$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10247/A2eiOJ_uC5LFYFyAi-YEFDZ-MeA.roa File: A2eiOJ_uC5LFYFyAi-YEFDZ-MeA.roa (raw, json) Hash identifier: OJ0IhyIOSbczwlvDfaGZgQ0KOj5w7SGGLfZtuJ0YesQ= Subject key identifier: 03:67:A2:38:9F:EE:0B:92:C5:60:5C:80:8B:E6:04:14:36:7E:31:E0 Certificate issuer: /CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A Certificate serial: 0202 Authority key identifier: 20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/A2eiOJ_uC5LFYFyAi-YEFDZ-MeA.roa Signing time: Mon 30 Sep 2024 01:29:57 +0000 ROA not before: Mon 30 Sep 2024 01:29:57 +0000 ROA not after: Mon 15 Sep 2025 01:30:03 +0000 asID: 9371 IP address blocks: 210.188.212.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 514 (0x202) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A Validity Not Before: Sep 30 01:29:57 2024 GMT Not After : Sep 15 01:30:03 2025 GMT Subject: CN=0367A2389FEE0B92C5605C808BE60414367E31E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:eb:33:96:86:ce:3b:b1:17:a7:f1:06:e1:ef: 7f:4a:63:ea:da:37:ba:57:4b:ac:0a:d9:1a:94:4f: 29:e9:ff:91:54:17:7f:0e:4c:6b:e3:ec:79:bb:50: 06:05:ae:9c:0e:c0:3f:c4:57:fb:ee:2c:dd:cc:07: 05:c0:ed:10:85:ac:91:5b:5d:e7:83:e2:fe:07:5e: e6:ed:9d:89:9d:7e:35:2a:cc:95:24:17:53:13:86: 61:2a:cd:7d:b1:22:0f:e9:8e:ef:cc:02:14:f6:11: 0e:c8:5c:3e:77:a2:0f:90:33:cc:e0:6d:69:4b:89: 9a:8c:86:c4:9a:a7:7c:43:03:97:56:52:3f:39:f1: 6d:f8:4d:de:e6:d8:56:61:11:81:30:73:02:92:c1: b1:22:64:3d:e9:06:0d:74:19:af:96:0e:41:0e:5d: 7c:0f:c5:19:63:23:ea:ed:b4:0c:3b:06:70:17:33: 19:de:dc:ba:df:d7:43:5b:e5:3f:30:e1:55:2f:31: 74:ea:40:05:7d:bc:5e:5f:58:bd:d2:f6:e9:77:40: d7:69:8f:90:4c:bd:8a:3f:a0:f0:d5:b8:b6:66:64: 5b:0b:de:fd:62:0c:63:cc:77:d6:da:87:fc:10:4c: 1b:27:f4:9d:51:ee:a7:f6:16:46:d4:98:bf:94:ef: 71:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:67:A2:38:9F:EE:0B:92:C5:60:5C:80:8B:E6:04:14:36:7E:31:E0 X509v3 Authority Key Identifier: keyid:20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/A2eiOJ_uC5LFYFyAi-YEFDZ-MeA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.188.212.0/22 Signature Algorithm: sha256WithRSAEncryption d4:82:af:52:bc:ce:0e:29:23:ba:5b:67:a4:8b:aa:fd:0f:64: 1b:a5:b0:78:d6:f0:82:8f:83:96:63:ed:99:05:98:f5:c8:cc: 92:37:66:46:2d:91:59:c6:b6:b5:16:6a:99:d8:4f:19:87:bb: 9f:75:fb:85:c2:c3:d7:86:83:b7:53:85:c5:c5:8f:69:6d:0b: 9b:07:17:63:c3:13:e9:77:23:6e:6e:6b:d6:77:7e:d8:e6:7f: 84:b1:7d:34:e2:fd:9a:74:b6:fb:83:49:60:4d:c2:d9:ad:ec: a3:6c:14:b4:48:1e:b1:2a:5d:af:31:fe:e4:95:6b:ce:19:fc: ae:a2:05:37:7f:e9:58:4b:73:50:f6:aa:3b:15:e1:dd:27:1d: 2d:4e:4c:fa:7e:64:0c:ee:12:b9:a8:fd:b9:87:f6:a2:09:17: be:2d:6a:88:3c:1b:d3:48:55:a0:3c:c1:2d:c6:21:80:79:b7: 18:1f:7f:5a:56:c3:1d:55:7e:a3:49:c1:e8:7a:19:67:4e:0a: 1b:ee:38:0b:3b:c4:b4:4e:00:75:70:ea:ec:77:5d:cc:1d:63: 64:b5:eb:f9:30:92:7b:37:a4:07:33:50:94:05:14:c9:e6:59: 19:b6:a8:20:57:ed:83:c9:68:8b:18:ad:f5:32:c8:eb:a2:05: d1:99:56:98 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAgIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjAz MjBGNkQwOURCMThDMEY3MEIzNTRBM0Q4NzQ1MEY3MEU2RDcxQTAeFw0yNDA5MzAw MTI5NTdaFw0yNTA5MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDAzNjdBMjM4OUZFRTBC OTJDNTYwNUM4MDhCRTYwNDE0MzY3RTMxRTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDy6zOWhs47sRen8Qbh739KY+raN7pXS6wK2RqUTynp/5FUF38O TGvj7Hm7UAYFrpwOwD/EV/vuLN3MBwXA7RCFrJFbXeeD4v4HXubtnYmdfjUqzJUk F1MThmEqzX2xIg/pju/MAhT2EQ7IXD53og+QM8zgbWlLiZqMhsSap3xDA5dWUj85 8W34Td7m2FZhEYEwcwKSwbEiZD3pBg10Ga+WDkEOXXwPxRljI+rttAw7BnAXMxne 3Lrf10Nb5T8w4VUvMXTqQAV9vF5fWL3S9ul3QNdpj5BMvYo/oPDVuLZmZFsL3v1i DGPMd9bah/wQTBsn9J1R7qf2FkbUmL+U73FlAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUA2eiOJ/uC5LFYFyAi+YEFDZ+MeAwHwYDVR0jBBgwFoAUIDIPbQnbGMD3CzVK PYdFD3Dm1xowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEwMjQ3L0lESVBiUW5iR01EM0N6VktQWWRGRDNEbTF4by5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0lESVBiUW5iR01EM0N6VktQWWRG RDNEbTF4by5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8xMDI0Ny9BMmVpT0pfdUM1TEZZRnlBaS1ZRUZEWi1NZUEu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQC0rzUMA0GCSqGSIb3DQEBCwUAA4IBAQDUgq9SvM4OKSO6W2eki6r9 D2QbpbB41vCCj4OWY+2ZBZj1yMySN2ZGLZFZxra1FmqZ2E8Zh7ufdfuFwsPXhoO3 U4XFxY9pbQubBxdjwxPpdyNubmvWd37Y5n+EsX004v2adLb7g0lgTcLZreyjbBS0 SB6xKl2vMf7klWvOGfyuogU3f+lYS3NQ9qo7FeHdJx0tTkz6fmQM7hK5qP25h/ai CRe+LWqIPBvTSFWgPMEtxiGAebcYH39aVsMdVX6jScHoehlnTgob7jgLO8S0TgB1 cOrsd13MHWNktev5MJJ7N6QHM1CUBRTJ5lkZtqggV+2DyWiLGK31MsjrogXRmVaY -----END CERTIFICATE-----Generated at Sun Feb 16 22:29:01 2025 by rpki-client