$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/uKgTJmTM2-SyFoLH519TCedQ8-E.roa File: uKgTJmTM2-SyFoLH519TCedQ8-E.roa (raw, json) Hash identifier: t9UzvUkymBKXxk0mBwk8yCrJHcDWSEuCs0aamFYXfxc= Subject key identifier: B8:A8:13:26:64:CC:DB:E4:B2:16:82:C7:E7:5F:53:09:E7:50:F3:E1 Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Certificate serial: 0537 Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/uKgTJmTM2-SyFoLH519TCedQ8-E.roa Signing time: Fri 31 Jan 2025 01:30:22 +0000 ROA not before: Fri 31 Jan 2025 01:30:22 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 10010 IP address blocks: 120.136.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1335 (0x537) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Validity Not Before: Jan 31 01:30:22 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=B8A8132664CCDBE4B21682C7E75F5309E750F3E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:2f:e8:c9:cf:ab:43:48:03:d7:de:e0:74:21: 44:fd:c3:9a:02:8e:45:5e:fb:7d:61:79:db:2f:bd: af:42:9b:3f:92:88:f4:1e:b4:0c:20:bb:62:e1:9e: dd:0a:72:5a:00:b7:ef:90:c6:47:3b:a7:fa:a2:e6: 19:b4:91:0d:88:e4:84:b7:34:58:fe:ee:22:03:cf: 22:60:f5:7f:f9:17:1e:75:f3:2e:d7:c4:5a:b0:8b: 32:4c:a7:63:12:8a:b4:a3:f4:42:f4:b3:48:8d:f7: 5d:80:ae:6c:8e:45:28:6f:88:86:39:28:9b:dc:1f: 8f:49:a0:06:0c:1e:5d:f8:bc:8a:3b:82:97:e4:08: ed:6d:a9:a2:66:56:f2:c4:6e:fc:88:28:ad:4c:8a: 63:f6:4d:7f:36:d9:9d:87:7f:43:b4:e3:a6:a0:3b: 30:94:c5:07:39:33:31:79:f0:ce:ff:01:4c:26:ea: 6d:24:63:8c:d7:0c:0a:e5:6a:c8:d4:bb:79:ff:68: de:90:7c:33:2c:24:3c:c1:4a:ef:b8:eb:96:95:17: 9d:42:a5:13:5a:c7:a1:21:8b:4a:4a:ea:7d:46:67: 7e:fd:7b:ff:2c:9e:71:9b:88:a6:3a:4d:7a:ec:95: 6c:cf:b1:2a:3b:96:03:03:31:bc:a6:56:5b:5d:96: 7f:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:A8:13:26:64:CC:DB:E4:B2:16:82:C7:E7:5F:53:09:E7:50:F3:E1 X509v3 Authority Key Identifier: keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/uKgTJmTM2-SyFoLH519TCedQ8-E.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.136.192.0/18 Signature Algorithm: sha256WithRSAEncryption 1c:2e:57:28:8e:f3:ef:91:f8:63:7e:c6:78:0e:3f:3a:69:07: f1:61:aa:87:c1:04:d4:84:8e:b5:e8:85:6c:7c:07:ae:31:e9: ed:0c:b2:f0:f4:29:87:ea:45:4b:56:64:b2:8a:3f:71:af:66: 25:5c:4d:8a:85:7a:53:49:15:6c:7c:dd:ab:79:e5:df:b5:6e: da:35:d6:8b:94:16:19:3d:95:f2:f0:86:60:da:d3:d9:a5:75: 41:18:cb:36:b5:ca:44:b7:2a:8d:98:e6:ba:1f:0d:aa:28:20: da:3c:7c:78:33:78:21:97:89:b3:e3:fb:ac:14:8b:a6:2d:92: cc:7f:31:c6:9b:fc:dc:9b:07:d9:6d:a0:e6:a8:2d:8e:6c:a2: 8a:f5:a2:df:8b:7e:4b:ca:e4:9d:35:bc:08:31:10:e4:36:42: c3:bd:c5:ce:0d:b5:c2:ae:fc:67:8c:bf:15:78:6e:e1:91:89: 56:14:9e:95:21:c2:ec:01:bc:50:6b:53:90:ea:a6:00:d3:16: a7:f2:8d:06:73:70:c7:44:0c:3c:6b:02:fe:22:45:ea:a8:16: 90:c0:eb:ca:aa:be:15:e4:d3:36:89:3d:1a:ee:17:85:49:1e: d8:d3:69:82:a6:60:4e:75:63:07:38:93:53:df:ce:dd:b9:44: 54:66:e1:53 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBTcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkJE Q0Q1MjZCMDlFNzg5N0Y3MUZFMDQ4NThCRTc1QzA2RUM0RjEzQTAeFw0yNTAxMzEw MTMwMjJaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEI4QTgxMzI2NjRDQ0RC RTRCMjE2ODJDN0U3NUY1MzA5RTc1MEYzRTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDeL+jJz6tDSAPX3uB0IUT9w5oCjkVe+31hedsvva9Cmz+SiPQe tAwgu2Lhnt0KcloAt++Qxkc7p/qi5hm0kQ2I5IS3NFj+7iIDzyJg9X/5Fx518y7X xFqwizJMp2MSirSj9EL0s0iN912ArmyORShviIY5KJvcH49JoAYMHl34vIo7gpfk CO1tqaJmVvLEbvyIKK1MimP2TX822Z2Hf0O046agOzCUxQc5MzF58M7/AUwm6m0k Y4zXDArlasjUu3n/aN6QfDMsJDzBSu+465aVF51CpRNax6Ehi0pK6n1GZ379e/8s nnGbiKY6TXrslWzPsSo7lgMDMbymVltdln/RAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUuKgTJmTM2+SyFoLH519TCedQ8+EwHwYDVR0jBBgwFoAUu9zVJrCeeJf3H+BI WL51wG7E8TowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzU0NS91OXpWSnJDZWVKZjNILUJJV0w1MXdHN0U4VG8uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC91OXpWSnJDZWVKZjNILUJJV0w1MXdH N0U4VG8uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNTQ1L3VLZ1RKbVRNMi1TeUZvTEg1MTlUQ2VkUTgtRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZ4iMAwDQYJKoZIhvcNAQELBQADggEBABwuVyiO8++R+GN+xngOPzppB/Fh qofBBNSEjrXohWx8B64x6e0MsvD0KYfqRUtWZLKKP3GvZiVcTYqFelNJFWx83at5 5d+1bto11ouUFhk9lfLwhmDa09mldUEYyza1ykS3Ko2Y5rofDaooINo8fHgzeCGX ibPj+6wUi6Ytksx/Mcab/NybB9ltoOaoLY5soor1ot+LfkvK5J01vAgxEOQ2QsO9 xc4NtcKu/GeMvxV4buGRiVYUnpUhwuwBvFBrU5DqpgDTFqfyjQZzcMdEDDxrAv4i ReqoFpDA68qqvhXk0zaJPRruF4VJHtjTaYKmYE51Ywc4k1Pfzt25RFRm4VM= -----END CERTIFICATE-----Generated at Sat Apr 5 17:23:13 2025 by rpki-client