$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/207/GBaKmp33d8iF3G3kUpJmTbkzIYA.roa File: GBaKmp33d8iF3G3kUpJmTbkzIYA.roa (raw, json) Hash identifier: 2EkJFZnsfNpbGjIdk8dH+HSZi4paRGvBCThcD2TLuLI= Subject key identifier: 18:16:8A:9A:9D:F7:77:C8:85:DC:6D:E4:52:92:66:4D:B9:33:21:80 Certificate issuer: /CN=67018B4DFE54BD644E000641A234B471DB20B892 Certificate serial: 8D Authority key identifier: 67:01:8B:4D:FE:54:BD:64:4E:00:06:41:A2:34:B4:71:DB:20:B8:92 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZwGLTf5UvWROAAZBojS0cdsguJI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/207/GBaKmp33d8iF3G3kUpJmTbkzIYA.roa Signing time: Sun 30 Jun 2024 01:28:22 +0000 ROA not before: Sun 30 Jun 2024 01:28:22 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 7521 IP address blocks: 210.173.180.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/207/ZwGLTf5UvWROAAZBojS0cdsguJI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/207/ZwGLTf5UvWROAAZBojS0cdsguJI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZwGLTf5UvWROAAZBojS0cdsguJI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67018B4DFE54BD644E000641A234B471DB20B892 Validity Not Before: Jun 30 01:28:22 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=18168A9A9DF777C885DC6DE45292664DB9332180 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a4:70:3a:ca:ef:55:f8:dc:cd:e5:d3:6d:47: 8e:30:37:9c:e8:47:02:fb:03:9d:6d:ae:d4:65:37: 1c:00:91:d0:39:00:d4:ba:5f:6c:37:f5:64:c2:17: 17:0a:f6:86:a2:3d:e2:b2:25:94:73:1f:55:10:31: 4c:f1:e5:fc:7c:73:7e:6b:d7:6e:f3:cf:d8:cc:fc: 70:38:3e:b0:89:cb:e6:59:e2:1a:3b:9c:75:c1:29: a6:cb:c6:1f:6d:b0:40:6b:2d:79:7c:60:fa:d3:a1: eb:26:72:19:6b:01:a8:7c:c6:75:91:05:69:f9:2a: 49:0d:ed:95:3c:ec:e9:e6:c5:ff:b1:74:2b:1d:cf: 9c:1e:06:98:45:22:90:6b:c3:58:d9:c7:3f:05:bd: 6c:6e:36:55:2d:dc:8f:e5:45:e8:16:c0:90:a4:83: 97:f3:d4:dd:e8:d5:3d:ff:5b:d7:d1:4d:d3:c2:36: 3d:2e:da:90:8e:34:25:72:16:f8:18:19:3d:e8:26: 1b:55:c6:42:cf:27:66:01:bd:0d:e9:8b:87:90:94: 81:93:e3:00:be:21:4c:e7:cd:b9:ae:02:1a:7f:3d: e9:8f:37:44:7e:ed:4f:0e:ce:1c:f0:f3:1f:24:9c: 64:62:0d:f2:35:ec:9e:30:10:33:32:86:1e:24:1d: 75:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:16:8A:9A:9D:F7:77:C8:85:DC:6D:E4:52:92:66:4D:B9:33:21:80 X509v3 Authority Key Identifier: keyid:67:01:8B:4D:FE:54:BD:64:4E:00:06:41:A2:34:B4:71:DB:20:B8:92 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/207/ZwGLTf5UvWROAAZBojS0cdsguJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZwGLTf5UvWROAAZBojS0cdsguJI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/207/GBaKmp33d8iF3G3kUpJmTbkzIYA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.173.180.0/22 