$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/299/uo6ftB-ob4X6-0zqyWMATtOwAqY.roa File: uo6ftB-ob4X6-0zqyWMATtOwAqY.roa (raw, json) Hash identifier: rT3E6DC77H7Qwa2Cdv0aUULp+2o9ipcnmOEAA9qdsbw= Subject key identifier: BA:8E:9F:B4:1F:A8:6F:85:FA:FB:4C:EA:C9:63:00:4E:D3:B0:02:A6 Certificate issuer: /CN=D8F1514508AFC38E51743B6CB58BA6561EDD3BB9 Certificate serial: 55 Authority key identifier: D8:F1:51:45:08:AF:C3:8E:51:74:3B:6C:B5:8B:A6:56:1E:DD:3B:B9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2PFRRQivw45RdDtstYumVh7dO7k.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/uo6ftB-ob4X6-0zqyWMATtOwAqY.roa Signing time: Fri 31 Jan 2025 01:28:10 +0000 ROA not before: Fri 31 Jan 2025 01:28:10 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 63789 IP address blocks: 202.9.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/2PFRRQivw45RdDtstYumVh7dO7k.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/2PFRRQivw45RdDtstYumVh7dO7k.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2PFRRQivw45RdDtstYumVh7dO7k.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 01:09:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 85 (0x55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D8F1514508AFC38E51743B6CB58BA6561EDD3BB9 Validity Not Before: Jan 31 01:28:10 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=BA8E9FB41FA86F85FAFB4CEAC963004ED3B002A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:6d:6d:f8:af:70:29:af:9c:eb:f1:10:3b:57: 4d:93:24:44:2e:54:30:00:cf:00:85:b0:e9:1b:4f: f2:0d:11:e9:eb:6f:a1:19:6b:c4:48:d8:05:60:00: ea:11:81:8d:31:71:88:c1:16:f8:e5:71:bb:27:18: ff:10:c9:85:bb:41:df:35:67:e7:6e:18:7d:32:81: 2b:68:6e:ef:63:45:45:8a:d4:9a:15:4f:0b:db:44: bf:dd:3b:b9:fe:36:f6:34:67:86:ff:d0:af:97:a2: b5:ff:a6:7d:f9:de:9e:50:85:2c:4a:8c:34:bb:14: b0:72:cd:77:16:c8:cd:e6:f6:68:6b:31:b5:7f:10: 6b:3f:06:87:0a:84:ba:04:c6:3b:b5:92:44:9c:5b: 44:07:10:a5:91:6c:37:e3:46:bf:ea:08:36:4f:dd: 43:8e:87:6d:f6:05:2b:81:30:fd:a4:34:54:02:73: 44:33:b8:41:14:f3:93:e6:76:c6:39:20:fb:ee:f9: 15:ed:16:20:e4:a2:77:f7:25:c0:8c:a0:86:c2:78: 01:42:0a:58:90:71:d6:b0:c6:be:ed:bc:f9:a9:87: 61:bb:4c:0d:99:67:07:84:fa:8a:50:4e:cb:18:1f: 4f:ed:ab:e5:78:22:aa:89:35:69:f8:51:0d:22:af: b2:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:8E:9F:B4:1F:A8:6F:85:FA:FB:4C:EA:C9:63:00:4E:D3:B0:02:A6 X509v3 Authority Key Identifier: keyid:D8:F1:51:45:08:AF:C3:8E:51:74:3B:6C:B5:8B:A6:56:1E:DD:3B:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/2PFRRQivw45RdDtstYumVh7dO7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2PFRRQivw45RdDtstYumVh7dO7k.