$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/X5ymHb1iknDsDay-AVj0HcbZ-tA.roa File: X5ymHb1iknDsDay-AVj0HcbZ-tA.roa (raw, json) Hash identifier: /qMQ4sLHg2LIaOQDfR9/ZQV+xfPTVplTUp+qlnGOLhE= Subject key identifier: 5F:9C:A6:1D:BD:62:92:70:EC:0D:AC:BE:01:58:F4:1D:C6:D9:FA:D0 Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Certificate serial: 05A5 Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/X5ymHb1iknDsDay-AVj0HcbZ-tA.roa Signing time: Fri 31 Jan 2025 01:42:19 +0000 ROA not before: Fri 31 Jan 2025 01:42:19 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 10010 IP address blocks: 218.219.32.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1445 (0x5a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Validity Not Before: Jan 31 01:42:19 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=5F9CA61DBD629270EC0DACBE0158F41DC6D9FAD0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:c6:26:85:f2:3e:2d:fc:c8:f5:42:92:2f:80: 95:ae:0e:94:6c:b3:87:e5:f1:4e:86:60:57:52:f3: b1:49:33:d0:5c:37:59:57:5c:69:68:cc:01:68:a5: 72:c3:32:5c:4c:4e:7e:2f:83:56:70:d7:5b:21:07: f8:fa:6d:63:19:a8:42:5d:3f:3a:c2:43:83:47:ca: da:a1:45:4c:5b:61:ad:36:0a:e8:0c:9c:78:3f:50: 03:b5:4c:3c:9a:ab:e7:4a:e5:52:1f:57:f7:91:7d: ca:c3:c1:cb:0a:76:3c:1c:5e:70:ab:b3:85:4e:6c: 08:a8:3e:d3:02:b1:07:71:07:8d:a5:83:d7:d1:01: 44:10:a1:7c:ed:61:76:25:c9:01:61:25:84:b6:1b: e7:f0:20:fe:37:79:65:22:fd:86:1b:d6:51:67:ba: 47:06:bf:af:19:57:ec:c0:ba:fa:3b:c6:bf:db:96: dd:73:87:bf:bc:9b:13:09:a1:43:06:5a:ac:bf:fe: 0d:71:25:cb:5e:e4:87:04:79:20:1a:bd:00:a5:b5: 79:4e:f8:b4:16:c8:3e:8e:17:ca:f6:92:49:71:49: be:23:19:ff:31:ab:e6:38:14:fc:97:59:98:fd:3d: 47:bd:48:f8:c5:b3:32:1d:3a:ac:84:3a:fa:95:64: 55:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:9C:A6:1D:BD:62:92:70:EC:0D:AC:BE:01:58:F4:1D:C6:D9:FA:D0 X509v3 Authority Key Identifier: keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/X5ymHb1iknDsDay-AVj0HcbZ-tA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.219.32.0/20 Signature Algorithm: sha256WithRSAEncryption 30:1f:68:e8:0a:84:dd:f0:f0:cf:eb:7d:b5:08:1a:3d:7b:5a: 3d:13:b7:b5:b8:54:2b:a5:2a:0f:8b:7b:d1:03:d6:0a:f5:30: 2d:05:60:0d:83:d8:e6:08:16:f0:91:db:1d:d1:27:a7:f8:20: 36:ec:85:14:df:c8:de:ac:ff:bc:52:8b:1d:b4:8a:89:c6:60: 96:85:b3:81:a0:2d:3a:19:2f:3f:1a:2f:8a:76:ef:7e:94:38: cd:f8:b9:1e:bb:41:e2:68:6e:5a:60:e8:23:46:1a:08:a7:82: fa:b8:08:c7:a9:44:f7:a2:72:09:fb:11:b3:84:80:b4:04:cf: 6f:ee:3f:b0:fd:00:26:65:3f:f5:b2:e6:4f:c7:e7:9f:33:53: ac:24:c3:a0:b6:27:97:dd:f9:f1:da:bc:31:cc:8b:26:70:bf: 19:d5:e6:b2:84:9b:40:cc:a7:98:6e:59:e7:fd:8a:a6:d5:f7: 83:95:53:09:9c:6a:ca:c9:0b:f3:e7:a6:47:79:8e:dd:6b:20: db:7f:c4:b4:ec:46:45:f1:93:dd:93:d6:e1:45:78:46:72:34: 14:1b:19:c9:04:10:e2:f3:bc:ed:93:83:51:c1:cd:18:83:c5: 92:07:a7:84:85:08:eb:86:51:66:0d:a5:f1:8c:dc:c0:86:ac: d0:b7:7d:c9 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBaUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkJE Q0Q1MjZCMDlFNzg5N0Y3MUZFMDQ4NThCRTc1QzA2RUM0RjEzQTAeFw0yNTAxMzEw MTQyMTlaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDVGOUNBNjFEQkQ2Mjky NzBFQzBEQUNCRTAxNThGNDFEQzZEOUZBRDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDaxiaF8j4t/Mj1QpIvgJWuDpRss4fl8U6GYFdS87FJM9BcN1lX XGlozAFopXLDMlxMTn4vg1Zw11shB/j6bWMZqEJdPzrCQ4NHytqhRUxbYa02CugM nHg/UAO1TDyaq+dK5VIfV/eRfcrDwcsKdjwcXnCrs4VObAioPtMCsQdxB42lg9fR AUQQoXztYXYlyQFhJYS2G+fwIP43eWUi/YYb1lFnukcGv68ZV+zAuvo7xr/blt1z h7+8mxMJoUMGWqy//g1xJcte5IcEeSAavQCltXlO+LQWyD6OF8r2kklxSb4jGf8x q+Y4FPyXWZj9PUe9SPjFszIdOqyEOvqVZFXzAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUX5ymHb1iknDsDay+AVj0HcbZ+tAwHwYDVR0jBBgwFoAUu9zVJrCeeJf3H+BI WL51wG7E8TowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzU0NS91OXpWSnJDZWVKZjNILUJJV0w1MXdHN0U4VG8uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC91OXpWSnJDZWVKZjNILUJJV0w1MXdH N0U4VG8uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNTQ1L1g1eW1IYjFpa25Ec0RheS1BVmowSGNiWi10QS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATa2yAwDQYJKoZIhvcNAQELBQADggEBADAfaOgKhN3w8M/rfbUIGj17Wj0T t7W4VCulKg+Le9ED1gr1MC0FYA2D2OYIFvCR2x3RJ6f4IDbshRTfyN6s/7xSix20 ionGYJaFs4GgLToZLz8aL4p2736UOM34uR67QeJoblpg6CNGGgingvq4CMepRPei cgn7EbOEgLQEz2/uP7D9ACZlP/Wy5k/H558zU6wkw6C2J5fd+fHavDHMiyZwvxnV 5rKEm0DMp5huWef9iqbV94OVUwmcasrJC/Pnpkd5jt1rINt/xLTsRkXxk92T1uFF eEZyNBQbGckEEOLzvO2Tg1HBzRiDxZIHp4SFCOuGUWYNpfGM3MCGrNC3fck= -----END CERTIFICATE-----Generated at Sat Apr 5 23:10:49 2025 by rpki-client