$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/AEznuk0cpvpbwArWbF7ADZVV9oU.roa File: AEznuk0cpvpbwArWbF7ADZVV9oU.roa (raw, json) Hash identifier: CDazBBElHDK+KEHRx5xeSgawv52FRbFw4qDoA5yP2uE= Subject key identifier: 00:4C:E7:BA:4D:1C:A6:FA:5B:C0:0A:D6:6C:5E:C0:0D:95:55:F6:85 Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Certificate serial: 053A Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/AEznuk0cpvpbwArWbF7ADZVV9oU.roa Signing time: Fri 31 Jan 2025 01:30:24 +0000 ROA not before: Fri 31 Jan 2025 01:30:24 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 10010 IP address blocks: 220.148.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1338 (0x53a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Validity Not Before: Jan 31 01:30:24 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=004CE7BA4D1CA6FA5BC00AD66C5EC00D9555F685 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d1:2b:c9:8f:4a:7c:94:fe:a6:cc:b1:c0:94: 76:64:f3:1a:fb:7b:be:3a:df:d1:a5:cd:13:89:50: 96:f9:3c:6d:1b:a9:a7:9e:57:c3:59:7e:c0:5c:f0: d5:7a:36:61:9f:b1:73:f1:d9:0e:42:a1:d9:ad:5d: a1:77:82:2e:bb:d3:a6:c8:71:e7:f4:30:8f:9b:1e: 98:05:8a:b5:79:87:e4:18:6e:1a:a4:47:84:50:16: 02:9e:c3:4d:13:a7:d4:78:84:84:b4:50:cc:ac:08: da:4d:1b:ac:52:3c:30:7f:f7:98:45:b9:31:55:4a: e3:a0:de:b6:40:de:81:d5:d5:da:ad:a9:2f:c2:c0: cc:26:4f:46:e3:9a:0c:e2:83:ee:cd:40:e7:f5:e2: fb:73:72:b5:11:70:99:76:c1:b6:a0:a0:78:49:06: b3:32:c8:cf:38:c5:c4:23:28:82:0e:e5:87:6d:13: 3e:40:f3:07:49:23:6c:ae:c8:2a:a9:1e:c2:e8:a6: 48:34:57:58:17:3f:e1:0e:bf:2f:eb:eb:ac:4b:73: 55:07:1a:34:75:13:52:6b:9e:dd:ef:ed:00:ef:11: bc:7d:00:b4:0c:fe:f5:e4:d8:d6:8d:42:71:ca:72: df:09:f2:00:bc:b3:e1:37:36:0e:61:93:8c:ec:81: 4a:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:4C:E7:BA:4D:1C:A6:FA:5B:C0:0A:D6:6C:5E:C0:0D:95:55:F6:85 X509v3 Authority Key Identifier: keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/AEznuk0cpvpbwArWbF7ADZVV9oU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.148.241.0/24 Signature Algorithm: sha256WithRSAEncryption 59:bb:37:1d:54:b4:40:d2:2f:cb:df:df:b6:b7:2f:30:aa:4a: 43:6a:20:8c:e2:82:a3:c6:5c:5c:3c:39:19:d0:7d:9d:7d:7b: 23:02:f1:61:f9:4a:c9:42:1a:cb:67:51:bb:27:b0:8f:00:82: 94:0f:0d:3a:15:e2:73:50:c4:18:1e:05:c4:4c:0a:46:fb:af: 10:eb:fb:8d:d0:5f:8e:38:e8:57:98:9a:e4:e0:e9:34:1c:41: 54:4f:31:4a:b8:a6:41:3e:9e:86:1e:d7:de:6c:63:d1:9b:8a: d0:a7:ad:f4:57:76:1c:60:32:6d:11:3a:d3:1a:b4:de:6a:da: 29:f4:3e:1e:0d:19:4e:6c:0d:3e:dd:ca:bc:6a:3d:ff:08:6e: 1b:96:c4:fd:58:f1:ab:ce:60:1c:23:c1:f0:d6:f7:2b:39:48: 4f:58:f0:be:9b:05:28:91:fd:50:21:d5:fb:6d:b1:19:4a:c3: ae:21:c7:9e:a3:01:74:ab:f5:38:f2:21:a3:97:23:c3:34:cd: 77:42:e5:b0:d6:58:6b:f8:71:4d:9d:bc:e5:64:c5:a2:8d:e0: e9:42:6e:b5:8e:de:4d:07:f2:57:60:38:8b:a7:b9:d2:0c:d5: 1d:80:c0:df:a7:7f:86:c0:25:8a:94:9a:bb:fa:0c:c3:c0:55: b9:80:8d:45 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBTowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkJE Q0Q1MjZCMDlFNzg5N0Y3MUZFMDQ4NThCRTc1QzA2RUM0RjEzQTAeFw0yNTAxMzEw MTMwMjRaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDAwNENFN0JBNEQxQ0E2 RkE1QkMwMEFENjZDNUVDMDBEOTU1NUY2ODUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC40SvJj0p8lP6mzLHAlHZk8xr7e74639GlzROJUJb5PG0bqaee V8NZfsBc8NV6NmGfsXPx2Q5CodmtXaF3gi6706bIcef0MI+bHpgFirV5h+QYbhqk R4RQFgKew00Tp9R4hIS0UMysCNpNG6xSPDB/95hFuTFVSuOg3rZA3oHV1dqtqS/C wMwmT0bjmgzig+7NQOf14vtzcrURcJl2wbagoHhJBrMyyM84xcQjKIIO5YdtEz5A 8wdJI2yuyCqpHsLopkg0V1gXP+EOvy/r66xLc1UHGjR1E1Jrnt3v7QDvEbx9ALQM /vXk2NaNQnHKct8J8gC8s+E3Ng5hk4zsgUpvAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUAEznuk0cpvpbwArWbF7ADZVV9oUwHwYDVR0jBBgwFoAUu9zVJrCeeJf3H+BI WL51wG7E8TowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzU0NS91OXpWSnJDZWVKZjNILUJJV0w1MXdHN0U4VG8uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC91OXpWSnJDZWVKZjNILUJJV0w1MXdH N0U4VG8uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNTQ1L0FFem51azBjcHZwYndBcldiRjdBRFpWVjlvVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADclPEwDQYJKoZIhvcNAQELBQADggEBAFm7Nx1UtEDSL8vf37a3LzCqSkNq IIzigqPGXFw8ORnQfZ19eyMC8WH5SslCGstnUbsnsI8AgpQPDToV4nNQxBgeBcRM Ckb7rxDr+43QX4446FeYmuTg6TQcQVRPMUq4pkE+noYe195sY9GbitCnrfRXdhxg Mm0ROtMatN5q2in0Ph4NGU5sDT7dyrxqPf8IbhuWxP1Y8avOYBwjwfDW9ys5SE9Y 8L6bBSiR/VAh1fttsRlKw64hx56jAXSr9TjyIaOXI8M0zXdC5bDWWGv4cU2dvOVk xaKN4OlCbrWO3k0H8ldgOIunudIM1R2AwN+nf4bAJYqUmrv6DMPAVbmAjUU= -----END CERTIFICATE-----Generated at Sat Apr 5 17:22:41 2025 by rpki-client