$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10822/hNJcpov_kW1pRv8yaNj-o5QrYoI.roa File: hNJcpov_kW1pRv8yaNj-o5QrYoI.roa (raw, json) Hash identifier: 5y6HNuzRRLS6U9xiBN9AV1RJvZVn6/Wp+6rkkdDzILM= Subject key identifier: 84:D2:5C:A6:8B:FF:91:6D:69:46:FF:32:68:D8:FE:A3:94:2B:62:82 Certificate issuer: /CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Certificate serial: 09 Authority key identifier: 33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/hNJcpov_kW1pRv8yaNj-o5QrYoI.roa Signing time: Mon 18 Mar 2024 01:13:35 +0000 ROA not before: Mon 18 Mar 2024 01:13:35 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 17698 IP address blocks: 49.128.16.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33DF9B24F53BBCAC347BA5B5A8C49BFF41666A26 Validity Not Before: Mar 18 01:13:35 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=84D25CA68BFF916D6946FF3268D8FEA3942B6282 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:8c:86:76:b8:e8:76:e8:dc:6a:ab:a8:24:87: 61:92:ed:0c:0b:2b:3b:32:4e:40:45:52:80:a7:6b: bf:54:9a:11:3a:f7:cf:3c:0f:da:72:ae:27:b2:fa: 46:5e:e0:bb:c9:f2:03:94:10:3d:64:32:87:b6:62: 17:0d:fe:37:11:22:18:bf:a6:cb:97:91:d8:b2:41: 92:46:c8:97:a7:af:de:b6:cb:0b:94:88:5c:0c:aa: 70:54:65:aa:91:3d:37:fe:f2:71:7e:75:97:71:e3: 2a:25:5d:0a:e7:92:0f:09:3d:c1:a4:d5:64:f9:7d: a3:09:4e:2b:1b:5b:06:e9:56:c9:3a:5d:03:64:aa: e0:1a:ac:9f:8a:8d:23:4b:d0:43:55:97:db:77:24: 72:dc:9f:3b:01:d5:ec:b2:cb:9f:76:0c:39:af:7a: 65:32:36:04:c1:d6:cd:01:44:86:d9:4b:94:9d:9f: 34:79:df:ec:76:b7:0a:00:47:79:88:32:5b:df:3e: 1f:bb:68:d2:8b:1b:f7:60:cb:dd:31:97:a3:c0:9a: 50:82:d5:7d:3a:55:9c:06:36:58:0d:1d:93:19:d6: b1:04:76:e4:b4:79:05:94:fe:d2:45:5d:75:65:f6: 14:5e:f5:84:4b:9b:78:21:60:7a:22:72:96:ea:97: 2e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:D2:5C:A6:8B:FF:91:6D:69:46:FF:32:68:D8:FE:A3:94:2B:62:82 X509v3 Authority Key Identifier: keyid:33:DF:9B:24:F5:3B:BC:AC:34:7B:A5:B5:A8:C4:9B:FF:41:66:6A:26 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/M9-bJPU7vKw0e6W1qMSb_0FmaiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/M9-bJPU7vKw0e6W1qMSb_0FmaiY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10822/hNJcpov_kW1pRv8yaNj-o5QrYoI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.128.16.0/21 Signature Algorithm: sha256WithRSAEncryption d8:0a:8a:19:a5:77:6b:b9:2e:9c:22:9b:9b:69:98:bc:8a:71: 76:1a:ff:20:96:92:13:74:d3:18:46:16:e9:d1:c5:e3:18:59: 50:65:4b:94:f5:30:58:3f:2e:02:fa:b4:11:93:69:dd:86:2b: 0e:dd:9a:d6:6e:19:86:b6:0d:26:70:f5:07:61:c7:02:92:b4: f7:06:68:ff:a1:cf:c0:e3:b5:7b:de:ae:16:14:23:99:6f:5e: 11:67:97:e1:c9:aa:95:ef:66:0f:13:5f:2a:f5:4b:ac:d0:bd: 97:43:19:51:ae:20:fd:a9:e8:5c:7c:0a:53:81:43:f7:34:91: 38:37:4a:68:e4:22:fb:6a:ba:20:b2:88:7a:5e:15:47:8a:91: db:26:84:48:13:13:a2:79:06:ff:04:09:0d:7a:db:c8:1e:2e: 6b:6a:5d:b2:e1:59:24:a3:b4:60:f7:f4:6d:a8:66:2f:43:b4: ee:87:07:3f:59:82:e9:bd:ed:66:00:5d:0c:6e:f8:8d:d2:38: c8:aa:92:da:1f:10:2b:4f:31:ed:31:62:bb:f2:0e:27:71:f8: d3:22:7c:b4:6f:d1:44:0d:03:c1:91:6d:ef:71:07:32:1e:d1: 0a:d8:3d:97:30:5e:e5:c0:97:7e:cb:dd:e8:96:de:15:9a:b7: f7:79:28:79 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBCTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzM0RG OUIyNEY1M0JCQ0FDMzQ3QkE1QjVBOEM0OUJGRjQxNjY2QTI2MB4XDTI0MDMxODAx MTMzNVoXDTI1MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoODREMjVDQTY4QkZGOTE2 RDY5NDZGRjMyNjhEOEZFQTM5NDJCNjI4MjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOuMhna46Hbo3GqrqCSHYZLtDAsrOzJOQEVSgKdrv1SaETr3zzwP 2nKuJ7L6Rl7gu8nyA5QQPWQyh7ZiFw3+NxEiGL+my5eR2LJBkkbIl6ev3rbLC5SI XAyqcFRlqpE9N/7ycX51l3HjKiVdCueSDwk9waTVZPl9owlOKxtbBulWyTpdA2Sq 4Bqsn4qNI0vQQ1WX23ckctyfOwHV7LLLn3YMOa96ZTI2BMHWzQFEhtlLlJ2fNHnf 7Ha3CgBHeYgyW98+H7to0osb92DL3TGXo8CaUILVfTpVnAY2WA0dkxnWsQR25LR5 BZT+0kVddWX2FF71hEubeCFgeiJyluqXLvMCAwEAAaOCAigwggIkMB0GA1UdDgQW BBSE0lymi/+RbWlG/zJo2P6jlCtigjAfBgNVHSMEGDAWgBQz35sk9Tu8rDR7pbWo xJv/QWZqJjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTA4MjIvTTktYkpQVTd2S3cwZTZXMXFNU2JfMEZtYWlZLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvTTktYkpQVTd2S3cwZTZXMXFNU2Jf MEZtYWlZLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzEwODIyL2hOSmNwb3Zfa1cxcFJ2OHlhTmotbzVRcllvSS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAMxgBAwDQYJKoZIhvcNAQELBQADggEBANgKihmld2u5Lpwim5tpmLyK cXYa/yCWkhN00xhGFunRxeMYWVBlS5T1MFg/LgL6tBGTad2GKw7dmtZuGYa2DSZw 9QdhxwKStPcGaP+hz8DjtXverhYUI5lvXhFnl+HJqpXvZg8TXyr1S6zQvZdDGVGu IP2p6Fx8ClOBQ/c0kTg3SmjkIvtquiCyiHpeFUeKkdsmhEgTE6J5Bv8ECQ1628ge LmtqXbLhWSSjtGD39G2oZi9DtO6HBz9Zgum97WYAXQxu+I3SOMiqktofECtPMe0x YrvyDidx+NMifLRv0UQNA8GRbe9xBzIe0QrYPZcwXuXAl37L3eiW3hWat/d5KHk= -----END CERTIFICATE-----Generated at Sun Feb 16 22:19:34 2025 by rpki-client