$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/373/z1NbXcrbXZsJySLxJwdCEQvvC94.roa File: z1NbXcrbXZsJySLxJwdCEQvvC94.roa (raw, json) Hash identifier: U3R/2QLhgGanBGn34da5cL1pPYWiwhfMnJx78gSnpxw= Subject key identifier: CF:53:5B:5D:CA:DB:5D:9B:09:C9:22:F1:27:07:42:11:0B:EF:0B:DE Certificate issuer: /CN=89CF5C2AFA5B576577351C4199018D44CDC2D6DA Certificate serial: 33 Authority key identifier: 89:CF:5C:2A:FA:5B:57:65:77:35:1C:41:99:01:8D:44:CD:C2:D6:DA Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ic9cKvpbV2V3NRxBmQGNRM3C1to.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/373/z1NbXcrbXZsJySLxJwdCEQvvC94.roa Signing time: Sun 30 Jun 2024 01:32:32 +0000 ROA not before: Sun 30 Jun 2024 01:32:32 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9615 IP address blocks: 202.53.112.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/373/ic9cKvpbV2V3NRxBmQGNRM3C1to.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/373/ic9cKvpbV2V3NRxBmQGNRM3C1to.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ic9cKvpbV2V3NRxBmQGNRM3C1to.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89CF5C2AFA5B576577351C4199018D44CDC2D6DA Validity Not Before: Jun 30 01:32:32 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=CF535B5DCADB5D9B09C922F1270742110BEF0BDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:0b:8d:24:51:56:b6:da:8f:b5:e7:09:dd:76: f9:b5:03:80:7b:d6:21:5e:7d:9d:b1:e7:51:fa:de: 78:ad:45:48:1d:16:38:03:12:d1:2e:20:d8:e2:7f: a1:97:3c:61:48:af:68:ff:b1:88:3c:ae:3f:cb:5b: 49:19:a1:3d:49:85:a5:b4:d4:63:ca:a5:5c:15:c4: 06:b8:f0:07:a9:6e:eb:a4:49:0c:49:9b:e6:75:81: ec:f8:f0:df:37:f0:58:56:dd:97:af:34:2d:6e:04: 23:b6:5a:1c:8e:7f:7a:14:2f:ec:04:0e:fc:08:70: c6:f9:ba:bd:8b:f4:7c:d6:c9:92:c4:14:3d:9c:03: 27:ab:e5:a7:7c:50:f7:72:b5:ba:9a:3f:32:78:c1: bd:7c:eb:8a:50:61:e9:03:eb:07:f0:73:5a:e8:f6: ca:2e:6c:cd:a0:ce:9c:f2:9d:a4:b7:b3:bb:dd:d9: 24:75:d1:6e:b2:8a:7b:c7:73:80:0d:f5:e3:5f:73: 17:d6:22:47:d2:31:7c:32:b6:7f:5a:c0:24:39:51: 11:12:ae:90:68:fe:4c:6a:60:0c:54:68:25:dc:ae: 0d:23:68:17:8d:5f:3b:80:3c:21:38:46:b2:c6:cc: 22:20:d4:95:5d:b4:f6:7e:a7:4b:c5:b1:0d:88:1a: 41:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:53:5B:5D:CA:DB:5D:9B:09:C9:22:F1:27:07:42:11:0B:EF:0B:DE X509v3 Authority Key Identifier: keyid:89:CF:5C:2A:FA:5B:57:65:77:35:1C:41:99:01:8D:44:CD:C2:D6:DA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/373/ic9cKvpbV2V3NRxBmQGNRM3C1to.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ic9cKvpbV2V3NRxBmQGNRM3C1to.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/373/z1NbXcrbXZsJySLxJwdCEQvvC94.