$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/731/bN4smDOPbCKwvJXr8LDRV9GyqgE.roa File: bN4smDOPbCKwvJXr8LDRV9GyqgE.roa (raw, json) Hash identifier: CaJ1Qt9rFgBjVD0r++k3nCYunHCx1TT+Z8KcSDHC9UM= Subject key identifier: 6C:DE:2C:98:33:8F:6C:22:B0:BC:95:EB:F0:B0:D1:57:D1:B2:AA:01 Certificate issuer: /CN=91ACA44275EC0572BC6921502B241C14D44A9AA1 Certificate serial: 78 Authority key identifier: 91:AC:A4:42:75:EC:05:72:BC:69:21:50:2B:24:1C:14:D4:4A:9A:A1 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/kaykQnXsBXK8aSFQKyQcFNRKmqE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/731/bN4smDOPbCKwvJXr8LDRV9GyqgE.roa Signing time: Fri 31 Jan 2025 01:31:58 +0000 ROA not before: Fri 31 Jan 2025 01:31:58 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 18260 IP address blocks: 101.2.128.0/19 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/731/kaykQnXsBXK8aSFQKyQcFNRKmqE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/731/kaykQnXsBXK8aSFQKyQcFNRKmqE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/kaykQnXsBXK8aSFQKyQcFNRKmqE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91ACA44275EC0572BC6921502B241C14D44A9AA1 Validity Not Before: Jan 31 01:31:58 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=6CDE2C98338F6C22B0BC95EBF0B0D157D1B2AA01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:0a:2d:f0:3f:be:b5:36:6c:2c:9c:e6:4b:68: 11:72:21:56:de:5d:bf:af:a6:25:3f:5b:19:05:63: 6d:08:c5:3c:c4:00:6b:cb:81:63:4c:15:70:26:2f: 1b:bf:43:43:c4:85:67:0e:3d:7f:49:c5:8d:54:32: c0:6b:0e:5d:f4:0b:cc:e1:21:e4:b4:0e:0f:ea:2e: 39:2c:62:f9:bc:2e:07:09:e0:69:57:92:ae:b3:ff: 77:7f:aa:a8:29:56:60:81:2e:b1:ed:1f:4f:fb:6f: 24:c2:b7:6a:e8:2a:e5:fd:89:9c:5f:f8:fe:71:16: bc:63:15:ad:75:42:0d:43:c4:93:cf:05:65:79:04: 2a:06:d6:4a:24:f4:47:68:87:97:8b:f7:ad:e3:89: 99:98:5d:d9:52:85:a1:fe:d6:fa:ef:63:3d:2a:69: 3a:f2:ba:33:f4:8f:10:fe:62:88:82:3c:6e:2f:94: d0:fa:22:ed:dd:f5:93:77:f2:7b:d3:d9:c8:8f:c3: c7:a2:e2:d7:2b:fa:a8:ed:3b:99:7e:6e:79:92:e1: 0d:54:b3:78:0e:d0:b3:79:6c:35:1d:15:28:06:7a: ab:58:c7:7c:6b:fd:30:c4:e3:b3:67:f1:ea:ad:e3: 03:b4:42:1b:ce:68:3a:5d:2b:95:89:ea:48:63:e5: dc:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:DE:2C:98:33:8F:6C:22:B0:BC:95:EB:F0:B0:D1:57:D1:B2:AA:01 X509v3 Authority Key Identifier: keyid:91:AC:A4:42:75:EC:05:72:BC:69:21:50:2B:24:1C:14:D4:4A:9A:A1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/731/kaykQnXsBXK8aSFQKyQcFNRKmqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/kaykQnXsBXK8aSFQKyQcFNRKmqE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/731/bN4smDOPbCKwvJXr8LDRV9GyqgE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.2.128.0/19 