$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/718/AjdsE_1b5ZNSuZsUUZdz5ZX3QYk.roa File: AjdsE_1b5ZNSuZsUUZdz5ZX3QYk.roa (raw, json) Hash identifier: 5zaocI87Y9p4nU6LpTH0r0WruhG4P8WXarThh5HuwyU= Subject key identifier: 02:37:6C:13:FD:5B:E5:93:52:B9:9B:14:51:97:73:E5:95:F7:41:89 Certificate issuer: /CN=70124EAB896039E137736AA7022F934D797F5684 Certificate serial: 3C Authority key identifier: 70:12:4E:AB:89:60:39:E1:37:73:6A:A7:02:2F:93:4D:79:7F:56:84 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cBJOq4lgOeE3c2qnAi-TTXl_VoQ.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/718/AjdsE_1b5ZNSuZsUUZdz5ZX3QYk.roa Signing time: Fri 31 Jan 2025 01:29:09 +0000 ROA not before: Fri 31 Jan 2025 01:29:09 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 18094 IP address blocks: 219.118.112.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/718/cBJOq4lgOeE3c2qnAi-TTXl_VoQ.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/718/cBJOq4lgOeE3c2qnAi-TTXl_VoQ.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cBJOq4lgOeE3c2qnAi-TTXl_VoQ.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70124EAB896039E137736AA7022F934D797F5684 Validity Not Before: Jan 31 01:29:09 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=02376C13FD5BE59352B99B14519773E595F74189 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:0c:29:44:1b:e8:f4:61:39:dd:a1:96:b9:11: 63:37:f7:ed:76:c3:a6:8d:27:dd:5d:c8:ca:90:ca: 14:91:2d:ac:d5:13:82:fd:8d:55:2b:a5:c5:7e:26: 64:38:f2:06:b0:ab:8e:0c:10:40:79:2d:08:98:eb: c8:6d:19:2e:bb:1e:2c:79:ec:8b:fc:61:f2:a6:f7: 64:ca:94:2b:63:48:43:fe:81:8e:6d:47:a8:93:20: 15:f0:0c:b1:0b:44:a4:db:25:16:7b:99:0a:3e:41: 7e:72:e8:f0:93:22:e0:ad:98:c7:6c:9b:46:51:75: 05:c2:07:fb:57:17:28:8a:44:98:6e:53:04:6f:f2: 02:94:20:58:8d:de:af:05:a3:26:3e:f8:30:54:ad: 59:d2:7e:e1:a9:bc:c3:19:a1:05:eb:48:b1:ca:44: 6f:12:49:4b:93:db:ca:67:87:64:9d:fb:0f:47:29: 13:02:10:18:c4:f3:1a:85:cc:3c:0c:c2:79:75:42: 1c:3a:69:e3:91:df:4e:b1:f5:f0:a6:c6:4d:07:61: a2:f0:a0:ca:e0:84:b4:2c:d7:da:5f:db:4e:ca:76: 92:d4:72:cd:33:b0:c7:77:9c:e4:42:ec:f4:2f:ab: 98:80:f9:62:8a:09:ba:94:41:87:a9:cb:a8:a0:03: e6:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:37:6C:13:FD:5B:E5:93:52:B9:9B:14:51:97:73:E5:95:F7:41:89 X509v3 Authority Key Identifier: keyid:70:12:4E:AB:89:60:39:E1:37:73:6A:A7:02:2F:93:4D:79:7F:56:84 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/718/cBJOq4lgOeE3c2qnAi-TTXl_VoQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cBJOq4lgOeE3c2qnAi-TTXl_VoQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/718/AjdsE_1b5ZNSuZsUUZdz5ZX3QYk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.118.112.0/20 