$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/440/XyMB22IJAYDcJyHhnFQYtv5hMh4.roa File: XyMB22IJAYDcJyHhnFQYtv5hMh4.roa (raw, json) Hash identifier: mDubaC6IMuiUbwq1gxQAyNABACzIqAxfL/vikSnV/Pg= Subject key identifier: 5F:23:01:DB:62:09:01:80:DC:27:21:E1:9C:54:18:B6:FE:61:32:1E Certificate issuer: /CN=E62338DE332C6F4B9E2596EE5DC379A25EFE58CF Certificate serial: 70 Authority key identifier: E6:23:38:DE:33:2C:6F:4B:9E:25:96:EE:5D:C3:79:A2:5E:FE:58:CF Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5iM43jMsb0ueJZbuXcN5ol7-WM8.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/XyMB22IJAYDcJyHhnFQYtv5hMh4.roa Signing time: Sat 30 Nov 2024 01:31:47 +0000 ROA not before: Sat 30 Nov 2024 01:31:47 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 17676 IP address blocks: 61.122.32.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/5iM43jMsb0ueJZbuXcN5ol7-WM8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/5iM43jMsb0ueJZbuXcN5ol7-WM8.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5iM43jMsb0ueJZbuXcN5ol7-WM8.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E62338DE332C6F4B9E2596EE5DC379A25EFE58CF Validity Not Before: Nov 30 01:31:47 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=5F2301DB62090180DC2721E19C5418B6FE61321E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:36:3a:53:6c:91:0b:aa:09:2e:db:bf:e6:76: 58:c3:b6:73:6a:fa:3c:1b:12:70:9f:a9:42:7e:16: fa:a1:c6:97:c0:4d:58:d6:f2:b4:b5:5c:94:dd:fc: f7:43:59:53:6f:18:b8:6d:b6:d1:f9:8c:f5:65:0e: 95:de:86:c7:39:fe:09:de:ba:8b:22:85:12:4d:f3: d5:c4:13:c0:b4:d7:47:c1:e8:df:94:73:c7:38:4e: f1:7d:4d:37:10:c6:d4:43:b7:22:dd:80:77:6a:d0: 4b:77:ef:b2:31:58:9d:6c:86:c2:75:46:c4:42:fe: 67:89:ca:67:14:d2:1f:3c:d6:7b:5d:16:bc:52:63: 94:14:33:04:b8:a9:f9:b8:92:f8:ee:92:6c:52:6b: cd:ec:6b:3a:c6:02:c9:0c:f6:6a:42:7c:bf:8a:25: 80:b0:92:f8:f1:b4:b1:3e:a3:4b:f0:ea:22:8f:47: 4b:16:3a:3f:d7:85:d8:56:2b:3c:7f:1d:34:53:62: d2:fa:80:1d:fc:49:cd:cc:d8:9a:e7:00:e5:b6:e3: 05:bf:55:01:93:b3:97:83:da:52:70:f4:57:4a:e0: b0:34:65:cf:e7:7c:7e:55:7e:24:dc:e8:cb:9a:0b: c5:3a:3f:61:57:df:29:de:c9:cb:10:0e:83:01:d9: 7d:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:23:01:DB:62:09:01:80:DC:27:21:E1:9C:54:18:B6:FE:61:32:1E X509v3 Authority Key Identifier: keyid:E6:23:38:DE:33:2C:6F:4B:9E:25:96:EE:5D:C3:79:A2:5E:FE:58:CF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/5iM43jMsb0ueJZbuXcN5ol7-WM8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5iM43jMsb0ueJZbuXcN5ol7-WM8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/440/XyMB22IJAYDcJyHhnFQYtv5hMh4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.122.32.0/20 