$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/465/AkpSfdcgzHZ3HPtGyN3SQf_Y10U.roa File: AkpSfdcgzHZ3HPtGyN3SQf_Y10U.roa (raw, json) Hash identifier: peBp9hR9fbhjIbDWfyJ0EBzBiUBkyjhuje1BmrkPHYs= Subject key identifier: 02:4A:52:7D:D7:20:CC:76:77:1C:FB:46:C8:DD:D2:41:FF:D8:D7:45 Certificate issuer: /CN=47A27188E214C396304497DB571B23F93EBFBDC6 Certificate serial: 5C Authority key identifier: 47:A2:71:88:E2:14:C3:96:30:44:97:DB:57:1B:23:F9:3E:BF:BD:C6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/R6JxiOIUw5YwRJfbVxsj-T6_vcY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/465/AkpSfdcgzHZ3HPtGyN3SQf_Y10U.roa Signing time: Sat 30 Nov 2024 01:28:48 +0000 ROA not before: Sat 30 Nov 2024 01:28:48 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 10011 IP address blocks: 219.100.68.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/465/R6JxiOIUw5YwRJfbVxsj-T6_vcY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/465/R6JxiOIUw5YwRJfbVxsj-T6_vcY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/R6JxiOIUw5YwRJfbVxsj-T6_vcY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47A27188E214C396304497DB571B23F93EBFBDC6 Validity Not Before: Nov 30 01:28:48 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=024A527DD720CC76771CFB46C8DDD241FFD8D745 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:4b:01:c9:96:12:4e:d8:92:76:ea:4c:b6:a4: d6:43:58:97:50:28:92:a6:82:30:bb:87:79:10:b7: 6c:44:38:3b:0d:95:7a:1e:18:75:72:eb:0c:03:bc: 49:9a:8b:7b:9a:36:0e:62:48:ae:ed:03:df:0a:ce: 70:04:33:4a:1d:44:25:09:c0:47:b6:0c:83:b1:da: 85:51:62:ff:da:18:da:4a:0c:01:cb:e8:34:6f:e2: 18:66:05:49:b0:e4:30:90:33:ea:29:28:bf:d8:ea: 4b:40:f3:c0:9e:28:e2:a1:fd:5a:bb:14:b6:61:79: 7a:44:e5:5d:87:00:60:ca:0b:8a:45:92:a5:ec:05: 34:53:3d:4d:5e:c4:55:7c:bf:17:83:3a:c7:c2:31: e7:91:dd:73:f9:40:1a:bb:44:3d:a6:b5:42:e9:a6: de:e9:65:1a:08:5b:2d:de:01:e0:5d:3e:79:b6:58: 0f:ac:27:27:3a:fc:3b:8f:12:f5:72:c7:1f:02:b5: 2d:8c:3a:70:e7:1b:c9:31:33:8b:5a:3a:cc:46:24: bf:46:6b:af:32:fd:78:44:4e:53:44:b2:21:3a:2a: 0b:cd:19:bd:43:fa:d9:09:c8:56:fd:3d:c9:6b:86: 2b:85:8d:03:8c:18:98:03:34:58:3c:e8:62:93:09: 73:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:4A:52:7D:D7:20:CC:76:77:1C:FB:46:C8:DD:D2:41:FF:D8:D7:45 X509v3 Authority Key Identifier: keyid:47:A2:71:88:E2:14:C3:96:30:44:97:DB:57:1B:23:F9:3E:BF:BD:C6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/465/R6JxiOIUw5YwRJfbVxsj-T6_vcY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/R6JxiOIUw5YwRJfbVxsj-T6_vcY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/465/AkpSfdcgzHZ3HPtGyN3SQf_Y10U.