$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/393/vAlXe9yavfvvdNYtUX3ima2nMbs.roa File: vAlXe9yavfvvdNYtUX3ima2nMbs.roa (raw, json) Hash identifier: ZfweC7/H3fA23TJlj7k2Re4mwzV6DrnUpJxLNy1JP3I= Subject key identifier: BC:09:57:7B:DC:9A:BD:FB:EF:74:D6:2D:51:7D:E2:99:AD:A7:31:BB Certificate issuer: /CN=5D055B2DAAC48878CC9B1127A29CF11666920A23 Certificate serial: 7E Authority key identifier: 5D:05:5B:2D:AA:C4:88:78:CC:9B:11:27:A2:9C:F1:16:66:92:0A:23 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XQVbLarEiHjMmxEnopzxFmaSCiM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/vAlXe9yavfvvdNYtUX3ima2nMbs.roa Signing time: Fri 31 Jan 2025 01:34:49 +0000 ROA not before: Fri 31 Jan 2025 01:34:49 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9622 IP address blocks: 203.191.208.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/XQVbLarEiHjMmxEnopzxFmaSCiM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/XQVbLarEiHjMmxEnopzxFmaSCiM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XQVbLarEiHjMmxEnopzxFmaSCiM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D055B2DAAC48878CC9B1127A29CF11666920A23 Validity Not Before: Jan 31 01:34:49 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=BC09577BDC9ABDFBEF74D62D517DE299ADA731BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:84:28:29:27:1f:eb:90:27:1c:13:b5:2a:26: d6:f0:ee:bb:db:90:71:98:d8:02:3b:7e:ae:5b:06: c5:44:f1:d5:4e:9d:25:68:f9:a3:b1:c3:2f:cd:19: 91:3a:82:80:24:cb:35:60:a2:87:48:34:ae:63:31: 6f:6b:85:c7:62:90:c0:c1:f0:80:01:1e:c7:6c:cc: c9:3d:1b:e3:c2:e2:3e:6b:9d:4b:12:72:78:be:62: 53:79:37:e7:dd:88:fc:e9:3e:e7:b8:6b:16:a3:02: c4:9b:36:23:01:cf:0e:11:f8:84:d8:2c:44:13:5f: 59:f2:91:16:1c:31:73:e6:5d:c7:95:2b:ed:24:c7: 9b:42:79:71:7b:78:c6:52:a4:c6:79:41:e2:5d:80: 98:af:a4:d9:10:9b:53:c7:22:c6:c9:0e:a6:64:4c: bc:d4:75:52:fd:29:0a:94:07:49:da:a7:87:0e:8b: cb:57:b8:75:f1:ab:a8:b9:4a:8c:e8:49:1d:e5:33: 85:e1:47:f9:74:49:15:71:e2:0c:8a:39:cb:a5:98: 45:4f:7b:79:91:fd:fb:8c:35:3d:e1:56:8c:ad:bc: a0:e1:ec:11:95:fa:96:a9:23:1d:14:30:b2:55:bc: 52:c6:7f:1f:99:89:7b:b3:9f:13:45:d3:8e:be:ab: b9:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:09:57:7B:DC:9A:BD:FB:EF:74:D6:2D:51:7D:E2:99:AD:A7:31:BB X509v3 Authority Key Identifier: keyid:5D:05:5B:2D:AA:C4:88:78:CC:9B:11:27:A2:9C:F1:16:66:92:0A:23 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/XQVbLarEiHjMmxEnopzxFmaSCiM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XQVbLarEiHjMmxEnopzxFmaSCiM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/vAlXe9yavfvvdNYtUX3ima2nMbs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.191.208.0/20 