$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/793/uo-HE8vVTlbAS0-OqLhSB6BlTN4.roa File: uo-HE8vVTlbAS0-OqLhSB6BlTN4.roa (raw, json) Hash identifier: kcwoKenPDernhGIx46lSKwcDOIiqM9qhpLd3+cG0Br4= Subject key identifier: BA:8F:87:13:CB:D5:4E:56:C0:4B:4F:8E:A8:B8:52:07:A0:65:4C:DE Certificate issuer: /CN=8D8D2658815CA3C4EE5A53F91BA61268E3F4C0E1 Certificate serial: 2A Authority key identifier: 8D:8D:26:58:81:5C:A3:C4:EE:5A:53:F9:1B:A6:12:68:E3:F4:C0:E1 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jY0mWIFco8TuWlP5G6YSaOP0wOE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/793/uo-HE8vVTlbAS0-OqLhSB6BlTN4.roa Signing time: Sat 31 Aug 2024 01:31:21 +0000 ROA not before: Sat 31 Aug 2024 01:31:21 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 18274 IP address blocks: 116.118.208.0/20 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/793/jY0mWIFco8TuWlP5G6YSaOP0wOE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/793/jY0mWIFco8TuWlP5G6YSaOP0wOE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jY0mWIFco8TuWlP5G6YSaOP0wOE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:13:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D8D2658815CA3C4EE5A53F91BA61268E3F4C0E1 Validity Not Before: Aug 31 01:31:21 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=BA8F8713CBD54E56C04B4F8EA8B85207A0654CDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:05:da:0e:1c:4a:65:24:2f:90:b1:84:75:f2: c2:97:22:ab:2b:b1:c9:74:ae:c2:bf:3e:49:d0:dd: ca:6c:ca:1d:75:85:40:fe:67:2a:1b:6d:f8:64:4c: ec:2c:c6:7c:ea:cf:87:fb:af:31:81:f3:c3:4e:57: 00:82:8d:71:a5:af:15:29:61:0e:ff:ba:b4:6c:75: b4:02:f7:d2:b0:8a:13:5d:d1:33:aa:e6:e0:ba:9e: 81:1c:08:21:c0:ab:fb:4e:3b:5e:4e:88:30:c5:61: 84:5e:e3:50:88:b5:a6:4a:cd:30:42:30:09:5c:14: 41:e2:98:22:76:c0:d5:da:13:ed:2e:30:26:05:87: ed:dd:b9:f7:2a:38:39:8f:72:0c:e6:b8:e8:a6:07: f1:9a:0d:93:1a:b0:46:11:f0:a5:69:11:4c:d4:d0: ec:e5:67:03:4d:97:58:29:c6:72:27:d3:e4:78:52: ef:62:cc:9d:c5:6a:19:94:13:5b:b0:a2:9a:ea:59: 29:14:1f:7d:b0:dc:1a:1f:4f:60:11:24:73:e6:ff: ed:89:da:03:f8:94:cb:a9:a1:c3:31:7c:42:35:50: dc:8c:1e:a8:f6:8b:6d:33:af:8f:23:79:8a:b0:3b: 7d:fd:38:16:2c:34:a1:e6:27:98:cd:c1:3c:1c:87: cd:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:8F:87:13:CB:D5:4E:56:C0:4B:4F:8E:A8:B8:52:07:A0:65:4C:DE X509v3 Authority Key Identifier: keyid:8D:8D:26:58:81:5C:A3:C4:EE:5A:53:F9:1B:A6:12:68:E3:F4:C0:E1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/793/jY0mWIFco8TuWlP5G6YSaOP0wOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jY0mWIFco8TuWlP5G6YSaOP0wOE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/793/uo-HE8vVTlbAS0-OqLhSB6BlTN4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.118.208.0/20 