$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/454/P1SpxiPNPqlHpRguVcRg8ThY5us.roa File: P1SpxiPNPqlHpRguVcRg8ThY5us.roa (raw, json) Hash identifier: eSqzJ47Ani2vJOfsqNRrvr0Y+pi83jNEedcG9xbIX2Y= Subject key identifier: 3F:54:A9:C6:23:CD:3E:A9:47:A5:18:2E:55:C4:60:F1:38:58:E6:EB Certificate issuer: /CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0 Certificate serial: 4C Authority key identifier: AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/P1SpxiPNPqlHpRguVcRg8ThY5us.roa Signing time: Sat 31 Aug 2024 01:31:32 +0000 ROA not before: Sat 31 Aug 2024 01:31:32 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 10000 IP address blocks: 203.217.156.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0 Validity Not Before: Aug 31 01:31:32 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=3F54A9C623CD3EA947A5182E55C460F13858E6EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:3c:2c:e1:d3:8f:6c:70:92:13:77:29:ad:6b: 1b:59:38:12:0a:1a:e8:51:29:ce:ba:aa:14:7e:82: 51:ea:61:f5:e2:6b:1c:2d:0b:23:7c:9a:76:b8:4b: 2e:e4:67:17:7d:49:15:4f:a2:f9:e8:04:b0:f4:1e: 94:f6:24:ca:19:0c:c1:ad:5f:9a:e7:41:04:68:68: 30:ef:49:6b:0a:df:4d:cf:7b:31:3b:37:53:80:eb: 32:93:ac:93:04:79:05:37:ac:af:5c:65:74:6b:31: 9b:2a:aa:1a:b6:c2:c2:4c:9a:9a:b7:21:97:d7:3e: 14:19:ba:84:a1:e4:fa:bc:d0:a0:0b:04:e3:54:cd: 66:d6:67:bb:a6:41:4c:48:0d:ca:88:b8:18:9b:75: b3:a4:90:6a:b7:2e:ee:62:c9:3b:c3:68:41:01:b2: aa:99:f0:a4:34:95:5e:77:b5:d9:ef:56:33:0d:70: b2:f8:46:94:30:51:d9:67:1a:2a:37:0d:e9:9c:2b: 40:e5:10:32:0a:d1:a2:63:0c:64:fa:9a:e4:69:43: 25:86:00:a2:18:dd:37:ad:11:a0:f8:2b:42:99:21: 17:fc:f5:52:97:03:ce:cc:8a:7d:51:81:c5:03:34: 7e:ed:d3:0e:00:d9:38:f6:c4:ba:5f:41:1c:05:28: 1d:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:54:A9:C6:23:CD:3E:A9:47:A5:18:2E:55:C4:60:F1:38:58:E6:EB X509v3 Authority Key Identifier: keyid:AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/P1SpxiPNPqlHpRguVcRg8ThY5us.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.217.156.0/22 Signature Algorithm: sha256WithRSAEncryption 5b:6d:f4:14:0d:7c:32:c7:43:c2:e3:53:59:53:cb:b1:1e:9d: 26:46:92:3b:e6:10:80:a5:ce:72:34:48:a5:5a:f8:dc:9e:2c: f3:f5:c8:69:45:69:70:69:a9:4c:1f:74:a7:c7:2f:ae:65:2b: c1:67:f5:94:de:61:02:dd:79:c4:08:c8:07:78:e3:df:df:55: 02:a5:67:05:7f:0a:a1:37:95:b2:d9:f3:1c:2e:76:79:f1:4f: ec:a0:32:38:4c:34:61:62:e8:0e:fe:f0:e4:e5:f8:89:ae:c4: 90:46:cd:31:ca:5c:c3:13:ad:56:de:80:b8:92:57:df:60:80: f3:07:46:52:92:6d:53:05:29:da:05:51:cc:81:f3:8f:36:05: ee:bd:10:fa:d9:b7:7e:c5:5f:a3:0d:f7:1c:32:ee:66:a7:b2: d1:ba:d3:d6:f8:60:a1:09:7f:54:c3:b3:c0:e3:1f:6c:dc:93: 61:b0:d1:95:e0:e4:38:e7:19:52:38:43:dd:65:7a:cc:be:9f: a0:a5:b3:90:55:94:92:08:70:67:e3:fb:89:01:bb:f6:b6:92: db:9a:e7:30:71:a6:89:4e:e3:b1:09:b8:ef:5c:79:36:bb:47: 37:00:92:ba:f3:01:c3:a7:ab:20:ae:24:2e:1b:51:63:39:16: f4:3b:f9:55 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBTDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBRDQ3 NDFGMDM0OUZCQzE1QTcwOEUyOEEyQ0UzMDc5MDZDQUM1REUwMB4XDTI0MDgzMTAx MzEzMloXDTI1MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoM0Y1NEE5QzYyM0NEM0VB OTQ3QTUxODJFNTVDNDYwRjEzODU4RTZFQjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKg8LOHTj2xwkhN3Ka1rG1k4Egoa6FEpzrqqFH6CUeph9eJrHC0L I3yadrhLLuRnF31JFU+i+egEsPQelPYkyhkMwa1fmudBBGhoMO9JawrfTc97MTs3 U4DrMpOskwR5BTesr1xldGsxmyqqGrbCwkyamrchl9c+FBm6hKHk+rzQoAsE41TN ZtZnu6ZBTEgNyoi4GJt1s6SQarcu7mLJO8NoQQGyqpnwpDSVXne12e9WMw1wsvhG lDBR2WcaKjcN6ZwrQOUQMgrRomMMZPqa5GlDJYYAohjdN60RoPgrQpkhF/z1UpcD zsyKfVGBxQM0fu3TDgDZOPbEul9BHAUoHYMCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQ/VKnGI80+qUelGC5VxGDxOFjm6zAfBgNVHSMEGDAWgBStR0HwNJ+8FacI4oos 4weQbKxd4DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDU0L3JVZEI4RFNmdkJXbkNPS0tMT01Ia0d5c1hlQS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3JVZEI4RFNmdkJXbkNPS0tMT01Ia0d5 c1hlQS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80NTQvUDFTcHhpUE5QcWxIcFJndVZjUmc4VGhZNXVzLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAsvZnDANBgkqhkiG9w0BAQsFAAOCAQEAW230FA18MsdDwuNTWVPLsR6dJkaS O+YQgKXOcjRIpVr43J4s8/XIaUVpcGmpTB90p8cvrmUrwWf1lN5hAt15xAjIB3jj 399VAqVnBX8KoTeVstnzHC52efFP7KAyOEw0YWLoDv7w5OX4ia7EkEbNMcpcwxOt Vt6AuJJX32CA8wdGUpJtUwUp2gVRzIHzjzYF7r0Q+tm3fsVfow33HDLuZqey0brT 1vhgoQl/VMOzwOMfbNyTYbDRleDkOOcZUjhD3WV6zL6foKWzkFWUkghwZ+P7iQG7 9raS25rnMHGmiU7jsQm471x5NrtHNwCSuvMBw6erIK4kLhtRYzkW9Dv5VQ== -----END CERTIFICATE-----Generated at Sat Apr 5 17:37:57 2025 by rpki-client