$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/5542/OCYZswTZ9ZgP0l82Ul-J6dRMeJM.roa File: OCYZswTZ9ZgP0l82Ul-J6dRMeJM.roa (raw, json) Hash identifier: kFpm4stL8Rr9Cp+RYrzJ3bjmWGBoh0KA0qg/sAnhE+s= Subject key identifier: 38:26:19:B3:04:D9:F5:98:0F:D2:5F:36:52:5F:89:E9:D4:4C:78:93 Certificate issuer: /CN=238DED168C39331F14510F8ED998933C60932333 Certificate serial: 02 Authority key identifier: 23:8D:ED:16:8C:39:33:1F:14:51:0F:8E:D9:98:93:3C:60:93:23:33 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/I43tFow5Mx8UUQ-O2ZiTPGCTIzM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5542/OCYZswTZ9ZgP0l82Ul-J6dRMeJM.roa Signing time: Tue 17 Dec 2024 05:41:17 +0000 ROA not before: Tue 17 Dec 2024 05:41:17 +0000 ROA not after: Wed 17 Dec 2025 05:29:05 +0000 asID: 131156 IP address blocks: 103.189.185.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5542/I43tFow5Mx8UUQ-O2ZiTPGCTIzM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5542/I43tFow5Mx8UUQ-O2ZiTPGCTIzM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/I43tFow5Mx8UUQ-O2ZiTPGCTIzM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=238DED168C39331F14510F8ED998933C60932333 Validity Not Before: Dec 17 05:41:17 2024 GMT Not After : Dec 17 05:29:05 2025 GMT Subject: CN=382619B304D9F5980FD25F36525F89E9D44C7893 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e8:00:8f:40:fa:56:43:e3:40:ca:8c:c1:1a: 2a:74:e3:6a:28:0c:ea:ee:b4:04:ee:45:b6:80:00: ab:1f:52:0f:ca:2d:aa:9a:16:81:9b:f2:a4:5a:b7: 96:8e:b9:07:3e:78:fc:3b:4f:61:21:8d:bb:65:dd: 95:4b:9b:fa:7a:f2:47:24:cc:d6:b6:52:31:e5:d6: cb:3f:d4:b7:3c:55:88:1b:f8:ed:72:71:d9:e3:2b: 90:e3:98:38:c8:15:f6:98:e3:e1:19:e4:33:9c:07: a0:d1:84:5f:b3:94:f3:7a:4d:03:05:45:ca:80:e3: 0f:c5:8f:e8:e0:b7:d8:08:43:65:4f:62:00:0c:dd: e9:7d:fa:29:ea:1e:18:9d:3d:87:e6:fc:43:a9:3b: 77:3e:48:d2:13:c0:da:c7:36:10:e6:fe:d3:de:68: 99:c9:f9:a5:9d:77:45:83:51:d0:cc:aa:ae:92:7b: b5:c0:33:fd:49:47:26:ef:fb:8e:90:af:85:a4:b9: c3:e0:4f:7a:96:81:a8:df:ae:3d:39:6f:94:92:4f: 83:ae:fc:68:50:45:45:eb:f9:e9:66:ac:dd:eb:d9: 92:4c:17:e7:a6:6e:03:17:f1:60:da:7b:ae:9a:19: 55:2d:de:9b:2e:aa:fe:a3:b2:d4:69:11:cf:fa:0f: c4:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:26:19:B3:04:D9:F5:98:0F:D2:5F:36:52:5F:89:E9:D4:4C:78:93 X509v3 Authority Key Identifier: keyid:23:8D:ED:16:8C:39:33:1F:14:51:0F:8E:D9:98:93:3C:60:93:23:33 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5542/I43tFow5Mx8UUQ-O2ZiTPGCTIzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/I43tFow5Mx8UUQ-O2ZiTPGCTIzM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5542/OCYZswTZ9ZgP0l82Ul-J6dRMeJM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.185.0/24 