$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/Qs8_3CExtgackoV4NjoHYFmsbrE.roa File: Qs8_3CExtgackoV4NjoHYFmsbrE.roa (raw, json) Hash identifier: CPJXFDZyLmFZWS2uNX/puLubdplCf5foryw+Ua2af1U= Subject key identifier: 42:CF:3F:DC:21:31:B6:06:9C:92:85:78:36:3A:07:60:59:AC:6E:B1 Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Certificate serial: 058F Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/Qs8_3CExtgackoV4NjoHYFmsbrE.roa Signing time: Fri 31 Jan 2025 01:42:08 +0000 ROA not before: Fri 31 Jan 2025 01:42:08 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 10010 IP address blocks: 42.127.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1423 (0x58f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Validity Not Before: Jan 31 01:42:08 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=42CF3FDC2131B6069C928578363A076059AC6EB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:3e:5a:d8:8e:53:fe:f6:74:4d:f2:9a:f0:34: 93:71:9f:ec:b9:19:ac:69:b2:0e:c3:78:c5:0e:b7: 6b:74:72:8f:df:86:70:9f:20:37:03:72:9e:14:83: 97:e3:2a:0d:09:96:40:fd:c9:f6:05:d6:77:9b:2d: 25:a8:ec:9f:aa:14:26:fb:8f:94:02:ef:99:d9:49: e9:17:82:44:a5:de:cd:45:72:96:03:2c:f2:43:cf: 35:d8:34:f4:57:f3:6c:9c:83:14:3c:1d:67:59:16: b3:5c:53:fc:45:f7:5c:5e:bc:a4:b6:03:40:45:cb: 7a:0c:f8:08:1a:d5:e7:bc:51:e8:ac:d8:9e:ed:52: 79:ce:ed:26:b6:2e:f3:c7:9f:17:62:68:0c:c0:94: 7d:6d:82:17:dc:4a:5f:73:32:6c:e6:32:88:ab:36: 1e:69:ab:bb:29:31:56:6a:88:16:91:05:bc:e8:14: ff:23:28:bc:fe:b2:8b:0f:fc:23:9a:24:31:08:01: 6f:9b:60:b8:1e:ed:04:d7:22:e3:92:56:da:40:07: ae:78:77:fa:e5:81:75:98:91:64:ee:2b:77:fe:6a: 8f:46:97:67:d1:31:f5:9a:b2:dc:c9:f0:63:ee:83: 01:23:fe:88:d8:f5:ec:b2:8f:b8:3f:a6:41:16:00: 83:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:CF:3F:DC:21:31:B6:06:9C:92:85:78:36:3A:07:60:59:AC:6E:B1 X509v3 Authority Key Identifier: keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/Qs8_3CExtgackoV4NjoHYFmsbrE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 42.127.0.0/17 Signature Algorithm: sha256WithRSAEncryption 8e:32:25:12:60:1e:8e:b6:14:f1:d3:9b:6f:c8:da:f3:23:fe: 6e:c3:ea:7d:6c:a5:60:20:8e:00:92:f5:14:a9:70:09:ab:83: c7:3c:81:ef:64:44:54:04:98:ab:3f:99:2b:5b:39:81:f4:47: a6:e4:80:ca:4e:5c:2c:cd:f8:26:81:f6:75:5b:8d:f6:56:1a: f4:9a:95:3b:7f:23:af:df:0f:6d:57:ba:48:ff:c6:44:7f:6e: 1c:c0:04:ab:36:3b:5d:6d:e4:ee:ee:e9:c7:ff:f3:ba:e2:85: dc:75:4b:c0:13:86:09:01:19:d2:66:e1:07:d1:71:8c:e6:c3: 13:46:b2:d8:7e:b2:b6:d4:1f:29:3b:91:76:1e:3f:3a:f0:a5: 3e:d5:b1:20:9a:d6:bc:8c:c3:82:9e:7e:a3:93:c5:c5:ad:64: 35:77:15:2e:75:dc:f0:5e:69:1c:ae:0e:c1:31:30:dc:4b:27: 59:56:da:1e:61:3d:2a:f9:0a:27:d1:54:e9:a3:46:a3:ff:60: d3:c7:2a:71:3f:36:8e:86:34:01:f6:17:13:83:ac:94:fd:fa: 3a:b9:8e:85:54:0f:d6:d2:f0:53:e1:1a:5c:a9:58:f5:91:1d: e9:2d:09:16:f2:49:17:89:96:bf:0a:3a:64:40:53:ae:5a:1a: 9d:b6:81:89 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBY8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkJE Q0Q1MjZCMDlFNzg5N0Y3MUZFMDQ4NThCRTc1QzA2RUM0RjEzQTAeFw0yNTAxMzEw MTQyMDhaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDQyQ0YzRkRDMjEzMUI2 MDY5QzkyODU3ODM2M0EwNzYwNTlBQzZFQjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFPlrYjlP+9nRN8prwNJNxn+y5Gaxpsg7DeMUOt2t0co/fhnCf IDcDcp4Ug5fjKg0JlkD9yfYF1nebLSWo7J+qFCb7j5QC75nZSekXgkSl3s1FcpYD LPJDzzXYNPRX82ycgxQ8HWdZFrNcU/xF91xevKS2A0BFy3oM+Aga1ee8Ueis2J7t UnnO7Sa2LvPHnxdiaAzAlH1tghfcSl9zMmzmMoirNh5pq7spMVZqiBaRBbzoFP8j KLz+sosP/COaJDEIAW+bYLge7QTXIuOSVtpAB654d/rlgXWYkWTuK3f+ao9Gl2fR MfWastzJ8GPugwEj/ojY9eyyj7g/pkEWAIPFAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUQs8/3CExtgackoV4NjoHYFmsbrEwHwYDVR0jBBgwFoAUu9zVJrCeeJf3H+BI WL51wG7E8TowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzU0NS91OXpWSnJDZWVKZjNILUJJV0w1MXdHN0U4VG8uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC91OXpWSnJDZWVKZjNILUJJV0w1MXdH N0U4VG8uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNTQ1L1FzOF8zQ0V4dGdhY2tvVjROam9IWUZtc2JyRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcqfwAwDQYJKoZIhvcNAQELBQADggEBAI4yJRJgHo62FPHTm2/I2vMj/m7D 6n1spWAgjgCS9RSpcAmrg8c8ge9kRFQEmKs/mStbOYH0R6bkgMpOXCzN+CaB9nVb jfZWGvSalTt/I6/fD21Xukj/xkR/bhzABKs2O11t5O7u6cf/87rihdx1S8AThgkB GdJm4QfRcYzmwxNGsth+srbUHyk7kXYePzrwpT7VsSCa1ryMw4KefqOTxcWtZDV3 FS513PBeaRyuDsExMNxLJ1lW2h5hPSr5CifRVOmjRqP/YNPHKnE/No6GNAH2FxOD rJT9+jq5joVUD9bS8FPhGlypWPWRHektCRbySReJlr8KOmRAU65aGp22gYk= -----END CERTIFICATE-----Generated at Sat Apr 5 23:11:14 2025 by rpki-client