$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/234/mnny2A-BNSXnGPkBm9dwuJVTllM.roa File: mnny2A-BNSXnGPkBm9dwuJVTllM.roa (raw, json) Hash identifier: Lg/tT39r43Mborlsk4TDVDhg6fJYT1effyINUrI8nvQ= Subject key identifier: 9A:79:F2:D8:0F:81:35:25:E7:18:F9:01:9B:D7:70:B8:95:53:96:53 Certificate issuer: /CN=500EF358BCBE14A358CA4EEE41B4E90DC923E9D2 Certificate serial: A5 Authority key identifier: 50:0E:F3:58:BC:BE:14:A3:58:CA:4E:EE:41:B4:E9:0D:C9:23:E9:D2 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/UA7zWLy-FKNYyk7uQbTpDckj6dI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/mnny2A-BNSXnGPkBm9dwuJVTllM.roa Signing time: Sat 30 Nov 2024 01:31:21 +0000 ROA not before: Sat 30 Nov 2024 01:31:22 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 9351 IP address blocks: 219.113.112.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/UA7zWLy-FKNYyk7uQbTpDckj6dI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/UA7zWLy-FKNYyk7uQbTpDckj6dI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/UA7zWLy-FKNYyk7uQbTpDckj6dI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=500EF358BCBE14A358CA4EEE41B4E90DC923E9D2 Validity Not Before: Nov 30 01:31:22 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=9A79F2D80F813525E718F9019BD770B895539653 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:da:15:ea:57:7e:f8:23:31:9e:f3:00:41:ec: ab:17:08:88:4c:db:35:c0:e7:d4:f3:b5:1a:30:19: 74:65:64:e6:42:ac:19:78:81:26:84:f0:ab:af:a9: 47:e2:11:82:a5:3b:f0:71:9c:25:53:3f:d1:90:bb: 4a:7f:ec:ce:3c:78:04:ca:f0:6d:56:db:31:15:31: ba:16:b1:22:7e:e6:7a:6e:8b:15:32:66:78:b9:ee: 34:34:3c:0e:d0:0f:44:9f:d4:a0:c6:cb:88:ce:08: c3:ee:53:4f:a1:6a:61:99:dc:4d:25:ae:d9:94:d2: f7:f4:a5:e9:71:b5:56:3c:f2:2a:18:b7:46:74:6c: 01:41:55:22:ed:7f:b6:a7:cb:52:a7:64:c8:97:81: 81:ac:fb:48:92:aa:dd:39:4d:87:74:03:b7:5e:bb: 2b:f8:fe:c5:5d:9d:f1:8d:19:fb:65:c8:8f:c1:a5: ca:43:53:2d:ab:b5:24:96:11:65:a1:6b:58:2d:47: 0c:c7:63:46:61:b4:be:99:f6:be:1e:c1:5d:bb:3e: 8b:49:6e:4b:e2:c3:7c:9d:f7:71:11:6d:98:ff:75: 00:1b:51:23:f0:bb:c4:4b:f0:b0:10:ec:9e:18:10: ae:f4:68:7d:f9:d5:01:ff:df:34:a7:48:3d:fc:bf: 62:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:79:F2:D8:0F:81:35:25:E7:18:F9:01:9B:D7:70:B8:95:53:96:53 X509v3 Authority Key Identifier: keyid:50:0E:F3:58:BC:BE:14:A3:58:CA:4E:EE:41:B4:E9:0D:C9:23:E9:D2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/UA7zWLy-FKNYyk7uQbTpDckj6dI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/UA7zWLy-FKNYyk7uQbTpDckj6dI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/mnny2A-BNSXnGPkBm9dwuJVTllM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.113.112.0/20 