$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20133/cfodIn-yI0dwJ5QxzqZvjOHjdHI.roa File: cfodIn-yI0dwJ5QxzqZvjOHjdHI.roa (raw, json) Hash identifier: Q9Ji/+P9pqLe3Fd8N4GwWC9n9rCvWVhGMQsZ6h0syQw= Subject key identifier: 71:FA:1D:22:7F:B2:23:47:70:27:94:31:CE:A6:6F:8C:E1:E3:74:72 Certificate issuer: /CN=08EC6E8AC170A7A96F7C4DF33F833332D32302B1 Certificate serial: 06 Authority key identifier: 08:EC:6E:8A:C1:70:A7:A9:6F:7C:4D:F3:3F:83:33:32:D3:23:02:B1 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/COxuisFwp6lvfE3zP4MzMtMjArE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20133/cfodIn-yI0dwJ5QxzqZvjOHjdHI.roa Signing time: Mon 27 May 2024 01:21:19 +0000 ROA not before: Mon 27 May 2024 01:21:19 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 131970 IP address blocks: 103.153.206.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20133/COxuisFwp6lvfE3zP4MzMtMjArE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20133/COxuisFwp6lvfE3zP4MzMtMjArE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/COxuisFwp6lvfE3zP4MzMtMjArE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08EC6E8AC170A7A96F7C4DF33F833332D32302B1 Validity Not Before: May 27 01:21:19 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=71FA1D227FB2234770279431CEA66F8CE1E37472 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:af:f6:be:b1:b7:98:c3:93:10:31:f6:2c:63: bc:d4:bc:9d:37:cc:7a:86:c5:2c:82:c8:f1:b7:68: 9c:bd:92:75:f7:87:6b:d9:09:0a:43:7d:86:7e:20: 50:45:c5:43:31:56:ac:c4:1f:6d:de:f7:18:36:ca: 04:71:c5:d3:0e:a8:b3:70:f4:db:74:34:4f:6e:85: 39:c3:c4:9b:42:1b:69:77:6a:7b:5a:d9:c9:9e:d0: 14:ab:13:e0:4d:2c:b4:3b:de:93:e9:99:eb:16:2c: 48:d2:4f:f3:4e:3e:b2:f9:1e:47:6f:db:68:ad:ec: 87:e5:74:76:31:53:72:bf:3e:8b:07:1e:3e:c7:c9: 94:29:33:4a:97:a4:44:4d:d6:5d:35:9e:0f:07:7c: 04:fe:70:ce:33:3c:7d:fd:dd:53:07:0c:b7:b1:6e: 63:2e:79:c2:e9:46:ba:67:0c:63:9c:50:95:3d:2c: ff:2d:e0:34:27:e3:99:5e:75:1f:5c:f9:57:ec:d1: 9a:24:bc:69:82:c1:9e:47:59:d8:66:6e:82:a5:f5: 78:84:27:47:a4:a2:d1:06:78:ac:5b:14:31:8a:30: 52:19:94:91:bb:46:d5:46:5e:a7:81:25:7b:f3:c2: 92:1d:e6:9f:98:65:b9:7f:69:7b:26:47:64:8f:50: 32:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:FA:1D:22:7F:B2:23:47:70:27:94:31:CE:A6:6F:8C:E1:E3:74:72 X509v3 Authority Key Identifier: keyid:08:EC:6E:8A:C1:70:A7:A9:6F:7C:4D:F3:3F:83:33:32:D3:23:02:B1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20133/COxuisFwp6lvfE3zP4MzMtMjArE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/COxuisFwp6lvfE3zP4MzMtMjArE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20133/cfodIn-yI0dwJ5QxzqZvjOHjdHI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.206.0/23 