Signature Algorithm: sha256WithRSAEncryption 6f:94:2f:7a:db:a4:60:47:ee:bd:be:51:f3:d4:c4:9d:6b:0e: 9e:c0:77:b7:a6:09:49:e5:61:dd:8d:5e:54:64:96:0e:c8:52: 54:f6:fe:c9:8f:8d:a9:8a:02:61:66:a1:09:91:70:7a:76:7e: 45:d6:9e:1a:51:42:c3:f1:f1:39:72:e2:f3:1a:75:fa:eb:f7: b7:5e:84:08:df:fd:e9:a3:59:fd:2a:13:b3:33:42:f2:e2:25: d7:ca:dc:34:93:7e:2d:81:f1:02:43:dc:e8:06:a2:46:ba:52: 29:ec:65:c5:da:3b:a2:ac:2a:c5:d2:c1:ed:e4:9f:ef:84:a0: 57:57:f8:80:2d:d6:ee:36:37:9f:99:5a:69:8b:26:92:e5:14: 99:2c:d3:d7:c3:dd:e6:82:a1:77:0e:5c:1d:3b:1d:02:fc:b3: 76:fa:88:9c:8f:93:82:86:28:28:72:85:33:36:7e:80:8b:3b: e2:44:f0:3c:22:6e:b1:47:ca:46:7e:cf:21:a9:39:a6:7a:c3: ea:51:9a:48:97:f5:4f:e3:f2:2e:5f:04:46:70:3c:d6:d1:fc: 64:25:1a:4e:ec:3b:ca:72:55:54:7e:33:8f:92:0e:d6:f2:c1: 31:a8:fd:74:6a:30:be:35:bb:2b:12:15:44:a7:08:37:aa:9e: f3:d0:45:47 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBeDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5MUFD QTQ0Mjc1RUMwNTcyQkM2OTIxNTAyQjI0MUMxNEQ0NEE5QUExMB4XDTI1MDEzMTAx MzE1OFoXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoNkNERTJDOTgzMzhGNkMy MkIwQkM5NUVCRjBCMEQxNTdEMUIyQUEwMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALEKLfA/vrU2bCyc5ktoEXIhVt5dv6+mJT9bGQVjbQjFPMQAa8uB Y0wVcCYvG79DQ8SFZw49f0nFjVQywGsOXfQLzOEh5LQOD+ouOSxi+bwuBwngaVeS rrP/d3+qqClWYIEuse0fT/tvJMK3augq5f2JnF/4/nEWvGMVrXVCDUPEk88FZXkE KgbWSiT0R2iHl4v3reOJmZhd2VKFof7W+u9jPSppOvK6M/SPEP5iiII8bi+U0Poi 7d31k3fye9PZyI/Dx6Li1yv6qO07mX5ueZLhDVSzeA7Qs3lsNR0VKAZ6q1jHfGv9 MMTjs2fx6q3jA7RCG85oOl0rlYnqSGPl3AECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRs3iyYM49sIrC8levwsNFX0bKqATAfBgNVHSMEGDAWgBSRrKRCdewFcrxpIVAr JBwU1EqaoTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNzMxL2theWtRblhzQlhLOGFTRlFLeVFjRk5SS21xRS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2theWtRblhzQlhLOGFTRlFLeVFjRk5S S21xRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC83MzEvYk40c21ET1BiQ0t3dkpYcjhMRFJWOUd5cWdFLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBWUCgDANBgkqhkiG9w0BAQsFAAOCAQEAb5QvetukYEfuvb5R89TEnWsOnsB3 t6YJSeVh3Y1eVGSWDshSVPb+yY+NqYoCYWahCZFwenZ+RdaeGlFCw/HxOXLi8xp1 +uv3t16ECN/96aNZ/SoTszNC8uIl18rcNJN+LYHxAkPc6AaiRrpSKexlxdo7oqwq xdLB7eSf74SgV1f4gC3W7jY3n5laaYsmkuUUmSzT18Pd5oKhdw5cHTsdAvyzdvqI nI+TgoYoKHKFMzZ+gIs74kTwPCJusUfKRn7PIak5pnrD6lGaSJf1T+PyLl8ERnA8 1tH8ZCUaTuw7ynJVVH4zj5IO1vLBMaj9dGowvjW7KxIVRKcIN6qe89BFRw== -----END CERTIFICATE-----Generated at Sat Apr 5 17:46:40 2025 by rpki-client