$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/454/x7SKEDy4ffQpG0dclfFmkZF0fXQ.roa File: x7SKEDy4ffQpG0dclfFmkZF0fXQ.roa (raw, json) Hash identifier: SNxyx6TbEPm/Ewurp7FK6R0wWXFbckfjy9iPh2NCXk0= Subject key identifier: C7:B4:8A:10:3C:B8:7D:F4:29:1B:47:5C:95:F1:66:91:91:74:7D:74 Certificate issuer: /CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0 Certificate serial: 47 Authority key identifier: AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/x7SKEDy4ffQpG0dclfFmkZF0fXQ.roa Signing time: Sat 31 Aug 2024 01:31:29 +0000 ROA not before: Sat 31 Aug 2024 01:31:29 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 10000 IP address blocks: 180.214.224.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0 Validity Not Before: Aug 31 01:31:29 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=C7B48A103CB87DF4291B475C95F1669191747D74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:6d:61:8c:34:b7:40:19:6b:da:6c:af:bf:c0: 4d:cf:c1:c3:55:d1:f7:1f:74:da:3a:84:81:8d:98: f8:ee:66:9e:7f:f8:6e:24:f4:f9:e5:17:59:1a:8e: 3a:29:25:49:95:e2:9b:8b:87:33:68:9b:8e:99:34: 54:1b:3d:44:5e:7f:2f:41:0c:b7:28:27:67:5b:f8: 68:fa:3b:dc:7b:40:15:22:c0:36:f2:82:49:bb:14: ce:f1:89:29:7c:26:ae:f7:6e:fd:9e:01:16:51:03: b7:88:04:bb:b8:50:65:ed:25:e3:c8:61:32:c2:d5: de:67:b6:1e:12:1a:36:86:f6:d2:a9:c7:63:39:f6: 0c:b4:ce:9c:8b:51:9c:4b:bb:03:07:3f:97:7f:3d: 01:a9:c9:69:26:61:9e:0a:e6:dd:39:72:b1:3a:cc: 4b:c7:43:24:80:80:d5:dd:55:8d:36:06:87:51:8e: 32:3a:ff:7c:38:3e:22:5f:a6:95:75:0b:3b:75:ad: f2:ec:1f:a2:a1:37:57:25:cc:ab:05:95:be:8f:c0: 1f:4a:b6:7b:43:66:5b:88:a8:11:96:58:5c:3a:fe: 00:99:10:50:e8:b4:a3:cf:47:78:6d:15:2f:d9:29: aa:8c:dc:16:54:79:24:8f:60:b4:ec:98:c3:99:6a: 4d:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:B4:8A:10:3C:B8:7D:F4:29:1B:47:5C:95:F1:66:91:91:74:7D:74 X509v3 Authority Key Identifier: keyid:AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/x7SKEDy4ffQpG0dclfFmkZF0fXQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.214.224.0/21 Signature Algorithm: sha256WithRSAEncryption 2f:38:06:77:e2:c3:ed:1e:4e:9a:53:4c:f6:4d:df:f7:cf:3d: 45:3b:59:f1:b8:c2:4c:d5:31:ff:70:9d:6e:78:cc:f5:2c:2f: 12:6f:de:8b:24:cb:ea:26:d9:1b:09:49:1c:24:cf:cf:3d:fd: cb:94:3a:3d:e5:54:dd:3a:3f:27:ea:ca:5b:9c:0c:c2:b1:16: e3:ea:2a:67:fd:c9:87:5e:19:c2:0e:71:6c:fd:fa:ca:6a:67: ed:6e:dd:f1:26:4d:68:eb:88:98:5f:42:98:48:cf:8d:e6:8d: 39:4c:37:c1:90:61:8c:ef:98:19:73:c6:c8:52:e4:d6:1e:5d: 52:38:48:d5:42:33:9d:e5:f4:3e:fb:87:03:35:fe:de:65:da: 83:a2:19:ff:8c:23:6d:36:f9:cd:21:c1:d0:69:37:02:e6:91: 9b:8c:ed:6c:53:f8:1a:37:73:3d:7b:1f:73:28:cf:8e:0a:a0: 9c:ec:a4:8f:1f:a1:70:70:5a:ff:62:97:b0:d0:22:e1:37:7d: fe:1f:61:c0:d6:86:b8:c1:0f:d9:8b:5c:5b:74:b7:ae:16:84: 69:d6:13:d3:3b:62:cd:07:dd:29:29:b9:88:03:3a:d3:79:3e: 4c:f2:80:d9:78:d6:f1:18:31:d7:65:a9:99:ef:86:24:ca:33: 82:06:4b:8b -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBRzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBRDQ3 NDFGMDM0OUZCQzE1QTcwOEUyOEEyQ0UzMDc5MDZDQUM1REUwMB4XDTI0MDgzMTAx MzEyOVoXDTI1MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoQzdCNDhBMTAzQ0I4N0RG NDI5MUI0NzVDOTVGMTY2OTE5MTc0N0Q3NDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOBtYYw0t0AZa9psr7/ATc/Bw1XR9x902jqEgY2Y+O5mnn/4biT0 +eUXWRqOOiklSZXim4uHM2ibjpk0VBs9RF5/L0EMtygnZ1v4aPo73HtAFSLANvKC SbsUzvGJKXwmrvdu/Z4BFlEDt4gEu7hQZe0l48hhMsLV3me2HhIaNob20qnHYzn2 DLTOnItRnEu7Awc/l389AanJaSZhngrm3TlysTrMS8dDJICA1d1VjTYGh1GOMjr/ fDg+Il+mlXULO3Wt8uwfoqE3VyXMqwWVvo/AH0q2e0NmW4ioEZZYXDr+AJkQUOi0 o89HeG0VL9kpqozcFlR5JI9gtOyYw5lqTaUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTHtIoQPLh99CkbR1yV8WaRkXR9dDAfBgNVHSMEGDAWgBStR0HwNJ+8FacI4oos 4weQbKxd4DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDU0L3JVZEI4RFNmdkJXbkNPS0tMT01Ia0d5c1hlQS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3JVZEI4RFNmdkJXbkNPS0tMT01Ia0d5 c1hlQS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80NTQveDdTS0VEeTRmZlFwRzBkY2xmRm1rWkYwZlhRLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA7TW4DANBgkqhkiG9w0BAQsFAAOCAQEALzgGd+LD7R5OmlNM9k3f9889RTtZ 8bjCTNUx/3CdbnjM9SwvEm/eiyTL6ibZGwlJHCTPzz39y5Q6PeVU3To/J+rKW5wM wrEW4+oqZ/3Jh14Zwg5xbP36ympn7W7d8SZNaOuImF9CmEjPjeaNOUw3wZBhjO+Y GXPGyFLk1h5dUjhI1UIzneX0PvuHAzX+3mXag6IZ/4wjbTb5zSHB0Gk3AuaRm4zt bFP4GjdzPXsfcyjPjgqgnOykjx+hcHBa/2KXsNAi4Td9/h9hwNaGuMEP2YtcW3S3 rhaEadYT0ztizQfdKSm5iAM603k+TPKA2XjW8Rgx12Wpme+GJMozggZLiw== -----END CERTIFICATE-----Generated at Sat Apr 5 17:27:28 2025 by rpki-client