$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/8OUhgwviI8xtSFnMAd_fqmIDxr4.roa File: 8OUhgwviI8xtSFnMAd_fqmIDxr4.roa (raw, json) Hash identifier: OS3QPS7/qoVPbYlSHnp3fadYx7nhMa23BBTYV3Y+2W4= Subject key identifier: F0:E5:21:83:0B:E2:23:CC:6D:48:59:CC:01:DF:DF:AA:62:03:C6:BE Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Certificate serial: 055E Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/8OUhgwviI8xtSFnMAd_fqmIDxr4.roa Signing time: Fri 31 Jan 2025 01:36:15 +0000 ROA not before: Fri 31 Jan 2025 01:36:15 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 10010 IP address blocks: 61.198.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1374 (0x55e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Validity Not Before: Jan 31 01:36:15 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=F0E521830BE223CC6D4859CC01DFDFAA6203C6BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:62:c8:3c:be:a7:2e:1b:e1:48:23:b5:ce:e6: 67:32:9a:f5:27:8c:d7:1a:c0:b8:7e:aa:79:8d:1f: 02:c4:a9:21:c1:69:c4:b7:da:06:3e:86:bf:89:9c: 35:b9:10:41:c1:de:e7:96:29:b5:4a:06:f6:52:5f: b6:23:93:d4:e4:13:26:23:aa:c2:6a:b6:ac:1a:2f: b5:70:92:b4:1d:02:1f:20:94:ae:67:2a:93:56:f5: 6f:14:f3:59:f7:b3:a5:cf:d6:8b:30:bb:a8:69:46: aa:4f:20:59:a0:67:a0:7c:a5:cc:4b:41:31:40:0a: cb:7d:19:36:34:8b:14:99:5a:ea:48:d8:fd:46:8c: 28:9d:e5:65:59:5d:27:3e:5b:39:7a:76:2f:c9:6c: dd:7a:da:88:88:bb:fc:c2:f4:2d:21:66:52:12:c3: 52:3a:3f:e6:f0:61:cb:59:81:ea:92:2a:25:d2:c4: a0:dc:b6:fe:9f:38:fc:c6:ae:9d:c6:5b:bc:aa:eb: b0:ba:5a:a4:61:cd:80:54:b4:34:d1:3a:ff:28:9f: 2a:7e:1c:c0:15:2d:0b:28:4c:5e:20:b9:99:cc:a5: 70:67:7c:86:f1:07:0a:ed:04:e7:6a:4d:bb:78:b9: 8a:f4:06:41:1a:38:83:96:71:26:68:35:1f:5f:bd: 50:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:E5:21:83:0B:E2:23:CC:6D:48:59:CC:01:DF:DF:AA:62:03:C6:BE X509v3 Authority Key Identifier: keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/8OUhgwviI8xtSFnMAd_fqmIDxr4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.198.96.0/19 Signature Algorithm: sha256WithRSAEncryption 4a:fd:29:80:d9:cf:ab:df:11:29:11:b4:a1:aa:7f:23:61:9d: 02:3f:1e:6e:04:00:ed:fc:85:3f:af:60:a7:d0:04:1c:c7:49: 32:54:e7:40:1e:87:40:24:c9:44:65:fd:06:ed:2c:4f:8d:19: 8b:97:b2:bb:06:38:0e:c1:60:70:ab:f5:c9:3b:91:ca:3c:43: f7:35:82:2a:6e:a4:0c:68:70:ce:40:85:ee:58:7e:f8:4c:fa: f4:40:52:f4:6c:b4:57:57:31:12:ad:74:44:28:e0:9f:81:c3: cd:27:21:d1:4e:9c:53:70:e8:86:8b:e1:35:5e:4c:a4:08:55: 3a:4e:73:e8:0c:9d:d6:03:e4:b0:18:78:3c:56:8a:67:65:d9: 8e:ba:dc:ff:5e:40:f7:fd:d0:21:cd:47:ac:13:58:81:8d:3e: 6c:be:87:9c:0f:2c:94:e6:7e:e2:50:75:4d:bf:41:c6:78:b6: 26:dc:16:e2:8d:4f:e3:bf:20:f7:ac:14:6b:89:2e:7f:5c:cb: 7b:4d:13:ca:b4:af:5a:13:68:d9:f3:dc:03:0e:64:07:60:1d: 6f:60:1a:77:44:1b:92:c9:18:3a:56:2f:62:d0:7f:42:44:ab: 0b:45:63:a5:5d:ed:38:d1:c1:01:c3:7f:ee:77:23:1d:60:b0: 1d:22:c0:4e -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBV4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkJE Q0Q1MjZCMDlFNzg5N0Y3MUZFMDQ4NThCRTc1QzA2RUM0RjEzQTAeFw0yNTAxMzEw MTM2MTVaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEYwRTUyMTgzMEJFMjIz Q0M2RDQ4NTlDQzAxREZERkFBNjIwM0M2QkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHYsg8vqcuG+FII7XO5mcymvUnjNcawLh+qnmNHwLEqSHBacS3 2gY+hr+JnDW5EEHB3ueWKbVKBvZSX7Yjk9TkEyYjqsJqtqwaL7VwkrQdAh8glK5n KpNW9W8U81n3s6XP1oswu6hpRqpPIFmgZ6B8pcxLQTFACst9GTY0ixSZWupI2P1G jCid5WVZXSc+Wzl6di/JbN162oiIu/zC9C0hZlISw1I6P+bwYctZgeqSKiXSxKDc tv6fOPzGrp3GW7yq67C6WqRhzYBUtDTROv8onyp+HMAVLQsoTF4guZnMpXBnfIbx BwrtBOdqTbt4uYr0BkEaOIOWcSZoNR9fvVBJAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU8OUhgwviI8xtSFnMAd/fqmIDxr4wHwYDVR0jBBgwFoAUu9zVJrCeeJf3H+BI WL51wG7E8TowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzU0NS91OXpWSnJDZWVKZjNILUJJV0w1MXdHN0U4VG8uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC91OXpWSnJDZWVKZjNILUJJV0w1MXdH N0U4VG8uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNTQ1LzhPVWhnd3ZpSTh4dFNGbk1BZF9mcW1JRHhyNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAU9xmAwDQYJKoZIhvcNAQELBQADggEBAEr9KYDZz6vfESkRtKGqfyNhnQI/ Hm4EAO38hT+vYKfQBBzHSTJU50Aeh0AkyURl/QbtLE+NGYuXsrsGOA7BYHCr9ck7 kco8Q/c1gipupAxocM5Ahe5YfvhM+vRAUvRstFdXMRKtdEQo4J+Bw80nIdFOnFNw 6IaL4TVeTKQIVTpOc+gMndYD5LAYeDxWimdl2Y663P9eQPf90CHNR6wTWIGNPmy+ h5wPLJTmfuJQdU2/QcZ4tibcFuKNT+O/IPesFGuJLn9cy3tNE8q0r1oTaNnz3AMO ZAdgHW9gGndEG5LJGDpWL2LQf0JEqwtFY6Vd7TjRwQHDf+53Ix1gsB0iwE4= -----END CERTIFICATE-----Generated at Sat Apr 5 17:23:11 2025 by rpki-client