$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/271/4y4M0skvmF7p7Ktvvh2MZBudjRY.roa File: 4y4M0skvmF7p7Ktvvh2MZBudjRY.roa (raw, json) Hash identifier: TmpJ7tq1h0eEIKPIgzv3J9iDLGBqZa5FJ9pFsbkXdek= Subject key identifier: E3:2E:0C:D2:C9:2F:98:5E:E9:EC:AB:6F:BE:1D:8C:64:1B:9D:8D:16 Certificate issuer: /CN=594B015EC9A0A5C03D8879469CDA7C7C4B9A6C10 Certificate serial: 04 Authority key identifier: 59:4B:01:5E:C9:A0:A5:C0:3D:88:79:46:9C:DA:7C:7C:4B:9A:6C:10 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WUsBXsmgpcA9iHlGnNp8fEuabBA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/271/4y4M0skvmF7p7Ktvvh2MZBudjRY.roa Signing time: Thu 16 Jan 2025 01:30:31 +0000 ROA not before: Thu 16 Jan 2025 01:30:31 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 59108 IP address blocks: 61.215.176.0/20 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/271/WUsBXsmgpcA9iHlGnNp8fEuabBA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/271/WUsBXsmgpcA9iHlGnNp8fEuabBA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WUsBXsmgpcA9iHlGnNp8fEuabBA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=594B015EC9A0A5C03D8879469CDA7C7C4B9A6C10 Validity Not Before: Jan 16 01:30:31 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=E32E0CD2C92F985EE9ECAB6FBE1D8C641B9D8D16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f0:be:5d:4f:e4:f6:67:47:92:c1:35:d5:02: e9:b1:18:92:0b:85:ad:b9:ed:72:3f:40:ab:41:e3: 8f:3a:e7:44:4b:cd:94:a8:a9:07:58:00:cd:aa:ae: 79:65:23:8d:75:e3:4f:1c:e2:1d:ca:91:a0:dc:8d: 86:62:b5:f0:2d:98:b6:36:80:94:69:75:26:82:58: 40:fa:2c:15:66:ae:e4:80:59:7a:dc:7f:2e:1d:38: 0d:ca:d7:23:20:e5:f0:50:67:bb:3e:61:5b:50:09: 12:02:47:57:01:c3:cf:ba:c7:00:f8:75:55:ce:c0: 8d:85:ea:6c:a5:83:f3:da:60:eb:0a:99:9f:d2:8a: 6c:53:30:75:a7:24:31:db:c3:12:53:7f:15:b8:49: 3b:47:b3:82:e4:5d:98:45:e2:52:fa:70:03:7c:9d: bc:74:f9:c7:00:0c:05:52:35:1c:dc:c3:24:22:d4: da:7f:ff:d5:9a:a8:04:bd:7f:ea:c1:d9:05:c5:4a: 6a:62:46:fa:9f:2c:fc:2d:59:b6:43:dd:9e:e7:ab: 2e:4d:73:e7:df:0c:9e:62:38:14:fd:9e:74:95:59: 6d:df:d2:9e:85:26:99:5c:4d:b6:ce:d4:a1:41:39: 64:41:47:c0:0f:c6:7f:76:27:54:84:09:11:6d:ab: a4:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:2E:0C:D2:C9:2F:98:5E:E9:EC:AB:6F:BE:1D:8C:64:1B:9D:8D:16 X509v3 Authority Key Identifier: keyid:59:4B:01:5E:C9:A0:A5:C0:3D:88:79:46:9C:DA:7C:7C:4B:9A:6C:10 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/271/WUsBXsmgpcA9iHlGnNp8fEuabBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WUsBXsmgpcA9iHlGnNp8fEuabBA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/271/4y4M0skvmF7p7Ktvvh2MZBudjRY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.215.176.0/20 