$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/232/6XbitBy9hvI7GoaBlhKnNqlO2SA.roa File: 6XbitBy9hvI7GoaBlhKnNqlO2SA.roa (raw, json) Hash identifier: 7BCM3S6Jr1jt4v16KYoaSiRf6jABYM90pZQdVhtZzww= Subject key identifier: E9:76:E2:B4:1C:BD:86:F2:3B:1A:86:81:96:12:A7:36:A9:4E:D9:20 Certificate issuer: /CN=2222A4C3961E467181A78700B960718846C8404B Certificate serial: 22 Authority key identifier: 22:22:A4:C3:96:1E:46:71:81:A7:87:00:B9:60:71:88:46:C8:40:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/6XbitBy9hvI7GoaBlhKnNqlO2SA.roa Signing time: Mon 20 May 2024 06:55:58 +0000 ROA not before: Mon 20 May 2024 06:55:58 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 7672 IP address blocks: 119.63.16.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2222A4C3961E467181A78700B960718846C8404B Validity Not Before: May 20 06:55:58 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=E976E2B41CBD86F23B1A86819612A736A94ED920 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c8:68:b7:36:31:e1:2c:69:56:52:25:a3:aa: 08:f1:c6:01:a0:f6:59:96:b0:54:d7:60:17:b4:76: c1:ab:f5:ca:19:d8:8a:f3:87:01:5b:66:9d:d1:02: 01:30:ef:1d:ae:89:6d:c2:3f:4e:60:e0:81:95:1e: 26:c9:e7:4a:27:ea:38:52:79:e1:2a:e2:c9:f3:8a: 2c:f4:c7:21:5d:5b:3d:97:0b:05:8a:d7:77:c6:22: e6:f6:88:a5:32:ed:d9:79:35:f6:65:54:4b:fe:e9: b7:23:ab:b5:f0:29:b5:15:ab:e7:ab:76:13:84:b2: 0d:b2:87:c1:46:84:7b:d7:1b:bc:a6:19:cf:00:db: 77:9d:69:12:95:cf:2b:be:31:2e:70:39:bf:25:d5: 09:19:d3:9d:ed:db:0b:46:13:b0:49:a9:76:2a:1c: 0d:8e:d9:80:22:a7:0a:72:a4:94:61:f8:bb:c7:0a: ec:85:a2:50:ae:2c:de:2d:03:0a:f9:20:f4:87:a0: 40:39:f0:d1:51:ec:88:86:7b:66:56:33:6b:fd:8c: 9d:bb:14:c2:2d:04:8f:1c:99:fa:ae:b5:9e:6b:b9: 6c:cd:ee:ed:3e:24:ce:22:20:e8:4e:e1:35:09:75: 28:d0:11:f5:7f:c3:8c:8b:2c:82:75:26:6b:72:11: 4c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:76:E2:B4:1C:BD:86:F2:3B:1A:86:81:96:12:A7:36:A9:4E:D9:20 X509v3 Authority Key Identifier: keyid:22:22:A4:C3:96:1E:46:71:81:A7:87:00:B9:60:71:88:46:C8:40:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/6XbitBy9hvI7GoaBlhKnNqlO2SA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.63.16.0/20 Signature Algorithm: sha256WithRSAEncryption 54:2a:23:ea:65:b3:14:60:91:57:53:96:06:d7:a6:02:eb:c6: a7:a8:f2:74:78:4e:07:2a:8c:8b:c3:ff:35:a2:af:78:c5:30: 51:84:a4:3d:52:82:29:18:2f:5a:93:fc:fd:75:38:9e:0f:bb: b3:47:42:b8:97:98:16:7a:9b:c8:66:8d:17:07:e8:19:8f:1e: f4:a8:93:94:fd:2e:3e:f4:5b:21:ee:94:1c:4d:4f:97:fe:4d: cf:50:93:91:5d:a3:12:e6:ff:e4:c3:79:c5:f5:25:7b:1e:08: 4d:78:40:06:df:de:dd:32:49:69:69:df:bc:fb:89:bb:70:4b: 62:83:74:f7:01:a3:fb:15:3b:38:b0:33:be:37:5e:5b:53:7c: 21:41:fe:93:ba:71:b0:52:49:61:e3:2c:4b:81:94:82:15:4f: 97:5a:3d:e0:ed:f9:55:62:64:fd:ed:3d:bd:6c:17:e6:ba:2e: 74:36:ef:2a:a9:fb:f6:ff:4a:4f:e5:1e:4d:67:fb:37:cd:7b: cd:18:91:52:a1:e9:ea:d8:06:94:2d:d1:53:4a:39:60:4b:39: 6b:f7:ff:2c:63:dc:86:f9:ad:94:1a:20:aa:d9:e5:56:e9:99: a9:5f:44:cb:a3:c8:22:91:6c:86:30:6a:56:1e:cb:39:9d:58: aa:e7:2b:e0 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBIjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyMjIy QTRDMzk2MUU0NjcxODFBNzg3MDBCOTYwNzE4ODQ2Qzg0MDRCMB4XDTI0MDUyMDA2 NTU1OFoXDTI1MDUxNTAxMzAwM1owMzExMC8GA1UEAxMoRTk3NkUyQjQxQ0JEODZG MjNCMUE4NjgxOTYxMkE3MzZBOTRFRDkyMDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAM7IaLc2MeEsaVZSJaOqCPHGAaD2WZawVNdgF7R2wav1yhnYivOH AVtmndECATDvHa6JbcI/TmDggZUeJsnnSifqOFJ54SriyfOKLPTHIV1bPZcLBYrX d8Yi5vaIpTLt2Xk19mVUS/7ptyOrtfAptRWr56t2E4SyDbKHwUaEe9cbvKYZzwDb d51pEpXPK74xLnA5vyXVCRnTne3bC0YTsEmpdiocDY7ZgCKnCnKklGH4u8cK7IWi UK4s3i0DCvkg9IegQDnw0VHsiIZ7ZlYza/2MnbsUwi0EjxyZ+q61nmu5bM3u7T4k ziIg6E7hNQl1KNAR9X/DjIssgnUma3IRTBECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTpduK0HL2G8jsahoGWEqc2qU7ZIDAfBgNVHSMEGDAWgBQiIqTDlh5GcYGnhwC5 YHGIRshASzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjMyL0lpS2t3NVllUm5HQnA0Y0F1V0J4aUViSVFFcy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0lpS2t3NVllUm5HQnA0Y0F1V0J4aUVi SVFFcy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMzIvNlhiaXRCeTlodkk3R29hQmxoS25OcWxPMlNBLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBHc/EDANBgkqhkiG9w0BAQsFAAOCAQEAVCoj6mWzFGCRV1OWBtemAuvGp6jy dHhOByqMi8P/NaKveMUwUYSkPVKCKRgvWpP8/XU4ng+7s0dCuJeYFnqbyGaNFwfo GY8e9KiTlP0uPvRbIe6UHE1Pl/5Nz1CTkV2jEub/5MN5xfUlex4ITXhABt/e3TJJ aWnfvPuJu3BLYoN09wGj+xU7OLAzvjdeW1N8IUH+k7pxsFJJYeMsS4GUghVPl1o9 4O35VWJk/e09vWwX5roudDbvKqn79v9KT+UeTWf7N817zRiRUqHp6tgGlC3RU0o5 YEs5a/f/LGPchvmtlBogqtnlVumZqV9Ey6PIIpFshjBqVh7LOZ1Yqucr4A== -----END CERTIFICATE-----Generated at Sat Apr 5 23:07:42 2025 by rpki-client