Signature Algorithm: sha256WithRSAEncryption 96:cf:e0:10:b2:0e:4c:37:bd:c4:03:ba:88:75:72:42:f1:d6: 23:64:72:0d:4f:26:0c:4e:7d:8e:3b:aa:ae:9f:96:63:0d:59: ba:88:e1:cc:74:75:bd:d8:bf:56:95:01:0c:05:ad:f5:55:89: e0:c2:2c:f4:df:30:81:cb:76:65:ce:dd:36:12:0b:03:2a:cd: e2:04:03:b9:64:5b:5c:20:dc:9f:86:60:c9:70:ca:81:e3:84: de:0a:7e:3a:9f:7e:46:3c:21:50:41:f3:cb:23:1e:d4:f4:76: 60:48:f5:d3:7e:54:4a:b8:12:36:f1:d5:95:ab:f3:bf:2b:bd: b0:2b:34:56:84:a8:a7:bb:c0:c4:54:b4:2d:e3:f3:11:62:c5: bc:36:22:89:26:7e:f8:b3:d1:9a:5f:ff:d4:d5:30:fc:8b:81: 33:2a:3e:04:cf:f3:04:09:2a:11:30:f8:41:cc:ba:d0:7c:88: f6:7f:eb:55:7d:d2:6f:ca:a3:af:51:35:7a:5e:b6:92:12:17: c9:82:4b:ac:fa:0b:25:96:a1:44:2a:b4:3f:a8:6b:22:80:b6: f6:ca:60:f5:df:3c:5b:84:91:5c:86:82:ce:5b:37:e7:c3:19: b9:c9:ab:5c:3a:b8:20:4c:96:25:6e:4d:fb:0f:fe:39:11:63: 29:7c:fc:3a -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBPDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3MDEy NEVBQjg5NjAzOUUxMzc3MzZBQTcwMjJGOTM0RDc5N0Y1Njg0MB4XDTI1MDEzMTAx MjkwOVoXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoMDIzNzZDMTNGRDVCRTU5 MzUyQjk5QjE0NTE5NzczRTU5NUY3NDE4OTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAO4MKUQb6PRhOd2hlrkRYzf37XbDpo0n3V3IypDKFJEtrNUTgv2N VSulxX4mZDjyBrCrjgwQQHktCJjryG0ZLrseLHnsi/xh8qb3ZMqUK2NIQ/6Bjm1H qJMgFfAMsQtEpNslFnuZCj5BfnLo8JMi4K2Yx2ybRlF1BcIH+1cXKIpEmG5TBG/y ApQgWI3erwWjJj74MFStWdJ+4am8wxmhBetIscpEbxJJS5PbymeHZJ37D0cpEwIQ GMTzGoXMPAzCeXVCHDpp45HfTrH18KbGTQdhovCgyuCEtCzX2l/bTsp2ktRyzTOw x3ec5ELs9C+rmID5YooJupRBh6nLqKAD5uMCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQCN2wT/Vvlk1K5mxRRl3PllfdBiTAfBgNVHSMEGDAWgBRwEk6riWA54TdzaqcC L5NNeX9WhDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNzE4L2NCSk9xNGxnT2VFM2MycW5BaS1UVFhsX1ZvUS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2NCSk9xNGxnT2VFM2MycW5BaS1UVFhs X1ZvUS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC83MTgvQWpkc0VfMWI1Wk5TdVpzVVVaZHo1WlgzUVlrLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNt2cDANBgkqhkiG9w0BAQsFAAOCAQEAls/gELIOTDe9xAO6iHVyQvHWI2Ry DU8mDE59jjuqrp+WYw1ZuojhzHR1vdi/VpUBDAWt9VWJ4MIs9N8wgct2Zc7dNhIL AyrN4gQDuWRbXCDcn4ZgyXDKgeOE3gp+Op9+RjwhUEHzyyMe1PR2YEj1035USrgS NvHVlavzvyu9sCs0VoSop7vAxFS0LePzEWLFvDYiiSZ++LPRml//1NUw/IuBMyo+ BM/zBAkqETD4Qcy60HyI9n/rVX3Sb8qjr1E1el62khIXyYJLrPoLJZahRCq0P6hr IoC29spg9d88W4SRXIaCzls358MZucmrXDq4IEyWJW5N+w/+ORFjKXz8Og== -----END CERTIFICATE-----Generated at Sat Apr 5 17:40:03 2025 by rpki-client