$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/285/7bfz1hPsD0LlvMcEl3DG3RLRN64.roa File: 7bfz1hPsD0LlvMcEl3DG3RLRN64.roa (raw, json) Hash identifier: a0sRXVZ8KlTvR35AuzMjGSEefRWxCtkx9KFK3e83fiw= Subject key identifier: ED:B7:F3:D6:13:EC:0F:42:E5:BC:C7:04:97:70:C6:DD:12:D1:37:AE Certificate issuer: /CN=A3590C569DD668350463F6F7CF91383D3040AF26 Certificate serial: 52 Authority key identifier: A3:59:0C:56:9D:D6:68:35:04:63:F6:F7:CF:91:38:3D:30:40:AF:26 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/o1kMVp3WaDUEY_b3z5E4PTBAryY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/285/7bfz1hPsD0LlvMcEl3DG3RLRN64.roa Signing time: Fri 31 Jan 2025 01:31:29 +0000 ROA not before: Fri 31 Jan 2025 01:31:29 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9363 IP address blocks: 210.251.160.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/285/o1kMVp3WaDUEY_b3z5E4PTBAryY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/285/o1kMVp3WaDUEY_b3z5E4PTBAryY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/o1kMVp3WaDUEY_b3z5E4PTBAryY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 82 (0x52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A3590C569DD668350463F6F7CF91383D3040AF26 Validity Not Before: Jan 31 01:31:29 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=EDB7F3D613EC0F42E5BCC7049770C6DD12D137AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e0:b5:e2:36:84:24:40:47:af:57:94:c7:03: 44:eb:2e:96:89:9e:d1:44:15:66:fd:05:d8:34:fb: 05:8e:0a:3c:53:a7:78:1f:7f:42:4c:63:37:cc:55: 85:b8:6e:89:f8:90:9f:ed:1b:ae:6e:6f:a3:fa:a4: a9:08:f9:73:66:c2:63:4f:fc:da:d1:b7:9d:44:95: ff:69:bc:ca:60:b3:d3:e7:c7:98:72:fe:74:28:3b: fd:ca:48:15:29:fa:00:5e:a3:9b:c8:30:be:6f:e4: 50:63:bf:d6:f2:b8:97:99:91:88:82:aa:d5:81:0e: 07:59:b7:e0:4e:b4:38:60:5e:b8:41:26:d8:4b:17: 08:6a:00:c8:11:d5:55:b1:27:98:cf:15:21:1e:cf: 80:ec:95:ef:a1:05:a6:5a:ce:7c:90:c4:ab:42:13: e8:50:51:8a:fd:34:b3:83:06:a8:96:2f:3f:49:37: e0:80:d4:1f:5f:af:cd:52:12:70:e2:1f:6f:ed:13: a3:3b:ad:28:ec:3b:0b:89:62:a4:84:c4:69:b5:77: a2:19:e6:f1:2d:ce:ca:17:44:40:b0:a2:ab:1b:93: 71:91:13:41:11:58:5b:be:88:3c:d1:c4:2c:06:f9: 10:d3:9e:cc:c7:23:e3:3e:47:b9:56:61:af:fb:c6: 47:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:B7:F3:D6:13:EC:0F:42:E5:BC:C7:04:97:70:C6:DD:12:D1:37:AE X509v3 Authority Key Identifier: keyid:A3:59:0C:56:9D:D6:68:35:04:63:F6:F7:CF:91:38:3D:30:40:AF:26 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/285/o1kMVp3WaDUEY_b3z5E4PTBAryY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/o1kMVp3WaDUEY_b3z5E4PTBAryY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/285/7bfz1hPsD0LlvMcEl3DG3RLRN64.