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.100.68.0/22 Signature Algorithm: sha256WithRSAEncryption 64:1d:66:2c:7b:35:d6:c4:fd:ef:d6:c9:f8:37:58:87:78:f6: e8:fe:29:b2:86:31:4b:50:5f:f5:70:c7:49:a4:2a:0e:6b:c7: 9d:e4:11:c2:f9:65:24:e0:85:85:2e:b3:13:42:75:96:bd:93: 86:ab:56:d7:01:8c:bf:3c:4c:f7:4b:74:4b:55:34:50:0f:71: 89:f5:14:ab:80:04:43:1a:06:80:b7:4e:26:ed:80:39:05:15: df:28:14:e8:92:8e:2c:9d:bf:a4:03:c2:0a:81:0b:ba:de:63: eb:15:2d:64:02:f3:5b:a7:85:a0:c4:76:8b:f1:04:8b:92:14: bb:ad:e8:36:3a:f2:d1:d9:a0:da:25:a7:f1:6c:93:e8:5b:2c: 39:21:fc:c2:23:c2:a7:cb:29:16:85:bf:7a:e9:11:be:63:0d: 9d:52:e3:e0:38:07:91:09:ea:98:06:fe:fc:ca:a5:32:ea:d5: 12:1c:b9:e8:9b:37:26:fc:92:e9:51:38:89:43:cd:6a:b3:e7: be:fe:04:dc:8f:30:28:7e:7e:4f:64:3c:dc:da:84:9c:b9:44: 38:00:67:9d:58:f4:2d:11:d4:66:62:42:97:27:bb:3d:ba:1a: fe:aa:d1:e8:18:38:b5:bd:ee:70:ad:50:4a:4a:5b:40:5b:b1: d6:ee:5e:01 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBXDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0N0Ey NzE4OEUyMTRDMzk2MzA0NDk3REI1NzFCMjNGOTNFQkZCREM2MB4XDTI0MTEzMDAx Mjg0OFoXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoMDI0QTUyN0RENzIwQ0M3 Njc3MUNGQjQ2QzhEREQyNDFGRkQ4RDc0NTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPlLAcmWEk7YknbqTLak1kNYl1AokqaCMLuHeRC3bEQ4Ow2Veh4Y dXLrDAO8SZqLe5o2DmJIru0D3wrOcAQzSh1EJQnAR7YMg7HahVFi/9oY2koMAcvo NG/iGGYFSbDkMJAz6ikov9jqS0DzwJ4o4qH9WrsUtmF5ekTlXYcAYMoLikWSpewF NFM9TV7EVXy/F4M6x8Ix55Hdc/lAGrtEPaa1Qumm3ullGghbLd4B4F0+ebZYD6wn Jzr8O48S9XLHHwK1LYw6cOcbyTEzi1o6zEYkv0ZrrzL9eEROU0SyIToqC80ZvUP6 2QnIVv09yWuGK4WNA4wYmAM0WDzoYpMJc9ECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQCSlJ91yDMdncc+0bI3dJB/9jXRTAfBgNVHSMEGDAWgBRHonGI4hTDljBEl9tX GyP5Pr+9xjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDY1L1I2SnhpT0lVdzVZd1JKZmJWeHNqLVQ2X3ZjWS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1I2SnhpT0lVdzVZd1JKZmJWeHNqLVQ2 X3ZjWS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80NjUvQWtwU2ZkY2d6SFozSFB0R3lOM1NRZl9ZMTBVLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAttkRDANBgkqhkiG9w0BAQsFAAOCAQEAZB1mLHs11sT979bJ+DdYh3j26P4p soYxS1Bf9XDHSaQqDmvHneQRwvllJOCFhS6zE0J1lr2ThqtW1wGMvzxM90t0S1U0 UA9xifUUq4AEQxoGgLdOJu2AOQUV3ygU6JKOLJ2/pAPCCoELut5j6xUtZALzW6eF oMR2i/EEi5IUu63oNjry0dmg2iWn8WyT6FssOSH8wiPCp8spFoW/eukRvmMNnVLj 4DgHkQnqmAb+/MqlMurVEhy56Js3JvyS6VE4iUPNarPnvv4E3I8wKH5+T2Q83NqE nLlEOABnnVj0LRHUZmJClye7Pboa/qrR6Bg4tb3ucK1QSkpbQFux1u5eAQ== -----END CERTIFICATE-----Generated at Sat Apr 5 17:22:23 2025 by rpki-client