$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/9997/N5Gjl4OqTQDKK7UV7lQ2NLKTZyk.roa File: N5Gjl4OqTQDKK7UV7lQ2NLKTZyk.roa (raw, json) Hash identifier: RP3EKXCxvwKPj3JmMnXkkY7R6rYlH3BVSCFnfaIy0eo= Subject key identifier: 37:91:A3:97:83:AA:4D:00:CA:2B:B5:15:EE:54:36:34:B2:93:67:29 Certificate issuer: /CN=A935D5AD33DC630C4611987140F5E468B7081D11 Certificate serial: 4E Authority key identifier: A9:35:D5:AD:33:DC:63:0C:46:11:98:71:40:F5:E4:68:B7:08:1D:11 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qTXVrTPcYwxGEZhxQPXkaLcIHRE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/9997/N5Gjl4OqTQDKK7UV7lQ2NLKTZyk.roa Signing time: Thu 12 Dec 2024 06:37:47 +0000 ROA not before: Thu 12 Dec 2024 06:37:47 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 131971 IP address blocks: 202.1.208.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/9997/qTXVrTPcYwxGEZhxQPXkaLcIHRE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/9997/qTXVrTPcYwxGEZhxQPXkaLcIHRE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qTXVrTPcYwxGEZhxQPXkaLcIHRE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 00:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A935D5AD33DC630C4611987140F5E468B7081D11 Validity Not Before: Dec 12 06:37:47 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=3791A39783AA4D00CA2BB515EE543634B2936729 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:fb:40:22:6c:61:2f:2b:90:66:3e:fc:13:5e: 5b:4b:9e:4a:43:34:19:68:44:b8:79:f1:6b:57:02: 77:94:63:98:65:74:cf:6d:9b:d0:a0:c3:5f:96:0d: 56:3a:57:ca:fa:02:13:06:7d:3f:83:56:67:32:b7: c7:95:27:d2:14:24:16:d4:a5:aa:df:06:68:7a:5a: ab:3e:12:97:91:5e:45:a4:1d:87:7a:af:20:bf:c8: 0b:28:d0:1a:de:84:17:22:11:47:68:86:b7:f4:06: 38:52:c2:a6:fb:bd:5e:67:07:f2:d1:88:d5:ee:30: 03:ee:16:53:26:99:64:11:31:34:83:9b:80:69:63: 51:69:d1:dd:fb:a7:21:52:25:b3:64:69:5b:4b:77: e3:b7:c5:c2:7d:e7:34:48:3a:e0:bd:f4:e4:fb:7d: 3d:45:d7:ee:39:a3:38:66:91:19:b5:da:ee:d6:b3: 62:15:ed:96:7c:6b:e3:08:19:99:d9:4c:69:f8:68: dd:a3:2c:06:9f:f9:72:c6:02:73:71:0f:77:97:5a: 5c:9a:55:4c:27:4a:83:a6:0a:95:0c:f7:db:b7:09: e2:b6:7a:4c:22:96:aa:70:24:e1:1e:8a:b0:64:4f: 4b:eb:f3:78:45:03:46:4f:92:78:d7:e5:4d:be:76: 07:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:91:A3:97:83:AA:4D:00:CA:2B:B5:15:EE:54:36:34:B2:93:67:29 X509v3 Authority Key Identifier: keyid:A9:35:D5:AD:33:DC:63:0C:46:11:98:71:40:F5:E4:68:B7:08:1D:11 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/9997/qTXVrTPcYwxGEZhxQPXkaLcIHRE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qTXVrTPcYwxGEZhxQPXkaLcIHRE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/9997/N5Gjl4OqTQDKK7UV7lQ2NLKTZyk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.1.208.0/22 