$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/EGppQ_1GrPNtz6QObz9YXg5OHSI.roa File: EGppQ_1GrPNtz6QObz9YXg5OHSI.roa (raw, json) Hash identifier: 4Y6A7h7wYpooDIQL3HC1FQJI+D5MEJmb/8aOZ4JyMxw= Subject key identifier: 10:6A:69:43:FD:46:AC:F3:6D:CF:A4:0E:6F:3F:58:5E:0E:4E:1D:22 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0341 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/EGppQ_1GrPNtz6QObz9YXg5OHSI.roa Signing time: Thu 23 Jan 2025 01:10:44 +0000 ROA not before: Thu 23 Jan 2025 01:10:44 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 10013 IP address blocks: 180.131.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 12:49:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 833 (0x341) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Jan 23 01:10:44 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=106A6943FD46ACF36DCFA40E6F3F585E0E4E1D22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f4:5f:41:be:d9:de:00:aa:bb:b4:bd:bd:78: 86:a9:7d:8e:0c:c6:26:e3:4f:2a:9e:87:12:50:48: df:da:2a:6d:bd:bb:39:b2:9e:d1:59:41:15:67:ff: 1c:53:cf:4c:e8:13:fb:37:09:66:4d:94:f1:6c:a1: f8:63:df:c5:95:08:90:96:06:86:4a:80:ce:5d:49: 16:ab:91:46:5f:c5:0e:a7:d2:8f:68:e1:ce:98:f0: d0:3a:71:ed:90:93:37:fd:10:33:f0:74:09:f7:b9: e8:f8:2b:9c:39:ae:cf:23:04:3d:f7:56:58:1c:df: e1:01:c4:d1:00:eb:db:e9:64:f1:c8:8e:4c:09:bf: fd:ad:c2:32:9a:ef:ab:6f:46:60:6e:c2:55:f9:63: 03:6c:28:9b:02:d5:af:dc:d2:cf:0a:9a:ba:62:9b: 93:12:92:70:c5:1c:ec:0b:cb:4a:f5:22:cf:23:81: 3e:d6:37:7b:4c:04:eb:43:e6:a2:be:4a:56:c5:2e: aa:0d:02:05:3a:71:8e:3d:85:da:44:85:7a:0b:c4: 7f:b0:83:91:7c:be:29:a0:6b:b8:71:39:89:8a:66: 2d:8e:44:06:dc:af:89:ca:e1:9a:c9:e4:8a:85:49: 56:f5:42:36:58:72:0b:9c:63:5a:25:a1:41:dd:0e: 4c:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:6A:69:43:FD:46:AC:F3:6D:CF:A4:0E:6F:3F:58:5E:0E:4E:1D:22 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/EGppQ_1GrPNtz6QObz9YXg5OHSI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.131.111.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:0b:bd:be:0d:a9:a5:ec:0e:32:09:7b:3d:d8:f4:eb:c0:86: 4a:1a:ab:fe:4b:1a:44:f8:ce:1e:b5:ea:60:2e:b9:f9:41:d6: a9:e5:d6:12:d2:64:27:91:e2:e6:6e:a7:6e:c8:be:d9:6b:6d: 4c:a1:57:09:7e:74:59:c3:77:ec:98:18:85:4d:0f:0f:eb:41: 01:39:77:95:f2:9b:f4:33:85:8a:a5:0c:e4:5e:42:7b:e5:46: 24:7d:de:0d:49:bf:2d:de:14:a5:1d:a3:ea:0f:c5:ec:17:c2: d0:6a:ce:8b:94:fc:2c:d3:72:6d:6a:da:02:6d:37:cc:71:79: bf:76:db:3d:cf:c3:25:90:15:4a:df:5d:5c:95:d5:d3:53:4b: 3d:11:a3:ad:1b:9b:d3:a4:a5:10:2c:fe:8e:ae:a6:52:a4:62: 39:f3:bd:c5:ad:52:ca:6b:fd:74:fb:13:b7:04:ea:0e:a0:a0: 6d:44:75:e7:9e:73:9d:02:84:3c:d5:25:39:a3:8a:5e:1a:05: d1:f7:02:7d:0a:27:9c:14:79:94:7d:04:f5:45:0b:2a:11:b3: da:e9:64:f1:3e:ca:eb:a0:92:06:78:a8:ee:1f:f6:5c:18:3b: a7:7c:50:09:d1:bb:f0:8d:d8:26:b7:f8:09:85:65:40:18:58: f0:dc:df:56 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA0EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTAxMjMw MTEwNDRaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDEwNkE2OTQzRkQ0NkFD RjM2RENGQTQwRTZGM0Y1ODVFMEU0RTFEMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC69F9BvtneAKq7tL29eIapfY4MxibjTyqehxJQSN/aKm29uzmy ntFZQRVn/xxTz0zoE/s3CWZNlPFsofhj38WVCJCWBoZKgM5dSRarkUZfxQ6n0o9o 4c6Y8NA6ce2Qkzf9EDPwdAn3uej4K5w5rs8jBD33Vlgc3+EBxNEA69vpZPHIjkwJ v/2twjKa76tvRmBuwlX5YwNsKJsC1a/c0s8Kmrpim5MSknDFHOwLy0r1Is8jgT7W N3tMBOtD5qK+SlbFLqoNAgU6cY49hdpEhXoLxH+wg5F8vimga7hxOYmKZi2ORAbc r4nK4ZrJ5IqFSVb1QjZYcgucY1oloUHdDkxjAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUEGppQ/1GrPNtz6QObz9YXg5OHSIwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L0VHcHBRXzFHclBOdHo2UU9iejlZWGc1T0hTSS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAC0g28wDQYJKoZIhvcNAQELBQADggEBAJoLvb4NqaXsDjIJez3Y9OvAhkoa q/5LGkT4zh616mAuuflB1qnl1hLSZCeR4uZup27IvtlrbUyhVwl+dFnDd+yYGIVN Dw/rQQE5d5Xym/QzhYqlDOReQnvlRiR93g1Jvy3eFKUdo+oPxewXwtBqzouU/CzT cm1q2gJtN8xxeb922z3PwyWQFUrfXVyV1dNTSz0Ro60bm9OkpRAs/o6uplKkYjnz vcWtUspr/XT7E7cE6g6goG1Edeeec50ChDzVJTmjil4aBdH3An0KJ5wUeZR9BPVF CyoRs9rpZPE+yuugkgZ4qO4f9lwYO6d8UAnRu/CN2Ca3+AmFZUAYWPDc31Y= -----END CERTIFICATE-----Generated at Thu Apr 17 15:13:15 2025 by rpki-client