$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/440/XfKFELc2G_KIU56EedI0MDFTsx4.roa File: XfKFELc2G_KIU56EedI0MDFTsx4.roa (raw, json) Hash identifier: /R7AJ1Ctv42+HgzneIrNEGfsH04OVkb5ud2krwo5+NQ= Subject key identifier: 5D:F2:85:10:B7:36:1B:F2:88:53:9E:84:79:D2:34:30:31:53:B3:1E Certificate issuer: /CN=E62338DE332C6F4B9E2596EE5DC379A25EFE58CF Certificate serial: 68 Authority key identifier: E6:23:38:DE:33:2C:6F:4B:9E:25:96:EE:5D:C3:79:A2:5E:FE:58:CF Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5iM43jMsb0ueJZbuXcN5ol7-WM8.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/XfKFELc2G_KIU56EedI0MDFTsx4.roa Signing time: Sat 30 Nov 2024 01:31:45 +0000 ROA not before: Sat 30 Nov 2024 01:31:45 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 17676 IP address blocks: 61.215.192.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/5iM43jMsb0ueJZbuXcN5ol7-WM8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/5iM43jMsb0ueJZbuXcN5ol7-WM8.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5iM43jMsb0ueJZbuXcN5ol7-WM8.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E62338DE332C6F4B9E2596EE5DC379A25EFE58CF Validity Not Before: Nov 30 01:31:45 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=5DF28510B7361BF288539E8479D234303153B31E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:31:e1:e6:6a:da:68:fe:18:9c:c7:42:0d:1b: e8:73:e8:f8:18:2d:eb:f0:ea:0f:63:44:20:76:97: f1:3b:af:b0:41:e4:af:e2:33:10:f9:19:3b:0e:c4: ae:39:e0:e1:e7:21:14:0c:e1:c3:64:06:b8:07:86: f0:1c:d3:12:f7:b2:90:97:fd:e0:12:07:52:71:0b: 3d:05:d9:d4:d3:be:80:69:99:92:c6:43:41:61:8f: 0e:d7:b3:21:46:ab:95:6b:f6:32:16:b5:82:f2:12: e4:f5:28:7f:35:ce:41:af:80:2e:17:85:a4:64:e3: 35:48:96:db:6b:06:f8:28:63:95:e2:20:53:24:3d: e9:e6:c4:b0:3b:a6:83:21:6c:33:07:54:fa:c9:fc: 3a:e6:51:f8:26:54:5b:81:88:58:6c:58:24:8b:6f: c0:89:98:83:85:ad:31:6b:eb:96:da:8a:bf:90:d6: 30:46:64:8e:a3:fe:38:33:07:31:22:bf:7c:5f:d0: 37:db:ba:46:e9:53:fc:5d:79:fb:e3:02:ae:73:c8: a4:11:c0:3f:15:b8:9d:2e:2b:d5:e2:80:95:19:b4: 6a:ce:51:1c:80:7a:46:97:c2:f7:1f:c4:5d:b6:63: 3b:dc:50:ab:6e:f6:98:1e:fd:fe:75:88:a5:9a:ba: 31:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:F2:85:10:B7:36:1B:F2:88:53:9E:84:79:D2:34:30:31:53:B3:1E X509v3 Authority Key Identifier: keyid:E6:23:38:DE:33:2C:6F:4B:9E:25:96:EE:5D:C3:79:A2:5E:FE:58:CF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/5iM43jMsb0ueJZbuXcN5ol7-WM8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5iM43jMsb0ueJZbuXcN5ol7-WM8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/XfKFELc2G_KIU56EedI0MDFTsx4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.215.192.0/20 