$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/718/RdLn7HUU038PQwgq5zSCOVXOEZk.roa File: RdLn7HUU038PQwgq5zSCOVXOEZk.roa (raw, json) Hash identifier: Lb+cy8nHs+pUeTKwtR9Fqe9qDeGbb1gZRP+3sa5aHz0= Subject key identifier: 45:D2:E7:EC:75:14:D3:7F:0F:43:08:2A:E7:34:82:39:55:CE:11:99 Certificate issuer: /CN=70124EAB896039E137736AA7022F934D797F5684 Certificate serial: 39 Authority key identifier: 70:12:4E:AB:89:60:39:E1:37:73:6A:A7:02:2F:93:4D:79:7F:56:84 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cBJOq4lgOeE3c2qnAi-TTXl_VoQ.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/718/RdLn7HUU038PQwgq5zSCOVXOEZk.roa Signing time: Fri 31 Jan 2025 01:29:07 +0000 ROA not before: Fri 31 Jan 2025 01:29:07 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 18094 IP address blocks: 123.200.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/718/cBJOq4lgOeE3c2qnAi-TTXl_VoQ.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/718/cBJOq4lgOeE3c2qnAi-TTXl_VoQ.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cBJOq4lgOeE3c2qnAi-TTXl_VoQ.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70124EAB896039E137736AA7022F934D797F5684 Validity Not Before: Jan 31 01:29:07 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=45D2E7EC7514D37F0F43082AE734823955CE1199 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a0:12:45:4f:a9:d2:72:de:1f:29:91:10:4a: 9f:01:8b:1f:da:ce:72:d6:65:f8:c2:e8:a7:07:69: 8f:19:ca:fe:37:1a:5b:da:1e:ac:dd:6b:5e:9b:d2: 45:3b:02:b5:d0:6b:60:d5:c6:ca:a7:1b:a6:6e:37: d6:67:25:00:aa:e1:3d:2b:6c:be:02:b6:27:ae:6c: 5c:4e:5a:af:a8:32:5b:c6:cd:07:ab:c0:41:9e:2a: 0b:bc:51:f7:12:ec:2d:ee:f0:82:26:63:e7:25:aa: ea:57:5b:0e:fd:9f:55:5a:1d:e7:2d:4d:ba:77:af: 6c:3d:e9:8a:96:e5:81:14:f4:ac:de:10:0b:0f:1a: e4:b2:11:64:43:73:84:00:26:06:8c:23:e5:e3:6c: c2:96:5d:52:41:87:07:2f:68:ec:1f:35:ff:de:b8: ad:38:d5:86:27:f0:01:98:84:4e:cc:c0:80:57:79: 57:49:1b:22:51:2e:00:24:de:03:33:3f:fd:fb:fa: 58:fd:b6:1c:02:61:a0:85:ae:6e:e2:f8:76:4b:37: 9d:31:8c:20:70:64:16:b9:22:94:d5:f3:41:1f:c5: b5:43:58:e7:d2:88:75:ca:bb:0d:73:ec:c2:62:40: 96:ea:cd:e7:27:f4:4c:1d:c8:2d:1e:60:84:83:af: 7d:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:D2:E7:EC:75:14:D3:7F:0F:43:08:2A:E7:34:82:39:55:CE:11:99 X509v3 Authority Key Identifier: keyid:70:12:4E:AB:89:60:39:E1:37:73:6A:A7:02:2F:93:4D:79:7F:56:84 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/718/cBJOq4lgOeE3c2qnAi-TTXl_VoQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cBJOq4lgOeE3c2qnAi-TTXl_VoQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/718/RdLn7HUU038PQwgq5zSCOVXOEZk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.200.32.0/19 