$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/0MQPbpQ_nzDXM01Z7LVq8HC2BMo.roa File: 0MQPbpQ_nzDXM01Z7LVq8HC2BMo.roa (raw, json) Hash identifier: 0NDoW0i9FAfNmlIG7HhMAUR7OJeK4U/7N3/lSeiuObg= Subject key identifier: D0:C4:0F:6E:94:3F:9F:30:D7:33:4D:59:EC:B5:6A:F0:70:B6:04:CA Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 02C8 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/0MQPbpQ_nzDXM01Z7LVq8HC2BMo.roa Signing time: Sun 30 Jun 2024 01:32:12 +0000 ROA not before: Sun 30 Jun 2024 01:32:12 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 4686 IP address blocks: 124.255.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 712 (0x2c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Jun 30 01:32:12 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=D0C40F6E943F9F30D7334D59ECB56AF070B604CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ed:59:ec:bd:c6:5e:97:07:3b:3d:9e:6e:d6: 06:8a:90:f8:3c:39:3e:18:4b:6f:d4:ff:7f:ef:f1: 58:e0:b6:70:f0:b4:f0:04:ac:01:73:af:38:27:0a: 54:60:c9:cc:14:17:27:3f:2e:81:67:bb:2e:c8:43: 48:61:fd:47:34:23:b0:0e:02:a0:82:3f:7d:e7:fe: 76:80:26:f5:2a:65:01:5c:44:18:a2:2e:ea:e4:bb: 7f:05:56:b1:c9:1d:55:ff:6f:2f:f1:cb:bf:56:78: 57:e6:fc:83:3a:7a:7c:87:6d:d7:ad:76:c9:87:35: bd:4a:8f:82:88:5d:da:8f:10:e7:ca:2b:f6:ab:0a: 9e:57:b4:3e:dd:63:76:55:48:f4:c6:46:3e:74:70: 90:22:e4:ce:64:04:f7:67:9e:6e:c9:ef:c5:cb:5a: 4c:80:da:a5:2b:d1:87:3e:d9:ec:91:d8:0d:9a:36: 5c:7b:0d:30:9a:68:9b:1b:05:fa:e1:6f:ee:d9:a1: 87:87:3a:98:23:4a:ba:92:29:09:95:e0:bf:b1:62: d3:e2:a9:21:42:b3:07:d0:f4:36:be:93:dd:47:86: 42:9c:8a:19:3c:3b:c3:ee:76:2f:25:60:76:2d:a4: 17:0d:88:8b:cd:93:d3:d6:ce:56:7c:06:eb:65:5d: b9:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:C4:0F:6E:94:3F:9F:30:D7:33:4D:59:EC:B5:6A:F0:70:B6:04:CA X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/0MQPbpQ_nzDXM01Z7LVq8HC2BMo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.255.0.0/19 Signature Algorithm: sha256WithRSAEncryption 34:c4:7d:00:4c:1c:11:6f:69:4e:a4:cd:90:59:6d:6b:ba:2c: b6:d3:10:ff:8d:4e:16:08:3d:36:67:0b:ec:be:b4:8b:9b:1c: f0:c0:ac:89:7e:a8:a7:72:5f:16:31:aa:93:71:73:05:1e:df: 44:91:7a:8a:2b:3b:3e:5b:29:88:b8:68:c1:ec:b1:1a:6b:fd: b0:41:9f:1c:d9:b3:71:c6:d1:1c:87:35:89:ec:7f:65:3d:13: 09:02:41:e9:de:e9:38:19:60:6f:bf:b6:4c:ad:b0:0d:59:7a: 73:d4:96:09:44:42:1f:ac:e7:d3:80:13:12:ca:19:41:3b:d2: d3:22:a9:99:8a:9e:a1:a9:39:89:a2:6d:d4:7e:ac:c9:48:21: e7:23:a8:92:9e:68:4e:25:e0:4d:3a:a8:1c:e4:66:22:9d:cf: f3:b0:24:40:9a:72:15:79:04:d6:78:b6:7f:7e:4f:55:a6:2c: a7:25:e9:d9:48:a3:3b:fa:5b:88:51:1c:bb:38:11:5c:7f:78: 73:bb:23:c7:1c:1f:10:eb:f0:8e:51:ab:ac:83:4c:45:ef:a7: a7:31:c4:b7:29:cc:80:4b:c7:c7:be:89:8f:21:39:5f:ae:4c: cc:9e:2d:89:41:04:30:39:43:74:43:93:00:65:28:1e:77:01: db:a7:42:de -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAsgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNDA2MzAw MTMyMTJaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKEQwQzQwRjZFOTQzRjlG MzBENzMzNEQ1OUVDQjU2QUYwNzBCNjA0Q0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC77VnsvcZelwc7PZ5u1gaKkPg8OT4YS2/U/3/v8VjgtnDwtPAE rAFzrzgnClRgycwUFyc/LoFnuy7IQ0hh/Uc0I7AOAqCCP33n/naAJvUqZQFcRBii Lurku38FVrHJHVX/by/xy79WeFfm/IM6enyHbdetdsmHNb1Kj4KIXdqPEOfKK/ar Cp5XtD7dY3ZVSPTGRj50cJAi5M5kBPdnnm7J78XLWkyA2qUr0Yc+2eyR2A2aNlx7 DTCaaJsbBfrhb+7ZoYeHOpgjSrqSKQmV4L+xYtPiqSFCswfQ9Da+k91HhkKcihk8 O8Pudi8lYHYtpBcNiIvNk9PWzlZ8ButlXblLAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU0MQPbpQ/nzDXM01Z7LVq8HC2BMowHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0LzBNUVBicFFfbnpEWE0wMVo3TFZxOEhDMkJNby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAV8/wAwDQYJKoZIhvcNAQELBQADggEBADTEfQBMHBFvaU6kzZBZbWu6LLbT EP+NThYIPTZnC+y+tIubHPDArIl+qKdyXxYxqpNxcwUe30SReoorOz5bKYi4aMHs sRpr/bBBnxzZs3HG0RyHNYnsf2U9EwkCQene6TgZYG+/tkytsA1ZenPUlglEQh+s 59OAExLKGUE70tMiqZmKnqGpOYmibdR+rMlIIecjqJKeaE4l4E06qBzkZiKdz/Ow JECachV5BNZ4tn9+T1WmLKcl6dlIozv6W4hRHLs4EVx/eHO7I8ccHxDr8I5Rq6yD TEXvp6cxxLcpzIBLx8e+iY8hOV+uTMyeLYlBBDA5Q3RDkwBlKB53AdunQt4= -----END CERTIFICATE-----Generated at Sat Apr 5 17:44:18 2025 by rpki-client