Signature Algorithm: sha256WithRSAEncryption 98:ce:f3:eb:1d:80:34:42:a2:2e:ec:05:d2:74:6d:5d:31:d5: 41:7e:d0:ff:ff:a1:9f:7f:22:57:b0:62:a4:72:11:bb:1b:12: d9:cb:f3:76:d8:ed:94:65:43:44:58:c8:5b:d2:c6:b3:25:89: 5d:cd:6d:7d:b5:ac:2e:70:6b:c4:b0:a4:24:09:44:48:58:61: 78:cb:44:39:96:a7:3d:01:c3:7e:da:a0:9d:7a:6a:b1:38:53: 92:48:8c:02:00:8f:12:b3:fa:0b:d3:ba:5a:cc:d4:8a:56:e8: 32:bc:17:8c:2b:ee:7f:1e:90:55:5a:9d:ef:5b:7f:09:6a:1e: b7:c0:b9:4a:26:05:5d:cd:30:50:db:13:d1:14:5f:23:84:66: 18:f8:d7:35:05:f5:c9:35:67:1a:ef:a9:cd:db:01:d6:fd:13: 0c:e6:f6:82:f3:39:b4:74:85:ed:24:25:69:cf:87:fb:9d:19: b2:30:c2:16:2a:5a:6d:49:6b:29:1c:b9:31:b1:fa:80:16:86: 40:0e:24:ea:c7:d9:e5:ea:89:68:f3:65:e8:2b:41:39:f5:d9: 0f:5e:0e:20:85:c8:e4:7b:03:b1:79:5a:46:b6:4b:f8:75:96: 4c:16:d5:6f:cb:d5:98:47:a4:c7:d0:eb:18:d7:1d:7f:43:38: 9a:26:d9:d1 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBaDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhFNjIz MzhERTMzMkM2RjRCOUUyNTk2RUU1REMzNzlBMjVFRkU1OENGMB4XDTI0MTEzMDAx MzE0NVoXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoNURGMjg1MTBCNzM2MUJG Mjg4NTM5RTg0NzlEMjM0MzAzMTUzQjMxRTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKwx4eZq2mj+GJzHQg0b6HPo+Bgt6/DqD2NEIHaX8TuvsEHkr+Iz EPkZOw7Erjng4echFAzhw2QGuAeG8BzTEveykJf94BIHUnELPQXZ1NO+gGmZksZD QWGPDtezIUarlWv2Mha1gvIS5PUofzXOQa+ALheFpGTjNUiW22sG+ChjleIgUyQ9 6ebEsDumgyFsMwdU+sn8OuZR+CZUW4GIWGxYJItvwImYg4WtMWvrltqKv5DWMEZk jqP+ODMHMSK/fF/QN9u6RulT/F15++MCrnPIpBHAPxW4nS4r1eKAlRm0as5RHIB6 RpfC9x/EXbZjO9xQq272mB79/nWIpZq6MdkCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRd8oUQtzYb8ohTnoR50jQwMVOzHjAfBgNVHSMEGDAWgBTmIzjeMyxvS54llu5d w3miXv5YzzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDQwLzVpTTQzak1zYjB1ZUpaYnVYY041b2w3LVdNOC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzVpTTQzak1zYjB1ZUpaYnVYY041b2w3 LVdNOC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80NDAvWGZLRkVMYzJHX0tJVTU2RWVkSTBNREZUc3g0LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBD3XwDANBgkqhkiG9w0BAQsFAAOCAQEAmM7z6x2ANEKiLuwF0nRtXTHVQX7Q //+hn38iV7BipHIRuxsS2cvzdtjtlGVDRFjIW9LGsyWJXc1tfbWsLnBrxLCkJAlE SFhheMtEOZanPQHDftqgnXpqsThTkkiMAgCPErP6C9O6WszUilboMrwXjCvufx6Q VVqd71t/CWoet8C5SiYFXc0wUNsT0RRfI4RmGPjXNQX1yTVnGu+pzdsB1v0TDOb2 gvM5tHSF7SQlac+H+50ZsjDCFipabUlrKRy5MbH6gBaGQA4k6sfZ5eqJaPNl6CtB OfXZD14OIIXI5HsDsXlaRrZL+HWWTBbVb8vVmEekx9DrGNcdf0M4mibZ0Q== -----END CERTIFICATE-----Generated at Sat Apr 5 17:44:57 2025 by rpki-client