$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/6/y5YTS-5YGMvcdu0lhpKyKbVaEmY.roa File: y5YTS-5YGMvcdu0lhpKyKbVaEmY.roa (raw, json) Hash identifier: kChLVt3lyJHlQ8EilowQA2trctIGGCf6cww2ujM1bJQ= Subject key identifier: CB:96:13:4B:EE:58:18:CB:DC:76:ED:25:86:92:B2:29:B5:5A:12:66 Certificate issuer: /CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Certificate serial: 019C Authority key identifier: 29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/y5YTS-5YGMvcdu0lhpKyKbVaEmY.roa Signing time: Sat 30 Nov 2024 01:28:25 +0000 ROA not before: Sat 30 Nov 2024 01:28:25 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 2497 IP address blocks: 220.156.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 412 (0x19c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9 Validity Not Before: Nov 30 01:28:25 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=CB96134BEE5818CBDC76ED258692B229B55A1266 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:35:1b:84:07:2e:80:57:b0:d9:66:da:80:a4: 89:20:54:0f:3a:2f:ba:95:39:8b:87:55:ef:61:4c: 00:0d:78:d9:b2:62:ee:1d:f2:51:2b:ca:40:d4:b3: 60:90:01:52:8d:09:b4:52:f2:0c:ce:8e:5f:f6:cf: 23:f5:ae:d9:f9:f0:90:65:af:d7:df:58:2d:d0:3f: ed:42:28:8e:9f:dd:0a:f7:9e:28:a5:52:73:8f:17: 1f:b9:f1:7b:31:16:f4:75:6b:8b:24:03:5d:0c:7b: 90:29:92:bd:e5:46:46:c7:73:5a:71:b1:ce:2a:39: e0:2e:49:84:2d:28:f6:59:63:75:0f:d3:d8:f8:87: a0:ec:b7:b0:5c:0e:03:3c:70:83:27:fc:74:0c:38: 47:d5:eb:5e:88:c2:bf:fb:28:19:1c:52:dd:79:1a: bf:77:88:24:dc:47:7e:76:d6:e2:38:c6:fe:24:d0: b9:b3:44:e7:cc:b1:b9:a5:19:ff:8e:01:13:21:42: 12:ce:a5:cd:51:7d:aa:d8:83:94:db:ae:14:84:1b: 86:c5:fc:80:06:80:ce:83:a9:ed:bd:ab:54:68:ea: 98:d8:aa:7e:5a:33:3c:49:ab:7a:6e:af:da:f0:2e: c3:ea:36:b3:92:05:88:0e:3e:8a:77:c9:62:41:7a: 6b:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:96:13:4B:EE:58:18:CB:DC:76:ED:25:86:92:B2:29:B5:5A:12:66 X509v3 Authority Key Identifier: keyid:29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/y5YTS-5YGMvcdu0lhpKyKbVaEmY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.156.0.0/18 Signature Algorithm: sha256WithRSAEncryption 07:09:09:67:c5:ce:a2:6b:16:77:70:e9:19:26:60:4d:21:46: 2f:35:25:87:36:2f:22:df:48:9e:5f:45:af:39:d7:a8:e3:11: 04:44:cf:c3:0e:64:0a:44:4b:f6:5f:40:61:3e:f2:43:47:d9: cd:8d:d6:fc:0e:bc:dd:f9:32:86:8b:f0:5e:d4:6d:56:bc:22: 5f:00:12:85:22:ec:51:88:3e:ce:dd:e0:f7:9f:99:32:b7:eb: fb:80:bf:61:cb:64:0d:6c:1a:98:7b:96:43:c9:a2:96:e5:b3: c5:5f:f1:15:e7:a9:f1:87:59:88:06:39:90:82:2c:ac:81:ce: fc:20:f8:fa:93:4b:c5:74:44:15:81:6c:39:d8:92:1a:04:be: d9:c0:c4:26:d8:c8:77:5b:d6:47:31:47:2d:f7:39:bb:f9:86: 67:b4:aa:30:a3:ee:29:71:1c:0f:ec:8f:c5:ec:fd:00:2d:c9: 45:da:53:3f:8b:65:be:b7:23:cd:bb:d9:08:31:67:a7:05:78: dc:ac:78:8e:0a:54:62:b9:32:0b:5a:67:46:8a:d3:82:56:0f: 63:e7:4f:89:2b:f2:e7:36:c8:37:5f:f8:f8:45:29:af:88:7c: 9e:d4:f2:af:c2:eb:96:20:ba:cc:b2:9f:af:d6:2f:ab:b3:b0: 03:5d:bc:7e -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgICAZwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjk4 M0NGRDVGOENBRkEwMDY4RDJFQkEyNUVEMEY3MDEyNDRCMTJGOTAeFw0yNDExMzAw MTI4MjVaFw0yNTExMTUwMTMwMDNaMDMxMTAvBgNVBAMTKENCOTYxMzRCRUU1ODE4 Q0JEQzc2RUQyNTg2OTJCMjI5QjU1QTEyNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHNRuEBy6AV7DZZtqApIkgVA86L7qVOYuHVe9hTAANeNmyYu4d 8lErykDUs2CQAVKNCbRS8gzOjl/2zyP1rtn58JBlr9ffWC3QP+1CKI6f3Qr3niil UnOPFx+58XsxFvR1a4skA10Me5Apkr3lRkbHc1pxsc4qOeAuSYQtKPZZY3UP09j4 h6Dst7BcDgM8cIMn/HQMOEfV616Iwr/7KBkcUt15Gr93iCTcR3521uI4xv4k0Lmz ROfMsbmlGf+OARMhQhLOpc1RfarYg5TbrhSEG4bF/IAGgM6Dqe29q1Ro6pjYqn5a MzxJq3pur9rwLsPqNrOSBYgOPop3yWJBemvhAgMBAAGjggIgMIICHDAdBgNVHQ4E FgQUy5YTS+5YGMvcdu0lhpKyKbVaEmYwHwYDVR0jBBgwFoAUKYPP1fjK+gBo0uui XtD3ASRLEvkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBkBgNVHR8EXTBbMFmg V6BVhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzYvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JMRXZrLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JM RXZrLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgbkGCCsGAQUFBwELBIGsMIGpMF8GCCsG AQUFBzALhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzYveTVZVFMtNVlHTXZjZHUwbGhwS3lLYlZhRW1ZLnJvYTBGBggr BgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3JyZHAv YXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BtycADANBgkqhkiG9w0BAQsFAAOCAQEABwkJZ8XOomsWd3DpGSZgTSFGLzUlhzYv It9Inl9FrznXqOMRBETPww5kCkRL9l9AYT7yQ0fZzY3W/A683fkyhovwXtRtVrwi XwAShSLsUYg+zt3g95+ZMrfr+4C/YctkDWwamHuWQ8miluWzxV/xFeep8YdZiAY5 kIIsrIHO/CD4+pNLxXREFYFsOdiSGgS+2cDEJtjId1vWRzFHLfc5u/mGZ7SqMKPu KXEcD+yPxez9AC3JRdpTP4tlvrcjzbvZCDFnpwV43Kx4jgpUYrkyC1pnRorTglYP Y+dPiSvy5zbIN1/4+EUpr4h8ntTyr8LrliC6zLKfr9Yvq7OwA128fg== -----END CERTIFICATE-----Generated at Sat Apr 5 17:33:19 2025 by rpki-client