Signature Algorithm: sha256WithRSAEncryption 9f:52:6d:a8:4b:d4:5d:e5:ee:10:27:66:5e:5f:f5:88:72:d2: 0c:05:86:ef:d5:61:2f:ec:74:72:31:de:1c:af:e9:48:41:7f: 1d:0d:8b:f7:eb:d8:61:ea:c7:0d:16:43:76:80:ee:38:c2:fe: b2:8a:e8:b2:d4:2a:e5:f5:21:aa:69:c8:87:e3:67:38:3a:90: f0:0a:c1:d0:6e:6d:24:97:25:0c:3a:0a:ee:2e:9f:f9:fe:83: 15:d8:75:4c:3a:18:ce:7d:ab:2f:86:de:7d:30:8b:2a:ec:7c: 23:e7:6b:8b:ad:db:46:a9:57:f4:ba:d1:ba:24:7e:ec:ac:5d: 21:ac:be:ea:65:66:47:9b:3e:f8:39:59:4b:08:53:59:5b:a8: 55:f4:49:b2:fc:7f:99:a3:26:ac:57:df:fd:45:ad:f0:c2:3f: 07:e6:79:16:a1:2a:99:c9:43:d5:27:42:79:f8:dc:f7:11:18: 20:77:48:c6:1e:1a:6d:0d:36:af:b4:47:0e:35:2a:64:ce:64: 92:48:54:af:64:71:15:8a:c3:b7:3e:6b:3a:6f:d5:dd:05:28: 62:fc:71:23:a1:40:32:01:6b:3c:06:c9:49:f1:cb:57:85:04: 32:b6:57:c3:20:ae:0b:43:39:47:5b:4c:15:3f:c4:b4:cd:ea: 9d:d4:d7:8b -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBBjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwOEVD NkU4QUMxNzBBN0E5NkY3QzRERjMzRjgzMzMzMkQzMjMwMkIxMB4XDTI0MDUyNzAx MjExOVoXDTI1MDUxNTAxMzAwM1owMzExMC8GA1UEAxMoNzFGQTFEMjI3RkIyMjM0 NzcwMjc5NDMxQ0VBNjZGOENFMUUzNzQ3MjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANmv9r6xt5jDkxAx9ixjvNS8nTfMeobFLILI8bdonL2SdfeHa9kJ CkN9hn4gUEXFQzFWrMQfbd73GDbKBHHF0w6os3D023Q0T26FOcPEm0IbaXdqe1rZ yZ7QFKsT4E0stDvek+mZ6xYsSNJP804+svkeR2/baK3sh+V0djFTcr8+iwcePsfJ lCkzSpekRE3WXTWeDwd8BP5wzjM8ff3dUwcMt7FuYy55wulGumcMY5xQlT0s/y3g NCfjmV51H1z5V+zRmiS8aYLBnkdZ2GZugqX1eIQnR6Si0QZ4rFsUMYowUhmUkbtG 1UZep4Ele/PCkh3mn5hluX9peyZHZI9QMmsCAwEAAaOCAigwggIkMB0GA1UdDgQW BBRx+h0if7IjR3AnlDHOpm+M4eN0cjAfBgNVHSMEGDAWgBQI7G6KwXCnqW98TfM/ gzMy0yMCsTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAxMzMvQ094dWlzRndwNmx2ZkUzelA0TXpNdE1qQXJFLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvQ094dWlzRndwNmx2ZkUzelA0TXpN dE1qQXJFLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMTMzL2Nmb2RJbi15STBkd0o1UXh6cVp2ak9IamRISS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAFnmc4wDQYJKoZIhvcNAQELBQADggEBAJ9SbahL1F3l7hAnZl5f9Yhy 0gwFhu/VYS/sdHIx3hyv6UhBfx0Ni/fr2GHqxw0WQ3aA7jjC/rKK6LLUKuX1Iapp yIfjZzg6kPAKwdBubSSXJQw6Cu4un/n+gxXYdUw6GM59qy+G3n0wiyrsfCPna4ut 20apV/S60bokfuysXSGsvuplZkebPvg5WUsIU1lbqFX0SbL8f5mjJqxX3/1FrfDC PwfmeRahKpnJQ9UnQnn43PcRGCB3SMYeGm0NNq+0Rw41KmTOZJJIVK9kcRWKw7c+ azpv1d0FKGL8cSOhQDIBazwGyUnxy1eFBDK2V8MgrgtDOUdbTBU/xLTN6p3U14s= -----END CERTIFICATE-----Generated at Sat Apr 5 17:44:39 2025 by rpki-client