$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/jfI_d5jb1KJ-mXB_DKLvvwAmUf4.roa File: jfI_d5jb1KJ-mXB_DKLvvwAmUf4.roa (raw, json) Hash identifier: Rhwncgr0icC+z0YhTm4+EB10kRI4cKcettbKIKIUI7M= Subject key identifier: 8D:F2:3F:77:98:DB:D4:A2:7E:99:70:7F:0C:A2:EF:BF:00:26:51:FE Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Certificate serial: 0596 Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/jfI_d5jb1KJ-mXB_DKLvvwAmUf4.roa Signing time: Fri 31 Jan 2025 01:42:11 +0000 ROA not before: Fri 31 Jan 2025 01:42:11 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 10010 IP address blocks: 61.211.176.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1430 (0x596) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Validity Not Before: Jan 31 01:42:11 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=8DF23F7798DBD4A27E99707F0CA2EFBF002651FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:6e:c9:7a:89:31:05:c0:fa:13:3a:96:f2:19: f5:6a:b9:60:f9:ef:fc:92:55:a4:c3:2c:5e:0b:d6: e4:cb:f0:00:bc:f7:49:c0:2a:3f:de:46:8c:7c:08: 19:af:3f:3d:20:e7:cb:5a:19:2a:01:1a:52:c4:b2: a6:f8:6c:85:fc:6b:8c:05:20:09:90:5d:e7:32:ca: 84:1f:95:c8:a6:58:8b:1a:b3:30:3a:7d:63:c9:a1: ab:85:d5:3c:ff:d4:2c:db:fb:04:b0:21:6c:94:e5: 2c:f7:de:19:19:4e:98:2c:e3:3b:63:44:23:27:a5: eb:5d:37:4c:8d:38:a6:64:0d:8e:a9:b8:e8:00:3a: b2:e8:32:85:b2:47:ef:91:00:56:2f:21:12:e3:e0: 61:81:c0:80:ca:70:cd:cf:9c:f9:1d:65:d4:60:94: ef:16:c0:82:98:ed:30:c7:d9:9a:2d:4b:75:8d:5e: 4c:ff:48:c3:a7:30:7b:18:c6:aa:9a:92:b0:a6:61: f6:2f:e9:f6:17:e9:1f:4c:b1:74:03:e2:eb:ce:2c: a6:8f:0a:07:4b:d1:a5:f1:77:0d:cd:93:bb:1e:f3: 1d:89:a7:1f:1a:41:f8:55:c7:e0:29:21:80:2f:0b: d6:b3:a4:29:a7:0d:89:9a:52:90:04:80:53:3f:54: 51:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:F2:3F:77:98:DB:D4:A2:7E:99:70:7F:0C:A2:EF:BF:00:26:51:FE X509v3 Authority Key Identifier: keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/jfI_d5jb1KJ-mXB_DKLvvwAmUf4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.211.176.0/20 Signature Algorithm: sha256WithRSAEncryption ba:33:c3:a4:8c:40:9f:86:69:9c:5b:d5:fe:41:af:46:65:fd: b5:04:a0:ca:54:ce:00:c2:de:84:60:47:02:e6:d4:e2:e3:7e: bf:31:d6:25:f3:7b:bf:f6:f5:5c:a6:92:7f:72:3d:81:05:92: 2e:74:43:8b:96:86:1e:33:81:37:0d:e3:97:47:30:42:d1:88: ec:16:fd:a8:fa:c4:eb:38:06:bc:8a:e4:30:e5:17:55:97:65: ee:0d:19:c6:97:ca:41:71:23:48:09:f1:b2:b1:6c:f4:a0:ca: 57:5d:b0:02:b6:2a:45:4e:80:3a:c7:03:d4:80:a8:6e:1a:0c: 14:11:0f:74:3d:4a:92:97:2c:cc:d6:66:4f:ba:d5:ab:db:db: 15:61:c9:0e:8c:ea:0a:81:e6:0e:85:e1:42:5e:b2:bd:f6:aa: 9e:3b:b8:76:6b:c5:9e:81:f2:1a:48:25:f6:bf:06:09:df:4d: 0f:a4:f7:b7:c9:e6:89:55:48:a6:80:18:77:b0:ad:1b:f5:c5: 28:6c:21:84:0c:4c:19:bd:af:9f:ad:3e:e9:e3:88:7a:5d:4f: 84:72:11:2d:5d:2c:a9:af:9f:65:b8:d9:54:a5:a7:f2:31:3b: 71:75:e1:f6:c8:43:d0:d5:c6:08:2a:3f:5e:c5:12:3d:c2:8f: 51:77:03:24 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBZYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkJE Q0Q1MjZCMDlFNzg5N0Y3MUZFMDQ4NThCRTc1QzA2RUM0RjEzQTAeFw0yNTAxMzEw MTQyMTFaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDhERjIzRjc3OThEQkQ0 QTI3RTk5NzA3RjBDQTJFRkJGMDAyNjUxRkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlbsl6iTEFwPoTOpbyGfVquWD57/ySVaTDLF4L1uTL8AC890nA Kj/eRox8CBmvPz0g58taGSoBGlLEsqb4bIX8a4wFIAmQXecyyoQflcimWIsaszA6 fWPJoauF1Tz/1Czb+wSwIWyU5Sz33hkZTpgs4ztjRCMnpetdN0yNOKZkDY6puOgA OrLoMoWyR++RAFYvIRLj4GGBwIDKcM3PnPkdZdRglO8WwIKY7TDH2ZotS3WNXkz/ SMOnMHsYxqqakrCmYfYv6fYX6R9MsXQD4uvOLKaPCgdL0aXxdw3Nk7se8x2Jpx8a QfhVx+ApIYAvC9azpCmnDYmaUpAEgFM/VFGPAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUjfI/d5jb1KJ+mXB/DKLvvwAmUf4wHwYDVR0jBBgwFoAUu9zVJrCeeJf3H+BI WL51wG7E8TowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzU0NS91OXpWSnJDZWVKZjNILUJJV0w1MXdHN0U4VG8uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC91OXpWSnJDZWVKZjNILUJJV0w1MXdH N0U4VG8uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNTQ1L2pmSV9kNWpiMUtKLW1YQl9ES0x2dndBbVVmNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQ907AwDQYJKoZIhvcNAQELBQADggEBALozw6SMQJ+GaZxb1f5Br0Zl/bUE oMpUzgDC3oRgRwLm1OLjfr8x1iXze7/29Vymkn9yPYEFki50Q4uWhh4zgTcN45dH MELRiOwW/aj6xOs4BryK5DDlF1WXZe4NGcaXykFxI0gJ8bKxbPSgylddsAK2KkVO gDrHA9SAqG4aDBQRD3Q9SpKXLMzWZk+61avb2xVhyQ6M6gqB5g6F4UJesr32qp47 uHZrxZ6B8hpIJfa/BgnfTQ+k97fJ5olVSKaAGHewrRv1xShsIYQMTBm9r5+tPunj iHpdT4RyES1dLKmvn2W42VSlp/IxO3F14fbIQ9DVxggqP17FEj3Cj1F3AyQ= -----END CERTIFICATE-----Generated at Sat Apr 5 17:25:19 2025 by rpki-client