$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/234/5bOdOr-RiYhYPBGvZXxxRzFgqDU.roa File: 5bOdOr-RiYhYPBGvZXxxRzFgqDU.roa (raw, json) Hash identifier: P7fVJygYDKQYApk6WnmxD1ls1xIzl83/1umgM9VmVno= Subject key identifier: E5:B3:9D:3A:BF:91:89:88:58:3C:11:AF:65:7C:71:47:31:60:A8:35 Certificate issuer: /CN=500EF358BCBE14A358CA4EEE41B4E90DC923E9D2 Certificate serial: B0 Authority key identifier: 50:0E:F3:58:BC:BE:14:A3:58:CA:4E:EE:41:B4:E9:0D:C9:23:E9:D2 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/UA7zWLy-FKNYyk7uQbTpDckj6dI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/5bOdOr-RiYhYPBGvZXxxRzFgqDU.roa Signing time: Sat 30 Nov 2024 01:31:25 +0000 ROA not before: Sat 30 Nov 2024 01:31:25 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 9351 IP address blocks: 202.91.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/UA7zWLy-FKNYyk7uQbTpDckj6dI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/UA7zWLy-FKNYyk7uQbTpDckj6dI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/UA7zWLy-FKNYyk7uQbTpDckj6dI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=500EF358BCBE14A358CA4EEE41B4E90DC923E9D2 Validity Not Before: Nov 30 01:31:25 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=E5B39D3ABF918988583C11AF657C71473160A835 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:7e:d6:da:17:aa:f4:ea:a2:e2:9a:ae:bd:30: 4a:a8:9a:70:93:90:72:ee:20:f0:8b:ee:36:f8:82: b9:95:6f:98:9c:63:24:31:4a:43:d8:ed:36:6f:da: 8e:2a:ac:af:6a:3d:dd:36:77:55:ec:4b:1e:0d:3b: de:7e:fb:17:01:44:1a:e1:a3:52:08:c1:1e:45:59: 98:98:ba:8c:ef:77:75:19:f4:94:3b:28:c6:14:63: 3b:ee:c3:08:f5:f1:f1:be:73:50:71:7b:80:d2:26: 43:f4:1f:a9:83:33:8b:1f:ed:f2:b1:68:e0:6e:09: 49:ea:28:24:90:47:0f:fc:95:a9:50:a8:bf:56:da: 8d:06:ba:71:bc:58:56:ba:d9:dc:8a:29:17:ff:f3: 18:f4:11:38:a1:2a:88:92:b3:b5:52:31:18:e4:84: 37:c3:75:d2:57:68:b4:19:79:e4:93:db:a4:c2:8a: fa:85:45:f3:55:3f:11:b1:b3:9e:7b:b3:04:37:a7: 3c:89:60:61:6e:1d:3f:e3:3e:ba:2d:62:65:af:d9: de:2f:70:d8:bc:c3:93:7c:e8:1b:bb:8a:45:70:b3: 8c:67:e5:1b:f6:a0:14:da:1f:75:77:c7:de:10:dd: f6:9e:9d:32:f2:39:1a:1f:ab:ad:e1:28:56:83:a1: 85:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:B3:9D:3A:BF:91:89:88:58:3C:11:AF:65:7C:71:47:31:60:A8:35 X509v3 Authority Key Identifier: keyid:50:0E:F3:58:BC:BE:14:A3:58:CA:4E:EE:41:B4:E9:0D:C9:23:E9:D2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/UA7zWLy-FKNYyk7uQbTpDckj6dI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/UA7zWLy-FKNYyk7uQbTpDckj6dI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/5bOdOr-RiYhYPBGvZXxxRzFgqDU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.91.208.0/20 