$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/271/G2q5OKoX3tBrM67GXKppn9wzy_g.roa File: G2q5OKoX3tBrM67GXKppn9wzy_g.roa (raw, json) Hash identifier: n/RsC2FPCvvHKrIWHb4XBiMLToo2jRiGQYuGAYlKG78= Subject key identifier: 1B:6A:B9:38:AA:17:DE:D0:6B:33:AE:C6:5C:AA:69:9F:DC:33:CB:F8 Certificate issuer: /CN=594B015EC9A0A5C03D8879469CDA7C7C4B9A6C10 Certificate serial: 0F Authority key identifier: 59:4B:01:5E:C9:A0:A5:C0:3D:88:79:46:9C:DA:7C:7C:4B:9A:6C:10 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WUsBXsmgpcA9iHlGnNp8fEuabBA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/271/G2q5OKoX3tBrM67GXKppn9wzy_g.roa Signing time: Thu 16 Jan 2025 01:38:38 +0000 ROA not before: Thu 16 Jan 2025 01:38:38 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 59108 IP address blocks: 218.40.128.0/20 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/271/WUsBXsmgpcA9iHlGnNp8fEuabBA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/271/WUsBXsmgpcA9iHlGnNp8fEuabBA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WUsBXsmgpcA9iHlGnNp8fEuabBA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=594B015EC9A0A5C03D8879469CDA7C7C4B9A6C10 Validity Not Before: Jan 16 01:38:38 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=1B6AB938AA17DED06B33AEC65CAA699FDC33CBF8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:70:e0:41:ad:fb:50:f0:87:43:ba:8d:bb:41: 3e:53:08:d7:19:67:4b:dd:ab:e9:38:32:4f:35:24: 11:d0:2f:aa:2a:bf:bb:ea:db:1b:bb:94:4e:9d:34: 98:8c:59:47:dc:39:d9:26:92:a2:55:72:ad:ff:17: 54:83:d9:16:f7:1b:3b:6b:f7:c1:ae:87:74:6e:5b: 46:d7:6f:56:df:5e:c9:02:d7:a9:86:a9:bc:11:3f: 18:19:2e:d3:f0:e5:23:e0:10:3b:11:96:cb:1b:94: a2:9b:51:df:01:ba:33:f7:9e:f3:33:65:04:d9:9e: 02:62:0d:94:00:30:e1:ee:4f:d5:a9:77:da:b5:3f: 27:54:38:1f:2b:cc:a0:bf:db:fe:8d:8f:62:15:c2: 95:fc:40:b9:30:8e:e1:88:29:bf:60:5b:9d:94:79: 77:26:ba:a3:3c:62:52:2a:a1:fa:c4:83:e4:6b:20: 9c:4f:47:82:51:8a:6a:aa:c4:b0:5c:f3:90:f9:0c: 97:fd:e3:53:7d:e0:61:57:ca:1e:63:73:f1:03:7d: fc:0c:f8:fb:4a:58:8a:d9:5f:76:17:bf:a0:b1:c2: 27:b8:1f:a7:76:58:1d:26:73:04:9d:52:02:92:b9: 86:42:3e:6d:46:dd:9b:f0:f2:75:ec:a3:6a:4d:df: ad:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:6A:B9:38:AA:17:DE:D0:6B:33:AE:C6:5C:AA:69:9F:DC:33:CB:F8 X509v3 Authority Key Identifier: keyid:59:4B:01:5E:C9:A0:A5:C0:3D:88:79:46:9C:DA:7C:7C:4B:9A:6C:10 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/271/WUsBXsmgpcA9iHlGnNp8fEuabBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WUsBXsmgpcA9iHlGnNp8fEuabBA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/271/G2q5OKoX3tBrM67GXKppn9wzy_g.