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.251.160.0/20 Signature Algorithm: sha256WithRSAEncryption 0b:91:bd:6c:d5:fe:d1:07:d1:eb:4d:bc:24:0a:6a:c5:35:93: a2:c1:20:08:d4:2c:50:af:ce:5d:49:1a:bc:6c:56:e9:e5:7f: 39:8b:8b:2a:c6:4c:3c:fb:e3:d8:04:00:e3:f0:21:58:03:e6: ed:ef:62:2c:f7:4a:ed:30:e1:cd:2f:ef:aa:e1:44:21:80:19: 99:b0:ee:5d:19:ec:6b:a0:b4:36:e6:7c:d2:8f:ec:e4:12:8a: 58:b5:2f:9f:73:13:d3:53:75:e7:f3:40:71:fd:c7:c2:9a:a4: bd:a2:00:d9:47:6d:70:64:7c:31:4b:58:11:16:86:c6:de:76: ef:78:b8:0c:aa:f1:11:c4:a4:66:1a:a3:ab:0c:43:09:02:0d: 45:f2:63:77:00:6c:c9:a5:f5:7a:da:01:54:4c:24:72:1e:6c: 8a:ed:45:5a:56:4f:7c:08:cf:e6:a4:1b:e6:68:7b:d5:49:52: 4d:9d:dc:00:73:18:45:85:86:b2:96:9e:cc:36:2c:b6:6c:9a: 27:93:99:f0:2f:99:54:fa:47:7f:e9:e1:6c:80:b4:d0:a9:f9: 21:8f:b5:cd:33:89:b7:7f:ae:d4:ce:54:62:6c:b7:d1:b3:6f: d4:ad:03:d6:2c:75:d7:ac:a9:fd:5d:44:27:30:c9:0d:71:8b: 14:5f:01:04 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBUjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBMzU5 MEM1NjlERDY2ODM1MDQ2M0Y2RjdDRjkxMzgzRDMwNDBBRjI2MB4XDTI1MDEzMTAx MzEyOVoXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoRURCN0YzRDYxM0VDMEY0 MkU1QkNDNzA0OTc3MEM2REQxMkQxMzdBRTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMzgteI2hCRAR69XlMcDROsulome0UQVZv0F2DT7BY4KPFOneB9/ QkxjN8xVhbhuifiQn+0brm5vo/qkqQj5c2bCY0/82tG3nUSV/2m8ymCz0+fHmHL+ dCg7/cpIFSn6AF6jm8gwvm/kUGO/1vK4l5mRiIKq1YEOB1m34E60OGBeuEEm2EsX CGoAyBHVVbEnmM8VIR7PgOyV76EFplrOfJDEq0IT6FBRiv00s4MGqJYvP0k34IDU H1+vzVIScOIfb+0TozutKOw7C4lipITEabV3ohnm8S3OyhdEQLCiqxuTcZETQRFY W76IPNHELAb5ENOezMcj4z5HuVZhr/vGR4kCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTtt/PWE+wPQuW8xwSXcMbdEtE3rjAfBgNVHSMEGDAWgBSjWQxWndZoNQRj9vfP kTg9MECvJjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjg1L28xa01WcDNXYURVRVlfYjN6NUU0UFRCQXJ5WS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL28xa01WcDNXYURVRVlfYjN6NUU0UFRC QXJ5WS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yODUvN2JmejFoUHNEMExsdk1jRWwzREczUkxSTjY0LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNL7oDANBgkqhkiG9w0BAQsFAAOCAQEAC5G9bNX+0QfR6028JApqxTWTosEg CNQsUK/OXUkavGxW6eV/OYuLKsZMPPvj2AQA4/AhWAPm7e9iLPdK7TDhzS/vquFE IYAZmbDuXRnsa6C0NuZ80o/s5BKKWLUvn3MT01N15/NAcf3HwpqkvaIA2UdtcGR8 MUtYERaGxt5273i4DKrxEcSkZhqjqwxDCQINRfJjdwBsyaX1etoBVEwkch5siu1F WlZPfAjP5qQb5mh71UlSTZ3cAHMYRYWGspaezDYstmyaJ5OZ8C+ZVPpHf+nhbIC0 0Kn5IY+1zTOJt3+u1M5UYmy30bNv1K0D1ix116yp/V1EJzDJDXGLFF8BBA== -----END CERTIFICATE-----Generated at Sat Apr 5 17:31:02 2025 by rpki-client