$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/kzoS8fZYe2brGcx4Hb9kAU462ZE.roa File: kzoS8fZYe2brGcx4Hb9kAU462ZE.roa (raw, json) Hash identifier: G11HGA9Xmrt2DZkDPThe/HX8jfLNakyeiYsjZoTJRYc= Subject key identifier: 93:3A:12:F1:F6:58:7B:66:EB:19:CC:78:1D:BF:64:01:4E:3A:D9:91 Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Certificate serial: 055F Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/kzoS8fZYe2brGcx4Hb9kAU462ZE.roa Signing time: Fri 31 Jan 2025 01:36:16 +0000 ROA not before: Fri 31 Jan 2025 01:36:16 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 10010 IP address blocks: 42.125.232.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1375 (0x55f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Validity Not Before: Jan 31 01:36:16 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=933A12F1F6587B66EB19CC781DBF64014E3AD991 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d0:2d:5e:d6:04:dd:0e:f0:20:45:8f:a2:5a: f8:66:85:f5:d2:0d:17:27:7a:f5:1d:a5:db:9e:5d: 84:8b:90:a0:d2:72:1a:24:0b:93:4d:74:b5:86:2e: c7:3c:e5:6e:57:71:04:5d:1e:11:82:eb:09:54:ea: 1b:1b:15:97:7e:c3:7c:ac:66:38:1d:10:af:7b:3d: 8d:60:7a:78:93:49:13:8c:2e:c6:ec:b1:12:ed:13: c2:ed:19:46:d2:18:4e:c2:80:d5:fe:1e:ea:97:da: cf:c3:d0:b7:13:ec:ff:f9:c4:10:ef:37:03:40:79: bf:f0:2a:3e:cc:2b:e4:e7:52:1f:1c:41:f7:2b:1c: c6:b9:f7:7c:b6:01:0d:74:e9:19:27:d6:e0:97:a9: cd:07:60:d3:69:e4:aa:5d:d3:76:f8:3d:f1:d3:a5: 80:90:af:18:72:80:e9:e5:f2:26:04:02:65:40:b9: b9:49:f8:5e:6e:6f:c6:cf:e1:00:8e:84:ca:7d:97: f9:17:6d:4f:15:af:dd:ec:2e:9c:21:b8:ae:08:9f: 2a:d5:84:34:ac:00:e6:a3:87:23:44:eb:5f:40:c4: 25:f5:9d:d2:9e:77:16:2b:4b:c8:c0:57:34:dc:3f: 53:8b:af:a9:f4:cb:53:f0:2f:02:1e:b8:d0:cf:77: 3b:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:3A:12:F1:F6:58:7B:66:EB:19:CC:78:1D:BF:64:01:4E:3A:D9:91 X509v3 Authority Key Identifier: keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/kzoS8fZYe2brGcx4Hb9kAU462ZE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 42.125.232.0/21 Signature Algorithm: sha256WithRSAEncryption 8a:9a:fb:ef:e9:f4:14:a1:e9:77:eb:bf:fd:5b:71:40:9c:20: d4:53:35:6c:d2:2b:1a:4a:2e:6e:ad:d5:e8:87:48:84:90:02: e5:56:22:95:91:76:c4:68:2e:45:a6:2e:91:c1:89:36:96:9e: a6:41:9c:88:ea:64:c4:d3:7c:55:87:29:c3:6d:40:6f:5c:ae: e3:e5:a6:c0:20:5e:9c:81:10:72:3a:2f:1e:99:6e:2d:b1:05: b8:2d:e8:9f:62:1f:00:5a:76:65:8b:5f:a2:0d:05:cf:0f:40: 43:14:bc:ec:54:34:44:8e:f2:3d:86:3c:f4:da:0f:9d:43:15: 18:43:ac:85:44:5d:e6:b0:f0:f8:cc:4a:6a:07:f4:dc:d5:64: 32:93:8e:de:d1:a1:b9:d9:9d:79:00:fe:b3:59:87:9b:0a:5d: 4d:c7:65:7c:ef:cd:be:57:44:4e:dd:fb:a6:df:81:51:06:1c: 21:9b:fe:c0:2e:f8:46:48:43:b6:d6:a4:ca:f4:48:72:2d:89: ce:1d:b4:fb:8e:e1:42:f1:5b:b1:e4:c6:32:1f:02:97:54:0c: 2d:b7:8b:d2:43:f7:60:f6:55:e4:29:44:3d:2a:c9:56:cf:e4: 66:9b:b5:7f:cd:78:8d:16:4b:26:ce:f2:cd:5a:6c:92:ea:5d: 00:31:46:7e -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBV8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkJE Q0Q1MjZCMDlFNzg5N0Y3MUZFMDQ4NThCRTc1QzA2RUM0RjEzQTAeFw0yNTAxMzEw MTM2MTZaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDkzM0ExMkYxRjY1ODdC NjZFQjE5Q0M3ODFEQkY2NDAxNEUzQUQ5OTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC40C1e1gTdDvAgRY+iWvhmhfXSDRcnevUdpdueXYSLkKDSchok C5NNdLWGLsc85W5XcQRdHhGC6wlU6hsbFZd+w3ysZjgdEK97PY1geniTSROMLsbs sRLtE8LtGUbSGE7CgNX+HuqX2s/D0LcT7P/5xBDvNwNAeb/wKj7MK+TnUh8cQfcr HMa593y2AQ106Rkn1uCXqc0HYNNp5Kpd03b4PfHTpYCQrxhygOnl8iYEAmVAublJ +F5ub8bP4QCOhMp9l/kXbU8Vr93sLpwhuK4InyrVhDSsAOajhyNE619AxCX1ndKe dxYrS8jAVzTcP1OLr6n0y1PwLwIeuNDPdzvzAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUkzoS8fZYe2brGcx4Hb9kAU462ZEwHwYDVR0jBBgwFoAUu9zVJrCeeJf3H+BI WL51wG7E8TowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzU0NS91OXpWSnJDZWVKZjNILUJJV0w1MXdHN0U4VG8uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC91OXpWSnJDZWVKZjNILUJJV0w1MXdH N0U4VG8uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNTQ1L2t6b1M4ZlpZZTJickdjeDRIYjlrQVU0NjJaRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMqfegwDQYJKoZIhvcNAQELBQADggEBAIqa++/p9BSh6Xfrv/1bcUCcINRT NWzSKxpKLm6t1eiHSISQAuVWIpWRdsRoLkWmLpHBiTaWnqZBnIjqZMTTfFWHKcNt QG9cruPlpsAgXpyBEHI6Lx6Zbi2xBbgt6J9iHwBadmWLX6INBc8PQEMUvOxUNESO 8j2GPPTaD51DFRhDrIVEXeaw8PjMSmoH9NzVZDKTjt7RobnZnXkA/rNZh5sKXU3H ZXzvzb5XRE7d+6bfgVEGHCGb/sAu+EZIQ7bWpMr0SHItic4dtPuO4ULxW7HkxjIf ApdUDC23i9JD92D2VeQpRD0qyVbP5GabtX/NeI0WSybO8s1abJLqXQAxRn4= -----END CERTIFICATE-----Generated at Sat Apr 5 17:46:21 2025 by rpki-client