$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/530/B_1w5xh7xIhY3Qz-eXJdmsz2s94.roa File: B_1w5xh7xIhY3Qz-eXJdmsz2s94.roa (raw, json) Hash identifier: dJu5euHyMQHZ+VnE5KWUDhUavKhbo9eMYJjPu8HRoX0= Subject key identifier: 07:FD:70:E7:18:7B:C4:88:58:DD:0C:FE:79:72:5D:9A:CC:F6:B3:DE Certificate issuer: /CN=1B20A06A21205820B28FD06CE0A84F03FCDAEBC5 Certificate serial: 63 Authority key identifier: 1B:20:A0:6A:21:20:58:20:B2:8F:D0:6C:E0:A8:4F:03:FC:DA:EB:C5 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GyCgaiEgWCCyj9Bs4KhPA_za68U.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/B_1w5xh7xIhY3Qz-eXJdmsz2s94.roa Signing time: Tue 18 Feb 2025 08:01:31 +0000 ROA not before: Tue 18 Feb 2025 08:01:31 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 55900 IP address blocks: 218.223.128.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/GyCgaiEgWCCyj9Bs4KhPA_za68U.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/GyCgaiEgWCCyj9Bs4KhPA_za68U.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GyCgaiEgWCCyj9Bs4KhPA_za68U.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 99 (0x63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1B20A06A21205820B28FD06CE0A84F03FCDAEBC5 Validity Not Before: Feb 18 08:01:31 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=07FD70E7187BC48858DD0CFE79725D9ACCF6B3DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:07:cd:bc:c3:d4:e3:50:2c:79:61:b5:f8:85: 21:3d:d0:58:42:9b:b3:26:eb:5c:5d:7e:74:71:45: d2:e5:08:d7:c4:f7:b9:8a:09:af:02:dc:c2:04:08: 76:8b:e3:f9:30:52:fe:38:3e:30:ee:36:34:d4:ff: 0b:ef:f1:b3:ba:8a:c3:90:23:61:eb:c6:05:d9:fd: c3:c4:c8:89:68:44:a9:22:66:41:f2:ea:17:c1:9c: db:df:fe:96:31:3a:20:e7:1a:50:37:dd:fa:3f:f3: 7d:81:86:49:9f:57:c4:c7:07:4c:0d:8f:1a:a1:bd: 06:f4:47:b5:65:58:1a:0e:dc:f9:b9:b1:6c:c2:a4: 9d:a3:2f:28:09:c7:5c:f5:6e:3e:59:f6:26:79:77: 7f:dd:7c:ba:cc:55:e7:0c:d7:36:c3:e1:76:48:d5: c2:8c:18:8d:10:9d:b8:5f:4e:b7:7e:a9:19:7f:a3: 62:11:95:45:6a:5a:a7:b7:8f:5c:1e:2b:75:64:4d: 1b:5a:86:24:df:b1:40:aa:b9:32:26:8d:52:4b:b4: c6:72:57:be:d4:67:08:10:d2:39:3e:ab:24:b9:a0: 9f:ce:b1:7c:42:33:32:23:cd:84:1f:17:29:f0:dc: b7:5f:53:c9:9c:ff:6e:a2:92:ce:ec:0a:82:a0:19: 7d:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:FD:70:E7:18:7B:C4:88:58:DD:0C:FE:79:72:5D:9A:CC:F6:B3:DE X509v3 Authority Key Identifier: keyid:1B:20:A0:6A:21:20:58:20:B2:8F:D0:6C:E0:A8:4F:03:FC:DA:EB:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/GyCgaiEgWCCyj9Bs4KhPA_za68U.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GyCgaiEgWCCyj9Bs4KhPA_za68U.