Signature Algorithm: sha256WithRSAEncryption 79:ee:86:46:f7:0f:70:2e:68:95:4c:a5:ca:c3:5c:ec:60:a7: c2:53:b7:2c:3a:bd:eb:9d:07:85:d4:b8:84:fd:9d:12:e1:df: df:6b:cc:3e:1f:62:0f:64:fd:55:98:c8:99:20:96:f4:f4:be: 8a:8f:43:c5:18:a9:87:5b:d8:49:2f:18:cb:23:46:70:d9:f6: a0:d8:b1:a3:b6:d8:10:9a:cd:3c:90:ee:18:d5:f3:2b:9f:03: 94:89:bb:59:03:cb:d0:61:6a:a0:40:c4:3f:37:f1:d0:62:8c: 29:c3:99:ab:55:b6:bd:4d:90:91:72:4e:bc:80:90:8e:18:10: e8:9f:90:bf:44:dd:b5:29:ef:38:2e:ec:49:a3:a6:b2:63:a0: 66:b3:96:45:64:7b:fd:d9:4c:fe:a0:b1:7a:a4:ad:15:27:c8: 3a:38:a9:d3:eb:13:fb:ff:05:76:17:0c:49:45:a0:fc:cc:98: 15:ae:a0:26:7a:3c:9f:80:79:7b:e8:2d:c6:61:d3:b4:5c:e6: 46:1e:aa:9d:90:11:49:2b:5f:6c:f8:24:34:be:67:e7:e6:71: b7:a5:44:3b:7e:cb:54:03:95:66:b8:6a:2d:0f:e7:3d:28:b4: 97:96:58:3f:b8:ac:3c:f0:a3:cd:fe:ba:00:ea:ec:4f:f2:fd: 8b:cb:59:5d -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBfjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1RDA1 NUIyREFBQzQ4ODc4Q0M5QjExMjdBMjlDRjExNjY2OTIwQTIzMB4XDTI1MDEzMTAx MzQ0OVoXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoQkMwOTU3N0JEQzlBQkRG QkVGNzRENjJENTE3REUyOTlBREE3MzFCQjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANuEKCknH+uQJxwTtSom1vDuu9uQcZjYAjt+rlsGxUTx1U6dJWj5 o7HDL80ZkTqCgCTLNWCih0g0rmMxb2uFx2KQwMHwgAEex2zMyT0b48LiPmudSxJy eL5iU3k3592I/Ok+57hrFqMCxJs2IwHPDhH4hNgsRBNfWfKRFhwxc+Zdx5Ur7STH m0J5cXt4xlKkxnlB4l2AmK+k2RCbU8cixskOpmRMvNR1Uv0pCpQHSdqnhw6Ly1e4 dfGrqLlKjOhJHeUzheFH+XRJFXHiDIo5y6WYRU97eZH9+4w1PeFWjK28oOHsEZX6 lqkjHRQwslW8UsZ/H5mJe7OfE0XTjr6ruQECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBS8CVd73Jq9++901i1RfeKZracxuzAfBgNVHSMEGDAWgBRdBVstqsSIeMybESei nPEWZpIKIzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzkzL1hRVmJMYXJFaUhqTW14RW5vcHp4Rm1hU0NpTS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1hRVmJMYXJFaUhqTW14RW5vcHp4Rm1h U0NpTS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8zOTMvdkFsWGU5eWF2ZnZ2ZE5ZdFVYM2ltYTJuTWJzLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBMu/0DANBgkqhkiG9w0BAQsFAAOCAQEAee6GRvcPcC5olUylysNc7GCnwlO3 LDq9650HhdS4hP2dEuHf32vMPh9iD2T9VZjImSCW9PS+io9DxRiph1vYSS8YyyNG cNn2oNixo7bYEJrNPJDuGNXzK58DlIm7WQPL0GFqoEDEPzfx0GKMKcOZq1W2vU2Q kXJOvICQjhgQ6J+Qv0TdtSnvOC7sSaOmsmOgZrOWRWR7/dlM/qCxeqStFSfIOjip 0+sT+/8FdhcMSUWg/MyYFa6gJno8n4B5e+gtxmHTtFzmRh6qnZARSStfbPgkNL5n 5+Zxt6VEO37LVAOVZrhqLQ/nPSi0l5ZYP7isPPCjzf66AOrsT/L9i8tZXQ== -----END CERTIFICATE-----Generated at Sun Apr 6 20:01:34 2025 by rpki-client