$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/249/DXQOOnSsBuHESBeZaBn18nrReIg.roa File: DXQOOnSsBuHESBeZaBn18nrReIg.roa (raw, json) Hash identifier: iAox7mxfW2aZ76bgQ5R4u99yMaMs8WBIZ4r6pABbCnE= Subject key identifier: 0D:74:0E:3A:74:AC:06:E1:C4:48:17:99:68:19:F5:F2:7A:D1:78:88 Certificate issuer: /CN=275D9782B13E99128CD34F22C09FE8E7B5CBA70B Certificate serial: 54 Authority key identifier: 27:5D:97:82:B1:3E:99:12:8C:D3:4F:22:C0:9F:E8:E7:B5:CB:A7:0B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/J12XgrE-mRKM008iwJ_o57XLpws.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/249/DXQOOnSsBuHESBeZaBn18nrReIg.roa Signing time: Fri 31 Jan 2025 01:33:42 +0000 ROA not before: Fri 31 Jan 2025 01:33:42 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 7679 IP address blocks: 218.40.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/249/J12XgrE-mRKM008iwJ_o57XLpws.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/249/J12XgrE-mRKM008iwJ_o57XLpws.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/J12XgrE-mRKM008iwJ_o57XLpws.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=275D9782B13E99128CD34F22C09FE8E7B5CBA70B Validity Not Before: Jan 31 01:33:42 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=0D740E3A74AC06E1C44817996819F5F27AD17888 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:9c:6e:ee:2c:7f:f1:c2:d0:95:e3:bc:83:fe: 2c:fc:c9:5d:92:bf:6f:20:e5:86:75:e0:01:74:e3: b5:cf:7c:d5:84:dd:f2:b9:89:46:82:77:0a:4c:f0: 7a:16:f1:41:77:42:d9:10:bd:85:d1:ab:7c:93:46: 19:4f:78:70:9c:e8:b5:a4:71:28:e6:14:15:3d:61: 06:12:f4:1f:58:46:cd:7b:9e:b3:70:34:fe:4a:10: fd:9c:8a:88:8a:e9:f7:ef:81:dc:31:f4:2a:42:a0: ef:1b:1d:9f:01:5e:e0:41:d1:cc:cf:19:79:82:09: b1:db:a8:e6:97:ff:fb:6f:6b:f6:cd:00:65:38:19: 46:98:08:8e:9e:36:6f:7b:7e:9e:7e:7b:6f:a2:8d: f9:9a:0d:e1:79:4f:94:3b:18:fb:69:7a:a4:ca:db: 0f:ca:d4:56:2c:7d:6a:40:c0:7c:e3:d2:6a:bc:6b: e0:4e:06:07:d4:16:74:5b:cf:c0:95:25:ba:2f:7f: b0:93:70:c4:71:41:36:60:de:b5:62:b9:f4:1d:d5: a6:d3:b3:01:49:88:4e:43:5d:23:d2:c2:77:7a:db: 3b:fc:7f:19:95:ba:32:31:3d:a3:a0:a6:23:7a:1d: 9f:5c:41:88:79:1a:a1:29:91:57:92:e1:06:0f:c2: 9e:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:74:0E:3A:74:AC:06:E1:C4:48:17:99:68:19:F5:F2:7A:D1:78:88 X509v3 Authority Key Identifier: keyid:27:5D:97:82:B1:3E:99:12:8C:D3:4F:22:C0:9F:E8:E7:B5:CB:A7:0B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/249/J12XgrE-mRKM008iwJ_o57XLpws.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/J12XgrE-mRKM008iwJ_o57XLpws.