$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10822/CAUiQWqXydYdPzDi0NeFbk6qMc8.roa File: CAUiQWqXydYdPzDi0NeFbk6qMc8.roa (raw, json) Hash identifier: IC8DFkM763wsOgowfkPuMnqSHvfNArkRX1SWuo4UEa0= Subject key identifier: 08:05:22:41:6A:97:C9:D6:1D:3F:30:E2:D0:D7:85:6E:4E:AA:31:CF Certificate issuer: /CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Certificate serial: 12 Authority key identifier: 33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/CAUiQWqXydYdPzDi0NeFbk6qMc8.roa Signing time: Mon 18 Mar 2024 02:21:39 +0000 ROA not before: Mon 18 Mar 2024 02:21:39 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 17698 IP address blocks: 123.255.192.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Validity Not Before: Mar 18 02:21:39 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=080522416A97C9D61D3F30E2D0D7856E4EAA31CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:74:69:18:e6:79:05:be:6c:0e:a9:2b:fb:40: d9:c0:7b:ce:90:f4:f4:6e:dd:a0:21:45:1a:1f:96: a8:9e:73:c5:88:04:a7:7f:f9:e5:dc:a2:ee:2a:cd: 1c:a8:78:2b:8d:b9:e6:7d:8b:5e:29:95:fa:75:d8: b2:2f:57:15:40:27:1f:3c:d2:d5:39:c8:0e:ee:a7: f1:56:d0:dd:69:39:8e:6b:75:ea:e6:2a:da:4c:66: 5d:d9:f7:96:2f:20:a2:b9:81:5a:c4:96:cb:ae:e5: 99:29:02:1c:b9:0a:c0:91:db:56:99:30:c2:42:0e: ca:09:e6:e1:42:ce:03:88:77:ea:a4:e7:f4:3e:7f: d6:fb:51:7e:84:d6:12:55:81:a9:7c:63:8d:93:15: 7b:0d:bc:a5:fc:e7:41:79:aa:68:86:79:dc:21:f5: f5:a3:3a:29:27:15:04:5a:1f:03:a6:cc:8c:49:2b: 7a:4e:4f:aa:26:a7:64:96:e2:ca:9e:5c:12:1c:07: 36:a7:89:6d:0c:5a:1d:72:a5:cc:df:e0:07:41:51: 13:33:d3:ff:1b:e7:f7:06:43:58:c0:ae:c4:c0:b9: 8b:3e:03:11:44:ec:12:4f:84:91:4a:f7:d0:3b:d3: 7f:7f:d0:91:67:1a:b4:38:0d:fe:16:e1:ee:4e:ca: 4c:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:05:22:41:6A:97:C9:D6:1D:3F:30:E2:D0:D7:85:6E:4E:AA:31:CF X509v3 Authority Key Identifier: keyid:33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/CAUiQWqXydYdPzDi0NeFbk6qMc8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.255.192.0/21 Signature Algorithm: sha256WithRSAEncryption b4:0f:8d:f6:e4:8d:20:88:fd:91:9c:17:8e:f2:d7:e0:1b:3a: c3:31:27:b9:27:18:d8:d3:f2:07:85:79:25:6c:01:a5:c6:62: 66:91:f4:3c:bc:67:aa:53:65:19:32:cf:8f:4c:a9:72:ad:39: 08:6e:17:89:09:b0:bf:9f:77:a0:34:75:1f:f7:46:33:08:d9: 03:ae:c4:d8:59:3f:69:72:a1:89:d9:3b:67:79:88:ad:c1:4e: 71:35:c9:7d:e3:cc:13:27:d2:d4:a4:f1:73:39:e3:b5:93:4f: a6:91:10:51:3e:2b:b6:82:0d:f5:a0:76:6a:96:92:7d:a1:40: f1:fa:5b:76:a6:9c:0c:f0:f1:51:2f:4b:d6:a0:3f:86:67:ab: 05:07:49:0f:56:24:48:14:fe:35:cb:f7:5c:c0:0f:a5:08:10: d3:fa:bd:de:b0:27:c9:4e:bb:15:3d:89:08:2b:f3:15:eb:03: 01:83:fd:69:50:4d:49:28:9f:1e:48:f5:df:18:a6:47:4a:f9: fa:bd:27:40:d4:3c:b0:1c:d1:7a:05:d5:31:e4:4b:2f:61:5d: d4:9a:b4:8c:03:85:f5:19:52:3c:26:76:d3:42:6c:e8:b8:97: 28:d2:a0:0e:00:9c:e6:4a:b0:17:07:44:24:95:2a:d7:22:56: 91:ab:35:91 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBEjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzM0RG OUIyNEY1M0JCQ0FDMzQ3QkE1QjVBOEM0OUJGRjQxNjY2QTI2MB4XDTI0MDMxODAy MjEzOVoXDTI1MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoMDgwNTIyNDE2QTk3QzlE NjFEM0YzMEUyRDBENzg1NkU0RUFBMzFDRjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALt0aRjmeQW+bA6pK/tA2cB7zpD09G7doCFFGh+WqJ5zxYgEp3/5 5dyi7irNHKh4K4255n2LXimV+nXYsi9XFUAnHzzS1TnIDu6n8VbQ3Wk5jmt16uYq 2kxmXdn3li8gormBWsSWy67lmSkCHLkKwJHbVpkwwkIOygnm4ULOA4h36qTn9D5/ 1vtRfoTWElWBqXxjjZMVew28pfznQXmqaIZ53CH19aM6KScVBFofA6bMjEkrek5P qianZJbiyp5cEhwHNqeJbQxaHXKlzN/gB0FREzPT/xvn9wZDWMCuxMC5iz4DEUTs Ek+EkUr30DvTf3/QkWcatDgN/hbh7k7KTB8CAwEAAaOCAigwggIkMB0GA1UdDgQW BBQIBSJBapfJ1h0/MOLQ14VuTqoxzzAfBgNVHSMEGDAWgBQz35sk9Tu8rDR7pbWo xJv/QWZqJjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTA4MjIvTTktYkpQVTd2S3cwZTZXMXFNU2JfMEZtYWlZLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvTTktYkpQVTd2S3cwZTZXMXFNU2Jf MEZtYWlZLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzEwODIyL0NBVWlRV3FYeWRZZFB6RGkwTmVGYms2cU1jOC5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAN7/8AwDQYJKoZIhvcNAQELBQADggEBALQPjfbkjSCI/ZGcF47y1+Ab OsMxJ7knGNjT8geFeSVsAaXGYmaR9Dy8Z6pTZRkyz49MqXKtOQhuF4kJsL+fd6A0 dR/3RjMI2QOuxNhZP2lyoYnZO2d5iK3BTnE1yX3jzBMn0tSk8XM547WTT6aREFE+ K7aCDfWgdmqWkn2hQPH6W3amnAzw8VEvS9agP4ZnqwUHSQ9WJEgU/jXL91zAD6UI ENP6vd6wJ8lOuxU9iQgr8xXrAwGD/WlQTUkonx5I9d8YpkdK+fq9J0DUPLAc0XoF 1THkSy9hXdSatIwDhfUZUjwmdtNCbOi4lyjSoA4AnOZKsBcHRCSVKtciVpGrNZE= -----END CERTIFICATE-----Generated at Sun Feb 16 22:18:35 2025 by rpki-client