$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/2432/T2khUxIdmAwpzLuZpZGDKo5Gi3k.roa File: T2khUxIdmAwpzLuZpZGDKo5Gi3k.roa (raw, json) Hash identifier: BniuesBDKE+bah1cZC+rGBimNoOwkL2PX2GnrrRUxSc= Subject key identifier: 4F:69:21:53:12:1D:98:0C:29:CC:BB:99:A5:91:83:2A:8E:46:8B:79 Certificate issuer: /CN=E62F69C95A098F8073F5F3C3C1A98B76CBF8502A Certificate serial: 5B Authority key identifier: E6:2F:69:C9:5A:09:8F:80:73:F5:F3:C3:C1:A9:8B:76:CB:F8:50:2A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5i9pyVoJj4Bz9fPDwamLdsv4UCo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2432/T2khUxIdmAwpzLuZpZGDKo5Gi3k.roa Signing time: Fri 31 Jan 2025 01:31:15 +0000 ROA not before: Fri 31 Jan 2025 01:31:15 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 7671 IP address blocks: 157.4.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2432/5i9pyVoJj4Bz9fPDwamLdsv4UCo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2432/5i9pyVoJj4Bz9fPDwamLdsv4UCo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5i9pyVoJj4Bz9fPDwamLdsv4UCo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E62F69C95A098F8073F5F3C3C1A98B76CBF8502A Validity Not Before: Jan 31 01:31:15 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=4F692153121D980C29CCBB99A591832A8E468B79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:58:47:65:9a:be:b1:16:83:51:ce:e1:6b:cf: 66:b0:e9:91:e5:91:ba:26:b1:40:9e:e9:cf:35:9c: ea:eb:da:4c:8c:31:31:08:6b:fe:61:df:a7:29:06: 77:97:17:04:8e:c2:95:08:97:e8:38:84:88:19:28: 63:24:a6:33:3d:80:da:8d:32:a4:24:92:d5:37:ef: 7d:e4:9f:fe:63:6a:75:cf:a5:23:bc:ab:24:0a:fd: 95:e3:30:b4:fb:e4:f5:3d:7a:17:e6:e8:97:88:d0: 29:b7:b3:fb:d9:8d:19:23:70:fc:92:c7:d0:ce:84: 2f:63:4d:ad:d6:ea:61:31:d7:a2:93:e9:49:5e:0e: e0:37:6f:94:6f:e7:13:ca:91:ad:68:e7:8d:df:af: b3:d8:6a:e3:9c:50:fa:52:e6:15:5c:c9:59:63:ed: d9:bb:3a:4f:fc:27:05:60:4b:7b:cc:cf:66:7e:15: 3c:2c:15:2e:48:22:86:ed:c5:a8:26:7e:74:79:55: 19:0e:17:b6:a3:0b:6a:a0:87:93:f5:14:99:83:25: 89:80:e6:82:82:78:90:e2:3a:56:d0:36:77:a7:24: ca:da:fd:72:c0:fb:40:b1:b0:ff:5c:6f:3e:30:a9: 87:52:f4:bc:5a:11:1d:c6:32:78:38:ed:ae:80:f3: 60:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:69:21:53:12:1D:98:0C:29:CC:BB:99:A5:91:83:2A:8E:46:8B:79 X509v3 Authority Key Identifier: keyid:E6:2F:69:C9:5A:09:8F:80:73:F5:F3:C3:C1:A9:8B:76:CB:F8:50:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2432/5i9pyVoJj4Bz9fPDwamLdsv4UCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5i9pyVoJj4Bz9fPDwamLdsv4UCo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2432/T2khUxIdmAwpzLuZpZGDKo5Gi3k.