$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/903/SRYpotz2RoBeAUwOUBG1vWsb3Io.roa File: SRYpotz2RoBeAUwOUBG1vWsb3Io.roa (raw, json) Hash identifier: QZivSbgtAIr6gMj7ICdN/7zGxY9ZsvF6eQziJFvIxUg= Subject key identifier: 49:16:29:A2:DC:F6:46:80:5E:01:4C:0E:50:11:B5:BD:6B:1B:DC:8A Certificate issuer: /CN=94C2F0BE180089A7593D9ED37D04E852ED5A259A Certificate serial: 02 Authority key identifier: 94:C2:F0:BE:18:00:89:A7:59:3D:9E:D3:7D:04:E8:52:ED:5A:25:9A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lMLwvhgAiadZPZ7TfQToUu1aJZo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/903/SRYpotz2RoBeAUwOUBG1vWsb3Io.roa Signing time: Thu 16 Jan 2025 07:50:33 +0000 ROA not before: Thu 16 Jan 2025 07:50:33 +0000 ROA not after: Fri 16 Jan 2026 07:42:57 +0000 asID: 0 IP address blocks: 210.134.128.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/903/lMLwvhgAiadZPZ7TfQToUu1aJZo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/903/lMLwvhgAiadZPZ7TfQToUu1aJZo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lMLwvhgAiadZPZ7TfQToUu1aJZo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94C2F0BE180089A7593D9ED37D04E852ED5A259A Validity Not Before: Jan 16 07:50:33 2025 GMT Not After : Jan 16 07:42:57 2026 GMT Subject: CN=491629A2DCF646805E014C0E5011B5BD6B1BDC8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7e:ad:2d:de:8d:65:b6:63:58:50:40:08:19: 69:77:8f:8d:34:2e:b8:1b:fa:a0:61:a7:23:a1:b5: c5:d0:a4:7d:79:96:18:ed:59:df:cf:ba:76:3d:c8: f4:db:f2:a5:e6:37:d6:c3:8d:d9:e0:84:6b:7a:ab: 7b:c3:82:68:d7:d6:99:c7:0b:18:76:be:44:26:f2: 74:c5:be:1f:c0:69:6a:09:cf:33:fa:5c:aa:a8:29: 67:48:3d:5e:e6:62:01:2a:e7:d3:4b:a7:50:5d:de: ee:86:0e:ea:dc:92:5d:4f:14:17:18:50:4b:b8:e4: 91:f4:a3:8b:9d:d2:45:9d:7b:3c:d1:4d:f4:4f:ca: 56:92:88:a8:db:b6:83:4a:3a:3b:20:91:2f:32:0d: 9d:a5:27:e0:58:2f:d9:47:be:23:2a:8b:8c:99:d6: dd:26:21:27:13:ed:6e:9c:b9:ca:4e:66:c3:b9:09: d2:04:31:0a:d4:17:b1:e8:2b:39:be:60:63:fe:fb: cb:da:fa:c6:dc:64:24:90:00:79:fd:6a:89:a4:9c: 06:aa:cf:45:c0:37:10:ff:c5:be:76:07:56:b1:ce: 45:84:93:04:1f:44:cc:3e:3d:f6:e1:51:18:ff:b2: 9b:c8:b7:8f:66:dd:81:54:6f:84:c1:aa:12:82:80: 05:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:16:29:A2:DC:F6:46:80:5E:01:4C:0E:50:11:B5:BD:6B:1B:DC:8A X509v3 Authority Key Identifier: keyid:94:C2:F0:BE:18:00:89:A7:59:3D:9E:D3:7D:04:E8:52:ED:5A:25:9A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/903/lMLwvhgAiadZPZ7TfQToUu1aJZo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lMLwvhgAiadZPZ7TfQToUu1aJZo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/903/SRYpotz2RoBeAUwOUBG1vWsb3Io.