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/249/DXQOOnSsBuHESBeZaBn18nrReIg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.40.224.0/20 Signature Algorithm: sha256WithRSAEncryption 6d:eb:cb:12:59:61:0e:c6:fa:c6:4b:19:eb:f3:2a:f8:20:00: 6e:d0:02:88:86:6d:3c:e5:30:1a:b1:26:ab:b0:3c:d4:34:b8: 9d:b2:a7:3f:53:e3:43:f4:34:ff:bf:5c:c1:ae:f6:d7:4f:ae: e9:71:93:73:f3:48:e1:03:46:19:f9:8e:4f:1e:33:f4:b0:a2: ef:ae:e0:10:74:a6:be:3b:ab:c9:3b:31:1a:c8:87:ff:2c:42: d7:d0:eb:0c:77:21:fa:56:4b:a4:59:d9:c7:8b:6b:c6:f1:8f: 2f:74:e3:25:f5:1d:c6:d1:e2:11:e0:76:b0:78:9e:f9:ab:18: 22:c5:3e:b5:2b:b9:36:08:9b:6f:b9:d4:cd:19:f8:d9:50:e5: 1a:15:cf:11:fe:78:20:15:b2:37:51:a8:49:7d:33:b0:5e:36: 30:38:31:a4:5a:97:eb:e7:25:e8:78:b0:a6:8c:c1:07:71:09: 6a:20:20:20:ed:35:74:bd:7e:9e:c6:f1:21:ac:1a:60:46:0c: f8:2f:a3:b7:12:1a:06:03:da:ab:66:79:f3:81:2c:7d:ba:29: 53:6f:47:b5:14:0f:33:d8:3c:a6:cb:a7:8d:0d:91:1f:a5:45: 45:60:7e:89:8b:26:e1:18:69:c8:b4:aa:8c:e0:ae:d1:fb:9a: ab:ee:5f:d4 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBVDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyNzVE OTc4MkIxM0U5OTEyOENEMzRGMjJDMDlGRThFN0I1Q0JBNzBCMB4XDTI1MDEzMTAx MzM0MloXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoMEQ3NDBFM0E3NEFDMDZF MUM0NDgxNzk5NjgxOUY1RjI3QUQxNzg4ODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOWcbu4sf/HC0JXjvIP+LPzJXZK/byDlhnXgAXTjtc981YTd8rmJ RoJ3CkzwehbxQXdC2RC9hdGrfJNGGU94cJzotaRxKOYUFT1hBhL0H1hGzXues3A0 /koQ/ZyKiIrp9++B3DH0KkKg7xsdnwFe4EHRzM8ZeYIJsduo5pf/+29r9s0AZTgZ RpgIjp42b3t+nn57b6KN+ZoN4XlPlDsY+2l6pMrbD8rUVix9akDAfOPSarxr4E4G B9QWdFvPwJUlui9/sJNwxHFBNmDetWK59B3VptOzAUmITkNdI9LCd3rbO/x/GZW6 MjE9o6CmI3odn1xBiHkaoSmRV5LhBg/CnqcCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQNdA46dKwG4cRIF5loGfXyetF4iDAfBgNVHSMEGDAWgBQnXZeCsT6ZEozTTyLA n+jntcunCzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjQ5L0oxMlhnckUtbVJLTTAwOGl3Sl9vNTdYTHB3cy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0oxMlhnckUtbVJLTTAwOGl3Sl9vNTdY THB3cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yNDkvRFhRT09uU3NCdUhFU0JlWmFCbjE4bnJSZUlnLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNoo4DANBgkqhkiG9w0BAQsFAAOCAQEAbevLEllhDsb6xksZ6/Mq+CAAbtAC iIZtPOUwGrEmq7A81DS4nbKnP1PjQ/Q0/79cwa7210+u6XGTc/NI4QNGGfmOTx4z 9LCi767gEHSmvjuryTsxGsiH/yxC19DrDHch+lZLpFnZx4trxvGPL3TjJfUdxtHi EeB2sHie+asYIsU+tSu5Ngibb7nUzRn42VDlGhXPEf54IBWyN1GoSX0zsF42MDgx pFqX6+cl6HiwpozBB3EJaiAgIO01dL1+nsbxIawaYEYM+C+jtxIaBgPaq2Z584Es fbopU29HtRQPM9g8psunjQ2RH6VFRWB+iYsm4RhpyLSqjOCu0fuaq+5f1A== -----END CERTIFICATE-----Generated at Sat Apr 5 17:19:49 2025 by rpki-client