$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/wH-0SjN61tyxaKv5F6lBmTT7hEc.roa File: wH-0SjN61tyxaKv5F6lBmTT7hEc.roa (raw, json) Hash identifier: 1sBXbCPrJL48jc8yfIrIzEAJ8hlsayIkAWBBXNGQ2og= Subject key identifier: C0:7F:B4:4A:33:7A:D6:DC:B1:68:AB:F9:17:A9:41:99:34:FB:84:47 Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Certificate serial: 057E Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/wH-0SjN61tyxaKv5F6lBmTT7hEc.roa Signing time: Fri 31 Jan 2025 01:39:51 +0000 ROA not before: Fri 31 Jan 2025 01:39:51 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 10010 IP address blocks: 59.86.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1406 (0x57e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A Validity Not Before: Jan 31 01:39:51 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=C07FB44A337AD6DCB168ABF917A9419934FB8447 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:dc:b7:07:d9:e7:95:03:fa:df:e5:5c:eb:60: 4b:ca:3c:d6:7f:c1:8a:a7:e0:ca:62:38:ef:f3:1b: e8:ee:aa:88:24:61:52:c3:db:ce:4f:37:4c:4a:9c: 45:6f:07:f9:6a:fc:f7:db:9b:4c:e6:62:a9:5f:40: a3:90:2f:6a:93:65:d0:9c:53:59:c1:aa:33:33:de: fc:9a:92:f3:94:4a:2c:d4:07:ef:53:da:ce:af:82: f9:28:ff:70:33:a1:5e:cc:ea:be:84:47:c0:ab:93: 8b:84:8f:e7:94:4f:b8:74:1a:53:ef:62:ca:f3:1a: 4f:fe:90:e9:bb:f2:3e:90:96:4f:d8:3a:8d:bf:7c: ef:26:65:9a:d7:7f:0d:17:dd:cd:e8:28:99:ae:9a: fd:73:4c:22:16:37:61:97:d5:84:9b:5b:1e:c1:ff: 4b:0b:fd:ce:e8:28:40:66:9a:8d:bf:b0:59:44:f1: 1f:ee:48:9e:c6:4b:c1:61:16:b7:e3:0b:b8:c1:54: 25:69:d7:64:65:9c:a1:fa:41:f5:fe:84:ff:e2:5d: 24:9c:5f:b3:dc:7a:8a:4b:a3:9d:40:0e:77:14:dd: 29:a3:8c:da:3b:c9:d6:08:33:85:4c:88:79:23:0a: 96:1a:eb:ea:e7:0c:fd:7a:e7:1f:90:86:9a:6f:eb: dc:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:7F:B4:4A:33:7A:D6:DC:B1:68:AB:F9:17:A9:41:99:34:FB:84:47 X509v3 Authority Key Identifier: keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/wH-0SjN61tyxaKv5F6lBmTT7hEc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.86.0.0/18 Signature Algorithm: sha256WithRSAEncryption 24:7c:c5:64:f2:c9:43:a5:b5:28:15:b7:ad:e8:45:57:4a:ad: 65:32:93:cd:85:b6:a0:75:10:0b:36:61:f9:b2:d7:dc:56:c7: 8c:a1:e3:e0:7d:e5:8e:dc:fe:9a:0f:9a:65:ce:10:d0:9d:cb: 11:f8:51:46:97:75:61:70:3f:63:df:f4:94:19:5e:6e:8e:c7: 9f:de:88:95:82:14:96:70:86:4c:4b:2c:32:1d:aa:f9:33:dd: ff:10:08:91:62:15:94:b5:44:c2:d2:75:2c:0b:00:af:52:27: 78:6f:12:d1:42:7f:c1:42:a9:d3:9a:04:23:79:0b:0c:3c:36: c6:1b:91:2e:71:dd:fa:11:1d:54:6c:ed:2a:52:67:e6:99:6c: db:be:e4:ef:d8:93:6b:13:f7:ee:b3:14:fa:2f:23:4c:50:d9: 19:52:04:9a:5f:49:a7:d9:7b:9f:15:17:64:41:9b:3d:e9:37: 83:61:d7:44:d4:71:57:2f:16:0e:55:85:5c:88:f3:ac:26:09: 13:b0:1e:ff:b0:6f:1d:a3:d7:c2:33:21:25:37:86:72:8b:e0: b0:f1:7d:28:3f:c3:3b:08:be:a1:57:3c:4c:a5:7c:65:8d:b6: 34:37:72:f2:17:6b:56:45:49:8f:cb:37:f4:ef:1d:b1:60:35: 85:9f:53:82 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICBX4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkJE Q0Q1MjZCMDlFNzg5N0Y3MUZFMDQ4NThCRTc1QzA2RUM0RjEzQTAeFw0yNTAxMzEw MTM5NTFaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEMwN0ZCNDRBMzM3QUQ2 RENCMTY4QUJGOTE3QTk0MTk5MzRGQjg0NDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCd3LcH2eeVA/rf5VzrYEvKPNZ/wYqn4MpiOO/zG+juqogkYVLD 285PN0xKnEVvB/lq/Pfbm0zmYqlfQKOQL2qTZdCcU1nBqjMz3vyakvOUSizUB+9T 2s6vgvko/3AzoV7M6r6ER8Crk4uEj+eUT7h0GlPvYsrzGk/+kOm78j6Qlk/YOo2/ fO8mZZrXfw0X3c3oKJmumv1zTCIWN2GX1YSbWx7B/0sL/c7oKEBmmo2/sFlE8R/u SJ7GS8FhFrfjC7jBVCVp12RlnKH6QfX+hP/iXSScX7PceopLo51ADncU3SmjjNo7 ydYIM4VMiHkjCpYa6+rnDP165x+Qhppv69zhAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUwH+0SjN61tyxaKv5F6lBmTT7hEcwHwYDVR0jBBgwFoAUu9zVJrCeeJf3H+BI WL51wG7E8TowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzU0NS91OXpWSnJDZWVKZjNILUJJV0w1MXdHN0U4VG8uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC91OXpWSnJDZWVKZjNILUJJV0w1MXdH N0U4VG8uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNTQ1L3dILTBTak42MXR5eGFLdjVGNmxCbVRUN2hFYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY7VgAwDQYJKoZIhvcNAQELBQADggEBACR8xWTyyUOltSgVt63oRVdKrWUy k82FtqB1EAs2Yfmy19xWx4yh4+B95Y7c/poPmmXOENCdyxH4UUaXdWFwP2Pf9JQZ Xm6Ox5/eiJWCFJZwhkxLLDIdqvkz3f8QCJFiFZS1RMLSdSwLAK9SJ3hvEtFCf8FC qdOaBCN5Cww8NsYbkS5x3foRHVRs7SpSZ+aZbNu+5O/Yk2sT9+6zFPovI0xQ2RlS BJpfSafZe58VF2RBmz3pN4Nh10TUcVcvFg5VhVyI86wmCROwHv+wbx2j18IzISU3 hnKL4LDxfSg/wzsIvqFXPEylfGWNtjQ3cvIXa1ZFSY/LN/TvHbFgNYWfU4I= -----END CERTIFICATE-----Generated at Sat Apr 5 17:45:44 2025 by rpki-client