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.134.128.0/20 Signature Algorithm: sha256WithRSAEncryption 8f:34:60:d5:c0:7e:28:c0:84:b5:f4:cf:78:3f:a4:52:35:c3: 30:fb:02:a1:43:1c:85:6e:7d:8d:9b:0a:ed:7d:10:e7:74:f0: 93:13:42:e5:99:00:3a:c7:ae:05:1e:58:a1:67:39:0e:b3:ca: 45:3d:72:fa:b1:da:e1:7c:14:8e:97:f6:89:24:d7:78:af:e0: a2:4f:b9:9d:3e:6c:e5:65:c7:aa:fa:75:d0:aa:a1:b5:e2:ac: 28:f4:b6:bb:58:75:cc:05:01:ca:d2:ea:e1:1a:a6:91:b1:2e: 5a:28:12:22:6b:aa:97:60:24:48:e5:25:11:93:63:bb:c4:f3: d3:b9:7c:ea:cd:e6:d2:c1:59:32:2d:7b:de:f8:f4:61:26:79: af:22:f1:69:30:ab:fd:0a:3f:29:ca:80:44:64:2c:0b:1e:94: 2c:42:7e:80:7f:d7:d0:78:e9:25:c7:85:ca:88:0f:8e:51:e1: a8:1c:b6:2e:92:e9:14:87:e7:8a:e3:7e:64:dc:6b:4f:97:24: 71:59:e0:06:78:fc:13:72:82:96:ff:d1:fd:fe:0a:49:72:0d: ac:68:b2:ba:d7:02:3b:10:14:6e:10:f6:6e:40:18:df:de:fa: 6f:c3:99:df:bd:1f:ae:94:7d:ba:28:cb:89:6f:c2:1d:10:e2: 08:34:db:d8 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBAjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5NEMy RjBCRTE4MDA4OUE3NTkzRDlFRDM3RDA0RTg1MkVENUEyNTlBMB4XDTI1MDExNjA3 NTAzM1oXDTI2MDExNjA3NDI1N1owMzExMC8GA1UEAxMoNDkxNjI5QTJEQ0Y2NDY4 MDVFMDE0QzBFNTAxMUI1QkQ2QjFCREM4QTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL1+rS3ejWW2Y1hQQAgZaXePjTQuuBv6oGGnI6G1xdCkfXmWGO1Z 38+6dj3I9NvypeY31sON2eCEa3qre8OCaNfWmccLGHa+RCbydMW+H8BpagnPM/pc qqgpZ0g9XuZiASrn00unUF3e7oYO6tySXU8UFxhQS7jkkfSji53SRZ17PNFN9E/K VpKIqNu2g0o6OyCRLzINnaUn4Fgv2Ue+IyqLjJnW3SYhJxPtbpy5yk5mw7kJ0gQx CtQXsegrOb5gY/77y9r6xtxkJJAAef1qiaScBqrPRcA3EP/FvnYHVrHORYSTBB9E zD499uFRGP+ym8i3j2bdgVRvhMGqEoKABfMCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRJFimi3PZGgF4BTA5QEbW9axvcijAfBgNVHSMEGDAWgBSUwvC+GACJp1k9ntN9 BOhS7VolmjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTAzL2xNTHd2aGdBaWFkWlBaN1RmUVRvVXUxYUpaby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2xNTHd2aGdBaWFkWlBaN1RmUVRvVXUx YUpaby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85MDMvU1JZcG90ejJSb0JlQVV3T1VCRzF2V3NiM0lvLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNKGgDANBgkqhkiG9w0BAQsFAAOCAQEAjzRg1cB+KMCEtfTPeD+kUjXDMPsC oUMchW59jZsK7X0Q53TwkxNC5ZkAOseuBR5YoWc5DrPKRT1y+rHa4XwUjpf2iSTX eK/gok+5nT5s5WXHqvp10KqhteKsKPS2u1h1zAUBytLq4RqmkbEuWigSImuql2Ak SOUlEZNju8Tz07l86s3m0sFZMi173vj0YSZ5ryLxaTCr/Qo/KcqARGQsCx6ULEJ+ gH/X0HjpJceFyogPjlHhqBy2LpLpFIfniuN+ZNxrT5ckcVngBnj8E3KClv/R/f4K SXINrGiyutcCOxAUbhD2bkAY3976b8OZ370frpR9uijLiW/CHRDiCDTb2A== -----END CERTIFICATE-----Generated at Sun Apr 6 01:44:14 2025 by rpki-client