$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/699/dlaJ2v_GV1iKBY5Qg5iesuFQY2s.roa File: dlaJ2v_GV1iKBY5Qg5iesuFQY2s.roa (raw, json) Hash identifier: A3ZE9llmUja14Qq5eE9xjlastwso5s8IvwxTWGGxIB8= Subject key identifier: 76:56:89:DA:FF:C6:57:58:8A:05:8E:50:83:98:9E:B2:E1:50:63:6B Certificate issuer: /CN=6522E2C3EF4D93F13E758A807A40A8E1BF9AB130 Certificate serial: 3242 Authority key identifier: 65:22:E2:C3:EF:4D:93:F1:3E:75:8A:80:7A:40:A8:E1:BF:9A:B1:30 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZSLiw-9Nk_E-dYqAekCo4b-asTA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/699/dlaJ2v_GV1iKBY5Qg5iesuFQY2s.roa Signing time: Fri 31 Jan 2025 01:31:17 +0000 ROA not before: Fri 31 Jan 2025 01:31:17 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 7671 IP address blocks: 219.111.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/699/ZSLiw-9Nk_E-dYqAekCo4b-asTA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/699/ZSLiw-9Nk_E-dYqAekCo4b-asTA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZSLiw-9Nk_E-dYqAekCo4b-asTA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12866 (0x3242) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6522E2C3EF4D93F13E758A807A40A8E1BF9AB130 Validity Not Before: Jan 31 01:31:17 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=765689DAFFC657588A058E5083989EB2E150636B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:56:0c:95:89:aa:ba:8a:6e:6f:0f:14:04:56: 34:4e:d2:e6:3f:28:84:a5:8c:01:b2:46:25:8d:be: cf:4e:df:bf:c7:b6:6d:d5:a7:e9:ea:b5:9c:cc:3e: 46:0d:12:cd:41:d7:5b:76:be:ca:73:67:12:5d:9d: 6a:0b:eb:35:ce:b3:31:3d:d5:d3:9a:26:b8:a9:5a: c9:d3:f6:2f:dd:cb:c2:c9:00:78:d3:5d:1c:8b:81: fd:77:87:80:d3:67:4f:94:76:e9:eb:d7:29:f8:99: e4:e7:fb:ec:71:17:b1:cc:be:8e:a5:b4:f9:b6:ab: 24:fc:90:83:6d:97:76:fe:26:4a:09:4b:62:2d:76: 29:50:b1:52:20:e2:32:2c:b6:40:a2:c8:ee:d3:97: e3:d9:94:51:e5:52:4a:14:75:65:f5:f2:8b:0b:8d: 4d:2d:70:17:78:fc:34:bf:05:dc:84:39:b9:e7:6a: b8:62:11:46:d2:c5:d2:85:42:13:39:9e:c0:39:2c: 8f:0a:3b:2c:93:22:08:e5:1d:04:c8:ec:92:45:33: 85:7d:03:c3:e7:e9:bd:3a:04:65:29:69:a8:b4:53: 03:08:ca:03:f0:50:78:ac:39:3c:b7:bf:0c:b6:5c: f1:d6:78:97:0a:8c:72:f1:e7:56:82:b7:2a:bc:4e: 72:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:56:89:DA:FF:C6:57:58:8A:05:8E:50:83:98:9E:B2:E1:50:63:6B X509v3 Authority Key Identifier: keyid:65:22:E2:C3:EF:4D:93:F1:3E:75:8A:80:7A:40:A8:E1:BF:9A:B1:30 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/699/ZSLiw-9Nk_E-dYqAekCo4b-asTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZSLiw-9Nk_E-dYqAekCo4b-asTA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/699/dlaJ2v_GV1iKBY5Qg5iesuFQY2s.