Signature Algorithm: sha256WithRSAEncryption 8c:e4:8d:fd:d8:58:70:4d:b0:a6:e2:23:2c:6f:41:69:5a:ae: 2b:22:58:b9:39:5e:6e:98:68:7d:06:dd:a2:bd:2c:96:fe:29: 56:bc:35:5c:05:11:51:00:d0:84:f5:51:b8:bf:c1:cd:68:6d: 62:4c:8f:3b:60:83:6e:c0:9f:f6:24:ed:a0:36:a6:b1:3f:b8: c1:0a:4b:51:e8:3b:e3:7b:17:db:e1:58:c0:b2:b4:f9:6a:76: ec:63:45:19:d0:ee:b6:d6:07:ae:a4:37:21:42:5a:a2:68:57: 52:bb:1a:6f:02:10:5f:52:40:6f:80:2e:7f:cc:5c:91:b5:e1: f3:1b:47:9b:5a:b0:4e:65:76:9f:34:e7:c2:37:04:df:b2:fb: 1f:79:28:9e:51:d6:ba:5d:3b:99:e7:35:8f:d0:18:65:c7:bc: 91:da:d5:5e:5f:9f:ce:58:18:98:46:64:f4:cb:44:03:c8:74: e0:47:e6:51:3d:d4:06:23:69:3f:39:94:73:65:f0:66:c7:46: 43:6a:dc:32:68:70:d1:b5:ae:32:a0:e5:d0:5f:fb:ee:e3:6d: aa:c8:d3:01:72:1c:58:1e:b5:f8:92:e4:f1:ec:bb:70:7b:a1: ec:51:77:1b:e1:e0:4a:65:bf:ec:5f:88:0b:6d:cc:79:0f:4e: ce:dc:01:92 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICALAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTAw RUYzNThCQ0JFMTRBMzU4Q0E0RUVFNDFCNEU5MERDOTIzRTlEMjAeFw0yNDExMzAw MTMxMjVaFw0yNTExMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEU1QjM5RDNBQkY5MTg5 ODg1ODNDMTFBRjY1N0M3MTQ3MzE2MEE4MzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCXftbaF6r06qLimq69MEqomnCTkHLuIPCL7jb4grmVb5icYyQx SkPY7TZv2o4qrK9qPd02d1XsSx4NO95++xcBRBrho1IIwR5FWZiYuozvd3UZ9JQ7 KMYUYzvuwwj18fG+c1Bxe4DSJkP0H6mDM4sf7fKxaOBuCUnqKCSQRw/8lalQqL9W 2o0GunG8WFa62dyKKRf/8xj0ETihKoiSs7VSMRjkhDfDddJXaLQZeeST26TCivqF RfNVPxGxs557swQ3pzyJYGFuHT/jProtYmWv2d4vcNi8w5N86Bu7ikVws4xn5Rv2 oBTaH3V3x94Q3faenTLyORofq63hKFaDoYWBAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU5bOdOr+RiYhYPBGvZXxxRzFgqDUwHwYDVR0jBBgwFoAUUA7zWLy+FKNYyk7u QbTpDckj6dIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIzNC9VQTd6V0x5LUZLTll5azd1UWJUcERja2o2ZEkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9VQTd6V0x5LUZLTll5azd1UWJUcERj a2o2ZEkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMjM0LzViT2RPci1SaVloWVBCR3ZaWHh4UnpGZ3FEVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATKW9AwDQYJKoZIhvcNAQELBQADggEBAIzkjf3YWHBNsKbiIyxvQWlarisi WLk5Xm6YaH0G3aK9LJb+KVa8NVwFEVEA0IT1Ubi/wc1obWJMjztgg27An/Yk7aA2 prE/uMEKS1HoO+N7F9vhWMCytPlqduxjRRnQ7rbWB66kNyFCWqJoV1K7Gm8CEF9S QG+ALn/MXJG14fMbR5tasE5ldp8058I3BN+y+x95KJ5R1rpdO5nnNY/QGGXHvJHa 1V5fn85YGJhGZPTLRAPIdOBH5lE91AYjaT85lHNl8GbHRkNq3DJocNG1rjKg5dBf ++7jbarI0wFyHFgetfiS5PHsu3B7oexRdxvh4Eplv+xfiAttzHkPTs7cAZI= -----END CERTIFICATE-----Generated at Sat Apr 5 17:48:09 2025 by rpki-client