$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20128/kT3-7zPwH0lhszl1V0wlt8uu6uc.roa File: kT3-7zPwH0lhszl1V0wlt8uu6uc.roa (raw, json) Hash identifier: Y1WWuzb0q197qoR54fyRD6UPgZ4qSVmuSimw/mqbWbI= Subject key identifier: 91:3D:FE:EF:33:F0:1F:49:61:B3:39:75:57:4C:25:B7:CB:AE:EA:E7 Certificate issuer: /CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Certificate serial: 7E Authority key identifier: 8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/kT3-7zPwH0lhszl1V0wlt8uu6uc.roa Signing time: Tue 03 Dec 2024 17:20:24 +0000 ROA not before: Tue 03 Dec 2024 17:20:24 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 3949 IP address blocks: 117.104.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Validity Not Before: Dec 3 17:20:24 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=913DFEEF33F01F4961B33975574C25B7CBAEEAE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:59:6f:71:f9:08:91:d1:af:25:4e:f4:41:94: 85:f6:fb:0f:87:89:49:40:d5:56:ff:eb:95:78:95: 51:4d:bb:a4:e3:cc:65:98:7a:a1:38:c7:e4:57:06: f3:ee:86:e3:9f:c8:f2:21:45:9a:a2:58:08:a3:09: 16:26:3f:a7:7a:21:70:da:05:d3:55:84:38:9f:ed: 70:bf:26:9e:3a:80:0b:15:6d:f7:af:be:39:a4:eb: f2:e1:5e:11:10:55:2f:99:8a:46:e3:92:67:62:f2: 0e:fe:01:7e:d4:40:b6:41:59:7b:e7:13:dc:2c:46: df:43:5b:0f:db:00:57:d3:61:d0:c9:b6:38:2a:9e: 84:77:ec:25:12:7a:5c:66:3a:d7:04:4b:7a:d1:58: 35:80:96:61:32:0a:26:58:9e:ce:8b:88:13:81:54: e2:d3:9e:d2:54:81:c1:d1:92:6f:ce:2e:9b:aa:e5: 0e:1d:9a:74:0d:5d:93:90:07:b0:c4:da:f9:a4:b4: 8c:e3:7c:85:b0:8e:b6:65:5c:8c:70:01:f8:4d:92: 88:e5:ac:b0:b3:f5:2d:a6:3b:7f:de:36:e5:21:89: 6d:2d:c3:4e:b8:c3:25:74:33:5b:91:29:f4:f8:c8: a2:a8:8e:9e:66:b2:d0:72:6d:b3:2d:ae:27:b2:52: a6:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:3D:FE:EF:33:F0:1F:49:61:B3:39:75:57:4C:25:B7:CB:AE:EA:E7 X509v3 Authority Key Identifier: keyid:8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/kT3-7zPwH0lhszl1V0wlt8uu6uc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.104.133.0/24 Signature Algorithm: sha256WithRSAEncryption 44:37:50:21:c1:9b:43:c3:25:28:57:48:2c:30:0c:e5:e7:0a: a8:95:d7:63:dd:18:30:01:36:52:14:fa:35:b3:cf:db:5e:ba: bf:55:9f:10:e7:af:27:57:2e:eb:05:54:2b:ff:53:8c:c9:0d: ff:b2:36:f0:3f:4f:4a:17:b9:6f:fe:b5:c9:94:e1:83:cf:bf: 9f:75:28:7f:bf:6e:91:e2:4a:65:a1:52:3f:f0:70:d0:c9:09: 7a:56:05:d9:d7:97:20:db:4e:72:3e:4f:d1:69:0a:af:a9:0d: 08:d5:c9:cd:9e:73:b3:c5:5b:72:26:14:9d:0c:70:7f:e5:e2: fb:7a:27:ae:a5:92:60:c4:4a:a7:f1:ba:11:64:7d:d4:ad:15: 2a:b0:e6:8e:16:f3:11:2d:92:24:54:20:22:99:52:9a:fd:2a: 24:30:bd:25:48:a6:f1:e5:c6:fc:b3:8b:35:31:fd:55:f4:43: 02:cf:bc:56:cf:da:97:84:67:5a:40:05:cf:3d:8d:f3:d4:07: cb:82:3d:01:29:98:8b:4a:f8:92:dc:4b:9e:a4:fd:c4:03:f9: 93:bc:e2:dc:a6:8b:98:54:b9:ec:cb:1d:fa:6d:6b:ef:15:45: 79:01:0f:1d:a0:76:d5:6b:75:c6:2c:59:6c:ad:0b:62:0a:1b: 83:9a:21:a6 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBfjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4RDQ2 RERGODhBNDZFNEVDMkQ5QTlCQUI1RkYxMzA1RkQwNTdGMTM4MB4XDTI0MTIwMzE3 MjAyNFoXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoOTEzREZFRUYzM0YwMUY0 OTYxQjMzOTc1NTc0QzI1QjdDQkFFRUFFNzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANFZb3H5CJHRryVO9EGUhfb7D4eJSUDVVv/rlXiVUU27pOPMZZh6 oTjH5FcG8+6G45/I8iFFmqJYCKMJFiY/p3ohcNoF01WEOJ/tcL8mnjqACxVt96++ OaTr8uFeERBVL5mKRuOSZ2LyDv4BftRAtkFZe+cT3CxG30NbD9sAV9Nh0Mm2OCqe hHfsJRJ6XGY61wRLetFYNYCWYTIKJliezouIE4FU4tOe0lSBwdGSb84um6rlDh2a dA1dk5AHsMTa+aS0jON8hbCOtmVcjHAB+E2SiOWssLP1LaY7f9425SGJbS3DTrjD JXQzW5Ep9PjIoqiOnmay0HJtsy2uJ7JSptUCAwEAAaOCAigwggIkMB0GA1UdDgQW BBSRPf7vM/AfSWGzOXVXTCW3y67q5zAfBgNVHSMEGDAWgBSNRt34ikbk7C2am6tf 8TBf0FfxODAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAxMjgvalViZC1JcEc1T3d0bXB1clhfRXdYOUJYOFRnLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvalViZC1JcEc1T3d0bXB1clhfRXdY OUJYOFRnLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMTI4L2tUMy03elB3SDBsaHN6bDFWMHdsdDh1dTZ1Yy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAB1aIUwDQYJKoZIhvcNAQELBQADggEBAEQ3UCHBm0PDJShXSCwwDOXn CqiV12PdGDABNlIU+jWzz9teur9VnxDnrydXLusFVCv/U4zJDf+yNvA/T0oXuW/+ tcmU4YPPv591KH+/bpHiSmWhUj/wcNDJCXpWBdnXlyDbTnI+T9FpCq+pDQjVyc2e c7PFW3ImFJ0McH/l4vt6J66lkmDESqfxuhFkfdStFSqw5o4W8xEtkiRUICKZUpr9 KiQwvSVIpvHlxvyzizUx/VX0QwLPvFbP2peEZ1pABc89jfPUB8uCPQEpmItK+JLc S56k/cQD+ZO84tymi5hUuezLHfpta+8VRXkBDx2gdtVrdcYsWWytC2IKG4OaIaY= -----END CERTIFICATE-----Generated at Sat Apr 5 17:28:10 2025 by rpki-client