$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/539/9KDdgB0kJFUjspHD17gnTmznNKk.roa File: 9KDdgB0kJFUjspHD17gnTmznNKk.roa (raw, json) Hash identifier: LmjwLnGzkfozJFx6RoQY57PaWugGPBTCTaNwlxhdouc= Subject key identifier: F4:A0:DD:80:1D:24:24:55:23:B2:91:C3:D7:B8:27:4E:6C:E7:34:A9 Certificate issuer: /CN=5B0D72F9F430B7D4003375F10D5025B9E5C00437 Certificate serial: 83 Authority key identifier: 5B:0D:72:F9:F4:30:B7:D4:00:33:75:F1:0D:50:25:B9:E5:C0:04:37 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/9KDdgB0kJFUjspHD17gnTmznNKk.roa Signing time: Fri 31 Jan 2025 01:32:14 +0000 ROA not before: Fri 31 Jan 2025 01:32:14 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 55900 IP address blocks: 103.100.190.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Ww1y-fQwt9QAM3XxDVAlueXABDc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Ww1y-fQwt9QAM3XxDVAlueXABDc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 131 (0x83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5B0D72F9F430B7D4003375F10D5025B9E5C00437 Validity Not Before: Jan 31 01:32:14 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=F4A0DD801D24245523B291C3D7B8274E6CE734A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:91:8f:b4:14:a2:cf:e0:3b:e2:df:ec:a4:70: c4:d7:06:9b:cb:3b:6d:a5:a0:fb:21:60:21:28:78: c1:56:47:b0:c0:8b:64:f0:4a:4b:d7:02:09:35:cb: 64:1b:88:25:12:75:a4:bf:df:bd:5a:d3:2a:ef:45: 0a:3a:42:03:10:e6:86:ad:33:ee:51:60:49:09:0c: 30:c5:a2:65:8b:5f:57:d6:bf:44:6b:f1:03:ac:55: f5:b9:9e:d1:79:e3:18:c5:9a:e4:dc:57:ba:d6:14: 5d:81:5e:7a:dc:13:e8:11:d1:9b:a4:1c:04:2d:52: 11:a9:34:e2:f7:79:c5:78:c9:09:cc:96:31:51:6f: 4e:35:1a:55:22:a4:13:2f:0c:42:4f:0c:67:df:e9: 1d:ee:ee:cb:1e:bb:80:87:d5:2a:36:c3:46:ce:ff: af:a3:91:33:88:de:ea:c6:da:99:3f:af:e9:0e:27: 2f:bc:c2:48:19:d5:c8:62:1f:9e:8b:78:f8:dc:32: f5:fa:76:d8:6e:04:81:04:27:96:62:b5:cd:ed:25: c2:d3:53:fe:d9:76:4b:ab:00:51:2d:65:73:a0:f2: 5c:01:cc:91:eb:59:d3:72:e2:5f:54:d3:df:f1:c1: ce:d0:05:23:f6:e0:7a:65:72:c9:ca:0a:57:e9:01: d0:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:A0:DD:80:1D:24:24:55:23:B2:91:C3:D7:B8:27:4E:6C:E7:34:A9 X509v3 Authority Key Identifier: keyid:5B:0D:72:F9:F4:30:B7:D4:00:33:75:F1:0D:50:25:B9:E5:C0:04:37 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Ww1y-fQwt9QAM3XxDVAlueXABDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/9KDdgB0kJFUjspHD17gnTmznNKk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.100.190.0/23 