Signature Algorithm: sha256WithRSAEncryption 93:57:74:56:f1:f8:53:a2:c4:50:34:88:35:7a:cf:22:8e:8e: ac:ec:1b:39:69:3c:40:41:ec:72:06:78:bb:da:25:10:45:65: 0d:3b:ae:04:aa:e3:87:b1:69:7c:ec:d9:95:63:3c:8d:cd:9c: 69:66:42:8d:82:fd:af:58:38:6b:ea:23:f7:f3:c6:37:98:cc: b1:b1:03:8f:84:a7:65:6b:e8:6d:36:c9:35:3c:ca:e7:b0:d7: 8b:d8:00:bd:38:7b:3d:8f:5d:96:73:1e:1d:22:8e:f1:b4:a2: 58:89:f6:b6:bc:09:35:44:e9:ae:90:36:0e:b6:85:8d:52:0d: c4:05:8a:62:0d:bb:d6:9a:90:c6:d6:91:43:4a:af:2e:82:66: c4:c4:18:01:d1:d4:c8:78:1e:e1:e9:6c:b9:ac:ba:1f:a7:bb: 72:9c:82:ff:47:cc:c7:56:c4:99:21:44:d9:05:f7:64:fe:24: c7:72:b5:0f:80:98:5b:87:91:1b:f1:dc:f3:32:00:da:b4:82: 04:03:13:67:27:c9:fe:67:00:f0:2c:90:bd:26:50:6c:b3:be: 46:ef:a7:c3:31:4f:37:71:84:ba:38:79:9c:da:5a:ba:8e:0f: 4c:78:f9:a7:27:7d:27:eb:0c:21:81:0a:03:3f:9d:18:d3:a8: 67:3b:7e:46 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBAjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyMzhE RUQxNjhDMzkzMzFGMTQ1MTBGOEVEOTk4OTMzQzYwOTMyMzMzMB4XDTI0MTIxNzA1 NDExN1oXDTI1MTIxNzA1MjkwNVowMzExMC8GA1UEAxMoMzgyNjE5QjMwNEQ5RjU5 ODBGRDI1RjM2NTI1Rjg5RTlENDRDNzg5MzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKfoAI9A+lZD40DKjMEaKnTjaigM6u60BO5FtoAAqx9SD8otqpoW gZvypFq3lo65Bz54/DtPYSGNu2XdlUub+nryRyTM1rZSMeXWyz/UtzxViBv47XJx 2eMrkOOYOMgV9pjj4RnkM5wHoNGEX7OU83pNAwVFyoDjD8WP6OC32AhDZU9iAAzd 6X36KeoeGJ09h+b8Q6k7dz5I0hPA2sc2EOb+095omcn5pZ13RYNR0MyqrpJ7tcAz /UlHJu/7jpCvhaS5w+BPepaBqN+uPTlvlJJPg678aFBFRev56Was3evZkkwX56Zu AxfxYNp7rpoZVS3emy6q/qOy1GkRz/oPxBECAwEAAaOCAiYwggIiMB0GA1UdDgQW BBQ4JhmzBNn1mA/SXzZSX4np1Ex4kzAfBgNVHSMEGDAWgBQjje0WjDkzHxRRD47Z mJM8YJMjMzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTU0Mi9JNDN0Rm93NU14OFVVUS1PMlppVFBHQ1RJek0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9JNDN0Rm93NU14OFVVUS1PMlppVFBH Q1RJek0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNTU0Mi9PQ1lac3dUWjlaZ1AwbDgyVWwtSjZkUk1lSk0ucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ725MA0GCSqGSIb3DQEBCwUAA4IBAQCTV3RW8fhTosRQNIg1es8ijo6s 7Bs5aTxAQexyBni72iUQRWUNO64EquOHsWl87NmVYzyNzZxpZkKNgv2vWDhr6iP3 88Y3mMyxsQOPhKdla+htNsk1PMrnsNeL2AC9OHs9j12Wcx4dIo7xtKJYifa2vAk1 ROmukDYOtoWNUg3EBYpiDbvWmpDG1pFDSq8ugmbExBgB0dTIeB7h6Wy5rLofp7ty nIL/R8zHVsSZIUTZBfdk/iTHcrUPgJhbh5Eb8dzzMgDatIIEAxNnJ8n+ZwDwLJC9 JlBss75G76fDMU83cYS6OHmc2lq6jg9MePmnJ30n6wwhgQoDP50Y06hnO35G -----END CERTIFICATE-----Generated at Sat Apr 5 17:40:12 2025 by rpki-client