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.40.128.0/20 Signature Algorithm: sha256WithRSAEncryption 4e:89:b9:a6:e7:f0:b8:f4:95:7a:c0:dd:8b:f8:1f:01:c3:fa: 23:e2:a6:5e:17:ef:48:20:45:3b:bb:1e:7c:36:7f:58:f8:46: 35:d2:2e:10:86:a1:89:39:f5:18:3b:68:12:ce:38:4a:97:84: e0:01:bf:45:f5:56:95:75:5f:96:2c:e8:1e:3e:0a:48:bc:7d: 63:47:6d:0d:d4:89:e7:45:b7:7d:8d:9c:5c:7b:e0:2b:9d:dc: 42:05:91:88:b4:46:4a:71:74:9c:64:11:b4:f9:f0:de:c8:41: 0a:1c:a1:c6:df:e9:37:da:80:37:0b:0c:76:8f:e4:54:3a:9e: 61:3a:7f:65:4a:5e:4d:35:2d:d0:ad:8d:2d:d3:4c:bd:4f:c2: ce:83:da:0c:ee:c1:17:47:6f:b0:e7:2d:0d:62:31:ce:25:21: f7:6e:7f:d8:d8:6d:22:45:33:60:5c:46:7d:4e:79:a4:2f:5f: 6a:bd:05:bb:32:14:e6:2a:f7:71:c2:b4:ac:7a:2b:70:ba:6e: 83:be:c4:50:f5:ff:38:2b:9d:b4:78:b5:b4:72:90:ce:b9:f2: 01:c8:e7:72:8a:11:7a:ed:bf:ff:8b:6b:cc:00:1c:25:2f:35: f7:79:3c:44:54:fb:b0:3c:dc:06:e0:1c:11:0a:94:50:0b:dc: 83:8c:62:28 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBDzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1OTRC MDE1RUM5QTBBNUMwM0Q4ODc5NDY5Q0RBN0M3QzRCOUE2QzEwMB4XDTI1MDExNjAx MzgzOFoXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoMUI2QUI5MzhBQTE3REVE MDZCMzNBRUM2NUNBQTY5OUZEQzMzQ0JGODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALhw4EGt+1Dwh0O6jbtBPlMI1xlnS92r6TgyTzUkEdAvqiq/u+rb G7uUTp00mIxZR9w52SaSolVyrf8XVIPZFvcbO2v3wa6HdG5bRtdvVt9eyQLXqYap vBE/GBku0/DlI+AQOxGWyxuUoptR3wG6M/ee8zNlBNmeAmINlAAw4e5P1al32rU/ J1Q4HyvMoL/b/o2PYhXClfxAuTCO4Ygpv2BbnZR5dya6ozxiUiqh+sSD5GsgnE9H glGKaqrEsFzzkPkMl/3jU33gYVfKHmNz8QN9/Az4+0pYitlfdhe/oLHCJ7gfp3ZY HSZzBJ1SApK5hkI+bUbdm/Dydeyjak3frZkCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQbark4qhfe0GszrsZcqmmf3DPL+DAfBgNVHSMEGDAWgBRZSwFeyaClwD2IeUac 2nx8S5psEDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjcxL1dVc0JYc21ncGNBOWlIbEduTnA4ZkV1YWJCQS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dVc0JYc21ncGNBOWlIbEduTnA4ZkV1 YWJCQS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yNzEvRzJxNU9Lb1gzdEJyTTY3R1hLcHBuOXd6eV9nLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNoogDANBgkqhkiG9w0BAQsFAAOCAQEATom5pufwuPSVesDdi/gfAcP6I+Km XhfvSCBFO7sefDZ/WPhGNdIuEIahiTn1GDtoEs44SpeE4AG/RfVWlXVflizoHj4K SLx9Y0dtDdSJ50W3fY2cXHvgK53cQgWRiLRGSnF0nGQRtPnw3shBChyhxt/pN9qA NwsMdo/kVDqeYTp/ZUpeTTUt0K2NLdNMvU/CzoPaDO7BF0dvsOctDWIxziUh925/ 2NhtIkUzYFxGfU55pC9far0FuzIU5ir3ccK0rHorcLpug77EUPX/OCudtHi1tHKQ zrnyAcjncooReu2//4trzAAcJS8193k8RFT7sDzcBuAcEQqUUAvcg4xiKA== -----END CERTIFICATE-----Generated at Sat Apr 5 17:37:26 2025 by rpki-client