$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10247/5QmwW7YLuYk4sKby6Ypq1F2Lv8k.roa File: 5QmwW7YLuYk4sKby6Ypq1F2Lv8k.roa (raw, json) Hash identifier: N099M+/DG9dALEYgxjDuGh21HEbDvb3w0yoh0AwBZWg= Subject key identifier: E5:09:B0:5B:B6:0B:B9:89:38:B0:A6:F2:E9:8A:6A:D4:5D:8B:BF:C9 Certificate issuer: /CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A Certificate serial: 021C Authority key identifier: 20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/5QmwW7YLuYk4sKby6Ypq1F2Lv8k.roa Signing time: Mon 30 Sep 2024 01:33:41 +0000 ROA not before: Mon 30 Sep 2024 01:33:41 +0000 ROA not after: Mon 15 Sep 2025 01:30:03 +0000 asID: 7684 IP address blocks: 49.212.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 540 (0x21c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A Validity Not Before: Sep 30 01:33:41 2024 GMT Not After : Sep 15 01:30:03 2025 GMT Subject: CN=E509B05BB60BB98938B0A6F2E98A6AD45D8BBFC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:9e:a2:bd:b4:96:9a:4f:3f:99:d8:f9:44:e6: c7:45:75:35:90:2e:2b:a4:34:f4:85:71:62:45:d3: 8b:98:b3:cb:15:af:6d:f6:2e:81:35:ce:fa:d8:5e: 0e:e1:d1:df:4f:c9:65:f5:81:02:c7:0c:7d:90:13: dc:3e:08:38:47:2d:3c:47:14:6f:43:c2:a2:d3:2f: 45:f1:92:fb:d2:dd:73:7b:74:b5:0b:c9:65:71:d7: 34:f4:4f:a2:5f:6f:16:cd:a7:ba:9d:69:a0:e7:d1: a6:66:a6:6a:89:41:57:bb:39:f0:61:f9:43:28:e7: 11:d1:b8:b6:db:96:99:ed:fd:a4:aa:d1:7f:ab:86: 61:b8:0d:db:c5:88:8b:60:17:0d:f0:c0:fe:f2:f6: b7:cf:82:4a:1e:b6:82:64:e5:47:dc:56:05:56:21: 51:e1:ff:25:91:aa:28:90:18:0f:21:58:73:69:dc: 30:6e:8f:5d:61:cb:8e:5a:07:5c:c6:1e:2c:c7:64: 47:64:40:15:6e:0d:60:2e:7e:2f:15:06:5a:33:d0: 75:4c:22:eb:f3:49:d3:02:00:7f:56:2c:75:8e:8c: 47:63:35:57:c1:f6:0b:a2:bb:b7:c0:90:ed:d8:4b: fe:f3:e6:9e:29:c8:c0:f8:49:ba:07:0a:22:88:cf: 36:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:09:B0:5B:B6:0B:B9:89:38:B0:A6:F2:E9:8A:6A:D4:5D:8B:BF:C9 X509v3 Authority Key Identifier: keyid:20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/5QmwW7YLuYk4sKby6Ypq1F2Lv8k.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.212.215.0/24 Signature Algorithm: sha256WithRSAEncryption 73:8e:8e:dc:db:cc:e2:d0:6c:2e:d2:1c:ed:fd:66:17:27:5a: 8c:60:7b:19:6c:e5:0c:00:3c:5b:17:33:89:95:d2:d5:48:f2: a5:d0:53:e4:49:a6:a9:51:51:46:81:30:11:c5:e0:0b:4b:ec: 7a:2b:d8:0d:b7:f0:fd:39:3c:a4:57:51:ac:21:37:59:c4:c5: 7d:9b:33:23:99:d5:0d:cc:d1:7a:70:dd:92:72:91:d9:ba:e5: a3:74:02:f8:bd:e6:f3:5e:b9:0a:27:95:2b:c0:b1:ae:31:a8: 27:58:13:98:14:d8:99:4b:93:ff:d4:54:f1:00:4e:11:25:b4: dd:43:a6:9e:44:da:c6:f4:26:e8:2c:a2:bf:a1:9d:1e:34:32: 89:b5:69:a6:79:bb:bd:a7:69:4e:9f:91:26:bf:f4:69:95:13: dd:f8:f3:bb:00:26:80:61:50:d6:40:ab:80:eb:e2:32:6e:b0: 97:5d:1e:b8:e4:61:f7:27:23:d4:5a:7f:e6:0e:a5:4c:9c:e4: 09:41:e6:b8:fa:8b:1d:61:09:6b:4c:8c:23:78:55:29:a4:42: 04:e2:28:76:e3:28:9b:07:de:3f:7c:2e:53:a9:f5:14:7a:17: 54:8a:5f:8a:e3:a6:8f:cd:80:04:3c:26:77:d8:11:ed:93:30: 0a:11:cf:6f -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAhwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjAz MjBGNkQwOURCMThDMEY3MEIzNTRBM0Q4NzQ1MEY3MEU2RDcxQTAeFw0yNDA5MzAw MTMzNDFaFw0yNTA5MTUwMTMwMDNaMDMxMTAvBgNVBAMTKEU1MDlCMDVCQjYwQkI5 ODkzOEIwQTZGMkU5OEE2QUQ0NUQ4QkJGQzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDInqK9tJaaTz+Z2PlE5sdFdTWQLiukNPSFcWJF04uYs8sVr232 LoE1zvrYXg7h0d9PyWX1gQLHDH2QE9w+CDhHLTxHFG9DwqLTL0XxkvvS3XN7dLUL yWVx1zT0T6JfbxbNp7qdaaDn0aZmpmqJQVe7OfBh+UMo5xHRuLbblpnt/aSq0X+r hmG4DdvFiItgFw3wwP7y9rfPgkoetoJk5UfcVgVWIVHh/yWRqiiQGA8hWHNp3DBu j11hy45aB1zGHizHZEdkQBVuDWAufi8VBloz0HVMIuvzSdMCAH9WLHWOjEdjNVfB 9guiu7fAkO3YS/7z5p4pyMD4SboHCiKIzzYzAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQU5QmwW7YLuYk4sKby6Ypq1F2Lv8kwHwYDVR0jBBgwFoAUIDIPbQnbGMD3CzVK PYdFD3Dm1xowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEwMjQ3L0lESVBiUW5iR01EM0N6VktQWWRGRDNEbTF4by5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0lESVBiUW5iR01EM0N6VktQWWRG RDNEbTF4by5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8xMDI0Ny81UW13VzdZTHVZazRzS2J5NllwcTFGMkx2OGsu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAMdTXMA0GCSqGSIb3DQEBCwUAA4IBAQBzjo7c28zi0Gwu0hzt/WYX J1qMYHsZbOUMADxbFzOJldLVSPKl0FPkSaapUVFGgTARxeALS+x6K9gNt/D9OTyk V1GsITdZxMV9mzMjmdUNzNF6cN2ScpHZuuWjdAL4vebzXrkKJ5UrwLGuMagnWBOY FNiZS5P/1FTxAE4RJbTdQ6aeRNrG9CboLKK/oZ0eNDKJtWmmebu9p2lOn5Emv/Rp lRPd+PO7ACaAYVDWQKuA6+IybrCXXR645GH3JyPUWn/mDqVMnOQJQea4+osdYQlr TIwjeFUppEIE4ih24yibB94/fC5TqfUUehdUil+K46aPzYAEPCZ32BHtkzAKEc9v -----END CERTIFICATE-----Generated at Sun Feb 16 22:07:11 2025 by rpki-client