$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/948/MhI_fLp0MnCpjGK5cSiaSCGkA8U.roa File: MhI_fLp0MnCpjGK5cSiaSCGkA8U.roa (raw, json) Hash identifier: 05QLioJKoSFpHDe0IKvy8VzyzcICNT0DCZNbld424vc= Subject key identifier: 32:12:3F:7C:BA:74:32:70:A9:8C:62:B9:71:28:9A:48:21:A4:03:C5 Certificate issuer: /CN=C4B9536C4EC785B8812E53A219D2B09A7DCBCE0C Certificate serial: 29 Authority key identifier: C4:B9:53:6C:4E:C7:85:B8:81:2E:53:A2:19:D2:B0:9A:7D:CB:CE:0C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xLlTbE7HhbiBLlOiGdKwmn3Lzgw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/948/MhI_fLp0MnCpjGK5cSiaSCGkA8U.roa Signing time: Sun 30 Jun 2024 01:32:40 +0000 ROA not before: Sun 30 Jun 2024 01:32:40 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 38628 IP address blocks: 103.16.236.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/948/xLlTbE7HhbiBLlOiGdKwmn3Lzgw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/948/xLlTbE7HhbiBLlOiGdKwmn3Lzgw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xLlTbE7HhbiBLlOiGdKwmn3Lzgw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C4B9536C4EC785B8812E53A219D2B09A7DCBCE0C Validity Not Before: Jun 30 01:32:40 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=32123F7CBA743270A98C62B971289A4821A403C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:5f:37:8d:e0:5b:fe:64:bb:93:63:fb:b1:80: 13:79:2a:17:02:8e:3f:30:40:49:9e:93:bc:b7:b9: da:0b:06:bc:14:75:6d:47:ff:35:fd:d8:e2:3d:1d: 9c:e5:8a:8c:bc:c7:11:e3:03:b3:f2:34:0e:5f:23: 07:9a:3b:43:84:cd:31:3f:e2:ab:19:fc:43:89:ba: 80:30:08:7b:94:14:9c:2c:ac:69:18:70:2c:5a:4e: 75:43:3c:84:f7:3b:b0:95:64:8d:6c:01:ac:f5:2e: 11:41:3e:ea:80:67:22:bf:08:e7:ba:ac:2a:63:a8: ed:5f:89:20:cc:e9:46:9c:1f:61:50:53:a0:70:4e: be:06:4a:34:40:14:01:7b:8f:5c:a0:81:19:ef:05: 71:ae:2f:3e:09:74:7d:cb:b5:5b:6f:3b:f0:74:27: 3c:a6:32:32:56:8f:e7:63:5a:5d:02:e3:8b:6e:c1: 4a:0c:1d:bd:68:c1:1d:64:fe:ae:4b:f9:96:44:a7: a6:f3:34:02:ab:ae:6f:6c:c9:e3:12:44:4c:cf:25: a0:c9:9b:01:bf:86:39:46:f2:f7:63:e7:8e:93:fe: 9c:dd:de:ad:37:02:03:d9:47:7e:5b:7c:ac:b2:43: c9:71:f6:94:29:fe:74:e7:8a:c4:ec:bb:53:1a:d9: 8f:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:12:3F:7C:BA:74:32:70:A9:8C:62:B9:71:28:9A:48:21:A4:03:C5 X509v3 Authority Key Identifier: keyid:C4:B9:53:6C:4E:C7:85:B8:81:2E:53:A2:19:D2:B0:9A:7D:CB:CE:0C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/948/xLlTbE7HhbiBLlOiGdKwmn3Lzgw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xLlTbE7HhbiBLlOiGdKwmn3Lzgw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/948/MhI_fLp0MnCpjGK5cSiaSCGkA8U.