$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/393/SrYszbGac8vst5VykVXcJX9ZjnA.roa File: SrYszbGac8vst5VykVXcJX9ZjnA.roa (raw, json) Hash identifier: 1RZktvmox+Wejer3aBozllk8YHOR1atp+SQZhM9uesQ= Subject key identifier: 4A:B6:2C:CD:B1:9A:73:CB:EC:B7:95:72:91:55:DC:25:7F:59:8E:70 Certificate issuer: /CN=5D055B2DAAC48878CC9B1127A29CF11666920A23 Certificate serial: 80 Authority key identifier: 5D:05:5B:2D:AA:C4:88:78:CC:9B:11:27:A2:9C:F1:16:66:92:0A:23 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XQVbLarEiHjMmxEnopzxFmaSCiM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/SrYszbGac8vst5VykVXcJX9ZjnA.roa Signing time: Fri 31 Jan 2025 01:34:50 +0000 ROA not before: Fri 31 Jan 2025 01:34:50 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9622 IP address blocks: 203.76.64.0/19 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/XQVbLarEiHjMmxEnopzxFmaSCiM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/XQVbLarEiHjMmxEnopzxFmaSCiM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XQVbLarEiHjMmxEnopzxFmaSCiM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D055B2DAAC48878CC9B1127A29CF11666920A23 Validity Not Before: Jan 31 01:34:50 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=4AB62CCDB19A73CBECB795729155DC257F598E70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ac:f8:db:82:39:01:40:7d:e6:87:36:18:34: b7:b3:86:41:aa:9a:dc:14:0b:47:25:fe:7e:fe:0f: aa:4e:ba:a1:2d:72:2d:11:d2:3b:2b:e2:a3:16:cd: 70:03:6f:bd:f4:cb:91:e5:ab:1d:9f:f0:78:ee:ea: 2f:87:af:55:f3:d1:6e:ac:c6:f0:34:06:9e:98:17: 49:2b:e6:06:41:50:2d:30:75:d3:0d:e5:fd:fe:bd: e3:e5:3b:01:60:a9:bd:11:72:c9:a5:fc:1a:59:fa: e3:27:fd:76:4c:b0:78:c0:10:b1:1b:5e:f0:66:2f: b4:07:5d:5d:5c:d2:25:90:a7:e4:cd:6a:44:59:79: 95:74:68:d5:14:db:87:fb:21:ae:0e:2c:a7:e2:8c: 6c:4c:41:1c:bf:82:46:ad:42:c6:8a:7a:eb:54:0f: 49:27:46:b5:9b:d5:b6:c3:c3:f6:21:e5:8b:30:1e: b1:b1:d6:81:b7:78:ad:a9:ee:6b:dd:11:a3:6d:84: 04:f0:63:55:46:7d:6b:91:9b:30:26:44:06:2a:76: 06:bf:5d:07:eb:9d:0d:54:59:32:20:b1:85:68:c3: 9e:17:d6:d5:19:c4:f3:e3:c0:eb:36:cf:bc:dc:ec: ab:23:48:56:6e:f9:a7:4a:81:e4:b8:5f:ee:ad:fa: f1:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:B6:2C:CD:B1:9A:73:CB:EC:B7:95:72:91:55:DC:25:7F:59:8E:70 X509v3 Authority Key Identifier: keyid:5D:05:5B:2D:AA:C4:88:78:CC:9B:11:27:A2:9C:F1:16:66:92:0A:23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/XQVbLarEiHjMmxEnopzxFmaSCiM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XQVbLarEiHjMmxEnopzxFmaSCiM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/SrYszbGac8vst5VykVXcJX9ZjnA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.76.64.0/19 