$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/3ndjuyTpypq2HhCo_NtRtXq_l-k.roa File: 3ndjuyTpypq2HhCo_NtRtXq_l-k.roa (raw, json) Hash identifier: qPJ9lXrKP28TdZ5qDx0y8PZHiPjQtIfuBZwb9QmAezQ= Subject key identifier: DE:77:63:BB:24:E9:CA:9A:B6:1E:10:A8:FC:DB:51:B5:7A:BF:97:E9 Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Certificate serial: 0589 Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/3ndjuyTpypq2HhCo_NtRtXq_l-k.roa Signing time: Fri 31 Jan 2025 01:42:05 +0000 ROA not before: Fri 31 Jan 2025 01:42:05 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 10010 IP address blocks: 220.216.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1417 (0x589) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Validity Not Before: Jan 31 01:42:05 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=DE7763BB24E9CA9AB61E10A8FCDB51B57ABF97E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:a9:5c:2a:3f:cf:2d:a1:b7:dc:14:3a:21:ca: 8c:51:b1:83:df:46:44:7b:0b:af:b6:36:73:07:dd: 67:5e:09:fd:85:c9:84:9e:90:2a:db:7c:fc:48:27: 30:b7:37:f8:c3:27:06:64:6a:60:ee:90:1d:74:6d: 2d:c4:33:d0:fe:2e:f6:f0:63:11:c5:78:88:58:ba: 67:97:82:d1:5a:e3:ad:04:df:2c:c2:8d:f1:ef:10: 0e:14:27:c3:2b:4f:06:e9:97:c7:ad:59:27:34:bc: 58:87:82:34:7a:12:e5:ef:02:b4:e4:95:f2:71:c5: 45:25:b1:d9:a8:7f:42:1d:d2:f3:51:78:82:33:54: 19:78:13:b0:42:bc:00:d0:c8:37:42:c4:25:4d:27: 7c:85:e7:de:9e:af:77:b3:6c:1a:6d:4a:62:02:70: 61:cb:93:d0:05:ed:48:07:11:1f:88:0f:1d:a4:5f: d7:50:43:4e:34:2a:15:2e:93:f3:9d:a8:75:12:a6: aa:4d:e5:34:34:70:f7:0e:34:d9:c6:33:6d:4c:cd: fb:10:0d:3a:a8:0c:4f:10:a3:8d:c9:78:e2:fa:a8: 40:77:03:77:28:8e:19:3e:79:96:32:90:fc:2a:d8: 03:16:a9:5a:5f:f1:a4:e6:01:7d:b7:a6:8c:ad:e4: 7c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:77:63:BB:24:E9:CA:9A:B6:1E:10:A8:FC:DB:51:B5:7A:BF:97:E9 X509v3 Authority Key Identifier: keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/3ndjuyTpypq2HhCo_NtRtXq_l-k.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.216.0.0/19 Signature Algorithm: sha256WithRSAEncryption 03:79:ed:b6:c3:c7:18:a4:65:20:9f:2c:15:eb:03:8d:a8:b4: 95:d7:fa:48:c8:b0:9f:95:2b:d4:39:4f:d4:a0:01:30:e4:d8: e0:4b:cb:38:76:14:9e:d6:fc:a2:5a:9d:d5:d0:9f:85:35:9a: d8:ec:c3:7c:1c:98:7f:32:39:5a:58:71:c0:47:8e:d6:21:26: be:50:9b:52:30:27:4c:1b:b0:bb:9f:fe:ca:f8:7a:35:fd:92: f0:9a:0d:02:da:f6:3c:61:bc:58:fd:d5:6c:a4:88:13:00:c9: cb:61:c5:2b:a2:54:60:11:90:a1:5b:73:4a:4c:c7:d0:d9:bd: 54:b4:36:17:8e:fc:d0:97:84:2a:5d:89:64:b4:e5:e1:83:98: eb:e8:30:b0:af:cf:79:91:bd:0b:0f:09:6f:29:f2:fe:7e:0b: 47:6c:52:47:d5:62:d1:b9:9d:b3:6a:7b:83:50:8c:c9:56:eb: 54:00:24:d3:f7:7f:a8:93:1b:8a:84:fe:eb:0e:e0:10:29:23: 47:b6:84:be:7b:bf:14:6e:35:f5:b6:81:eb:49:53:a9:b7:b8: ac:07:36:2f:63:cf:93:29:0b:e2:fc:28:42:a1:9e:4e:11:51: 0c:6f:96:57:b4:9e:66:1d:4f:8b:4f:e5:fe:1c:ea:f9:aa:8c: 5a:cf:a2:57 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBYkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkJE Q0Q1MjZCMDlFNzg5N0Y3MUZFMDQ4NThCRTc1QzA2RUM0RjEzQTAeFw0yNTAxMzEw MTQyMDVaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKERFNzc2M0JCMjRFOUNB OUFCNjFFMTBBOEZDREI1MUI1N0FCRjk3RTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQqVwqP88tobfcFDohyoxRsYPfRkR7C6+2NnMH3WdeCf2FyYSe kCrbfPxIJzC3N/jDJwZkamDukB10bS3EM9D+LvbwYxHFeIhYumeXgtFa460E3yzC jfHvEA4UJ8MrTwbpl8etWSc0vFiHgjR6EuXvArTklfJxxUUlsdmof0Id0vNReIIz VBl4E7BCvADQyDdCxCVNJ3yF596er3ezbBptSmICcGHLk9AF7UgHER+IDx2kX9dQ Q040KhUuk/OdqHUSpqpN5TQ0cPcONNnGM21MzfsQDTqoDE8Qo43JeOL6qEB3A3co jhk+eZYykPwq2AMWqVpf8aTmAX23poyt5HwFAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU3ndjuyTpypq2HhCo/NtRtXq/l+kwHwYDVR0jBBgwFoAUu9zVJrCeeJf3H+BI WL51wG7E8TowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzU0NS91OXpWSnJDZWVKZjNILUJJV0w1MXdHN0U4VG8uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC91OXpWSnJDZWVKZjNILUJJV0w1MXdH N0U4VG8uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNTQ1LzNuZGp1eVRweXBxMkhoQ29fTnRSdFhxX2wtay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXc2AAwDQYJKoZIhvcNAQELBQADggEBAAN57bbDxxikZSCfLBXrA42otJXX +kjIsJ+VK9Q5T9SgATDk2OBLyzh2FJ7W/KJandXQn4U1mtjsw3wcmH8yOVpYccBH jtYhJr5Qm1IwJ0wbsLuf/sr4ejX9kvCaDQLa9jxhvFj91WykiBMAycthxSuiVGAR kKFbc0pMx9DZvVS0NheO/NCXhCpdiWS05eGDmOvoMLCvz3mRvQsPCW8p8v5+C0ds UkfVYtG5nbNqe4NQjMlW61QAJNP3f6iTG4qE/usO4BApI0e2hL57vxRuNfW2getJ U6m3uKwHNi9jz5MpC+L8KEKhnk4RUQxvlle0nmYdT4tP5f4c6vmqjFrPolc= -----END CERTIFICATE-----Generated at Sat Apr 5 17:20:00 2025 by rpki-client