$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10694/36EF7tf_eM2gZrtZS6CHXxrLX6w.roa File: 36EF7tf_eM2gZrtZS6CHXxrLX6w.roa (raw, json) Hash identifier: UQYWD5hlxlf0wcTPVhKVnLK/YBwekZP/6VcN5S6LZhQ= Subject key identifier: DF:A1:05:EE:D7:FF:78:CD:A0:66:BB:59:4B:A0:87:5F:1A:CB:5F:AC Certificate issuer: /CN=713193D702C3122114F7CDE81FD5A58672720F84 Certificate serial: 14 Authority key identifier: 71:31:93:D7:02:C3:12:21:14:F7:CD:E8:1F:D5:A5:86:72:72:0F:84 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cTGT1wLDEiEU983oH9WlhnJyD4Q.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10694/36EF7tf_eM2gZrtZS6CHXxrLX6w.roa Signing time: Wed 06 Nov 2024 07:41:23 +0000 ROA not before: Wed 06 Nov 2024 07:41:23 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 7511 IP address blocks: 103.208.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10694/cTGT1wLDEiEU983oH9WlhnJyD4Q.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10694/cTGT1wLDEiEU983oH9WlhnJyD4Q.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cTGT1wLDEiEU983oH9WlhnJyD4Q.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=713193D702C3122114F7CDE81FD5A58672720F84 Validity Not Before: Nov 6 07:41:23 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=DFA105EED7FF78CDA066BB594BA0875F1ACB5FAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:4b:a2:c6:7b:35:74:c8:05:c8:b6:a5:0a:e5: 19:a7:ae:f9:85:af:cf:f6:ee:51:0d:e4:cd:09:fd: c4:f6:21:7f:5e:dc:fd:33:e1:3d:89:88:dd:ef:8c: b3:37:28:dd:20:b0:bc:35:66:62:a9:01:a1:a0:95: ae:c4:64:28:5c:9a:0d:b0:ed:fd:b8:17:8f:45:e9: ce:41:b1:6d:54:7b:1c:36:1b:6c:0b:aa:1c:c6:be: 6b:a4:dd:3c:cc:67:b2:81:30:5d:51:62:f0:f3:6d: 26:da:9e:b7:4e:5c:a0:f0:42:1d:d4:a6:35:26:ba: 87:8a:d4:1b:7c:8a:b4:1d:db:f4:49:c2:35:5b:cd: 34:cb:14:fc:9d:4f:59:3c:c4:77:60:57:26:aa:e2: 3d:fe:01:27:e8:b4:81:e7:0b:f2:63:41:c1:bd:fd: 93:22:32:47:87:14:a1:26:e9:27:03:cc:de:d3:2d: 7a:4c:8e:94:cd:5c:08:ef:95:1f:a0:64:a5:8e:0c: 36:46:09:33:0c:64:dc:b8:39:95:af:19:99:09:29: 7c:6b:3e:d0:12:9c:e2:62:e0:56:0e:f5:64:6a:c4: 0d:75:56:92:4d:b6:54:9d:45:36:49:20:ae:47:6a: 14:75:56:10:16:8b:bf:07:b6:c8:1b:01:5b:a6:38: 7d:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:A1:05:EE:D7:FF:78:CD:A0:66:BB:59:4B:A0:87:5F:1A:CB:5F:AC X509v3 Authority Key Identifier: keyid:71:31:93:D7:02:C3:12:21:14:F7:CD:E8:1F:D5:A5:86:72:72:0F:84 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10694/cTGT1wLDEiEU983oH9WlhnJyD4Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cTGT1wLDEiEU983oH9WlhnJyD4Q.