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.53.112.0/20 Signature Algorithm: sha256WithRSAEncryption 33:fc:51:dd:78:44:17:e5:88:b9:60:25:26:a4:52:54:40:c6: 2e:07:eb:d0:55:d1:6e:39:b3:4c:0d:12:c2:be:14:1e:83:89: a7:81:ed:f3:c4:f6:46:b6:ab:b2:70:04:67:ff:65:cf:ee:05: d8:af:64:dc:6f:a8:08:4d:76:10:04:82:51:f6:8d:1d:8e:e6: 3d:28:a3:12:7c:a7:8b:9f:3b:3e:45:de:10:6d:e2:f8:bd:5e: e5:fd:d1:60:11:9f:ab:9a:51:b1:43:85:8e:97:2a:17:51:89: 78:c6:97:2f:59:62:74:3e:04:a9:7b:a6:f1:2c:00:a2:c6:6b: 29:e4:10:45:c9:62:6a:ed:7e:24:64:4c:b6:f3:95:3b:fe:16: fd:dc:d6:fd:5a:dd:22:be:bd:cc:dc:8e:e9:6c:84:59:a4:31: bd:62:3b:e4:e9:e6:a7:a8:8d:a9:48:a4:f4:dd:28:52:7e:a5: c5:3c:b0:56:cc:c8:09:23:c2:c7:c7:d8:27:ef:98:8c:17:c2: 16:c7:0d:b0:be:78:f8:32:f6:3d:c9:43:04:a9:e0:f1:0d:d6: 64:58:ec:a6:6a:99:b1:b9:94:6a:62:ab:c7:a5:a3:53:8f:d3: 36:9e:9b:4e:5b:68:19:1d:45:ee:ee:49:f5:da:8f:7e:d3:69: dd:0f:0e:bb -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBMzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4OUNG NUMyQUZBNUI1NzY1NzczNTFDNDE5OTAxOEQ0NENEQzJENkRBMB4XDTI0MDYzMDAx MzIzMloXDTI1MDYyNDEwNDY0NVowMzExMC8GA1UEAxMoQ0Y1MzVCNURDQURCNUQ5 QjA5QzkyMkYxMjcwNzQyMTEwQkVGMEJERTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAM0LjSRRVrbaj7XnCd12+bUDgHvWIV59nbHnUfreeK1FSB0WOAMS 0S4g2OJ/oZc8YUivaP+xiDyuP8tbSRmhPUmFpbTUY8qlXBXEBrjwB6lu66RJDEmb 5nWB7Pjw3zfwWFbdl680LW4EI7ZaHI5/ehQv7AQO/Ahwxvm6vYv0fNbJksQUPZwD J6vlp3xQ93K1upo/MnjBvXzrilBh6QPrB/BzWuj2yi5szaDOnPKdpLezu93ZJHXR brKKe8dzgA31419zF9YiR9IxfDK2f1rAJDlRERKukGj+TGpgDFRoJdyuDSNoF41f O4A8IThGssbMIiDUlV209n6nS8WxDYgaQXMCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTPU1tdyttdmwnJIvEnB0IRC+8L3jAfBgNVHSMEGDAWgBSJz1wq+ltXZXc1HEGZ AY1EzcLW2jAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzczL2ljOWNLdnBiVjJWM05SeEJtUUdOUk0zQzF0by5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2ljOWNLdnBiVjJWM05SeEJtUUdOUk0z QzF0by5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8zNzMvejFOYlhjcmJYWnNKeVNMeEp3ZENFUXZ2Qzk0LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBMo1cDANBgkqhkiG9w0BAQsFAAOCAQEAM/xR3XhEF+WIuWAlJqRSVEDGLgfr 0FXRbjmzTA0Swr4UHoOJp4Ht88T2RrarsnAEZ/9lz+4F2K9k3G+oCE12EASCUfaN HY7mPSijEnyni587PkXeEG3i+L1e5f3RYBGfq5pRsUOFjpcqF1GJeMaXL1lidD4E qXum8SwAosZrKeQQRcliau1+JGRMtvOVO/4W/dzW/VrdIr69zNyO6WyEWaQxvWI7 5Onmp6iNqUik9N0oUn6lxTywVszICSPCx8fYJ++YjBfCFscNsL54+DL2PclDBKng 8Q3WZFjspmqZsbmUamKrx6WjU4/TNp6bTltoGR1F7u5J9dqPftNp3Q8Ouw== -----END CERTIFICATE-----Generated at Sat Apr 5 17:47:48 2025 by rpki-client