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.111.224.0/20 Signature Algorithm: sha256WithRSAEncryption b1:03:34:c5:c8:84:ac:31:69:61:4f:b7:cf:82:fc:f7:b6:a6: 52:81:ec:92:9f:0f:ef:8e:e0:3e:13:59:5a:e7:2b:f0:9f:5f: 65:be:1e:60:00:04:7f:de:a7:9f:2f:fd:53:9e:97:7e:4c:81: c9:f9:85:4c:ff:79:a9:55:fd:e5:d8:c2:ab:3a:68:af:7b:d4: a9:e5:72:99:cd:01:12:52:70:a2:01:45:6b:c8:dc:47:47:cc: c3:8f:c4:ea:1c:69:b0:88:a5:55:21:98:c9:66:3e:c3:1f:fa: 5e:15:0a:aa:48:79:f7:e0:fd:d2:b4:7f:ed:2e:c4:16:5c:12: 6b:74:6c:0a:a3:5a:e9:88:6c:72:95:95:e2:9a:90:55:39:63: 0d:63:ce:b2:bf:c6:ed:52:2b:88:18:96:5b:44:d6:5e:9e:6f: 68:7a:a5:df:50:1e:42:ee:01:19:39:83:f5:4f:71:86:db:8c: 66:9e:dd:5d:b2:ab:ae:09:6c:3d:4f:1f:5d:51:d4:6b:2a:4c: ee:e9:04:6b:37:00:a6:c4:97:f4:be:78:74:41:db:93:27:8b: c2:a4:79:a1:f2:aa:b0:64:f0:45:1c:02:a9:77:9b:6d:51:1a: 54:6e:ba:81:8c:61:26:3c:cd:0c:c0:19:df:3a:c2:08:e4:fe: d9:1e:56:ea -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICMkIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjUy MkUyQzNFRjREOTNGMTNFNzU4QTgwN0E0MEE4RTFCRjlBQjEzMDAeFw0yNTAxMzEw MTMxMTdaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDc2NTY4OURBRkZDNjU3 NTg4QTA1OEU1MDgzOTg5RUIyRTE1MDYzNkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZVgyViaq6im5vDxQEVjRO0uY/KISljAGyRiWNvs9O37/Htm3V p+nqtZzMPkYNEs1B11t2vspzZxJdnWoL6zXOszE91dOaJripWsnT9i/dy8LJAHjT XRyLgf13h4DTZ0+Udunr1yn4meTn++xxF7HMvo6ltPm2qyT8kINtl3b+JkoJS2It dilQsVIg4jIstkCiyO7Tl+PZlFHlUkoUdWX18osLjU0tcBd4/DS/BdyEObnnarhi EUbSxdKFQhM5nsA5LI8KOyyTIgjlHQTI7JJFM4V9A8Pn6b06BGUpaai0UwMIygPw UHisOTy3vwy2XPHWeJcKjHLx51aCtyq8TnJfAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUdlaJ2v/GV1iKBY5Qg5iesuFQY2swHwYDVR0jBBgwFoAUZSLiw+9Nk/E+dYqA ekCo4b+asTAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzY5OS9aU0xpdy05TmtfRS1kWXFBZWtDbzRiLWFzVEEuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9aU0xpdy05TmtfRS1kWXFBZWtDbzRi LWFzVEEuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNjk5L2RsYUoydl9HVjFpS0JZNVFnNWllc3VGUVkycy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATbb+AwDQYJKoZIhvcNAQELBQADggEBALEDNMXIhKwxaWFPt8+C/Pe2plKB 7JKfD++O4D4TWVrnK/CfX2W+HmAABH/ep58v/VOel35Mgcn5hUz/ealV/eXYwqs6 aK971KnlcpnNARJScKIBRWvI3EdHzMOPxOocabCIpVUhmMlmPsMf+l4VCqpIeffg /dK0f+0uxBZcEmt0bAqjWumIbHKVleKakFU5Yw1jzrK/xu1SK4gYlltE1l6eb2h6 pd9QHkLuARk5g/VPcYbbjGae3V2yq64JbD1PH11R1GsqTO7pBGs3AKbEl/S+eHRB 25Mni8KkeaHyqrBk8EUcAql3m21RGlRuuoGMYSY8zQzAGd86wgjk/tkeVuo= -----END CERTIFICATE-----Generated at Sat Apr 5 17:20:01 2025 by rpki-client