$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/484/x3wquXddTn-gjcUJkCZHjnf33LU.roa File: x3wquXddTn-gjcUJkCZHjnf33LU.roa (raw, json) Hash identifier: v/sHNXqF0QJ8ejcryhwsQf1hRTcySi5agIKvdlqeJdg= Subject key identifier: C7:7C:2A:B9:77:5D:4E:7F:A0:8D:C5:09:90:26:47:8E:77:F7:DC:B5 Certificate issuer: /CN=511E1CE89B3A407E5ACCEED8A55B2EF374FDF29C Certificate serial: 02 Authority key identifier: 51:1E:1C:E8:9B:3A:40:7E:5A:CC:EE:D8:A5:5B:2E:F3:74:FD:F2:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/UR4c6Js6QH5azO7YpVsu83T98pw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/484/x3wquXddTn-gjcUJkCZHjnf33LU.roa Signing time: Mon 21 Oct 2024 02:11:04 +0000 ROA not before: Mon 21 Oct 2024 02:11:04 +0000 ROA not after: Tue 21 Oct 2025 01:23:02 +0000 asID: 9354 IP address blocks: 157.5.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/484/UR4c6Js6QH5azO7YpVsu83T98pw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/484/UR4c6Js6QH5azO7YpVsu83T98pw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/UR4c6Js6QH5azO7YpVsu83T98pw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=511E1CE89B3A407E5ACCEED8A55B2EF374FDF29C Validity Not Before: Oct 21 02:11:04 2024 GMT Not After : Oct 21 01:23:02 2025 GMT Subject: CN=C77C2AB9775D4E7FA08DC5099026478E77F7DCB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0b:e1:27:bc:ac:c5:64:a8:1c:d4:e2:63:1f: 4a:24:95:d2:92:43:b1:f9:d8:58:ea:f4:5f:1d:e3: b9:52:31:16:05:ad:96:6f:a4:b1:32:50:ee:02:c8: 37:63:80:70:11:28:04:81:ce:32:a1:43:35:d8:18: 24:6c:2a:f4:6b:76:be:6f:61:93:0d:37:44:ec:96: 02:21:25:7b:18:a2:a6:40:78:c5:b2:75:45:dc:c9: 5e:8e:b7:73:ac:75:65:70:f6:27:33:22:b1:0d:cd: a3:fd:80:fb:5e:da:b3:b0:59:5d:78:ec:8b:03:00: 0c:3f:aa:55:f3:40:c2:c9:b2:e7:9e:ce:0d:77:46: aa:7d:0b:9a:e6:24:c3:54:54:e8:17:c3:1c:7b:22: 85:20:57:03:5d:87:b7:77:82:52:4f:ea:95:46:3f: 3d:4d:b4:88:36:c0:e4:34:2a:50:e5:82:41:c1:d0: f7:24:1d:ab:0a:65:c4:4b:d9:fb:0e:78:25:64:35: 82:f8:bb:65:90:fd:1c:cf:50:40:6a:f3:3b:1f:1b: 7c:fb:18:32:3d:0b:f3:ad:c7:2b:0b:10:82:c2:26: 8f:0e:8f:47:9f:69:3e:94:fc:13:3e:2e:f9:5b:3e: 90:2b:86:ce:d3:f5:11:85:e0:20:92:5e:24:6c:a7: 9c:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:7C:2A:B9:77:5D:4E:7F:A0:8D:C5:09:90:26:47:8E:77:F7:DC:B5 X509v3 Authority Key Identifier: keyid:51:1E:1C:E8:9B:3A:40:7E:5A:CC:EE:D8:A5:5B:2E:F3:74:FD:F2:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/484/UR4c6Js6QH5azO7YpVsu83T98pw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/UR4c6Js6QH5azO7YpVsu83T98pw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/484/x3wquXddTn-gjcUJkCZHjnf33LU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.5.0.0/19 