$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/234/SbwE0tHdVOZFmXLef8PvGF4yGKE.roa File: SbwE0tHdVOZFmXLef8PvGF4yGKE.roa (raw, json) Hash identifier: 0rU+svJEyWB6jUaljFCa248YKwYapjJVTjbgRtVkjHA= Subject key identifier: 49:BC:04:D2:D1:DD:54:E6:45:99:72:DE:7F:C3:EF:18:5E:32:18:A1 Certificate issuer: /CN=500EF358BCBE14A358CA4EEE41B4E90DC923E9D2 Certificate serial: AD Authority key identifier: 50:0E:F3:58:BC:BE:14:A3:58:CA:4E:EE:41:B4:E9:0D:C9:23:E9:D2 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/UA7zWLy-FKNYyk7uQbTpDckj6dI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/SbwE0tHdVOZFmXLef8PvGF4yGKE.roa Signing time: Sat 30 Nov 2024 01:31:24 +0000 ROA not before: Sat 30 Nov 2024 01:31:24 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 9351 IP address blocks: 203.133.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/UA7zWLy-FKNYyk7uQbTpDckj6dI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/UA7zWLy-FKNYyk7uQbTpDckj6dI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/UA7zWLy-FKNYyk7uQbTpDckj6dI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=500EF358BCBE14A358CA4EEE41B4E90DC923E9D2 Validity Not Before: Nov 30 01:31:24 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=49BC04D2D1DD54E6459972DE7FC3EF185E3218A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:bf:85:48:b4:3c:8d:74:77:09:89:89:45:31: 51:bc:ab:f7:1b:9f:83:67:ce:1c:90:db:cc:a8:c6: 8e:4e:3d:fc:5e:ba:13:64:76:cf:ce:28:2f:6d:f0: c8:b4:8b:fa:ba:7c:84:3d:16:f9:84:cc:d7:8f:55: 58:f2:b9:ea:5e:e7:6b:8f:a9:cd:a4:d8:17:a5:7f: 12:74:7c:68:44:b6:b4:6b:90:0f:aa:1a:87:09:73: 88:f4:08:5f:00:05:60:ec:b9:c3:9a:9e:4f:3b:27: fa:44:e2:10:d8:7a:41:c8:37:b7:30:d1:93:27:41: e0:6b:9c:50:53:da:83:82:e6:e1:cb:eb:b1:f0:9b: f2:7d:74:dd:3a:e2:9c:31:87:0f:08:9c:72:85:55: d0:84:68:bd:67:5c:12:84:a2:58:07:1b:11:63:72: 7c:e6:72:a5:b9:8f:8d:f3:17:d3:38:2e:8a:fc:ca: 15:1d:a4:d4:ca:2d:f5:eb:bd:e1:ba:23:6f:28:54: 89:7e:14:1d:1d:cc:af:04:fa:8c:c8:c2:a3:b6:7f: c2:f4:0c:6e:04:e8:24:1e:df:1d:1e:e6:2c:31:52: 77:ca:f2:ef:29:e0:05:3e:18:4f:33:cf:1d:77:70: 1a:bb:ed:a2:70:9f:2c:d1:07:61:bf:0e:1e:a1:e6: 8f:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:BC:04:D2:D1:DD:54:E6:45:99:72:DE:7F:C3:EF:18:5E:32:18:A1 X509v3 Authority Key Identifier: keyid:50:0E:F3:58:BC:BE:14:A3:58:CA:4E:EE:41:B4:E9:0D:C9:23:E9:D2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/UA7zWLy-FKNYyk7uQbTpDckj6dI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/UA7zWLy-FKNYyk7uQbTpDckj6dI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/SbwE0tHdVOZFmXLef8PvGF4yGKE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.133.128.0/19 