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/uo6ftB-ob4X6-0zqyWMATtOwAqY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.9.208.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:33:b1:ed:74:c0:09:72:0c:cf:4a:67:f3:33:3c:87:7c:3f: e9:5c:a3:48:a2:09:5c:67:13:98:34:a3:2b:b8:08:2d:9d:82: 5c:b0:fc:49:b4:68:a1:88:c2:5b:2d:19:19:f5:fd:58:48:de: eb:41:dd:7f:df:61:b7:97:5b:a2:56:bb:9b:49:55:74:aa:7d: e9:be:4c:97:39:97:58:ce:79:49:12:67:59:45:1a:5d:b0:0d: f9:be:b6:39:e7:ef:dc:bb:e5:33:45:0f:ad:e8:d5:8d:33:2c: f8:cc:ae:0b:c6:f1:6a:b4:12:fa:64:ab:6f:56:1d:ae:f7:33: 84:10:33:c6:17:92:6c:5d:02:ad:d4:28:15:b5:2f:e5:dd:b4: a7:d5:e5:2e:91:19:bb:a8:90:dc:49:eb:b3:25:63:26:f5:2b: 3c:39:52:e6:22:28:f5:a8:39:e4:21:3a:67:81:d1:b5:16:54: 3d:c2:5a:35:a9:d9:19:f3:29:55:c4:9d:9e:a1:68:3b:8b:71: 16:95:a7:71:6a:ea:93:bc:7e:a2:3d:98:91:b1:56:9d:0b:1f: 9f:a7:c2:9b:8c:9d:9f:a2:21:92:c8:9f:d1:69:09:ae:08:ea: b6:e5:73:87:73:00:d2:84:48:38:d1:2a:8a:da:df:00:c7:78: 93:5f:d9:79 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBVTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEOEYx NTE0NTA4QUZDMzhFNTE3NDNCNkNCNThCQTY1NjFFREQzQkI5MB4XDTI1MDEzMTAx MjgxMFoXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoQkE4RTlGQjQxRkE4NkY4 NUZBRkI0Q0VBQzk2MzAwNEVEM0IwMDJBNjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANdtbfivcCmvnOvxEDtXTZMkRC5UMADPAIWw6RtP8g0R6etvoRlr xEjYBWAA6hGBjTFxiMEW+OVxuycY/xDJhbtB3zVn524YfTKBK2hu72NFRYrUmhVP C9tEv907uf429jRnhv/Qr5eitf+mffnenlCFLEqMNLsUsHLNdxbIzeb2aGsxtX8Q az8GhwqEugTGO7WSRJxbRAcQpZFsN+NGv+oINk/dQ46HbfYFK4Ew/aQ0VAJzRDO4 QRTzk+Z2xjkg++75Fe0WIOSid/clwIyghsJ4AUIKWJBx1rDGvu28+amHYbtMDZln B4T6ilBOyxgfT+2r5Xgiqok1afhRDSKvsukCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBS6jp+0H6hvhfr7TOrJYwBO07ACpjAfBgNVHSMEGDAWgBTY8VFFCK/DjlF0O2y1 i6ZWHt07uTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjk5LzJQRlJSUWl2dzQ1UmREdHN0WXVtVmg3ZE83ay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzJQRlJSUWl2dzQ1UmREdHN0WXVtVmg3 ZE83ay5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yOTkvdW82ZnRCLW9iNFg2LTB6cXlXTUFUdE93QXFZLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAMoJ0DANBgkqhkiG9w0BAQsFAAOCAQEADzOx7XTACXIMz0pn8zM8h3w/6Vyj SKIJXGcTmDSjK7gILZ2CXLD8SbRooYjCWy0ZGfX9WEje60Hdf99ht5dbola7m0lV dKp96b5MlzmXWM55SRJnWUUaXbAN+b62Oefv3LvlM0UPrejVjTMs+MyuC8bxarQS +mSrb1YdrvczhBAzxheSbF0CrdQoFbUv5d20p9XlLpEZu6iQ3EnrsyVjJvUrPDlS 5iIo9ag55CE6Z4HRtRZUPcJaNanZGfMpVcSdnqFoO4txFpWncWrqk7x+oj2YkbFW nQsfn6fCm4ydn6Ihksif0WkJrgjqtuVzh3MA0oRIONEqitrfAMd4k1/ZeQ== -----END CERTIFICATE-----Generated at Tue Apr 8 04:21:10 2025 by rpki-client