Signature Algorithm: sha256WithRSAEncryption 3a:8f:1b:8d:ae:76:28:8a:7c:34:9b:91:d7:39:d6:3f:ab:49: 83:a2:81:d1:75:0a:26:97:bf:88:e0:44:6c:ee:f8:4b:e9:49: 27:99:47:44:54:4d:5b:4c:2e:71:df:97:af:b6:2d:91:5a:b2: 9f:02:92:0d:cc:4a:7d:45:2e:ae:01:01:49:17:a8:af:1a:d2: 46:df:5c:a4:a3:39:90:4b:5b:8f:7e:f9:20:c9:9c:47:86:f8: c3:b9:7c:ad:63:fd:bc:cf:04:4a:9e:4b:05:9b:e9:90:62:70: 79:a8:82:e1:a5:e9:70:da:1a:59:09:51:4b:7c:59:3e:fa:dc: a7:07:70:c2:9c:b5:80:7e:67:e0:3e:54:03:ed:17:1b:f0:19: 3d:86:ac:3b:c8:53:ac:cd:21:cd:ac:eb:e7:67:f7:fc:d7:2a: 67:12:54:f3:45:f2:9e:23:86:30:f3:c1:9f:36:28:07:66:57: 04:ef:7a:e9:2c:d5:a1:0e:cd:fa:a6:fe:2c:fc:f5:b5:05:19: d8:98:37:24:ec:06:22:44:25:8e:05:08:ce:5c:e6:73:b0:12: d6:4b:93:0a:29:fe:42:5d:d5:98:b6:5e:f2:36:da:3e:10:07: e3:a1:92:32:e4:66:15:ec:96:66:b5:17:28:da:b6:5f:9a:2b: 40:af:83:2f -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBAjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1MTFF MUNFODlCM0E0MDdFNUFDQ0VFRDhBNTVCMkVGMzc0RkRGMjlDMB4XDTI0MTAyMTAy MTEwNFoXDTI1MTAyMTAxMjMwMlowMzExMC8GA1UEAxMoQzc3QzJBQjk3NzVENEU3 RkEwOERDNTA5OTAyNjQ3OEU3N0Y3RENCNTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALsL4Se8rMVkqBzU4mMfSiSV0pJDsfnYWOr0Xx3juVIxFgWtlm+k sTJQ7gLIN2OAcBEoBIHOMqFDNdgYJGwq9Gt2vm9hkw03ROyWAiElexiipkB4xbJ1 RdzJXo63c6x1ZXD2JzMisQ3No/2A+17as7BZXXjsiwMADD+qVfNAwsmy557ODXdG qn0LmuYkw1RU6BfDHHsihSBXA12Ht3eCUk/qlUY/PU20iDbA5DQqUOWCQcHQ9yQd qwplxEvZ+w54JWQ1gvi7ZZD9HM9QQGrzOx8bfPsYMj0L863HKwsQgsImjw6PR59p PpT8Ez4u+Vs+kCuGztP1EYXgIJJeJGynnEcCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTHfCq5d11Of6CNxQmQJkeOd/fctTAfBgNVHSMEGDAWgBRRHhzomzpAflrM7til Wy7zdP3ynDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDg0L1VSNGM2SnM2UUg1YXpPN1lwVnN1ODNUOThwdy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VSNGM2SnM2UUg1YXpPN1lwVnN1ODNU OThwdy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80ODQveDN3cXVYZGRUbi1namNVSmtDWkhqbmYzM0xVLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBZ0FADANBgkqhkiG9w0BAQsFAAOCAQEAOo8bja52KIp8NJuR1znWP6tJg6KB 0XUKJpe/iOBEbO74S+lJJ5lHRFRNW0wucd+Xr7YtkVqynwKSDcxKfUUurgEBSReo rxrSRt9cpKM5kEtbj375IMmcR4b4w7l8rWP9vM8ESp5LBZvpkGJweaiC4aXpcNoa WQlRS3xZPvrcpwdwwpy1gH5n4D5UA+0XG/AZPYasO8hTrM0hzazr52f3/NcqZxJU 80XyniOGMPPBnzYoB2ZXBO966SzVoQ7N+qb+LPz1tQUZ2Jg3JOwGIkQljgUIzlzm c7AS1kuTCin+Ql3VmLZe8jbaPhAH46GSMuRmFeyWZrUXKNq2X5orQK+DLw== -----END CERTIFICATE-----Generated at Sat Apr 5 17:22:40 2025 by rpki-client