$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/699/UoBsXEoHwN1b9tpkrDrzZBiATHk.roa File: UoBsXEoHwN1b9tpkrDrzZBiATHk.roa (raw, json) Hash identifier: Lx/hGflCyzhNfaH/J6OSqsP4V8m0t7wUbAzNkIMERjE= Subject key identifier: 52:80:6C:5C:4A:07:C0:DD:5B:F6:DA:64:AC:3A:F3:64:18:80:4C:79 Certificate issuer: /CN=6522E2C3EF4D93F13E758A807A40A8E1BF9AB130 Certificate serial: 3243 Authority key identifier: 65:22:E2:C3:EF:4D:93:F1:3E:75:8A:80:7A:40:A8:E1:BF:9A:B1:30 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZSLiw-9Nk_E-dYqAekCo4b-asTA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/699/UoBsXEoHwN1b9tpkrDrzZBiATHk.roa Signing time: Fri 31 Jan 2025 01:31:18 +0000 ROA not before: Fri 31 Jan 2025 01:31:18 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 7671 IP address blocks: 222.231.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/699/ZSLiw-9Nk_E-dYqAekCo4b-asTA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/699/ZSLiw-9Nk_E-dYqAekCo4b-asTA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZSLiw-9Nk_E-dYqAekCo4b-asTA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12867 (0x3243) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6522E2C3EF4D93F13E758A807A40A8E1BF9AB130 Validity Not Before: Jan 31 01:31:18 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=52806C5C4A07C0DD5BF6DA64AC3AF36418804C79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:68:23:6a:8c:ba:e2:7b:53:b9:02:5a:48:4c: 0a:6d:30:73:41:a6:cd:6b:1a:12:88:9d:07:fe:33: 3b:9d:c8:08:b1:5f:44:84:2b:ff:3c:21:57:df:a0: f8:6b:1c:e9:d3:86:b8:a2:22:94:5a:1d:93:44:44: 65:55:3a:7e:5f:33:2f:19:ba:0a:d8:be:ad:41:74: cd:4e:90:4e:af:8a:d0:cf:49:17:35:54:5d:fb:83: 9a:ea:8b:24:35:5d:79:b3:31:0f:a3:57:0c:da:7f: a3:ea:49:8d:18:85:ca:86:5a:23:6f:72:86:1f:d3: 78:fd:fa:c3:df:e8:c5:bf:6c:59:de:21:f3:bb:72: 86:02:b4:d1:99:16:43:77:bc:bc:c6:94:d3:8c:ea: 0c:5a:a9:12:70:d6:fe:04:cc:6b:07:62:05:25:35: 2c:7d:41:6d:11:b5:5d:87:0c:ba:52:d9:00:9b:35: b9:bf:d0:1b:8a:bd:d5:5d:f9:16:87:27:2c:4e:a2: 05:90:ce:fd:4d:c3:2f:f3:c0:70:70:7a:2d:29:14: dd:a1:60:32:15:68:d2:15:54:2f:2c:31:6a:cb:31: 90:5f:c0:bb:c2:59:14:e5:4f:3d:51:ed:66:48:42: 5d:55:c1:11:9f:2a:24:5e:9b:db:e5:eb:e0:73:bd: 75:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:80:6C:5C:4A:07:C0:DD:5B:F6:DA:64:AC:3A:F3:64:18:80:4C:79 X509v3 Authority Key Identifier: keyid:65:22:E2:C3:EF:4D:93:F1:3E:75:8A:80:7A:40:A8:E1:BF:9A:B1:30 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/699/ZSLiw-9Nk_E-dYqAekCo4b-asTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZSLiw-9Nk_E-dYqAekCo4b-asTA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/699/UoBsXEoHwN1b9tpkrDrzZBiATHk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 