Signature Algorithm: sha256WithRSAEncryption a9:89:9a:08:16:38:d0:02:f2:f2:ee:e4:79:ac:c4:92:c0:74: fc:c2:04:cd:ee:32:dd:ce:37:96:5f:7c:43:b9:f2:b1:8e:2c: 58:fa:ea:8f:44:92:75:9f:11:f2:93:9a:5c:77:0f:d4:9e:23: a5:0e:d5:e8:2c:a7:8d:43:fc:f5:33:bb:cc:ac:64:84:f9:0f: d3:b0:fc:69:c5:c9:92:0c:9b:9f:2f:6b:20:de:88:14:d7:97: 34:73:c2:5d:7b:e9:6a:d2:c3:44:25:f4:ec:b3:cd:be:4f:47: ff:7b:15:f5:ce:bf:d4:38:d1:b6:e4:50:ec:ef:e9:7d:4e:e6: eb:a4:c2:58:bb:4c:f0:6f:a4:03:74:00:34:6d:cb:b2:3e:dd: 13:89:27:57:83:bf:39:8e:f0:0e:cf:2e:18:d4:0d:35:53:21: fa:b7:10:d7:18:54:ef:36:6f:ba:6b:b6:92:5e:54:fb:7e:f6: 3b:ea:c4:cc:58:50:b0:82:25:1c:c7:61:0b:75:fa:3c:0b:e4: aa:df:09:05:1b:aa:3e:cf:a4:b9:02:88:19:30:2c:ea:9c:47: 50:7e:95:be:93:8d:dc:c1:ba:53:f6:c8:d3:70:ad:c4:ab:a4: 27:66:88:2a:31:a6:ab:2a:28:22:8b:0e:40:1d:be:b0:9d:b6: cc:5e:d1:f6 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBBDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1OTRC MDE1RUM5QTBBNUMwM0Q4ODc5NDY5Q0RBN0M3QzRCOUE2QzEwMB4XDTI1MDExNjAx MzAzMVoXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoRTMyRTBDRDJDOTJGOTg1 RUU5RUNBQjZGQkUxRDhDNjQxQjlEOEQxNjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKfwvl1P5PZnR5LBNdUC6bEYkguFrbntcj9Aq0HjjzrnREvNlKip B1gAzaqueWUjjXXjTxziHcqRoNyNhmK18C2YtjaAlGl1JoJYQPosFWau5IBZetx/ Lh04DcrXIyDl8FBnuz5hW1AJEgJHVwHDz7rHAPh1Vc7AjYXqbKWD89pg6wqZn9KK bFMwdackMdvDElN/FbhJO0ezguRdmEXiUvpwA3ydvHT5xwAMBVI1HNzDJCLU2n// 1ZqoBL1/6sHZBcVKamJG+p8s/C1ZtkPdnuerLk1z598MnmI4FP2edJVZbd/SnoUm mVxNts7UoUE5ZEFHwA/Gf3YnVIQJEW2rpHcCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTjLgzSyS+YXunsq2++HYxkG52NFjAfBgNVHSMEGDAWgBRZSwFeyaClwD2IeUac 2nx8S5psEDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjcxL1dVc0JYc21ncGNBOWlIbEduTnA4ZkV1YWJCQS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dVc0JYc21ncGNBOWlIbEduTnA4ZkV1 YWJCQS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yNzEvNHk0TTBza3ZtRjdwN0t0dnZoMk1aQnVkalJZLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBD3XsDANBgkqhkiG9w0BAQsFAAOCAQEAqYmaCBY40ALy8u7keazEksB0/MIE ze4y3c43ll98Q7nysY4sWPrqj0SSdZ8R8pOaXHcP1J4jpQ7V6CynjUP89TO7zKxk hPkP07D8acXJkgybny9rIN6IFNeXNHPCXXvpatLDRCX07LPNvk9H/3sV9c6/1DjR tuRQ7O/pfU7m66TCWLtM8G+kA3QANG3Lsj7dE4knV4O/OY7wDs8uGNQNNVMh+rcQ 1xhU7zZvumu2kl5U+372O+rEzFhQsIIlHMdhC3X6PAvkqt8JBRuqPs+kuQKIGTAs 6pxHUH6VvpON3MG6U/bI03CtxKukJ2aIKjGmqyooIosOQB2+sJ22zF7R9g== -----END CERTIFICATE-----Generated at Sat Apr 5 17:40:10 2025 by rpki-client