Signature Algorithm: sha256WithRSAEncryption 98:90:4d:be:90:01:92:95:24:d1:18:1b:9f:0a:62:c9:e5:9a: f0:5f:1d:2e:20:96:b9:63:14:11:6c:2d:23:1f:5e:53:6e:b5: b5:99:b2:c1:fd:87:30:af:92:4e:49:d3:0d:e3:92:b3:cf:d4: 51:48:90:91:26:dc:50:ae:14:a1:3b:10:c3:61:90:8a:ac:df: f6:c5:fb:e1:93:65:9c:71:0b:13:88:d0:c7:ae:32:c1:d1:8e: e1:30:32:ac:b8:84:24:30:fb:c6:b8:5a:a1:85:ed:53:92:58: bb:a7:39:c2:26:6c:81:9e:48:a3:9a:fb:ad:03:39:07:6d:86: e9:e0:cf:3d:41:77:02:52:57:93:ad:b6:58:43:2f:a1:52:ab: 86:21:47:e6:1a:6e:4a:b9:85:49:12:26:4f:4d:71:6a:79:25: 75:52:49:37:b6:bc:12:60:37:c2:48:35:25:eb:e2:a7:ca:ff: 70:2d:36:b7:68:e5:96:83:41:90:dd:77:9c:2c:ec:49:d5:5f: 5c:69:3f:d6:61:4a:fe:b8:62:41:94:28:e2:5a:8e:d1:d2:e6: 6b:7b:5c:3b:52:83:ce:af:f9:d1:93:fe:a4:9d:ad:91:c3:53: 8b:e7:7c:b2:19:d6:f3:95:75:bb:e7:c4:5e:2c:cc:5c:47:39: f4:95:d6:b1 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBcDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhFNjIz MzhERTMzMkM2RjRCOUUyNTk2RUU1REMzNzlBMjVFRkU1OENGMB4XDTI0MTEzMDAx MzE0N1oXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoNUYyMzAxREI2MjA5MDE4 MERDMjcyMUUxOUM1NDE4QjZGRTYxMzIxRTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOU2OlNskQuqCS7bv+Z2WMO2c2r6PBsScJ+pQn4W+qHGl8BNWNby tLVclN3890NZU28YuG220fmM9WUOld6Gxzn+Cd66iyKFEk3z1cQTwLTXR8Ho35Rz xzhO8X1NNxDG1EO3It2Ad2rQS3fvsjFYnWyGwnVGxEL+Z4nKZxTSHzzWe10WvFJj lBQzBLip+biS+O6SbFJrzexrOsYCyQz2akJ8v4olgLCS+PG0sT6jS/DqIo9HSxY6 P9eF2FYrPH8dNFNi0vqAHfxJzczYmucA5bbjBb9VAZOzl4PaUnD0V0rgsDRlz+d8 flV+JNzoy5oLxTo/YVffKd7JyxAOgwHZfbcCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRfIwHbYgkBgNwnIeGcVBi2/mEyHjAfBgNVHSMEGDAWgBTmIzjeMyxvS54llu5d w3miXv5YzzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDQwLzVpTTQzak1zYjB1ZUpaYnVYY041b2w3LVdNOC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzVpTTQzak1zYjB1ZUpaYnVYY041b2w3 LVdNOC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80NDAvWHlNQjIySUpBWURjSnlIaG5GUVl0djVoTWg0LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBD16IDANBgkqhkiG9w0BAQsFAAOCAQEAmJBNvpABkpUk0RgbnwpiyeWa8F8d LiCWuWMUEWwtIx9eU261tZmywf2HMK+STknTDeOSs8/UUUiQkSbcUK4UoTsQw2GQ iqzf9sX74ZNlnHELE4jQx64ywdGO4TAyrLiEJDD7xrhaoYXtU5JYu6c5wiZsgZ5I o5r7rQM5B22G6eDPPUF3AlJXk622WEMvoVKrhiFH5hpuSrmFSRImT01xankldVJJ N7a8EmA3wkg1Jevip8r/cC02t2jlloNBkN13nCzsSdVfXGk/1mFK/rhiQZQo4lqO 0dLma3tcO1KDzq/50ZP+pJ2tkcNTi+d8shnW85V1u+fEXizMXEc59JXWsQ== -----END CERTIFICATE-----Generated at Sat Apr 5 17:44:43 2025 by rpki-client