222.231.128.0/17 Signature Algorithm: sha256WithRSAEncryption a3:c9:46:e3:2e:06:b9:1d:61:c3:bc:55:3c:0a:06:7b:a8:ca: 1d:16:7a:fb:52:cf:df:3e:04:4b:4b:e6:45:30:69:92:df:cf: 55:8e:7b:67:f4:10:04:43:34:2b:9d:c3:17:d5:ba:0e:71:4a: b7:04:7d:58:a3:ff:e6:82:97:92:ad:75:11:d3:38:f5:0b:04: 93:2a:81:c6:06:1e:11:c0:ab:37:b6:0a:3a:b2:b0:86:5b:39: 93:70:d0:46:33:14:49:1f:c5:50:50:a5:da:28:42:a0:5c:35: 11:4e:c3:5c:b0:fe:2f:8f:59:3a:50:79:87:c2:fc:cb:44:8d: 13:f0:07:63:54:48:d2:94:d8:33:5c:38:c1:58:f6:73:38:c7: 6a:e3:5f:d6:94:a8:03:3d:2b:3a:a7:38:7c:4f:12:2f:06:fa: bd:1c:fe:d5:30:61:ee:70:3e:c6:0f:0b:45:94:20:a0:f3:0b: 33:f1:18:61:76:17:c7:f8:4c:e5:db:85:5d:ee:3c:64:75:83: 23:02:9a:97:9c:52:95:92:12:79:74:92:01:0e:5e:3c:96:da: 75:f0:35:7c:77:5d:2e:a1:40:fa:48:ff:ad:66:70:6e:66:d5: d3:07:36:e5:3c:68:b9:01:33:ae:96:cb:84:c5:c9:09:73:e2: ee:65:85:bd -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICMkMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjUy MkUyQzNFRjREOTNGMTNFNzU4QTgwN0E0MEE4RTFCRjlBQjEzMDAeFw0yNTAxMzEw MTMxMThaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDUyODA2QzVDNEEwN0Mw REQ1QkY2REE2NEFDM0FGMzY0MTg4MDRDNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/aCNqjLrie1O5AlpITAptMHNBps1rGhKInQf+MzudyAixX0SE K/88IVffoPhrHOnThriiIpRaHZNERGVVOn5fMy8ZugrYvq1BdM1OkE6vitDPSRc1 VF37g5rqiyQ1XXmzMQ+jVwzaf6PqSY0YhcqGWiNvcoYf03j9+sPf6MW/bFneIfO7 coYCtNGZFkN3vLzGlNOM6gxaqRJw1v4EzGsHYgUlNSx9QW0RtV2HDLpS2QCbNbm/ 0BuKvdVd+RaHJyxOogWQzv1Nwy/zwHBwei0pFN2hYDIVaNIVVC8sMWrLMZBfwLvC WRTlTz1R7WZIQl1VwRGfKiRem9vl6+BzvXUZAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUUoBsXEoHwN1b9tpkrDrzZBiATHkwHwYDVR0jBBgwFoAUZSLiw+9Nk/E+dYqA ekCo4b+asTAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY5OS9aU0xpdy05TmtfRS1kWXFBZWtDbzRiLWFzVEEuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9aU0xpdy05TmtfRS1kWXFBZWtDbzRi LWFzVEEuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjk5L1VvQnNYRW9Id04xYjl0cGtyRHJ6WkJpQVRIay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAfe54AwDQYJKoZIhvcNAQELBQADggEBAKPJRuMuBrkdYcO8VTwKBnuoyh0W evtSz98+BEtL5kUwaZLfz1WOe2f0EARDNCudwxfVug5xSrcEfVij/+aCl5KtdRHT OPULBJMqgcYGHhHAqze2CjqysIZbOZNw0EYzFEkfxVBQpdooQqBcNRFOw1yw/i+P WTpQeYfC/MtEjRPwB2NUSNKU2DNcOMFY9nM4x2rjX9aUqAM9KzqnOHxPEi8G+r0c /tUwYe5wPsYPC0WUIKDzCzPxGGF2F8f4TOXbhV3uPGR1gyMCmpecUpWSEnl0kgEO XjyW2nXwNXx3XS6hQPpI/61mcG5m1dMHNuU8aLkBM66Wy4TFyQlz4u5lhb0= -----END CERTIFICATE-----Generated at Sat Apr 5 17:31:04 2025 by rpki-client