Signature Algorithm: sha256WithRSAEncryption 85:67:a9:00:3f:d1:0c:75:26:8f:cd:76:f9:7d:88:f4:f5:17: cb:3e:7c:f5:88:57:89:44:f4:75:21:0c:69:12:58:9b:c2:87: c6:07:cb:7c:5c:47:d2:4a:1e:ac:c6:5d:cc:c6:bb:1d:3c:67: 9e:5b:03:58:b8:db:9e:68:64:2b:0c:9d:6f:d3:bf:fe:fc:7a: 97:d3:ca:67:ca:1b:25:a2:33:ef:36:03:cc:1f:ff:c5:8a:52: 14:c2:e3:b6:67:b0:cd:d8:05:29:95:b3:84:36:a2:6e:f3:07: 7e:96:b9:0a:00:2c:61:47:67:b0:66:4e:df:c5:77:e6:b9:b1: 37:5d:3a:18:ce:72:ea:de:86:bd:83:dc:a5:ec:7a:36:4a:1b: b0:0d:9f:d2:57:d4:8d:86:54:e2:ba:9a:ba:8c:db:3a:a3:18: 4b:ee:dc:6d:67:ec:02:04:47:0e:b5:61:de:ff:f4:02:af:d9: 2b:b9:20:50:ad:6d:49:7c:c8:6d:bf:60:8c:18:91:cd:33:81: ce:0e:56:35:3d:bb:13:a8:97:72:7c:2d:57:ee:eb:5e:21:e8: 08:ce:44:c9:45:ca:59:9c:d8:4a:9a:41:3c:ab:89:5d:c9:28: 3e:2b:0b:87:e0:8a:6f:79:a4:d3:55:c7:06:e3:3f:9c:73:bc: 7c:b5:2e:c7 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTAw RUYzNThCQ0JFMTRBMzU4Q0E0RUVFNDFCNEU5MERDOTIzRTlEMjAeFw0yNDExMzAw MTMxMjJaFw0yNTExMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDlBNzlGMkQ4MEY4MTM1 MjVFNzE4RjkwMTlCRDc3MEI4OTU1Mzk2NTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDw2hXqV374IzGe8wBB7KsXCIhM2zXA59TztRowGXRlZOZCrBl4 gSaE8KuvqUfiEYKlO/BxnCVTP9GQu0p/7M48eATK8G1W2zEVMboWsSJ+5npuixUy Zni57jQ0PA7QD0Sf1KDGy4jOCMPuU0+hamGZ3E0lrtmU0vf0pelxtVY88ioYt0Z0 bAFBVSLtf7any1KnZMiXgYGs+0iSqt05TYd0A7deuyv4/sVdnfGNGftlyI/BpcpD Uy2rtSSWEWWha1gtRwzHY0ZhtL6Z9r4ewV27PotJbkviw3yd93ERbZj/dQAbUSPw u8RL8LAQ7J4YEK70aH351QH/3zSnSD38v2L9AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUmnny2A+BNSXnGPkBm9dwuJVTllMwHwYDVR0jBBgwFoAUUA7zWLy+FKNYyk7u QbTpDckj6dIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIzNC9VQTd6V0x5LUZLTll5azd1UWJUcERja2o2ZEkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9VQTd6V0x5LUZLTll5azd1UWJUcERj a2o2ZEkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMjM0L21ubnkyQS1CTlNYbkdQa0JtOWR3dUpWVGxsTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATbcXAwDQYJKoZIhvcNAQELBQADggEBAIVnqQA/0Qx1Jo/Ndvl9iPT1F8s+ fPWIV4lE9HUhDGkSWJvCh8YHy3xcR9JKHqzGXczGux08Z55bA1i4255oZCsMnW/T v/78epfTymfKGyWiM+82A8wf/8WKUhTC47ZnsM3YBSmVs4Q2om7zB36WuQoALGFH Z7BmTt/Fd+a5sTddOhjOcurehr2D3KXsejZKG7ANn9JX1I2GVOK6mrqM2zqjGEvu 3G1n7AIERw61Yd7/9AKv2Su5IFCtbUl8yG2/YIwYkc0zgc4OVjU9uxOol3J8LVfu 614h6AjORMlFylmc2EqaQTyriV3JKD4rC4fgim95pNNVxwbjP5xzvHy1Lsc= -----END CERTIFICATE-----Generated at Sat Apr 5 17:44:27 2025 by rpki-client