$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/934/sxlH9Vbrh9FwdwUpIExy5lv3WGI.roa File: sxlH9Vbrh9FwdwUpIExy5lv3WGI.roa (raw, json) Hash identifier: g0GFoHwKkqhaG2HkDdT7ACrSY3EVucdJesKObBMWEsU= Subject key identifier: B3:19:47:F5:56:EB:87:D1:70:77:05:29:20:4C:72:E6:5B:F7:58:62 Certificate issuer: /CN=2A4CFE909CA58307E7CA8735AF245D718D99F7FB Certificate serial: 70 Authority key identifier: 2A:4C:FE:90:9C:A5:83:07:E7:CA:87:35:AF:24:5D:71:8D:99:F7:FB Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Kkz-kJylgwfnyoc1ryRdcY2Z9_s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/934/sxlH9Vbrh9FwdwUpIExy5lv3WGI.roa Signing time: Fri 31 Jan 2025 01:32:19 +0000 ROA not before: Fri 31 Jan 2025 01:32:19 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 37892 IP address blocks: 124.247.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/934/Kkz-kJylgwfnyoc1ryRdcY2Z9_s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/934/Kkz-kJylgwfnyoc1ryRdcY2Z9_s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Kkz-kJylgwfnyoc1ryRdcY2Z9_s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A4CFE909CA58307E7CA8735AF245D718D99F7FB Validity Not Before: Jan 31 01:32:19 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=B31947F556EB87D170770529204C72E65BF75862 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9f:62:35:a3:0d:f0:a3:96:48:a7:f9:0a:eb: 78:02:a6:57:09:b3:bf:bc:45:24:09:08:1d:39:d9: aa:c8:73:35:4f:01:75:1c:26:3f:75:3b:34:a5:16: e1:b5:df:15:4e:78:99:50:62:dc:69:03:31:56:05: ca:21:89:61:a0:b7:f0:5b:c9:2b:73:66:91:27:43: dc:cf:a9:f8:70:75:6e:41:9b:1e:e6:c0:6e:44:80: b2:ad:ac:fe:69:67:d0:d9:6a:a8:c8:46:21:a3:17: db:81:23:00:52:e7:bf:3a:54:c7:e0:6d:57:f0:13: f2:51:26:67:e8:7c:bc:8c:cf:66:6c:de:7f:c2:fa: 0f:c2:ad:b0:96:e0:e6:20:b5:b9:1d:78:cf:83:59: 95:bf:c5:85:26:a4:16:b4:04:42:97:9e:a0:f9:4a: 6a:04:3d:a8:c8:ef:b8:16:59:d4:5d:3d:48:b3:8e: ed:58:77:35:6e:1e:f9:6e:cb:96:4e:e8:33:02:12: 42:b4:28:75:9d:3a:97:e7:35:99:11:f2:fe:c9:a9: 42:17:c1:6d:08:0c:6c:7d:b4:f8:47:af:d2:44:ad: 9f:2d:99:44:46:53:9c:82:10:19:c8:07:1e:c2:53: 8c:10:70:af:00:ad:4d:eb:ef:b0:db:b5:ac:cc:42: a1:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:19:47:F5:56:EB:87:D1:70:77:05:29:20:4C:72:E6:5B:F7:58:62 X509v3 Authority Key Identifier: keyid:2A:4C:FE:90:9C:A5:83:07:E7:CA:87:35:AF:24:5D:71:8D:99:F7:FB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/934/Kkz-kJylgwfnyoc1ryRdcY2Z9_s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Kkz-kJylgwfnyoc1ryRdcY2Z9_s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/934/sxlH9Vbrh9FwdwUpIExy5lv3WGI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.247.128.0/18 