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/B_1w5xh7xIhY3Qz-eXJdmsz2s94.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.223.128.0/21 Signature Algorithm: sha256WithRSAEncryption 08:92:85:73:3c:11:2a:7c:bf:60:58:59:70:82:1b:e3:0c:4e: 08:d7:77:df:f5:7c:99:55:5e:a2:2d:de:f2:ac:3e:5d:ff:cf: 0e:64:75:5b:bd:89:e1:b4:3d:40:e8:2f:d8:cb:9f:b9:be:07: d0:2c:92:e3:99:12:dd:68:a2:bc:e1:b5:a3:20:0f:79:83:99: 07:9f:73:d6:12:24:d4:98:81:03:1d:b9:04:ab:f3:b8:07:d7: 34:db:4c:5b:db:21:de:bb:02:f3:04:bf:bb:f2:2d:67:09:23: a3:cd:15:8a:d1:0f:a7:63:d8:da:16:3e:a3:dc:74:b4:de:bc: ae:a6:07:5b:93:58:38:b6:22:eb:2b:01:5c:0c:83:19:f3:a3: 88:f3:92:63:5a:1e:f3:1c:c5:fc:61:fe:95:2a:ab:34:40:e2: 1f:3d:b4:ab:14:3a:d0:e1:6d:82:a5:1c:e6:36:0c:46:bd:21: 66:54:7e:e5:99:2c:56:fc:3b:66:06:60:bb:f6:64:e2:64:20: bb:06:7d:7f:24:f5:75:4e:c3:58:dd:31:a2:98:b2:e8:f1:3c: 49:57:d9:df:e9:50:f5:28:11:c5:53:c2:b4:ba:bc:3b:22:32: 2b:42:04:47:f8:ce:38:85:ad:04:fe:79:8f:47:d9:4f:f5:b7: 14:48:37:66 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBYzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxQjIw QTA2QTIxMjA1ODIwQjI4RkQwNkNFMEE4NEYwM0ZDREFFQkM1MB4XDTI1MDIxODA4 MDEzMVoXDTI2MDIxNTAxMzAwM1owMzExMC8GA1UEAxMoMDdGRDcwRTcxODdCQzQ4 ODU4REQwQ0ZFNzk3MjVEOUFDQ0Y2QjNERTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKQHzbzD1ONQLHlhtfiFIT3QWEKbsybrXF1+dHFF0uUI18T3uYoJ rwLcwgQIdovj+TBS/jg+MO42NNT/C+/xs7qKw5AjYevGBdn9w8TIiWhEqSJmQfLq F8Gc29/+ljE6IOcaUDfd+j/zfYGGSZ9XxMcHTA2PGqG9BvRHtWVYGg7c+bmxbMKk naMvKAnHXPVuPln2Jnl3f918usxV5wzXNsPhdkjVwowYjRCduF9Ot36pGX+jYhGV RWpap7ePXB4rdWRNG1qGJN+xQKq5MiaNUku0xnJXvtRnCBDSOT6rJLmgn86xfEIz MiPNhB8XKfDct19TyZz/bqKSzuwKgqAZfesCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQH/XDnGHvEiFjdDP55cl2azPaz3jAfBgNVHSMEGDAWgBQbIKBqISBYILKP0Gzg qE8D/NrrxTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTMwL0d5Q2dhaUVnV0NDeWo5QnM0S2hQQV96YTY4VS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0d5Q2dhaUVnV0NDeWo5QnM0S2hQQV96 YTY4VS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81MzAvQl8xdzV4aDd4SWhZM1F6LWVYSmRtc3oyczk0LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA9rfgDANBgkqhkiG9w0BAQsFAAOCAQEACJKFczwRKny/YFhZcIIb4wxOCNd3 3/V8mVVeoi3e8qw+Xf/PDmR1W72J4bQ9QOgv2Mufub4H0CyS45kS3WiivOG1oyAP eYOZB59z1hIk1JiBAx25BKvzuAfXNNtMW9sh3rsC8wS/u/ItZwkjo80VitEPp2PY 2hY+o9x0tN68rqYHW5NYOLYi6ysBXAyDGfOjiPOSY1oe8xzF/GH+lSqrNEDiHz20 qxQ60OFtgqUc5jYMRr0hZlR+5ZksVvw7ZgZgu/Zk4mQguwZ9fyT1dU7DWN0xopiy 6PE8SVfZ3+lQ9SgRxVPCtLq8OyIyK0IER/jOOIWtBP55j0fZT/W3FEg3Zg== -----END CERTIFICATE-----Generated at Sat Apr 5 17:40:02 2025 by rpki-client