$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/530/bNlx3s14mgMp3bEPAw4_ykphcm8.roa File: bNlx3s14mgMp3bEPAw4_ykphcm8.roa (raw, json) Hash identifier: doFVdl34LyjeupYz3FocWVBdxSnJLiHZfFiRJCnbud4= Subject key identifier: 6C:D9:71:DE:CD:78:9A:03:29:DD:B1:0F:03:0E:3F:CA:4A:61:72:6F Certificate issuer: /CN=1B20A06A21205820B28FD06CE0A84F03FCDAEBC5 Certificate serial: 56 Authority key identifier: 1B:20:A0:6A:21:20:58:20:B2:8F:D0:6C:E0:A8:4F:03:FC:DA:EB:C5 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GyCgaiEgWCCyj9Bs4KhPA_za68U.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/bNlx3s14mgMp3bEPAw4_ykphcm8.roa Signing time: Thu 31 Oct 2024 01:29:57 +0000 ROA not before: Thu 31 Oct 2024 01:29:57 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 59125 IP address blocks: 150.91.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/GyCgaiEgWCCyj9Bs4KhPA_za68U.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/GyCgaiEgWCCyj9Bs4KhPA_za68U.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GyCgaiEgWCCyj9Bs4KhPA_za68U.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1B20A06A21205820B28FD06CE0A84F03FCDAEBC5 Validity Not Before: Oct 31 01:29:57 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=6CD971DECD789A0329DDB10F030E3FCA4A61726F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:0f:88:4e:04:9c:44:77:e2:50:c2:8c:61:17: 86:22:40:cb:f0:a0:29:ba:cf:75:99:07:2c:58:dd: 50:65:26:22:8b:55:94:13:db:b3:00:ed:33:c9:db: bd:11:37:f8:63:95:bf:62:f7:93:5a:cc:ee:99:c1: c5:2d:3f:0f:a0:46:28:38:27:b0:a6:10:b3:dd:d3: bc:8d:97:a5:64:eb:3f:24:20:1d:14:ce:72:a9:ed: 48:07:d5:59:22:c9:94:4d:51:fe:76:a6:ec:9e:28: 2d:74:18:73:4b:01:e3:10:d6:da:85:53:74:0a:e1: e1:ab:7e:70:52:35:0b:5e:ef:cf:53:ee:17:f6:53: 3a:12:da:8f:71:50:14:35:02:b9:12:d5:63:30:45: d2:9f:01:f1:c6:e6:71:da:7d:5a:59:ed:55:dd:85: 4b:59:85:f8:a9:48:95:d3:d5:f7:f0:47:63:4d:a2: a6:c7:31:b1:0c:0f:47:da:98:8a:05:2b:14:26:49: ed:3d:55:eb:a3:1f:81:3d:4f:20:fe:13:52:11:c0: 30:29:11:c2:36:91:f2:03:e7:90:27:f2:ac:11:7f: 3b:ce:d4:ef:5d:76:cf:86:7b:d7:42:e9:39:29:9c: 67:57:89:ab:c2:90:09:19:4e:72:ec:4e:13:63:52: d1:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:D9:71:DE:CD:78:9A:03:29:DD:B1:0F:03:0E:3F:CA:4A:61:72:6F X509v3 Authority Key Identifier: keyid:1B:20:A0:6A:21:20:58:20:B2:8F:D0:6C:E0:A8:4F:03:FC:DA:EB:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/GyCgaiEgWCCyj9Bs4KhPA_za68U.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GyCgaiEgWCCyj9Bs4KhPA_za68U.