$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/393/iC4M3dKS5POnmHpCNUTOY-HI6is.roa File: iC4M3dKS5POnmHpCNUTOY-HI6is.roa (raw, json) Hash identifier: xmmXqH6fzx6MbIvxOOvys3lOVPyLjq6O7st2fcGvJOI= Subject key identifier: 88:2E:0C:DD:D2:92:E4:F3:A7:98:7A:42:35:44:CE:63:E1:C8:EA:2B Certificate issuer: /CN=5D055B2DAAC48878CC9B1127A29CF11666920A23 Certificate serial: 7A Authority key identifier: 5D:05:5B:2D:AA:C4:88:78:CC:9B:11:27:A2:9C:F1:16:66:92:0A:23 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XQVbLarEiHjMmxEnopzxFmaSCiM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/iC4M3dKS5POnmHpCNUTOY-HI6is.roa Signing time: Fri 31 Jan 2025 01:34:47 +0000 ROA not before: Fri 31 Jan 2025 01:34:47 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9622 IP address blocks: 202.52.16.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/XQVbLarEiHjMmxEnopzxFmaSCiM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/XQVbLarEiHjMmxEnopzxFmaSCiM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XQVbLarEiHjMmxEnopzxFmaSCiM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D055B2DAAC48878CC9B1127A29CF11666920A23 Validity Not Before: Jan 31 01:34:47 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=882E0CDDD292E4F3A7987A423544CE63E1C8EA2B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:2a:c6:c0:de:c9:cb:3f:b2:d5:18:a8:82:97: 94:32:03:8e:a2:7b:9d:45:9c:f1:06:77:8f:1c:6c: 56:3f:c7:d0:ae:36:d7:0f:49:ed:da:8c:8f:8b:9f: 8d:30:06:ae:44:7f:c9:96:d7:0d:c5:32:ff:0c:ff: 07:67:2b:ae:bf:62:83:ac:5c:07:c6:4f:90:90:0e: 8a:b9:c9:89:72:1f:c9:69:e0:64:2f:27:f1:2f:6f: 6b:27:1a:68:3a:48:52:b0:f6:07:44:4e:c4:3d:be: 38:a7:cd:98:b3:09:5e:2e:8e:40:71:e2:35:a0:ce: 47:d8:63:2b:e1:b3:4d:fc:a7:17:90:68:3d:64:77: 82:53:0d:cb:62:c9:cb:89:62:c6:7a:ba:89:84:f2: 63:02:05:3b:4c:64:ab:45:a8:76:7c:38:1b:75:d3: 12:7e:75:e2:d5:2f:96:0a:84:a9:ad:68:ee:a6:52: ce:07:93:50:0f:63:8a:e5:0f:9a:86:71:90:65:9a: 8f:b2:8e:6b:18:26:91:97:c5:d4:e0:20:84:b0:3d: f9:83:ff:85:71:5e:8a:7d:28:96:b5:d3:2e:82:88: 60:ef:1c:80:ec:fc:2d:b7:6f:da:da:91:ec:e9:1c: b5:52:5c:d6:db:c5:a7:fd:39:1c:4e:27:33:d8:e9: 1e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:2E:0C:DD:D2:92:E4:F3:A7:98:7A:42:35:44:CE:63:E1:C8:EA:2B X509v3 Authority Key Identifier: keyid:5D:05:5B:2D:AA:C4:88:78:CC:9B:11:27:A2:9C:F1:16:66:92:0A:23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/XQVbLarEiHjMmxEnopzxFmaSCiM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XQVbLarEiHjMmxEnopzxFmaSCiM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/iC4M3dKS5POnmHpCNUTOY-HI6is.