$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/2BjW4PHe33uR-RyeyBWX4-fMVW0.roa File: 2BjW4PHe33uR-RyeyBWX4-fMVW0.roa (raw, json) Hash identifier: N4LoAVbnJVTlYaBl3zCJRVXJzmKpbzmtbu+rkBKdOfk= Subject key identifier: D8:18:D6:E0:F1:DE:DF:7B:91:F9:1C:9E:C8:15:97:E3:E7:CC:55:6D Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Certificate serial: 059D Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/2BjW4PHe33uR-RyeyBWX4-fMVW0.roa Signing time: Fri 31 Jan 2025 01:42:14 +0000 ROA not before: Fri 31 Jan 2025 01:42:14 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 10010 IP address blocks: 61.198.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1437 (0x59d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Validity Not Before: Jan 31 01:42:14 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=D818D6E0F1DEDF7B91F91C9EC81597E3E7CC556D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:47:0e:40:ec:1b:b9:4b:ea:e3:da:f4:70:d6: 0f:39:e0:97:bd:47:87:5a:77:7e:36:cc:9a:22:c1: cc:08:59:bf:46:4c:86:b9:e8:b9:3f:68:4d:ee:6c: 72:4f:44:57:d7:df:24:2c:0e:27:84:77:85:de:19: c2:90:b2:bb:8d:07:75:1a:23:a1:eb:2b:b1:1b:d3: 61:f4:92:72:57:e9:a8:12:41:e3:4f:a7:50:dc:58: 3a:65:64:3f:88:9d:44:ac:56:c0:84:4d:1d:cf:dd: 47:33:4c:84:9e:28:1d:06:c2:09:f3:27:bc:03:9d: d7:5c:19:b0:b3:2c:99:83:38:f9:22:07:c8:28:09: 2e:56:bc:f6:d9:f3:d0:e6:58:b2:af:97:35:55:58: 93:11:a9:27:69:96:46:1c:d2:61:fe:0f:9c:c2:59: ef:cc:81:8a:52:58:80:14:e9:d0:44:a9:4a:c8:07: c6:5c:22:ad:e0:03:ae:7f:3f:38:0a:6f:b5:a7:63: 25:48:04:cb:2f:8b:1a:4c:47:49:6c:28:f4:85:b3: 99:1b:c4:9a:d8:85:c6:e1:44:6c:b4:35:20:a2:aa: bf:be:10:4e:64:79:9a:29:f8:f2:50:a4:96:ca:7d: dc:ec:ee:31:ad:43:eb:2e:c8:c0:3f:eb:2b:c2:11: 57:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:18:D6:E0:F1:DE:DF:7B:91:F9:1C:9E:C8:15:97:E3:E7:CC:55:6D X509v3 Authority Key Identifier: keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/2BjW4PHe33uR-RyeyBWX4-fMVW0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.198.112.0/20 Signature Algorithm: sha256WithRSAEncryption c8:d5:3b:b2:82:6b:8a:86:70:2e:09:a4:d4:f2:71:2f:95:99: 44:7a:60:59:92:70:14:ce:b5:51:d0:bb:58:73:a1:d8:5c:f2: d8:8c:fe:9b:9d:11:ed:a4:9c:fc:c7:06:73:40:57:58:92:ca: ce:b9:d1:bd:f9:cd:d5:f5:ea:84:4b:86:62:1a:92:51:bb:5a: ef:e3:57:f1:5e:2c:41:f2:6e:b5:56:ee:18:28:18:1d:9e:53: bf:a7:d9:87:87:ed:f3:db:ac:99:0b:51:4e:10:d0:be:a9:ef: 86:df:e9:cd:a0:f5:da:54:49:40:8d:cc:9a:24:4b:24:ef:eb: 40:19:bd:07:19:a4:e7:a1:56:63:af:aa:87:58:3a:07:cb:f1: b4:ab:09:59:84:50:20:8b:37:37:54:69:d9:e3:bd:9a:54:1e: 1f:25:d4:d0:12:d5:5b:40:ea:91:d4:c3:32:90:7b:24:e8:bc: cb:24:1a:5a:98:e4:5c:1f:7d:be:4a:44:d6:93:2c:95:ec:b5: 2e:6e:c3:98:c7:9a:29:81:7c:cf:ac:0c:51:74:43:2c:60:49: e7:b9:b7:1a:13:e8:aa:7c:ef:4e:76:17:0f:12:31:cf:ff:2f: 9d:de:96:da:55:48:19:78:8c:76:d1:72:bc:62:ab:11:f5:b8: b7:3b:3f:e9 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBZ0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkJE Q0Q1MjZCMDlFNzg5N0Y3MUZFMDQ4NThCRTc1QzA2RUM0RjEzQTAeFw0yNTAxMzEw MTQyMTRaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEQ4MThENkUwRjFERURG N0I5MUY5MUM5RUM4MTU5N0UzRTdDQzU1NkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvRw5A7Bu5S+rj2vRw1g854Je9R4dad342zJoiwcwIWb9GTIa5 6Lk/aE3ubHJPRFfX3yQsDieEd4XeGcKQsruNB3UaI6HrK7Eb02H0knJX6agSQeNP p1DcWDplZD+InUSsVsCETR3P3UczTISeKB0GwgnzJ7wDnddcGbCzLJmDOPkiB8go CS5WvPbZ89DmWLKvlzVVWJMRqSdplkYc0mH+D5zCWe/MgYpSWIAU6dBEqUrIB8Zc Iq3gA65/PzgKb7WnYyVIBMsvixpMR0lsKPSFs5kbxJrYhcbhRGy0NSCiqr++EE5k eZop+PJQpJbKfdzs7jGtQ+suyMA/6yvCEVcVAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU2BjW4PHe33uR+RyeyBWX4+fMVW0wHwYDVR0jBBgwFoAUu9zVJrCeeJf3H+BI WL51wG7E8TowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzU0NS91OXpWSnJDZWVKZjNILUJJV0w1MXdHN0U4VG8uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC91OXpWSnJDZWVKZjNILUJJV0w1MXdH N0U4VG8uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNTQ1LzJCalc0UEhlMzN1Ui1SeWV5QldYNC1mTVZXMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQ9xnAwDQYJKoZIhvcNAQELBQADggEBAMjVO7KCa4qGcC4JpNTycS+VmUR6 YFmScBTOtVHQu1hzodhc8tiM/pudEe2knPzHBnNAV1iSys650b35zdX16oRLhmIa klG7Wu/jV/FeLEHybrVW7hgoGB2eU7+n2YeH7fPbrJkLUU4Q0L6p74bf6c2g9dpU SUCNzJokSyTv60AZvQcZpOehVmOvqodYOgfL8bSrCVmEUCCLNzdUadnjvZpUHh8l 1NAS1VtA6pHUwzKQeyTovMskGlqY5Fwffb5KRNaTLJXstS5uw5jHmimBfM+sDFF0 QyxgSee5txoT6Kp87052Fw8SMc//L53eltpVSBl4jHbRcrxiqxH1uLc7P+k= -----END CERTIFICATE-----Generated at Sat Apr 5 20:01:43 2025 by rpki-client