Signature Algorithm: sha256WithRSAEncryption 27:2a:e3:aa:d6:8a:b2:0e:16:73:e5:9e:d9:b4:48:c9:a7:72: 31:e8:12:8c:0e:4d:23:22:f1:87:3f:1b:a3:5c:93:3d:5a:3c: 85:ac:87:62:c5:c9:3b:13:b0:5b:74:0d:32:68:1a:42:25:ee: 8b:bf:d5:0c:21:86:21:e7:48:a2:71:5e:d0:3c:a6:f4:83:d0: fc:b0:8b:7e:9d:25:0b:5d:9e:2c:43:d8:56:64:9e:4d:db:cc: 41:62:7d:11:4d:52:52:90:84:a1:46:07:b8:fb:96:f6:a4:49: b0:22:65:38:3a:96:d8:b4:4a:f6:83:44:12:cf:d1:4e:2d:71: d0:06:16:cf:f6:53:8c:c5:ba:81:87:33:99:37:6e:77:73:0e: 5e:cc:49:06:73:a8:c8:9d:50:ab:e1:98:cb:b4:4f:e7:6d:07: ab:67:53:3a:69:95:e1:69:7d:13:21:53:08:46:21:86:f8:39: 4e:5e:fb:30:2d:eb:18:3e:95:5d:88:36:23:fc:be:18:ec:f0: bb:a8:a5:91:1b:6b:9a:0c:19:a8:d2:b1:66:9f:b3:21:23:44: 97:ac:04:0b:fe:9f:17:6b:cf:dd:f1:50:c0:b4:7c:79:23:ac: 97:7b:2d:ec:c9:01:5b:3d:e9:23:43:fc:a4:e9:91:3a:2d:df: 1a:9e:0a:9d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTAw RUYzNThCQ0JFMTRBMzU4Q0E0RUVFNDFCNEU5MERDOTIzRTlEMjAeFw0yNDExMzAw MTMxMjRaFw0yNTExMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDQ5QkMwNEQyRDFERDU0 RTY0NTk5NzJERTdGQzNFRjE4NUUzMjE4QTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHv4VItDyNdHcJiYlFMVG8q/cbn4NnzhyQ28yoxo5OPfxeuhNk ds/OKC9t8Mi0i/q6fIQ9FvmEzNePVVjyuepe52uPqc2k2BelfxJ0fGhEtrRrkA+q GocJc4j0CF8ABWDsucOank87J/pE4hDYekHIN7cw0ZMnQeBrnFBT2oOC5uHL67Hw m/J9dN064pwxhw8InHKFVdCEaL1nXBKEolgHGxFjcnzmcqW5j43zF9M4Lor8yhUd pNTKLfXrveG6I28oVIl+FB0dzK8E+ozIwqO2f8L0DG4E6CQe3x0e5iwxUnfK8u8p 4AU+GE8zzx13cBq77aJwnyzRB2G/Dh6h5o8XAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUSbwE0tHdVOZFmXLef8PvGF4yGKEwHwYDVR0jBBgwFoAUUA7zWLy+FKNYyk7u QbTpDckj6dIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIzNC9VQTd6V0x5LUZLTll5azd1UWJUcERja2o2ZEkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9VQTd6V0x5LUZLTll5azd1UWJUcERj a2o2ZEkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMjM0L1Nid0UwdEhkVk9aRm1YTGVmOFB2R0Y0eUdLRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXLhYAwDQYJKoZIhvcNAQELBQADggEBACcq46rWirIOFnPlntm0SMmncjHo EowOTSMi8Yc/G6Nckz1aPIWsh2LFyTsTsFt0DTJoGkIl7ou/1QwhhiHnSKJxXtA8 pvSD0Pywi36dJQtdnixD2FZknk3bzEFifRFNUlKQhKFGB7j7lvakSbAiZTg6lti0 SvaDRBLP0U4tcdAGFs/2U4zFuoGHM5k3bndzDl7MSQZzqMidUKvhmMu0T+dtB6tn UzppleFpfRMhUwhGIYb4OU5e+zAt6xg+lV2INiP8vhjs8LuopZEba5oMGajSsWaf syEjRJesBAv+nxdrz93xUMC0fHkjrJd7LezJAVs96SND/KTpkTot3xqeCp0= -----END CERTIFICATE-----Generated at Sat Apr 5 17:44:13 2025 by rpki-client