$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/4b8IZh09nnxwdcl_y3_kAeiLvig.roa File: 4b8IZh09nnxwdcl_y3_kAeiLvig.roa (raw, json) Hash identifier: DoWUUG5CbmnpgmFcKBHwNKEoUj2TBqWZvAHcXhcppu4= Subject key identifier: E1:BF:08:66:1D:3D:9E:7C:70:75:C9:7F:CB:7F:E4:01:E8:8B:BE:28 Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Certificate serial: 0587 Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/4b8IZh09nnxwdcl_y3_kAeiLvig.roa Signing time: Fri 31 Jan 2025 01:39:55 +0000 ROA not before: Fri 31 Jan 2025 01:39:55 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 10010 IP address blocks: 218.219.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1415 (0x587) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Validity Not Before: Jan 31 01:39:55 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=E1BF08661D3D9E7C7075C97FCB7FE401E88BBE28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:fb:ca:13:da:22:0d:1d:93:52:94:fa:61:3d: 82:09:e9:cb:41:1f:14:b1:39:61:4f:e0:0c:8c:b6: 17:56:46:be:b3:6e:81:d5:3c:c5:b3:a0:8a:e8:6d: a8:20:2a:ab:1c:c4:a1:30:d5:4d:64:38:7b:d0:22: fc:da:3e:55:9e:ec:f9:b1:ad:86:01:2c:f6:84:cf: 5e:79:d2:5c:cd:8c:4c:bf:79:cd:72:06:f2:87:b9: 37:60:2b:6e:30:96:ef:0c:47:9b:97:27:e3:73:2c: 8f:e4:a6:a4:ae:3c:eb:f6:bd:b3:85:26:e9:f0:00: fd:69:ce:08:8d:10:f2:4c:d6:4e:86:2f:d7:b4:8d: f8:62:8e:9e:52:b9:50:d5:17:32:05:82:a1:ab:41: fe:44:1f:85:a3:f3:17:af:ec:9b:a3:cd:84:68:77: b7:32:16:33:5d:cb:3b:07:68:67:0d:6a:48:c9:dd: 3b:85:f7:0f:9a:db:b2:48:df:2b:8a:4a:89:10:21: fa:dd:bb:8c:41:ad:17:2d:76:72:1b:ce:2c:45:89: 0b:26:79:50:8c:b6:69:28:a7:1e:ca:b2:b7:23:83: f3:ca:eb:1f:5e:2d:91:04:c9:88:70:1f:40:41:4a: ad:f4:33:fd:64:d9:f5:ba:93:aa:c5:83:04:54:43: e6:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:BF:08:66:1D:3D:9E:7C:70:75:C9:7F:CB:7F:E4:01:E8:8B:BE:28 X509v3 Authority Key Identifier: keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/4b8IZh09nnxwdcl_y3_kAeiLvig.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.219.0.0/20 Signature Algorithm: sha256WithRSAEncryption c7:c2:66:aa:be:f0:52:14:89:b2:85:1a:ce:11:7c:0f:67:7e: 4f:1f:24:67:cf:8a:12:6f:3f:8c:15:c6:0e:9e:3e:bf:4e:b1: ea:a5:57:1e:3b:e7:b3:c0:09:83:d3:d1:83:9c:b2:c6:14:f1: 4b:6e:f8:29:3e:11:53:56:f1:20:9f:43:a9:b2:98:2f:1d:9e: c3:a3:cb:cc:88:80:d9:1c:ab:46:24:d2:1c:f4:be:95:a1:ec: d9:da:9f:16:cd:66:cf:1a:a5:80:ca:ea:a5:4d:cf:5a:1b:de: c7:2a:c5:27:64:e4:c3:36:fd:ad:8b:b3:58:df:8e:6b:2a:ec: 86:70:63:66:5a:24:2d:af:19:47:0c:4f:4c:90:a3:56:43:c1: 43:28:f1:a0:7d:75:cd:b1:8d:bd:6c:2c:a4:46:ef:2c:d4:16: 98:5e:0f:6e:c8:63:79:7d:46:60:79:84:86:1d:a8:84:32:44: bd:a3:b3:4c:4f:fe:41:27:36:a8:69:bf:1f:5d:be:7c:7a:54: 55:c8:f0:87:d1:be:3e:7f:29:9e:42:af:7e:8c:be:5e:4a:74: 16:ff:3c:7f:11:bb:91:58:72:b8:e6:f5:5e:ea:6d:ad:86:a2: 87:f7:33:ec:9c:f5:01:88:c6:2e:4a:42:38:ea:63:81:41:5b: a1:a7:c0:1d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBYcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkJE Q0Q1MjZCMDlFNzg5N0Y3MUZFMDQ4NThCRTc1QzA2RUM0RjEzQTAeFw0yNTAxMzEw MTM5NTVaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEUxQkYwODY2MUQzRDlF N0M3MDc1Qzk3RkNCN0ZFNDAxRTg4QkJFMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCp+8oT2iINHZNSlPphPYIJ6ctBHxSxOWFP4AyMthdWRr6zboHV PMWzoIrobaggKqscxKEw1U1kOHvQIvzaPlWe7PmxrYYBLPaEz1550lzNjEy/ec1y BvKHuTdgK24wlu8MR5uXJ+NzLI/kpqSuPOv2vbOFJunwAP1pzgiNEPJM1k6GL9e0 jfhijp5SuVDVFzIFgqGrQf5EH4Wj8xev7JujzYRod7cyFjNdyzsHaGcNakjJ3TuF 9w+a27JI3yuKSokQIfrdu4xBrRctdnIbzixFiQsmeVCMtmkopx7Ksrcjg/PK6x9e LZEEyYhwH0BBSq30M/1k2fW6k6rFgwRUQ+Y/AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU4b8IZh09nnxwdcl/y3/kAeiLvigwHwYDVR0jBBgwFoAUu9zVJrCeeJf3H+BI WL51wG7E8TowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzU0NS91OXpWSnJDZWVKZjNILUJJV0w1MXdHN0U4VG8uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC91OXpWSnJDZWVKZjNILUJJV0w1MXdH N0U4VG8uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNTQ1LzRiOElaaDA5bm54d2RjbF95M19rQWVpTHZpZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATa2wAwDQYJKoZIhvcNAQELBQADggEBAMfCZqq+8FIUibKFGs4RfA9nfk8f JGfPihJvP4wVxg6ePr9OseqlVx4757PACYPT0YOcssYU8Utu+Ck+EVNW8SCfQ6my mC8dnsOjy8yIgNkcq0Yk0hz0vpWh7NnanxbNZs8apYDK6qVNz1ob3scqxSdk5MM2 /a2Ls1jfjmsq7IZwY2ZaJC2vGUcMT0yQo1ZDwUMo8aB9dc2xjb1sLKRG7yzUFphe D27IY3l9RmB5hIYdqIQyRL2js0xP/kEnNqhpvx9dvnx6VFXI8IfRvj5/KZ5Cr36M vl5KdBb/PH8Ru5FYcrjm9V7qba2Goof3M+yc9QGIxi5KQjjqY4FBW6GnwB0= -----END CERTIFICATE-----Generated at Sat Apr 5 17:41:55 2025 by rpki-client