$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/271/VC0j8VRslU0eZDGofkJY-Esg4U0.roa File: VC0j8VRslU0eZDGofkJY-Esg4U0.roa (raw, json) Hash identifier: VjbAaaY5kE05ALSEo+QBOhsKeBWAXO2vzGSYTQk27VU= Subject key identifier: 54:2D:23:F1:54:6C:95:4D:1E:64:31:A8:7E:42:58:F8:4B:20:E1:4D Certificate issuer: /CN=594B015EC9A0A5C03D8879469CDA7C7C4B9A6C10 Certificate serial: 07 Authority key identifier: 59:4B:01:5E:C9:A0:A5:C0:3D:88:79:46:9C:DA:7C:7C:4B:9A:6C:10 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WUsBXsmgpcA9iHlGnNp8fEuabBA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/271/VC0j8VRslU0eZDGofkJY-Esg4U0.roa Signing time: Thu 16 Jan 2025 01:34:48 +0000 ROA not before: Thu 16 Jan 2025 01:34:48 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 59108 IP address blocks: 153.124.208.0/20 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/271/WUsBXsmgpcA9iHlGnNp8fEuabBA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/271/WUsBXsmgpcA9iHlGnNp8fEuabBA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WUsBXsmgpcA9iHlGnNp8fEuabBA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=594B015EC9A0A5C03D8879469CDA7C7C4B9A6C10 Validity Not Before: Jan 16 01:34:48 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=542D23F1546C954D1E6431A87E4258F84B20E14D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:28:bd:ea:77:81:09:9d:e3:52:b2:17:51:1c: db:19:94:a3:1e:b0:10:50:bd:61:e3:b7:7e:91:f1: 9a:ff:b7:b2:23:ec:65:80:4f:9f:aa:a8:ff:87:d3: d4:98:cb:fe:bf:ec:f6:e7:08:2f:36:d7:f3:db:98: 51:f6:99:7a:21:3c:c4:1c:16:18:5d:97:03:fd:9f: 07:c3:49:5e:bc:12:79:06:dc:70:0f:92:c4:1c:5e: e3:dc:d1:1a:88:29:1e:3b:cc:19:39:9f:00:fc:ef: b8:35:19:60:24:4d:35:b0:65:f1:2c:83:1e:4c:1a: 26:76:8f:f0:05:e8:3d:eb:0e:c4:fe:b8:c0:91:df: f6:00:4d:eb:b2:79:d6:8f:95:ba:af:96:89:af:77: 45:f7:41:57:4d:04:d0:a0:a6:af:2e:75:3b:13:f6: 4f:26:4a:4f:18:c5:6b:e3:7d:8f:3a:0d:fb:9d:ff: a2:72:bc:de:5d:d8:67:d0:b4:e2:59:3d:be:ae:2c: c6:1e:01:01:ac:e4:e4:6a:48:86:96:bd:e5:fd:bb: 5e:66:51:dd:af:b8:26:04:4b:e7:b9:6a:87:fe:b0: f5:fb:d6:62:d1:6d:13:e7:e2:98:ea:f0:83:3f:f8: 0f:e0:49:78:c7:a9:1c:69:86:ed:a8:8f:5c:f4:2e: f6:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:2D:23:F1:54:6C:95:4D:1E:64:31:A8:7E:42:58:F8:4B:20:E1:4D X509v3 Authority Key Identifier: keyid:59:4B:01:5E:C9:A0:A5:C0:3D:88:79:46:9C:DA:7C:7C:4B:9A:6C:10 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/271/WUsBXsmgpcA9iHlGnNp8fEuabBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WUsBXsmgpcA9iHlGnNp8fEuabBA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/271/VC0j8VRslU0eZDGofkJY-Esg4U0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 