc:ce:cd:a1:90:00:3b:62:7b:e6:75: c6:63:e3:7d:3c:33:8f:4f:5b:33:b6:08:2f:99:1e: f0:8d:98:22:1e:2a:a8:04:61:68:d4:41:d3:04:b7: cd:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:BF:3A:C6:47:87:F2:4B:93:10:F4:4C:CD:35:20:A5:94:38:36:FE X509v3 Authority Key Identifier: keyid:8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/er86xkeH8kuTEPRMzTUgpZQ4Nv4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.29.160.0/19 Signature Algorithm: sha256WithRSAEncryption 36:d3:70:a1:09:8a:0f:15:aa:91:cd:bd:b0:21:bd:ca:24:11: 7b:59:5b:03:9a:96:8d:19:17:4c:e6:20:be:db:a5:7b:ad:bc: 3e:a2:b3:19:46:b0:a4:7b:9c:13:86:55:7b:1c:fc:1f:1f:45: 7d:6a:14:ae:5f:d1:32:8b:1d:3e:1b:78:73:bd:37:ce:0e:fd: bc:18:53:c6:6d:54:e9:13:27:09:eb:41:15:fb:6e:6f:1e:8d: 0d:dd:f9:77:63:70:2e:92:38:30:2e:d3:81:12:eb:7b:13:80: d8:32:12:ea:0e:25:ca:d2:54:36:cb:ab:4e:17:42:52:7a:c2: 1f:62:ad:dd:cf:4e:6d:65:e8:7b:50:a6:09:29:0c:a9:9c:40: e6:bc:fc:8c:86:e9:75:05:49:f8:e6:c1:85:9c:ae:ef:bd:27: ff:c3:05:e5:10:17:30:7c:1e:cf:be:08:a7:b9:c2:90:4a:4f: 6d:11:d5:f9:ff:13:4f:ee:98:52:37:91:28:64:10:30:ba:b4: 3a:49:ad:2e:a9:02:21:44:0d:56:ab:b5:7f:f5:52:68:9a:d3: 0f:43:26:90:2f:41:c6:87:bb:ce:7d:b0:5c:f2:ba:69:e9:97: 7c:f7:47:03:7a:41:67:1d:ba:7e:f1:9f:b6:0a:45:2c:63:a1: e4:38:00:09 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICALowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEQ0 NkRERjg4QTQ2RTRFQzJEOUE5QkFCNUZGMTMwNUZEMDU3RjEzODAeFw0yNDEyMDUx NjQzMjVaFw0yNTExMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDdBQkYzQUM2NDc4N0Yy NEI5MzEwRjQ0Q0NEMzUyMEE1OTQzODM2RkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbMVjmJKticqTS+z3nsAA7XtvbbPzJSQhk9mln2XG3InAhz0rX CYzBc3Lx2cpPZIvkqUb1wIfp+RFsrRkHkPZbTrLCcTCLB5msGvMNDaZbNdle8ANO plv3atLwCCbqgM8XtnML44NwJovpORpjonfGsdNbTuc36ylO5rbujARj9MubLbgw M3vQ9CUhbMwGUu/Co59g4YlZJ63nVcpcXef5a5IlEr3+qamENFe5cRR+ztK1KSVJ HgnUOND3rx/0Jg0taSrO9pyMPOk+WsIcA2cFefR1KAjMzs2hkAA7YnvmdcZj4308 M49PWzO2CC+ZHvCNmCIeKqgEYWjUQdMEt80ZAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUer86xkeH8kuTEPRMzTUgpZQ4Nv4wHwYDVR0jBBgwFoAUjUbd+IpG5Owtmpur X/EwX9BX8TgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMTI4L2pVYmQtSXBHNU93dG1wdXJYX0V3WDlCWDhUZy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2pVYmQtSXBHNU93dG1wdXJYX0V3 WDlCWDhUZy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDEyOC9lcjg2eGtlSDhrdVRFUFJNelRVZ3BaUTROdjQu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFeB2gMA0GCSqGSIb3DQEBCwUAA4IBAQA203ChCYoPFaqRzb2wIb3K JBF7WVsDmpaNGRdM5iC+26V7rbw+orMZRrCke5wThlV7HPwfH0V9ahSuX9Eyix0+ G3hzvTfODv28GFPGbVTpEycJ60EV+25vHo0N3fl3Y3AukjgwLtOBEut7E4DYMhLq DiXK0lQ2y6tOF0JSesIfYq3dz05tZeh7UKYJKQypnEDmvPyMhul1BUn45sGFnK7v vSf/wwXlEBcwfB7PvginucKQSk9tEdX5/xNP7phSN5EoZBAwurQ6Sa0uqQIhRA1W q7V/9VJomtMPQyaQL0HGh7vOfbBc8rpp6Zd890cDekFnHbp+8Z+2CkUsY6HkOAAJ -----END CERTIFICATE-----Generated at Sat Apr 5 17:25:44 2025 by rpki-client