Signature Algorithm: sha256WithRSAEncryption 63:b5:63:f4:5b:f2:22:da:da:31:be:8d:b2:63:a0:8e:11:54: 53:bd:54:90:fe:37:dd:8b:dc:76:77:8c:17:5f:ea:35:09:04: 9e:73:58:33:b5:3b:c9:7f:ec:b4:39:38:d7:43:a4:37:9d:4c: 35:bf:07:68:41:da:34:0b:92:01:47:da:87:40:f8:73:d0:cc: 12:4e:3a:4d:8e:69:03:fe:74:75:b8:1a:2b:e1:87:20:97:89: 43:7c:aa:8b:35:c2:7b:ff:dc:23:1e:42:6c:77:f2:7b:ec:32: 7f:a3:49:7c:4e:7b:14:1d:41:ba:e2:3d:1a:c7:6e:e9:0f:3f: 75:2b:52:e6:c7:b4:db:0f:92:8b:dc:e8:0a:19:3f:2e:47:80: 6c:6c:b6:6f:d3:0e:f3:71:65:3c:01:be:fb:92:d7:47:af:13: da:43:8b:bc:f5:14:c5:49:f5:9f:b5:8c:7e:27:52:cf:b7:6f: 2b:0c:bd:a0:98:5d:1d:c4:c7:ad:72:41:74:ae:57:42:b5:c8: c1:51:f5:d6:a0:31:37:6c:b5:eb:09:84:24:06:f9:ec:b9:89: 57:24:07:40:92:8e:70:b3:28:e8:49:ee:9c:30:ec:3e:8d:41: 39:35:fe:76:ec:c1:cc:4a:95:1f:da:66:3a:25:9b:45:14:4d: f5:e1:9e:34 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQw NTVCMkRBQUM0ODg3OENDOUIxMTI3QTI5Q0YxMTY2NjkyMEEyMzAeFw0yNTAxMzEw MTM0NTBaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDRBQjYyQ0NEQjE5QTcz Q0JFQ0I3OTU3MjkxNTVEQzI1N0Y1OThFNzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCprPjbgjkBQH3mhzYYNLezhkGqmtwUC0cl/n7+D6pOuqEtci0R 0jsr4qMWzXADb730y5Hlqx2f8Hju6i+Hr1Xz0W6sxvA0Bp6YF0kr5gZBUC0wddMN 5f3+vePlOwFgqb0Rcsml/BpZ+uMn/XZMsHjAELEbXvBmL7QHXV1c0iWQp+TNakRZ eZV0aNUU24f7Ia4OLKfijGxMQRy/gkatQsaKeutUD0knRrWb1bbDw/Yh5YswHrGx 1oG3eK2p7mvdEaNthATwY1VGfWuRmzAmRAYqdga/XQfrnQ1UWTIgsYVow54X1tUZ xPPjwOs2z7zc7KsjSFZu+adKgeS4X+6t+vFnAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUSrYszbGac8vst5VykVXcJX9ZjnAwHwYDVR0jBBgwFoAUXQVbLarEiHjMmxEn opzxFmaSCiMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5My9YUVZiTGFyRWlIak1teEVub3B6eEZtYVNDaU0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9YUVZiTGFyRWlIak1teEVub3B6eEZt YVNDaU0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzkzL1NyWXN6YkdhYzh2c3Q1VnlrVlhjSlg5WmpuQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXLTEAwDQYJKoZIhvcNAQELBQADggEBAGO1Y/Rb8iLa2jG+jbJjoI4RVFO9 VJD+N92L3HZ3jBdf6jUJBJ5zWDO1O8l/7LQ5ONdDpDedTDW/B2hB2jQLkgFH2odA +HPQzBJOOk2OaQP+dHW4GivhhyCXiUN8qos1wnv/3CMeQmx38nvsMn+jSXxOexQd QbriPRrHbukPP3UrUubHtNsPkovc6AoZPy5HgGxstm/TDvNxZTwBvvuS10evE9pD i7z1FMVJ9Z+1jH4nUs+3bysMvaCYXR3Ex61yQXSuV0K1yMFR9dagMTdstesJhCQG +ey5iVckB0CSjnCzKOhJ7pww7D6NQTk1/nbswcxKlR/aZjolm0UUTfXhnjQ= -----END CERTIFICATE-----Generated at Sun Apr 6 23:46:45 2025 by rpki-client