Signature Algorithm: sha256WithRSAEncryption 67:b7:9b:6d:74:76:d4:21:72:6f:a9:d4:58:84:e6:30:b7:6f: 98:69:4c:0e:ac:e1:8e:5b:44:81:42:da:31:28:66:8d:8a:35: 0b:cd:50:b8:b5:d5:71:04:eb:85:68:dd:ff:55:66:76:8e:ff: 75:8c:ab:15:7a:d6:dd:15:37:79:bf:9d:16:35:e8:d4:83:fc: d9:1e:66:b4:59:a8:d4:a7:44:49:71:a8:7d:00:ba:5d:fa:49: 2a:5d:0e:19:d3:0d:4c:1f:92:51:0b:43:ea:2d:45:e5:5a:9d: 14:65:1b:9b:a1:77:d5:27:c1:40:1d:4c:ed:cd:8d:7f:97:af: e4:7c:da:9a:55:4b:f6:7d:d2:6d:a7:77:2f:3d:67:11:ab:35: ea:91:1a:a7:5b:46:42:cb:c8:f2:cf:81:9c:ff:b5:d8:d3:e5: cc:c9:26:84:83:87:3d:9a:50:0d:55:0e:a8:74:e7:84:e5:a3: f4:96:79:e8:38:ac:c2:f8:c5:67:15:a2:c8:8a:02:06:85:9e: 47:77:b9:5e:e9:8f:2a:66:f7:50:33:35:bb:72:d0:59:d7:1f: be:34:55:b3:30:07:a6:04:17:3b:c9:44:ff:d1:78:9d:e3:49: e1:0b:a9:c3:db:d7:93:67:46:d2:83:b5:a0:02:12:30:31:df: a9:ec:f8:cb -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBOTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3MDEy NEVBQjg5NjAzOUUxMzc3MzZBQTcwMjJGOTM0RDc5N0Y1Njg0MB4XDTI1MDEzMTAx MjkwN1oXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoNDVEMkU3RUM3NTE0RDM3 RjBGNDMwODJBRTczNDgyMzk1NUNFMTE5OTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANOgEkVPqdJy3h8pkRBKnwGLH9rOctZl+MLopwdpjxnK/jcaW9oe rN1rXpvSRTsCtdBrYNXGyqcbpm431mclAKrhPStsvgK2J65sXE5ar6gyW8bNB6vA QZ4qC7xR9xLsLe7wgiZj5yWq6ldbDv2fVVod5y1NunevbD3pipblgRT0rN4QCw8a 5LIRZENzhAAmBowj5eNswpZdUkGHBy9o7B81/964rTjVhifwAZiETszAgFd5V0kb IlEuACTeAzM//fv6WP22HAJhoIWubuL4dks3nTGMIHBkFrkilNXzQR/FtUNY59KI dcq7DXPswmJAlurN5yf0TB3ILR5ghIOvfR0CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRF0ufsdRTTfw9DCCrnNII5Vc4RmTAfBgNVHSMEGDAWgBRwEk6riWA54TdzaqcC L5NNeX9WhDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNzE4L2NCSk9xNGxnT2VFM2MycW5BaS1UVFhsX1ZvUS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2NCSk9xNGxnT2VFM2MycW5BaS1UVFhs X1ZvUS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC83MTgvUmRMbjdIVVUwMzhQUXdncTV6U0NPVlhPRVprLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBXvIIDANBgkqhkiG9w0BAQsFAAOCAQEAZ7ebbXR21CFyb6nUWITmMLdvmGlM DqzhjltEgULaMShmjYo1C81QuLXVcQTrhWjd/1Vmdo7/dYyrFXrW3RU3eb+dFjXo 1IP82R5mtFmo1KdESXGofQC6XfpJKl0OGdMNTB+SUQtD6i1F5VqdFGUbm6F31SfB QB1M7c2Nf5ev5HzamlVL9n3Sbad3Lz1nEas16pEap1tGQsvI8s+BnP+12NPlzMkm hIOHPZpQDVUOqHTnhOWj9JZ56DiswvjFZxWiyIoCBoWeR3e5XumPKmb3UDM1u3LQ WdcfvjRVszAHpgQXO8lE/9F4neNJ4Qupw9vXk2dG0oO1oAISMDHfqez4yw== -----END CERTIFICATE-----Generated at Sat Apr 5 17:40:17 2025 by rpki-client