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.4.0.0/16 Signature Algorithm: sha256WithRSAEncryption c8:86:dc:ae:50:93:5a:c8:33:00:16:97:7f:9d:0e:2d:19:7b: c8:71:50:29:20:ce:99:90:df:2a:22:2a:ed:9a:6a:33:f5:47: 48:0f:08:42:a4:0d:81:11:ef:95:d4:6d:4a:c1:20:a8:57:a5: dc:8c:23:85:b6:89:ed:04:ef:6f:43:b3:41:de:c0:72:3e:86: 4f:36:68:92:1d:be:e1:67:e5:ed:23:75:d6:29:da:31:ee:d0: 28:a2:9f:f9:2d:06:2b:87:2f:02:d3:88:0f:0c:51:32:59:98: 46:e7:52:cf:6e:f8:80:84:6e:ce:22:5b:94:ba:1a:aa:7b:ef: 21:ce:e6:26:68:10:36:d2:36:cd:75:ea:09:38:7b:13:90:01: 76:1e:96:e2:e9:a2:da:18:11:73:bd:de:6d:33:46:c3:c8:c4: fc:db:0e:e9:23:c2:b2:45:a9:22:17:a4:8c:a4:68:b1:af:b6: b4:54:28:73:37:17:75:47:2d:72:34:f0:03:11:1a:49:1a:b1: e7:9f:67:52:c2:a7:c1:57:44:2f:79:b6:ce:b9:16:82:ed:ad: aa:54:de:f5:18:9e:22:e3:15:cd:6b:57:35:b8:fd:df:11:9b: 79:62:41:2b:86:bf:95:71:d8:9d:90:2e:9e:0c:50:50:1e:00: 8d:ee:1e:96 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgIBWzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhFNjJG NjlDOTVBMDk4RjgwNzNGNUYzQzNDMUE5OEI3NkNCRjg1MDJBMB4XDTI1MDEzMTAx MzExNVoXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoNEY2OTIxNTMxMjFEOTgw QzI5Q0NCQjk5QTU5MTgzMkE4RTQ2OEI3OTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANdYR2WavrEWg1HO4WvPZrDpkeWRuiaxQJ7pzzWc6uvaTIwxMQhr /mHfpykGd5cXBI7ClQiX6DiEiBkoYySmMz2A2o0ypCSS1TfvfeSf/mNqdc+lI7yr JAr9leMwtPvk9T16F+bol4jQKbez+9mNGSNw/JLH0M6EL2NNrdbqYTHXopPpSV4O 4DdvlG/nE8qRrWjnjd+vs9hq45xQ+lLmFVzJWWPt2bs6T/wnBWBLe8zPZn4VPCwV Lkgihu3FqCZ+dHlVGQ4XtqMLaqCHk/UUmYMliYDmgoJ4kOI6VtA2d6ckytr9csD7 QLGw/1xvPjCph1L0vFoRHcYyeDjtroDzYKcCAwEAAaOCAiUwggIhMB0GA1UdDgQW BBRPaSFTEh2YDCnMu5mlkYMqjkaLeTAfBgNVHSMEGDAWgBTmL2nJWgmPgHP188PB qYt2y/hQKjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjQzMi81aTlweVZvSmo0Qno5ZlBEd2FtTGRzdjRVQ28uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC81aTlweVZvSmo0Qno5ZlBEd2FtTGRz djRVQ28uY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMjQzMi9UMmtoVXhJZG1Bd3B6THVacFpHREtvNUdpM2sucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIA ATAFAwMAnQQwDQYJKoZIhvcNAQELBQADggEBAMiG3K5Qk1rIMwAWl3+dDi0Ze8hx UCkgzpmQ3yoiKu2aajP1R0gPCEKkDYER75XUbUrBIKhXpdyMI4W2ie0E729Ds0He wHI+hk82aJIdvuFn5e0jddYp2jHu0Ciin/ktBiuHLwLTiA8MUTJZmEbnUs9u+ICE bs4iW5S6Gqp77yHO5iZoEDbSNs116gk4exOQAXYeluLpotoYEXO93m0zRsPIxPzb DukjwrJFqSIXpIykaLGvtrRUKHM3F3VHLXI08AMRGkkaseefZ1LCp8FXRC95ts65 FoLtrapU3vUYniLjFc1rVzW4/d8Rm3liQSuGv5Vx2J2QLp4MUFAeAI3uHpY= -----END CERTIFICATE-----Generated at Sat Apr 5 23:06:33 2025 by rpki-client