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.16.236.0/22 Signature Algorithm: sha256WithRSAEncryption 67:1b:39:43:0c:c1:dd:34:27:47:76:fd:2b:f3:40:10:49:8c: 4a:9b:03:3f:2b:95:65:2c:04:f3:b2:d7:7c:ab:16:6b:f0:a4: 12:e6:f2:ed:79:0e:59:2c:87:56:7e:c2:18:7e:d4:b3:9b:dd: 5c:3a:5b:12:b7:6d:38:74:62:10:1c:ae:a6:56:c7:fa:7a:ac: d2:ee:7f:02:b7:8d:75:52:7f:a0:3a:23:f7:6b:05:d5:0a:6d: 8e:17:98:19:d1:de:eb:3c:bf:e4:ad:e2:24:d1:87:02:32:b5: 97:af:ea:7f:fd:73:39:91:64:53:36:02:db:44:77:21:42:58: 5d:6c:c5:fe:30:41:c8:33:2e:73:83:b7:b9:93:5b:b2:5b:75: dc:97:ce:ce:76:1c:74:c5:db:b6:0b:fe:7c:81:9d:70:c4:d8: 3f:db:eb:f7:91:b8:d2:86:60:72:45:7f:d2:63:b6:d3:ea:37: a7:a4:b2:d6:03:b5:86:de:2c:f9:35:52:94:d7:d5:88:2d:11: e2:ee:7f:d1:fa:5d:21:9c:18:81:7b:09:37:52:c5:69:87:9c: b7:2f:cc:ca:a5:38:f8:82:3f:01:88:80:2b:b6:73:77:58:36: fa:61:e5:48:6f:4c:15:24:06:38:e4:a0:c9:8b:16:f3:a7:2a: 7e:89:2e:c5 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBKTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDNEI5 NTM2QzRFQzc4NUI4ODEyRTUzQTIxOUQyQjA5QTdEQ0JDRTBDMB4XDTI0MDYzMDAx MzI0MFoXDTI1MDYyNDEwNDY0NVowMzExMC8GA1UEAxMoMzIxMjNGN0NCQTc0MzI3 MEE5OEM2MkI5NzEyODlBNDgyMUE0MDNDNTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALVfN43gW/5ku5Nj+7GAE3kqFwKOPzBASZ6TvLe52gsGvBR1bUf/ Nf3Y4j0dnOWKjLzHEeMDs/I0Dl8jB5o7Q4TNMT/iqxn8Q4m6gDAIe5QUnCysaRhw LFpOdUM8hPc7sJVkjWwBrPUuEUE+6oBnIr8I57qsKmOo7V+JIMzpRpwfYVBToHBO vgZKNEAUAXuPXKCBGe8Fca4vPgl0fcu1W2878HQnPKYyMlaP52NaXQLji27BSgwd vWjBHWT+rkv5lkSnpvM0Aquub2zJ4xJETM8loMmbAb+GOUby92PnjpP+nN3erTcC A9lHflt8rLJDyXH2lCn+dOeKxOy7UxrZj00CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQyEj98unQycKmMYrlxKJpIIaQDxTAfBgNVHSMEGDAWgBTEuVNsTseFuIEuU6IZ 0rCafcvODDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTQ4L3hMbFRiRTdIaGJpQkxsT2lHZEt3bW4zTHpndy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3hMbFRiRTdIaGJpQkxsT2lHZEt3bW4z THpndy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85NDgvTWhJX2ZMcDBNbkNwakdLNWNTaWFTQ0drQThVLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmcQ7DANBgkqhkiG9w0BAQsFAAOCAQEAZxs5QwzB3TQnR3b9K/NAEEmMSpsD PyuVZSwE87LXfKsWa/CkEuby7XkOWSyHVn7CGH7Us5vdXDpbErdtOHRiEByuplbH +nqs0u5/AreNdVJ/oDoj92sF1QptjheYGdHe6zy/5K3iJNGHAjK1l6/qf/1zOZFk UzYC20R3IUJYXWzF/jBByDMuc4O3uZNbslt13JfOznYcdMXbtgv+fIGdcMTYP9vr 95G40oZgckV/0mO20+o3p6Sy1gO1ht4s+TVSlNfViC0R4u5/0fpdIZwYgXsJN1LF aYecty/MyqU4+II/AYiAK7Zzd1g2+mHlSG9MFSQGOOSgyYsW86cqfokuxQ== -----END CERTIFICATE-----Generated at Sun Apr 6 01:46:42 2025 by rpki-client