$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/905/PZEam_LzcMi63j1IwBFhA2rEG2o.roa File: PZEam_LzcMi63j1IwBFhA2rEG2o.roa (raw, json) Hash identifier: oUq39hLRfwr1DC8rWhTlYgYIyAlWAjsTe3GKf48fZls= Subject key identifier: 3D:91:1A:9B:F2:F3:70:C8:BA:DE:3D:48:C0:11:61:03:6A:C4:1B:6A Certificate issuer: /CN=FAEF57FF144D25094E460E0FD38C80379334ED6D Certificate serial: 15 Authority key identifier: FA:EF:57:FF:14:4D:25:09:4E:46:0E:0F:D3:8C:80:37:93:34:ED:6D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-u9X_xRNJQlORg4P04yAN5M07W0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/905/PZEam_LzcMi63j1IwBFhA2rEG2o.roa Signing time: Wed 04 Sep 2024 06:59:53 +0000 ROA not before: Wed 04 Sep 2024 06:59:53 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 24255 IP address blocks: 103.198.212.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/905/-u9X_xRNJQlORg4P04yAN5M07W0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/905/-u9X_xRNJQlORg4P04yAN5M07W0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-u9X_xRNJQlORg4P04yAN5M07W0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:13:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FAEF57FF144D25094E460E0FD38C80379334ED6D Validity Not Before: Sep 4 06:59:53 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=3D911A9BF2F370C8BADE3D48C01161036AC41B6A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:08:ba:7c:ad:4e:31:24:7d:6c:c4:2c:c2:fe: de:8e:20:2f:64:5b:a5:48:ef:2c:42:4f:7e:a3:e8: db:c3:22:02:63:0b:1f:a4:32:7b:68:46:6f:98:ab: 67:9f:03:f6:82:06:19:a7:0d:b8:9a:8e:c4:f4:6f: 10:2d:99:9f:cd:06:20:99:29:0b:eb:22:08:19:5f: ac:23:4e:7b:57:2f:72:03:0a:4b:0f:7f:03:15:ed: 7f:aa:f4:d0:c2:b8:11:ac:b3:34:44:85:59:75:be: bd:e5:45:83:48:a4:9d:50:a8:11:08:90:e3:ac:41: 7e:4b:14:ab:32:95:c0:4e:19:26:15:3e:27:7f:d3: cd:80:a5:96:88:9a:1f:0d:4c:b2:59:19:ed:ba:01: 2f:dc:d0:91:7e:c0:bb:78:c9:6d:ad:33:59:37:cd: 67:79:64:56:36:5d:df:5f:e8:ef:95:0b:0c:09:eb: f2:91:c4:b6:e0:90:96:10:60:d0:6e:f1:f9:ff:16: f6:d8:50:00:f1:13:43:51:a6:eb:b5:c1:5f:eb:d7: 54:b4:95:81:b0:f3:a7:5e:ed:7d:15:51:a0:73:a4: a9:ba:8c:f6:8d:5d:7a:30:e2:d3:71:7b:6c:1e:02: 94:85:e2:c8:6e:38:27:15:fe:8c:a2:2c:f0:0d:5c: 72:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:91:1A:9B:F2:F3:70:C8:BA:DE:3D:48:C0:11:61:03:6A:C4:1B:6A X509v3 Authority Key Identifier: keyid:FA:EF:57:FF:14:4D:25:09:4E:46:0E:0F:D3:8C:80:37:93:34:ED:6D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/905/-u9X_xRNJQlORg4P04yAN5M07W0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-u9X_xRNJQlORg4P04yAN5M07W0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/905/PZEam_LzcMi63j1IwBFhA2rEG2o.