$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/271/znE4jiZavuB7zJ7Tz7jN3cUlsNA.roa File: znE4jiZavuB7zJ7Tz7jN3cUlsNA.roa (raw, json) Hash identifier: HetCIEBiYqU3D9+086+xsQAZG+SmAJyi+SvEWleUUoU= Subject key identifier: CE:71:38:8E:26:5A:BE:E0:7B:CC:9E:D3:CF:B8:CD:DD:C5:25:B0:D0 Certificate issuer: /CN=594B015EC9A0A5C03D8879469CDA7C7C4B9A6C10 Certificate serial: 11 Authority key identifier: 59:4B:01:5E:C9:A0:A5:C0:3D:88:79:46:9C:DA:7C:7C:4B:9A:6C:10 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WUsBXsmgpcA9iHlGnNp8fEuabBA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/271/znE4jiZavuB7zJ7Tz7jN3cUlsNA.roa Signing time: Thu 16 Jan 2025 01:38:39 +0000 ROA not before: Thu 16 Jan 2025 01:38:39 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 59108 IP address blocks: 219.99.224.0/19 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/271/WUsBXsmgpcA9iHlGnNp8fEuabBA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/271/WUsBXsmgpcA9iHlGnNp8fEuabBA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WUsBXsmgpcA9iHlGnNp8fEuabBA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=594B015EC9A0A5C03D8879469CDA7C7C4B9A6C10 Validity Not Before: Jan 16 01:38:39 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=CE71388E265ABEE07BCC9ED3CFB8CDDDC525B0D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:08:90:47:47:a2:a5:1a:3c:0f:89:43:e9:79: 98:e5:30:fd:7a:7f:20:1e:f8:24:69:c6:59:c1:75: f5:f6:c4:bb:d3:96:e0:73:7f:41:78:79:fe:3d:05: 71:ce:e2:d3:b5:18:99:a4:a0:c3:5c:fe:c8:a6:5b: e2:21:f7:71:a3:77:8f:09:a5:de:f7:cb:ce:75:37: 00:d8:fb:c5:b4:4e:92:09:4f:6a:7d:7a:1f:da:08: b0:b0:b6:b0:9a:fe:94:26:27:60:bf:ee:ce:f9:6f: 55:aa:b0:ba:ea:2f:4f:9e:fd:c3:cc:17:f3:f2:35: 49:0a:5a:98:72:b8:fa:15:11:97:8a:57:71:5e:81: 69:30:cf:12:79:27:c1:3a:3f:e1:b3:bd:ff:55:34: fc:cb:e6:08:7d:34:d8:2a:65:fb:e5:2c:7d:43:05: 3a:e4:79:e3:d3:28:37:32:38:cc:36:e6:46:7a:c6: 56:cf:6d:1e:5b:f2:c3:93:5d:2a:8e:af:bf:87:3c: ad:94:3e:f8:52:e0:ee:5c:9f:65:a0:1a:50:cc:5c: 85:7c:b1:dc:a8:af:fc:69:95:ee:61:3b:77:ab:06: 7c:37:ca:0e:d1:b9:70:5f:76:3c:03:53:a8:3c:0e: d3:bd:ca:d0:01:50:4a:21:a5:60:07:f5:45:c6:ca: dc:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:71:38:8E:26:5A:BE:E0:7B:CC:9E:D3:CF:B8:CD:DD:C5:25:B0:D0 X509v3 Authority Key Identifier: keyid:59:4B:01:5E:C9:A0:A5:C0:3D:88:79:46:9C:DA:7C:7C:4B:9A:6C:10 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/271/WUsBXsmgpcA9iHlGnNp8fEuabBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WUsBXsmgpcA9iHlGnNp8fEuabBA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/271/znE4jiZavuB7zJ7Tz7jN3cUlsNA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.99.224.0/19 