Signature Algorithm: sha256WithRSAEncryption 59:6c:06:32:fd:10:bf:46:c2:35:e5:9e:3e:bc:10:72:f3:2c: 54:46:d4:aa:8c:14:23:af:9a:e7:26:3c:15:db:b6:35:70:ce: 86:0e:79:4a:ad:46:23:26:e6:0f:13:34:71:ea:6c:36:f5:ed: 00:e7:1b:e4:aa:ea:16:0b:56:3a:53:2a:2c:a2:02:82:7e:62: 37:6d:5e:63:67:f6:70:bb:ad:3c:ea:c2:45:5d:cd:f6:e5:24: 69:f2:69:c2:ae:0b:21:b6:8f:b5:a4:3b:e2:1b:23:7d:9a:b2: 9f:79:5e:71:3c:0d:2d:d7:f1:17:a5:06:ed:fc:4b:50:5d:0e: 23:98:8e:70:44:cb:37:0f:c9:91:b0:ae:42:a1:64:13:92:b4: 31:f9:7b:0a:6c:4d:43:20:56:1c:db:13:cb:ce:51:bd:b4:da: e3:5d:a3:25:fd:e7:b7:2c:19:1c:e1:0d:48:6c:6d:3a:52:53: 07:35:62:5a:b5:78:b5:6d:6b:f9:4d:8e:b7:b1:6f:0d:4f:96: b7:2d:37:e2:80:96:13:8c:e7:91:a9:83:de:ad:c3:b6:a2:02: ae:0d:69:5c:78:ff:45:89:f2:1d:4b:44:d2:cc:8f:46:ff:80: 18:0e:6b:eb:57:38:48:86:82:99:3e:4a:8a:00:87:3f:8d:4b: 25:03:f0:6f -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBTjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBOTM1 RDVBRDMzREM2MzBDNDYxMTk4NzE0MEY1RTQ2OEI3MDgxRDExMB4XDTI0MTIxMjA2 Mzc0N1oXDTI1MTExNTAxMzAwM1owMzExMC8GA1UEAxMoMzc5MUEzOTc4M0FBNEQw MENBMkJCNTE1RUU1NDM2MzRCMjkzNjcyOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOP7QCJsYS8rkGY+/BNeW0ueSkM0GWhEuHnxa1cCd5RjmGV0z22b 0KDDX5YNVjpXyvoCEwZ9P4NWZzK3x5Un0hQkFtSlqt8GaHpaqz4Sl5FeRaQdh3qv IL/ICyjQGt6EFyIRR2iGt/QGOFLCpvu9XmcH8tGI1e4wA+4WUyaZZBExNIObgGlj UWnR3funIVIls2RpW0t347fFwn3nNEg64L305Pt9PUXX7jmjOGaRGbXa7tazYhXt lnxr4wgZmdlMafho3aMsBp/5csYCc3EPd5daXJpVTCdKg6YKlQz327cJ4rZ6TCKW qnAk4R6KsGRPS+vzeEUDRk+SeNflTb52B0UCAwEAAaOCAiYwggIiMB0GA1UdDgQW BBQ3kaOXg6pNAMortRXuVDY0spNnKTAfBgNVHSMEGDAWgBSpNdWtM9xjDEYRmHFA 9eRotwgdETAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTk5Ny9xVFhWclRQY1l3eEdFWmh4UVBYa2FMY0lIUkUuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9xVFhWclRQY1l3eEdFWmh4UVBYa2FM Y0lIUkUuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvOTk5Ny9ONUdqbDRPcVRRREtLN1VWN2xRMk5MS1RaeWsucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQCygHQMA0GCSqGSIb3DQEBCwUAA4IBAQBZbAYy/RC/RsI15Z4+vBBy8yxU RtSqjBQjr5rnJjwV27Y1cM6GDnlKrUYjJuYPEzRx6mw29e0A5xvkquoWC1Y6Uyos ogKCfmI3bV5jZ/Zwu6086sJFXc325SRp8mnCrgshto+1pDviGyN9mrKfeV5xPA0t 1/EXpQbt/EtQXQ4jmI5wRMs3D8mRsK5CoWQTkrQx+XsKbE1DIFYc2xPLzlG9tNrj XaMl/ee3LBkc4Q1IbG06UlMHNWJatXi1bWv5TY63sW8NT5a3LTfigJYTjOeRqYPe rcO2ogKuDWlceP9FifIdS0TSzI9G/4AYDmvrVzhIhoKZPkqKAIc/jUslA/Bv -----END CERTIFICATE-----Generated at Mon Apr 7 02:02:36 2025 by rpki-client