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/bNlx3s14mgMp3bEPAw4_ykphcm8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 150.91.160.0/19 Signature Algorithm: sha256WithRSAEncryption a2:be:9b:3e:22:59:dc:9f:17:68:d1:da:a6:6b:df:4e:c4:71: 94:57:d6:f5:49:98:f2:2b:17:0d:7a:af:c0:09:db:6c:6c:f5: 6f:88:fd:cc:a0:a9:de:a1:0d:9a:11:38:29:2b:4e:16:5a:a0: 45:60:da:a1:58:db:7f:07:36:cc:d8:cf:d7:71:94:95:d5:71: 12:cd:4a:ac:d8:f9:47:3e:4a:ce:4a:36:46:98:63:50:1c:9d: ac:d6:3c:20:9b:26:2d:bc:61:76:b8:aa:da:02:50:2f:fd:39: fb:69:3c:c2:47:39:8b:b7:7b:f3:35:3c:97:76:6c:0c:93:7c: cb:59:63:6e:03:b0:d3:a0:f9:5a:17:52:c8:a9:18:99:b6:79: 69:59:73:4d:94:77:d9:4a:41:9e:d5:13:c0:3c:ca:4d:16:cd: f9:53:80:eb:84:2a:8c:8a:a2:87:ce:a1:30:af:62:bc:fd:9b: f2:47:80:75:0f:9b:6c:1e:10:dc:ea:cf:02:62:1f:9b:42:cf: d3:83:df:1e:ae:94:92:4c:46:01:9d:8c:09:54:3c:06:d6:73: 6f:a8:19:1f:a8:81:7f:8a:48:3c:73:ce:09:e1:70:60:4c:9f: b2:2a:58:8b:8d:55:d3:cf:1e:54:d7:8a:4a:da:ad:28:31:8a: a2:b3:62:a0 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBVjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxQjIw QTA2QTIxMjA1ODIwQjI4RkQwNkNFMEE4NEYwM0ZDREFFQkM1MB4XDTI0MTAzMTAx Mjk1N1oXDTI1MTAxNTAxMzAwMlowMzExMC8GA1UEAxMoNkNEOTcxREVDRDc4OUEw MzI5RERCMTBGMDMwRTNGQ0E0QTYxNzI2RjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANAPiE4EnER34lDCjGEXhiJAy/CgKbrPdZkHLFjdUGUmIotVlBPb swDtM8nbvRE3+GOVv2L3k1rM7pnBxS0/D6BGKDgnsKYQs93TvI2XpWTrPyQgHRTO cqntSAfVWSLJlE1R/nam7J4oLXQYc0sB4xDW2oVTdArh4at+cFI1C17vz1PuF/ZT OhLaj3FQFDUCuRLVYzBF0p8B8cbmcdp9WlntVd2FS1mF+KlIldPV9/BHY02ipscx sQwPR9qYigUrFCZJ7T1V66MfgT1PIP4TUhHAMCkRwjaR8gPnkCfyrBF/O87U7112 z4Z710LpOSmcZ1eJq8KQCRlOcuxOE2NS0a0CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRs2XHezXiaAyndsQ8DDj/KSmFybzAfBgNVHSMEGDAWgBQbIKBqISBYILKP0Gzg qE8D/NrrxTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTMwL0d5Q2dhaUVnV0NDeWo5QnM0S2hQQV96YTY4VS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0d5Q2dhaUVnV0NDeWo5QnM0S2hQQV96 YTY4VS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81MzAvYk5seDNzMTRtZ01wM2JFUEF3NF95a3BoY204LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBZZboDANBgkqhkiG9w0BAQsFAAOCAQEAor6bPiJZ3J8XaNHapmvfTsRxlFfW 9UmY8isXDXqvwAnbbGz1b4j9zKCp3qENmhE4KStOFlqgRWDaoVjbfwc2zNjP13GU ldVxEs1KrNj5Rz5Kzko2RphjUBydrNY8IJsmLbxhdriq2gJQL/05+2k8wkc5i7d7 8zU8l3ZsDJN8y1ljbgOw06D5WhdSyKkYmbZ5aVlzTZR32UpBntUTwDzKTRbN+VOA 64QqjIqih86hMK9ivP2b8keAdQ+bbB4Q3OrPAmIfm0LP04PfHq6UkkxGAZ2MCVQ8 BtZzb6gZH6iBf4pIPHPOCeFwYEyfsipYi41V088eVNeKStqtKDGKorNioA== -----END CERTIFICATE-----Generated at Sat Apr 5 20:06:58 2025 by rpki-client