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10694/36EF7tf_eM2gZrtZS6CHXxrLX6w.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.208.96.0/22 Signature Algorithm: sha256WithRSAEncryption 92:3f:cf:ab:49:a7:c2:d3:ea:60:cc:0d:fb:39:a6:5b:f2:ca: 9c:8c:b3:fc:a0:86:1f:a1:df:9f:29:3f:a3:8c:7b:e3:01:fa: 27:f5:0b:7d:91:d9:0b:59:09:31:d9:5f:21:3a:31:fa:7e:9d: c2:74:a7:e6:31:b7:6b:4f:4c:e5:f2:18:00:64:73:a1:29:9d: ad:ec:28:87:24:1f:fd:70:cc:77:73:6f:be:0c:b3:e5:7f:e0: f4:9b:29:f6:8b:eb:18:2e:1a:1c:13:37:ad:9a:a0:ad:3a:e7: ea:3b:d2:96:65:d6:d3:e8:52:f3:41:59:69:56:86:b2:07:c2: 45:5c:98:45:e2:55:23:57:91:d7:4e:72:79:87:32:57:29:dd: ea:c7:ed:99:ed:8a:d0:ab:19:b0:b8:28:30:74:ea:90:37:36: 9b:86:2f:65:13:1c:f3:9d:12:2e:36:31:3e:5f:a3:2c:ed:4c: 5d:0a:f6:df:cf:7a:67:37:aa:31:d7:e6:e5:99:a9:27:e8:d7: ba:84:a5:f8:35:2e:2b:b6:81:d6:df:8b:2f:5c:35:23:e2:50: c2:8f:4a:e5:94:d4:3b:ac:e6:3e:05:18:de:1e:f1:04:79:3e: 76:13:fd:b4:57:03:18:1e:f4:a6:d7:f1:4c:28:4a:27:d7:83: 14:37:85:c2 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBFDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3MTMx OTNENzAyQzMxMjIxMTRGN0NERTgxRkQ1QTU4NjcyNzIwRjg0MB4XDTI0MTEwNjA3 NDEyM1oXDTI1MTAxNTAxMzAwMlowMzExMC8GA1UEAxMoREZBMTA1RUVEN0ZGNzhD REEwNjZCQjU5NEJBMDg3NUYxQUNCNUZBQzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAK9LosZ7NXTIBci2pQrlGaeu+YWvz/buUQ3kzQn9xPYhf17c/TPh PYmI3e+Mszco3SCwvDVmYqkBoaCVrsRkKFyaDbDt/bgXj0XpzkGxbVR7HDYbbAuq HMa+a6TdPMxnsoEwXVFi8PNtJtqet05coPBCHdSmNSa6h4rUG3yKtB3b9EnCNVvN NMsU/J1PWTzEd2BXJqriPf4BJ+i0gecL8mNBwb39kyIyR4cUoSbpJwPM3tMtekyO lM1cCO+VH6BkpY4MNkYJMwxk3Lg5la8ZmQkpfGs+0BKc4mLgVg71ZGrEDXVWkk22 VJ1FNkkgrkdqFHVWEBaLvwe2yBsBW6Y4fTkCAwEAAaOCAigwggIkMB0GA1UdDgQW BBTfoQXu1/94zaBmu1lLoIdfGstfrDAfBgNVHSMEGDAWgBRxMZPXAsMSIRT3zegf 1aWGcnIPhDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTA2OTQvY1RHVDF3TERFaUVVOTgzb0g5V2xobkp5RDRRLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvY1RHVDF3TERFaUVVOTgzb0g5V2xo bkp5RDRRLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzEwNjk0LzM2RUY3dGZfZU0yZ1pydFpTNkNIWHhyTFg2dy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAJn0GAwDQYJKoZIhvcNAQELBQADggEBAJI/z6tJp8LT6mDMDfs5plvy ypyMs/yghh+h358pP6OMe+MB+if1C32R2QtZCTHZXyE6Mfp+ncJ0p+Yxt2tPTOXy GABkc6Epna3sKIckH/1wzHdzb74Ms+V/4PSbKfaL6xguGhwTN62aoK065+o70pZl 1tPoUvNBWWlWhrIHwkVcmEXiVSNXkddOcnmHMlcp3erH7ZntitCrGbC4KDB06pA3 NpuGL2UTHPOdEi42MT5foyztTF0K9t/Pemc3qjHX5uWZqSfo17qEpfg1Liu2gdbf iy9cNSPiUMKPSuWU1Dus5j4FGN4e8QR5PnYT/bRXAxge9KbX8UwoSifXgxQ3hcI= -----END CERTIFICATE-----Generated at Sun Feb 16 22:14:00 2025 by rpki-client