Signature Algorithm: sha256WithRSAEncryption 1c:2d:97:b2:cc:04:7a:9d:97:e3:c1:18:24:b2:f9:07:8d:1c: a2:9f:9f:f7:03:6a:66:97:3c:e7:64:70:ba:79:b1:9a:da:72: f6:53:1d:b0:de:0c:22:fe:80:0e:44:6b:e1:1c:fd:4c:92:a5: 66:f2:21:00:fa:57:bf:cc:55:4b:5a:4b:cc:4e:0e:00:d8:50: cf:c1:56:24:91:9c:e5:45:9d:ce:f6:d9:22:da:dc:bc:4a:b9: 80:e9:9f:66:25:38:9e:4c:34:fd:e4:4f:a1:de:1a:b2:34:9e: ca:74:20:d4:74:19:0f:77:d5:3b:36:a2:8f:a6:b1:49:cf:e0: 45:30:0b:60:a3:3b:cd:f5:cc:c0:fd:f5:4b:ee:6c:4c:26:f9: cf:90:25:a4:4b:e7:dc:5a:af:74:2e:eb:30:41:65:1f:a8:80: f4:a8:a5:53:26:4a:b0:8f:18:c7:e2:ae:2c:a0:88:57:bd:86: 76:d9:5c:bb:c5:e5:e4:36:b3:75:10:e5:64:03:d9:0d:9b:69: 7e:a0:71:ca:fd:2e:32:33:93:0b:cc:ed:3d:49:02:76:1b:8e: 0e:07:1d:fd:16:0b:c9:63:01:ae:5c:d4:ad:32:ee:bf:06:b9: 62:96:46:35:3f:9e:3b:64:06:c6:9f:3a:31:2d:70:1e:bf:ef: 2c:94:6c:1c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjcw MThCNERGRTU0QkQ2NDRFMDAwNjQxQTIzNEI0NzFEQjIwQjg5MjAeFw0yNDA2MzAw MTI4MjJaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDE4MTY4QTlBOURGNzc3 Qzg4NURDNkRFNDUyOTI2NjREQjkzMzIxODAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKpHA6yu9V+NzN5dNtR44wN5zoRwL7A51trtRlNxwAkdA5ANS6 X2w39WTCFxcK9oaiPeKyJZRzH1UQMUzx5fx8c35r127zz9jM/HA4PrCJy+ZZ4ho7 nHXBKabLxh9tsEBrLXl8YPrToesmchlrAah8xnWRBWn5KkkN7ZU87Onmxf+xdCsd z5weBphFIpBrw1jZxz8FvWxuNlUt3I/lRegWwJCkg5fz1N3o1T3/W9fRTdPCNj0u 2pCONCVyFvgYGT3oJhtVxkLPJ2YBvQ3pi4eQlIGT4wC+IUznzbmuAhp/PemPN0R+ 7U8Ozhzw8x8knGRiDfI17J4wEDMyhh4kHXXJAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUGBaKmp33d8iF3G3kUpJmTbkzIYAwHwYDVR0jBBgwFoAUZwGLTf5UvWROAAZB ojS0cdsguJIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwNy9ad0dMVGY1VXZXUk9BQVpCb2pTMGNkc2d1SkkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9ad0dMVGY1VXZXUk9BQVpCb2pTMGNk c2d1SkkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMjA3L0dCYUttcDMzZDhpRjNHM2tVcEptVGJreklZQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALSrbQwDQYJKoZIhvcNAQELBQADggEBABwtl7LMBHqdl+PBGCSy+QeNHKKf n/cDamaXPOdkcLp5sZracvZTHbDeDCL+gA5Ea+Ec/UySpWbyIQD6V7/MVUtaS8xO DgDYUM/BViSRnOVFnc722SLa3LxKuYDpn2YlOJ5MNP3kT6HeGrI0nsp0INR0GQ93 1Ts2oo+msUnP4EUwC2CjO831zMD99UvubEwm+c+QJaRL59xar3Qu6zBBZR+ogPSo pVMmSrCPGMfiriygiFe9hnbZXLvF5eQ2s3UQ5WQD2Q2baX6gccr9LjIzkwvM7T1J AnYbjg4HHf0WC8ljAa5c1K0y7r8GuWKWRjU/njtkBsafOjEtcB6/7yyUbBw= -----END CERTIFICATE-----Generated at Sat Apr 5 17:46:30 2025 by rpki-client