Signature Algorithm: sha256WithRSAEncryption 87:7a:32:fd:c2:66:73:49:d2:05:e6:9f:28:ad:69:7f:ba:97: 81:b7:a1:8f:d0:b2:14:9b:e8:f7:c1:71:8e:61:78:b9:4f:23: 0b:79:c8:7e:3a:d1:e2:a9:3a:70:02:eb:10:98:2f:d8:8f:62: 03:b5:a6:72:6b:db:1a:5b:b4:1f:c6:6f:7e:58:c6:82:78:5a: 4e:f8:4b:90:a1:d8:22:a3:99:df:f4:7b:6b:fb:c6:95:77:cb: db:7b:6e:5a:9e:f8:7e:2e:dc:ab:e4:2d:12:6a:7c:70:cd:1e: bf:ba:ed:58:df:01:cf:62:95:e3:8c:70:f9:56:14:d1:07:2d: bd:d4:fb:a6:fd:87:d9:65:0d:86:c1:5f:fa:13:e7:b8:f9:56: 1f:c1:1c:c8:75:7e:ba:bf:2d:f0:92:72:37:3f:fb:78:39:f9: fa:74:e2:c2:bc:48:e4:67:d4:b2:e3:3f:6d:c7:b5:1a:0a:60: 2c:99:77:1f:ad:e1:28:95:35:1f:97:3d:6a:46:39:88:04:d9: fa:42:0d:b6:a5:86:9b:1f:1a:6c:19:44:f6:bb:ee:e8:96:62: ab:52:e4:43:71:07:b8:e1:7e:83:99:9b:02:0a:39:9b:ed:36: d4:30:49:dc:55:92:60:c3:b5:bc:53:d2:84:ac:07:5f:33:a4: 46:40:e0:f2 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBcDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyQTRD RkU5MDlDQTU4MzA3RTdDQTg3MzVBRjI0NUQ3MThEOTlGN0ZCMB4XDTI1MDEzMTAx MzIxOVoXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoQjMxOTQ3RjU1NkVCODdE MTcwNzcwNTI5MjA0QzcyRTY1QkY3NTg2MjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMCfYjWjDfCjlkin+QrreAKmVwmzv7xFJAkIHTnZqshzNU8BdRwm P3U7NKUW4bXfFU54mVBi3GkDMVYFyiGJYaC38FvJK3NmkSdD3M+p+HB1bkGbHubA bkSAsq2s/mln0NlqqMhGIaMX24EjAFLnvzpUx+BtV/AT8lEmZ+h8vIzPZmzef8L6 D8KtsJbg5iC1uR14z4NZlb/FhSakFrQEQpeeoPlKagQ9qMjvuBZZ1F09SLOO7Vh3 NW4e+W7Llk7oMwISQrQodZ06l+c1mRHy/smpQhfBbQgMbH20+Eev0kStny2ZREZT nIIQGcgHHsJTjBBwrwCtTevvsNu1rMxCoW0CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSzGUf1VuuH0XB3BSkgTHLmW/dYYjAfBgNVHSMEGDAWgBQqTP6QnKWDB+fKhzWv JF1xjZn3+zAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTM0L0trei1rSnlsZ3dmbnlvYzFyeVJkY1kyWjlfcy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0trei1rSnlsZ3dmbnlvYzFyeVJkY1ky Wjlfcy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85MzQvc3hsSDlWYnJoOUZ3ZHdVcElFeHk1bHYzV0dJLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBnz3gDANBgkqhkiG9w0BAQsFAAOCAQEAh3oy/cJmc0nSBeafKK1pf7qXgbeh j9CyFJvo98FxjmF4uU8jC3nIfjrR4qk6cALrEJgv2I9iA7WmcmvbGlu0H8ZvfljG gnhaTvhLkKHYIqOZ3/R7a/vGlXfL23tuWp74fi7cq+QtEmp8cM0ev7rtWN8Bz2KV 44xw+VYU0QctvdT7pv2H2WUNhsFf+hPnuPlWH8EcyHV+ur8t8JJyNz/7eDn5+nTi wrxI5GfUsuM/bce1GgpgLJl3H63hKJU1H5c9akY5iATZ+kINtqWGmx8abBlE9rvu 6JZiq1LkQ3EHuOF+g5mbAgo5m+021DBJ3FWSYMO1vFPShKwHXzOkRkDg8g== -----END CERTIFICATE-----Generated at Sat Apr 5 17:35:12 2025 by rpki-client