Signature Algorithm: sha256WithRSAEncryption 3e:71:5f:2d:63:24:1b:f0:51:a0:43:9c:9d:82:fe:df:3b:b3: ff:bd:47:40:c9:86:ec:82:51:60:9d:72:df:a4:5d:5f:98:c9: a1:90:8a:58:64:3c:43:d1:a4:47:13:eb:7e:30:42:38:c3:bf: 48:48:0a:c1:63:f6:26:b5:ee:37:27:bb:0d:9a:13:52:7b:77: d2:60:ce:19:4b:f6:64:53:77:3d:55:a6:66:7d:31:fb:88:34: aa:66:b4:4a:9a:11:f3:52:45:be:d2:09:e4:db:e2:ef:a8:98: a1:94:f7:a1:e3:39:49:f0:6b:12:99:a0:ac:b8:12:24:87:88: 9c:d8:8a:61:41:cf:d2:dc:35:2e:4c:1a:36:a1:45:d6:1b:a7: 65:50:88:50:e3:01:af:98:b8:3c:59:21:54:1f:d2:4c:8c:45: 59:1b:4e:2f:f8:c7:f2:dc:8a:ea:09:64:73:8e:e8:1b:46:d0: b0:e6:4e:41:34:87:af:aa:8c:54:d5:08:46:3f:98:f5:95:f7: a6:db:29:2d:0c:fa:e3:2e:3e:d3:42:4b:2a:88:d6:17:1a:46: 79:5e:04:14:a5:d5:bb:c6:f1:e0:6e:e8:6c:92:d5:6d:e0:75: bd:67:bb:c4:52:d1:6d:45:b7:f0:70:9d:eb:d8:78:58:68:a6: 91:00:81:ab -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAIMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUIw RDcyRjlGNDMwQjdENDAwMzM3NUYxMEQ1MDI1QjlFNUMwMDQzNzAeFw0yNTAxMzEw MTMyMTRaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEY0QTBERDgwMUQyNDI0 NTUyM0IyOTFDM0Q3QjgyNzRFNkNFNzM0QTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9kY+0FKLP4Dvi3+ykcMTXBpvLO22loPshYCEoeMFWR7DAi2Tw SkvXAgk1y2QbiCUSdaS/371a0yrvRQo6QgMQ5oatM+5RYEkJDDDFomWLX1fWv0Rr 8QOsVfW5ntF54xjFmuTcV7rWFF2BXnrcE+gR0ZukHAQtUhGpNOL3ecV4yQnMljFR b041GlUipBMvDEJPDGff6R3u7sseu4CH1So2w0bO/6+jkTOI3urG2pk/r+kOJy+8 wkgZ1chiH56LePjcMvX6dthuBIEEJ5Zitc3tJcLTU/7ZdkurAFEtZXOg8lwBzJHr WdNy4l9U09/xwc7QBSP24HplcsnKClfpAdBTAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU9KDdgB0kJFUjspHD17gnTmznNKkwHwYDVR0jBBgwFoAUWw1y+fQwt9QAM3Xx DVAlueXABDcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzUzOS9XdzF5LWZRd3Q5UUFNM1h4RFZBbHVlWEFCRGMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9XdzF5LWZRd3Q5UUFNM1h4RFZBbHVl WEFCRGMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNTM5LzlLRGRnQjBrSkZVanNwSEQxN2duVG16bk5Lay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFnZL4wDQYJKoZIhvcNAQELBQADggEBAD5xXy1jJBvwUaBDnJ2C/t87s/+9 R0DJhuyCUWCdct+kXV+YyaGQilhkPEPRpEcT634wQjjDv0hICsFj9ia17jcnuw2a E1J7d9JgzhlL9mRTdz1VpmZ9MfuINKpmtEqaEfNSRb7SCeTb4u+omKGU96HjOUnw axKZoKy4EiSHiJzYimFBz9LcNS5MGjahRdYbp2VQiFDjAa+YuDxZIVQf0kyMRVkb Ti/4x/LciuoJZHOO6BtG0LDmTkE0h6+qjFTVCEY/mPWV96bbKS0M+uMuPtNCSyqI 1hcaRnleBBSl1bvG8eBu6GyS1W3gdb1nu8RS0W1Ft/BwnevYeFhoppEAgas= -----END CERTIFICATE-----Generated at Sat Apr 5 17:38:17 2025 by rpki-client