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.198.212.0/22 Signature Algorithm: sha256WithRSAEncryption 5b:ea:ff:e7:b0:fd:e3:7a:a3:2c:4c:56:6b:28:0a:eb:5c:7f: 4d:59:2a:62:83:3e:c9:8a:c2:34:7e:2b:85:f4:12:e5:7e:c2: 0d:bb:a0:25:75:b8:89:49:82:a1:95:25:b4:4d:05:c6:f6:0a: 01:26:f8:62:6a:1d:a3:05:fa:7b:bf:1e:ea:b2:fb:df:04:cf: 79:93:8f:9b:fb:ad:1b:b7:ca:e7:21:fb:e6:52:36:58:08:58: 00:57:4f:23:5c:83:49:2e:d7:bf:b8:c3:1e:47:1a:33:83:a1: 7e:ec:3f:b9:f4:1d:90:af:7a:25:26:37:e8:ef:71:5a:22:25: b3:9b:d4:db:ea:92:68:aa:58:96:61:0e:a2:50:74:e9:2d:df: 7f:42:46:7a:15:2f:5e:3d:d7:53:4b:6a:39:10:74:35:0a:74: ac:5a:62:f1:49:f9:76:f8:4a:bc:45:b8:c7:87:53:ce:4a:db: bc:87:f5:34:78:d4:90:40:dc:d8:a1:c4:7e:8c:c3:6a:64:f7: 3c:a9:89:5b:be:cc:b0:d8:e0:dc:3c:8f:6e:1e:38:aa:24:7e: a7:f2:b3:7c:80:13:fc:27:e0:80:5f:29:aa:93:0c:24:a0:9b: f6:5d:c0:61:f9:49:11:09:cc:1d:ce:ca:83:d8:06:39:9d:27: 18:83:e8:fa -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBFTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGQUVG NTdGRjE0NEQyNTA5NEU0NjBFMEZEMzhDODAzNzkzMzRFRDZEMB4XDTI0MDkwNDA2 NTk1M1oXDTI1MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoM0Q5MTFBOUJGMkYzNzBD OEJBREUzRDQ4QzAxMTYxMDM2QUM0MUI2QTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOIIunytTjEkfWzELML+3o4gL2RbpUjvLEJPfqPo28MiAmMLH6Qy e2hGb5irZ58D9oIGGacNuJqOxPRvEC2Zn80GIJkpC+siCBlfrCNOe1cvcgMKSw9/ AxXtf6r00MK4EayzNESFWXW+veVFg0iknVCoEQiQ46xBfksUqzKVwE4ZJhU+J3/T zYClloiaHw1MslkZ7boBL9zQkX7Au3jJba0zWTfNZ3lkVjZd31/o75ULDAnr8pHE tuCQlhBg0G7x+f8W9thQAPETQ1Gm67XBX+vXVLSVgbDzp17tfRVRoHOkqbqM9o1d ejDi03F7bB4ClIXiyG44JxX+jKIs8A1ccg0CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQ9kRqb8vNwyLrePUjAEWEDasQbajAfBgNVHSMEGDAWgBT671f/FE0lCU5GDg/T jIA3kzTtbTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTA1Ly11OVhfeFJOSlFsT1JnNFAwNHlBTjVNMDdXMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLy11OVhfeFJOSlFsT1JnNFAwNHlBTjVN MDdXMC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85MDUvUFpFYW1fTHpjTWk2M2oxSXdCRmhBMnJFRzJvLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmfG1DANBgkqhkiG9w0BAQsFAAOCAQEAW+r/57D943qjLExWaygK61x/TVkq YoM+yYrCNH4rhfQS5X7CDbugJXW4iUmCoZUltE0FxvYKASb4YmodowX6e78e6rL7 3wTPeZOPm/utG7fK5yH75lI2WAhYAFdPI1yDSS7Xv7jDHkcaM4Ohfuw/ufQdkK96 JSY36O9xWiIls5vU2+qSaKpYlmEOolB06S3ff0JGehUvXj3XU0tqORB0NQp0rFpi 8Un5dvhKvEW4x4dTzkrbvIf1NHjUkEDc2KHEfozDamT3PKmJW77MsNjg3DyPbh44 qiR+p/KzfIAT/CfggF8pqpMMJKCb9l3AYflJEQnMHc7Kg9gGOZ0nGIPo+g== -----END CERTIFICATE-----Generated at Sat Apr 5 12:00:24 2025 by rpki-client