Signature Algorithm: sha256WithRSAEncryption b7:81:9a:33:59:05:15:45:b6:10:c4:cd:c3:f6:0d:88:08:69: be:ed:3a:0d:34:d3:98:7e:83:38:de:1e:3b:0b:63:f3:89:4f: c6:69:ea:bf:b0:3c:fb:49:e5:ac:55:2b:57:cb:14:1f:89:0b: 96:46:17:ec:32:b2:c5:ec:2f:70:48:7f:fb:ba:6d:c4:c8:2a: a9:93:fd:5d:99:f4:16:5c:ce:7c:71:a2:0b:33:96:4c:f5:0b: 90:d6:f2:1d:37:40:41:b7:ea:4b:c5:72:c2:a0:1d:9f:08:30: c7:1f:a4:20:c9:3f:8b:30:1c:13:a5:25:e9:50:81:50:bd:9d: 2d:0b:d0:cc:c7:f5:fc:7a:9c:70:8e:e5:dd:46:24:98:a7:3e: 81:18:e6:e5:36:ea:67:ca:6a:2f:56:0b:5f:09:1b:de:51:e4: 08:89:93:22:f8:35:5c:1f:ed:8a:78:37:7a:33:c4:ef:59:da: 96:08:99:a1:3e:7f:a3:54:8c:0d:2c:05:ef:37:71:92:d1:67: ba:db:c3:d2:95:69:b3:18:12:56:71:1c:9e:18:c8:99:02:56: c2:b1:ff:46:97:12:55:28:d0:43:14:40:3a:00:f2:38:e7:24: 6b:e6:00:f5:c2:85:3f:89:ba:14:e9:93:4e:09:ca:c6:38:8e: 38:83:8b:b8 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBETANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1OTRC MDE1RUM5QTBBNUMwM0Q4ODc5NDY5Q0RBN0M3QzRCOUE2QzEwMB4XDTI1MDExNjAx MzgzOVoXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoQ0U3MTM4OEUyNjVBQkVF MDdCQ0M5RUQzQ0ZCOENERERDNTI1QjBEMDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALoIkEdHoqUaPA+JQ+l5mOUw/Xp/IB74JGnGWcF19fbEu9OW4HN/ QXh5/j0Fcc7i07UYmaSgw1z+yKZb4iH3caN3jwml3vfLznU3ANj7xbROkglPan16 H9oIsLC2sJr+lCYnYL/uzvlvVaqwuuovT579w8wX8/I1SQpamHK4+hURl4pXcV6B aTDPEnknwTo/4bO9/1U0/MvmCH002Cpl++UsfUMFOuR549MoNzI4zDbmRnrGVs9t Hlvyw5NdKo6vv4c8rZQ++FLg7lyfZaAaUMxchXyx3Kiv/GmV7mE7d6sGfDfKDtG5 cF92PANTqDwO073K0AFQSiGlYAf1RcbK3BkCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTOcTiOJlq+4HvMntPPuM3dxSWw0DAfBgNVHSMEGDAWgBRZSwFeyaClwD2IeUac 2nx8S5psEDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjcxL1dVc0JYc21ncGNBOWlIbEduTnA4ZkV1YWJCQS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dVc0JYc21ncGNBOWlIbEduTnA4ZkV1 YWJCQS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yNzEvem5FNGppWmF2dUI3eko3VHo3ak4zY1Vsc05BLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBdtj4DANBgkqhkiG9w0BAQsFAAOCAQEAt4GaM1kFFUW2EMTNw/YNiAhpvu06 DTTTmH6DON4eOwtj84lPxmnqv7A8+0nlrFUrV8sUH4kLlkYX7DKyxewvcEh/+7pt xMgqqZP9XZn0FlzOfHGiCzOWTPULkNbyHTdAQbfqS8VywqAdnwgwxx+kIMk/izAc E6Ul6VCBUL2dLQvQzMf1/HqccI7l3UYkmKc+gRjm5TbqZ8pqL1YLXwkb3lHkCImT Ivg1XB/ting3ejPE71nalgiZoT5/o1SMDSwF7zdxktFnutvD0pVpsxgSVnEcnhjI mQJWwrH/RpcSVSjQQxRAOgDyOOcka+YA9cKFP4m6FOmTTgnKxjiOOIOLuA== -----END CERTIFICATE-----Generated at Sat Apr 5 17:44:54 2025 by rpki-client