Signature Algorithm: sha256WithRSAEncryption a3:4b:1a:08:ec:95:0d:93:18:71:84:6c:6b:f2:7e:08:64:67: 2c:c5:a3:05:3f:67:ab:10:71:88:28:45:3e:20:64:59:d0:3a: f9:4f:fc:97:04:51:c5:0e:a0:b7:46:6e:f5:ff:f8:2d:31:92: e9:60:89:fd:30:7f:ac:d5:c8:49:a7:27:d9:c5:05:95:57:13: af:f0:c5:7e:ff:ed:96:86:80:0b:16:b3:c8:9e:a1:15:c3:90: aa:03:8c:3f:12:23:69:dd:42:f1:d4:f9:23:e7:43:13:95:18: 38:71:f7:54:f7:ca:e7:e4:c7:7d:5c:f2:c3:2b:2e:0b:be:2c: ca:bc:54:cd:c6:36:13:5c:42:7b:a8:b0:2d:3f:42:08:05:dc: 80:77:8c:a5:ac:9b:93:4d:2f:4f:d4:32:ed:37:60:60:ac:a7: 4c:4e:73:1f:6e:90:df:26:b2:a9:fb:30:dc:fd:74:d1:34:10: 42:f8:49:68:34:5d:24:da:6e:18:a5:df:b4:0a:7c:f3:63:f7: ef:13:aa:5e:6a:9c:66:09:f2:4d:17:c9:c1:fd:5c:d3:92:ac: e7:e2:44:b9:44:18:fb:b9:4c:8b:dc:6b:5e:36:15:a4:ee:18: a4:80:60:2d:9b:40:7a:77:0f:dc:b3:1f:06:14:d1:2e:69:9a: 42:8f:a0:fc -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBKjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4RDhE MjY1ODgxNUNBM0M0RUU1QTUzRjkxQkE2MTI2OEUzRjRDMEUxMB4XDTI0MDgzMTAx MzEyMVoXDTI1MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoQkE4Rjg3MTNDQkQ1NEU1 NkMwNEI0RjhFQThCODUyMDdBMDY1NENERTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANYF2g4cSmUkL5CxhHXywpciqyuxyXSuwr8+SdDdymzKHXWFQP5n Khtt+GRM7CzGfOrPh/uvMYHzw05XAIKNcaWvFSlhDv+6tGx1tAL30rCKE13RM6rm 4LqegRwIIcCr+047Xk6IMMVhhF7jUIi1pkrNMEIwCVwUQeKYInbA1doT7S4wJgWH 7d259yo4OY9yDOa46KYH8ZoNkxqwRhHwpWkRTNTQ7OVnA02XWCnGcifT5HhS72LM ncVqGZQTW7CimupZKRQffbDcGh9PYBEkc+b/7YnaA/iUy6mhwzF8QjVQ3IweqPaL bTOvjyN5irA7ff04Fiw0oeYnmM3BPByHzTsCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBS6j4cTy9VOVsBLT46ouFIHoGVM3jAfBgNVHSMEGDAWgBSNjSZYgVyjxO5aU/kb phJo4/TA4TAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNzkzL2pZMG1XSUZjbzhUdVdsUDVHNllTYU9QMHdPRS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2pZMG1XSUZjbzhUdVdsUDVHNllTYU9Q MHdPRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC83OTMvdW8tSEU4dlZUbGJBUzAtT3FMaFNCNkJsVE40LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBHR20DANBgkqhkiG9w0BAQsFAAOCAQEAo0saCOyVDZMYcYRsa/J+CGRnLMWj BT9nqxBxiChFPiBkWdA6+U/8lwRRxQ6gt0Zu9f/4LTGS6WCJ/TB/rNXISacn2cUF lVcTr/DFfv/tloaACxazyJ6hFcOQqgOMPxIjad1C8dT5I+dDE5UYOHH3VPfK5+TH fVzywysuC74syrxUzcY2E1xCe6iwLT9CCAXcgHeMpaybk00vT9Qy7TdgYKynTE5z H26Q3yayqfsw3P100TQQQvhJaDRdJNpuGKXftAp882P37xOqXmqcZgnyTRfJwf1c 05Ks5+JEuUQY+7lMi9xrXjYVpO4YpIBgLZtAencP3LMfBhTRLmmaQo+g/A== -----END CERTIFICATE-----Generated at Sat Apr 5 11:57:56 2025 by rpki-client