153.124.208.0/20 Signature Algorithm: sha256WithRSAEncryption 61:19:32:dc:bf:97:84:4e:09:e7:38:86:4f:d0:bc:7a:b6:29: 3e:e0:f6:a6:82:db:2f:2e:a2:4c:29:00:33:72:5a:47:a4:fe: 5e:55:38:99:21:e0:81:84:19:9b:37:71:82:40:b5:8d:1a:14: f1:74:15:c8:e1:75:12:b3:29:ed:a3:7b:bd:11:af:ed:59:4c: 8c:35:e4:b7:be:46:96:11:9f:70:cc:7f:26:04:f6:d8:69:26: 22:09:0b:ea:64:b9:0d:fa:78:ff:4f:b8:20:52:99:f9:fd:c6: e1:85:5e:95:58:48:9d:92:88:f3:4f:da:3f:b5:06:df:a3:ee: c9:ff:e6:8b:77:92:69:85:3c:ad:10:f3:e6:b1:ee:0d:06:58: 50:68:c5:b3:31:ce:8d:9f:10:50:1f:c4:2c:46:29:5d:0b:ba: bb:f2:15:ba:07:6b:e8:aa:ef:32:4a:42:82:51:14:50:41:2c: 30:23:d6:99:1c:e7:c3:cb:d8:43:bc:35:97:8e:25:28:38:a1: f5:ab:44:7e:41:58:1c:b3:68:68:64:7e:e2:c7:26:10:6d:1a: d4:ab:b0:4a:cf:0e:46:53:37:35:04:16:37:41:c7:82:fd:d5: 45:31:85:12:0a:b8:29:59:e3:68:28:01:13:84:71:23:7c:c0: b6:71:57:86 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBBzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1OTRC MDE1RUM5QTBBNUMwM0Q4ODc5NDY5Q0RBN0M3QzRCOUE2QzEwMB4XDTI1MDExNjAx MzQ0OFoXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoNTQyRDIzRjE1NDZDOTU0 RDFFNjQzMUE4N0U0MjU4Rjg0QjIwRTE0RDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJcovep3gQmd41KyF1Ec2xmUox6wEFC9YeO3fpHxmv+3siPsZYBP n6qo/4fT1JjL/r/s9ucILzbX89uYUfaZeiE8xBwWGF2XA/2fB8NJXrwSeQbccA+S xBxe49zRGogpHjvMGTmfAPzvuDUZYCRNNbBl8SyDHkwaJnaP8AXoPesOxP64wJHf 9gBN67J51o+Vuq+Wia93RfdBV00E0KCmry51OxP2TyZKTxjFa+N9jzoN+53/onK8 3l3YZ9C04lk9vq4sxh4BAazk5GpIhpa95f27XmZR3a+4JgRL57lqh/6w9fvWYtFt E+fimOrwgz/4D+BJeMepHGmG7aiPXPQu9qsCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRULSPxVGyVTR5kMah+Qlj4SyDhTTAfBgNVHSMEGDAWgBRZSwFeyaClwD2IeUac 2nx8S5psEDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjcxL1dVc0JYc21ncGNBOWlIbEduTnA4ZkV1YWJCQS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dVc0JYc21ncGNBOWlIbEduTnA4ZkV1 YWJCQS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yNzEvVkMwajhWUnNsVTBlWkRHb2ZrSlktRXNnNFUwLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBJl80DANBgkqhkiG9w0BAQsFAAOCAQEAYRky3L+XhE4J5ziGT9C8erYpPuD2 poLbLy6iTCkAM3JaR6T+XlU4mSHggYQZmzdxgkC1jRoU8XQVyOF1ErMp7aN7vRGv 7VlMjDXkt75GlhGfcMx/JgT22GkmIgkL6mS5Dfp4/0+4IFKZ+f3G4YVelVhInZKI 80/aP7UG36Puyf/mi3eSaYU8rRDz5rHuDQZYUGjFszHOjZ8QUB/ELEYpXQu6u/IV ugdr6KrvMkpCglEUUEEsMCPWmRznw8vYQ7w1l44lKDih9atEfkFYHLNoaGR+4scm EG0a1KuwSs8ORlM3NQQWN0HHgv3VRTGFEgq4KVnjaCgBE4RxI3zAtnFXhg== -----END CERTIFICATE-----Generated at Sat Apr 5 17:39:52 2025 by rpki-client