$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10247/CIPDwcqeFnt2oTXE9lfwHCH2jTs.roa File: CIPDwcqeFnt2oTXE9lfwHCH2jTs.roa (raw, json) Hash identifier: Y9IQVZt2msTYEGGKSKEAm1f2Qr4+K7ItBoiviZWnMNk= Subject key identifier: 08:83:C3:C1:CA:9E:16:7B:76:A1:35:C4:F6:57:F0:1C:21:F6:8D:3B Certificate issuer: /CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A Certificate serial: 0225 Authority key identifier: 20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/CIPDwcqeFnt2oTXE9lfwHCH2jTs.roa Signing time: Mon 30 Sep 2024 01:33:44 +0000 ROA not before: Mon 30 Sep 2024 01:33:44 +0000 ROA not after: Mon 15 Sep 2025 01:30:03 +0000 asID: 10013 IP address blocks: 112.78.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 549 (0x225) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A Validity Not Before: Sep 30 01:33:44 2024 GMT Not After : Sep 15 01:30:03 2025 GMT Subject: CN=0883C3C1CA9E167B76A135C4F657F01C21F68D3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:4d:8e:fe:56:82:33:da:e2:01:87:34:30:13: 2f:7f:ea:91:d7:33:5a:3e:25:5e:35:2b:69:7e:4c: 76:56:20:9d:f4:35:d1:fa:4d:fa:a7:cd:a6:d1:f1: 55:eb:a5:1f:50:99:75:f1:a6:d5:ef:af:81:a3:ab: 5f:a3:16:88:22:88:93:d5:dc:e8:67:73:c5:91:7f: 0b:7a:80:1f:a1:1f:d9:fa:7d:e5:e1:a6:95:bb:1e: f1:95:ae:5a:40:4e:ba:7b:35:3b:80:7e:5d:fc:2b: 30:0d:1c:66:ae:54:1c:76:48:96:b1:d1:ee:44:31: 88:d2:9c:32:25:11:43:47:3e:21:aa:ef:63:2e:ca: 38:01:2d:c4:7d:4d:77:ef:96:de:24:2f:f5:d4:2a: 12:d5:fb:fe:ef:5b:22:81:61:e1:57:3f:9f:27:15: 1e:ff:5a:61:24:18:23:db:0c:3b:0e:44:88:09:9f: ae:c9:f3:0e:ad:b8:a6:79:a9:20:ab:48:cd:ed:d0: 33:76:78:29:e8:33:b9:d7:79:fe:21:5a:99:79:cc: 57:91:f3:88:c5:3b:d6:6f:c3:6a:40:00:06:ec:2e: 4a:45:94:06:92:13:24:3c:ab:d0:5d:80:c2:ae:5a: ab:a1:7e:3d:37:19:ce:0b:9d:49:34:37:e5:60:0b: 2f:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:83:C3:C1:CA:9E:16:7B:76:A1:35:C4:F6:57:F0:1C:21:F6:8D:3B X509v3 Authority Key Identifier: keyid:20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/CIPDwcqeFnt2oTXE9lfwHCH2jTs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 112.78.220.0/24 Signature Algorithm: sha256WithRSAEncryption 61:f9:13:02:f4:b8:30:e7:0a:55:4f:20:db:4a:9c:45:c6:0c: 5d:5f:de:d1:03:25:b7:a0:0c:23:ac:2f:5c:76:f0:18:9f:22: f6:19:bf:7b:68:cf:b3:03:3e:ab:f8:57:ae:a8:44:5f:4d:ff: e0:90:61:8b:27:2a:59:b0:97:72:cd:ba:09:4a:19:0f:73:97: b4:9f:b8:50:84:90:31:cc:c4:02:df:24:d0:14:fa:76:e1:48: dd:16:04:05:ca:30:78:0a:66:ab:fa:76:eb:08:07:5d:61:56: 91:12:03:42:7e:20:a1:57:e6:b1:18:ad:cc:af:03:e9:16:16: 01:7a:c2:a8:3a:6b:7e:7a:9b:bc:fe:2f:84:f5:7b:b3:86:cd: 18:b0:74:93:de:c4:59:d1:32:10:24:df:a1:c9:ca:d8:82:c9: 92:5d:b5:da:ba:81:04:49:04:35:02:eb:00:e6:da:ff:5d:37: 6a:81:a0:11:c5:33:9f:9d:d1:0c:61:55:90:cc:05:cd:0a:a0: 17:c5:ce:be:21:5e:f2:d1:dd:c2:5e:c1:8d:6e:09:d8:a6:d7: 45:96:3f:37:ad:ba:45:57:cc:c7:9a:2f:0f:8a:8a:6e:47:a2: b7:28:dd:50:19:53:bf:c0:9f:30:e2:66:54:99:cc:b6:fd:65: 2e:e3:c3:23 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAiUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjAz MjBGNkQwOURCMThDMEY3MEIzNTRBM0Q4NzQ1MEY3MEU2RDcxQTAeFw0yNDA5MzAw MTMzNDRaFw0yNTA5MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDA4ODNDM0MxQ0E5RTE2 N0I3NkExMzVDNEY2NTdGMDFDMjFGNjhEM0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQTY7+VoIz2uIBhzQwEy9/6pHXM1o+JV41K2l+THZWIJ30NdH6 TfqnzabR8VXrpR9QmXXxptXvr4Gjq1+jFogiiJPV3Ohnc8WRfwt6gB+hH9n6feXh ppW7HvGVrlpATrp7NTuAfl38KzANHGauVBx2SJax0e5EMYjSnDIlEUNHPiGq72Mu yjgBLcR9TXfvlt4kL/XUKhLV+/7vWyKBYeFXP58nFR7/WmEkGCPbDDsORIgJn67J 8w6tuKZ5qSCrSM3t0DN2eCnoM7nXef4hWpl5zFeR84jFO9Zvw2pAAAbsLkpFlAaS EyQ8q9BdgMKuWquhfj03Gc4LnUk0N+VgCy8FAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUCIPDwcqeFnt2oTXE9lfwHCH2jTswHwYDVR0jBBgwFoAUIDIPbQnbGMD3CzVK PYdFD3Dm1xowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEwMjQ3L0lESVBiUW5iR01EM0N6VktQWWRGRDNEbTF4by5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0lESVBiUW5iR01EM0N6VktQWWRG RDNEbTF4by5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8xMDI0Ny9DSVBEd2NxZUZudDJvVFhFOWxmd0hDSDJqVHMu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAcE7cMA0GCSqGSIb3DQEBCwUAA4IBAQBh+RMC9Lgw5wpVTyDbSpxF xgxdX97RAyW3oAwjrC9cdvAYnyL2Gb97aM+zAz6r+FeuqERfTf/gkGGLJypZsJdy zboJShkPc5e0n7hQhJAxzMQC3yTQFPp24UjdFgQFyjB4Cmar+nbrCAddYVaREgNC fiChV+axGK3MrwPpFhYBesKoOmt+epu8/i+E9Xuzhs0YsHST3sRZ0TIQJN+hycrY gsmSXbXauoEESQQ1AusA5tr/XTdqgaARxTOfndEMYVWQzAXNCqAXxc6+IV7y0d3C XsGNbgnYptdFlj83rbpFV8zHmi8PiopuR6K3KN1QGVO/wJ8w4mZUmcy2/WUu48Mj -----END CERTIFICATE-----Generated at Sun Feb 16 22:14:10 2025 by rpki-client