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.52.16.0/20 Signature Algorithm: sha256WithRSAEncryption 97:0a:64:9a:b3:24:8c:33:43:fe:2f:15:e2:3e:4b:51:98:11: 18:71:d5:bb:f8:70:7e:5f:a5:e4:23:2f:98:35:91:c4:73:36: 2c:b0:ea:c1:b7:94:b8:65:ea:fb:51:94:14:5f:3d:44:a2:cf: 13:22:40:c6:68:06:f1:d2:e4:e5:11:dd:4e:ee:0e:85:a9:17: d2:b5:f6:60:bc:13:42:37:05:e8:7a:8c:19:ac:42:2f:a3:ab: 40:ad:0b:81:36:92:11:5f:ee:ab:97:e8:68:82:5c:ca:a6:ea: 18:c2:74:77:7b:6a:65:f1:c6:0f:fb:b3:86:ea:bc:48:39:65: e3:a3:66:e7:3b:cf:df:d4:43:8c:55:81:fb:37:4a:79:53:2d: 7c:cb:27:fc:f6:c5:d5:c1:bd:9e:29:40:c7:a9:30:7d:6c:99: 05:bb:7b:dc:87:0f:92:84:ef:36:a3:e8:2b:34:46:9a:a4:03: 11:55:b8:69:af:59:6d:c8:08:93:cb:cf:ca:dc:cf:8d:53:88: 8c:46:3e:03:eb:77:0c:ec:b3:6e:f2:c3:49:64:bb:6c:79:c4: a9:2a:36:44:a0:7b:4f:90:98:12:24:fa:2c:41:b0:eb:c9:4e: fc:7e:d5:81:b0:01:0d:81:47:3c:90:3d:32:0c:ce:74:dc:45: 5f:a4:4c:f3 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBejANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1RDA1 NUIyREFBQzQ4ODc4Q0M5QjExMjdBMjlDRjExNjY2OTIwQTIzMB4XDTI1MDEzMTAx MzQ0N1oXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoODgyRTBDREREMjkyRTRG M0E3OTg3QTQyMzU0NENFNjNFMUM4RUEyQjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMkqxsDeycs/stUYqIKXlDIDjqJ7nUWc8QZ3jxxsVj/H0K421w9J 7dqMj4ufjTAGrkR/yZbXDcUy/wz/B2crrr9ig6xcB8ZPkJAOirnJiXIfyWngZC8n 8S9vaycaaDpIUrD2B0ROxD2+OKfNmLMJXi6OQHHiNaDOR9hjK+GzTfynF5BoPWR3 glMNy2LJy4lixnq6iYTyYwIFO0xkq0Wodnw4G3XTEn514tUvlgqEqa1o7qZSzgeT UA9jiuUPmoZxkGWaj7KOaxgmkZfF1OAghLA9+YP/hXFein0olrXTLoKIYO8cgOz8 Lbdv2tqR7OkctVJc1tvFp/05HE4nM9jpHnUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSILgzd0pLk86eYekI1RM5j4cjqKzAfBgNVHSMEGDAWgBRdBVstqsSIeMybESei nPEWZpIKIzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzkzL1hRVmJMYXJFaUhqTW14RW5vcHp4Rm1hU0NpTS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1hRVmJMYXJFaUhqTW14RW5vcHp4Rm1h U0NpTS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8zOTMvaUM0TTNkS1M1UE9ubUhwQ05VVE9ZLUhJNmlzLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBMo0EDANBgkqhkiG9w0BAQsFAAOCAQEAlwpkmrMkjDND/i8V4j5LUZgRGHHV u/hwfl+l5CMvmDWRxHM2LLDqwbeUuGXq+1GUFF89RKLPEyJAxmgG8dLk5RHdTu4O hakX0rX2YLwTQjcF6HqMGaxCL6OrQK0LgTaSEV/uq5foaIJcyqbqGMJ0d3tqZfHG D/uzhuq8SDll46Nm5zvP39RDjFWB+zdKeVMtfMsn/PbF1cG9nilAx6kwfWyZBbt7 3IcPkoTvNqPoKzRGmqQDEVW4aa9ZbcgIk8vPytzPjVOIjEY+A+t3DOyzbvLDSWS7 bHnEqSo2RKB7T5CYEiT6LEGw68lO/H7VgbABDYFHPJA9MgzOdNxFX6RM8w== -----END CERTIFICATE-----Generated at Sun Apr 6 19:59:32 2025 by rpki-client