$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1091/4x5a0Mk3ks_PlWC3C8hulDbbwR0.roa File: 4x5a0Mk3ks_PlWC3C8hulDbbwR0.roa (raw, json) Hash identifier: CxJiCQGLleqCmqGEXa06iF2gOZ1zcxP5VUFnrCsxEBk= Subject key identifier: E3:1E:5A:D0:C9:37:92:CF:CF:95:60:B7:0B:C8:6E:94:36:DB:C1:1D Certificate issuer: /CN=8C86E32ECE9A3C850FEBEA69641F3544273D5371 Certificate serial: 05 Authority key identifier: 8C:86:E3:2E:CE:9A:3C:85:0F:EB:EA:69:64:1F:35:44:27:3D:53:71 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jIbjLs6aPIUP6-ppZB81RCc9U3E.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1091/4x5a0Mk3ks_PlWC3C8hulDbbwR0.roa Signing time: Tue 22 Oct 2024 09:09:45 +0000 ROA not before: Tue 22 Oct 2024 09:09:45 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 16509 IP address blocks: 138.101.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1091/jIbjLs6aPIUP6-ppZB81RCc9U3E.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1091/jIbjLs6aPIUP6-ppZB81RCc9U3E.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jIbjLs6aPIUP6-ppZB81RCc9U3E.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C86E32ECE9A3C850FEBEA69641F3544273D5371 Validity Not Before: Oct 22 09:09:45 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=E31E5AD0C93792CFCF9560B70BC86E9436DBC11D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:db:be:c8:a0:a7:e6:4e:03:38:8f:9b:e3:da: f2:ef:7c:60:25:eb:ee:e6:85:83:1a:4c:3a:a6:e9: 02:a9:c4:36:a5:63:2b:95:db:87:4e:e5:8b:dc:41: 3f:71:84:9d:58:d5:52:c2:22:94:6b:bd:1f:8c:98: 6d:0e:11:bc:ab:94:c3:e4:96:9c:d9:4f:82:c2:2a: 21:0c:9f:30:b9:2c:a3:09:ed:1e:79:7c:7f:1b:5e: 50:50:05:2c:d4:71:fc:be:b2:99:b7:92:b6:02:53: ee:91:d0:c3:d5:1a:33:3b:c5:7c:b5:bb:8b:b0:98: 1c:cd:2c:2d:1f:f9:cb:85:f5:1c:ae:7c:d6:e0:d4: d9:51:df:cf:6a:a1:0b:fb:d3:b5:6a:6b:d5:eb:53: 73:63:89:53:0c:ee:ed:cc:e8:cf:63:66:20:c2:6c: fe:b7:2b:a3:98:d1:d8:a1:1d:11:60:57:9b:01:79: 42:a8:c7:70:a9:d9:43:c4:de:d5:9e:1b:65:f8:7a: 56:57:4d:64:36:f3:6e:e9:af:e1:d2:f6:fe:42:6d: e0:b1:e4:ad:3f:00:cf:5d:f7:bf:86:70:65:3b:e1: c7:ac:c5:b2:96:d1:92:13:b5:01:fd:fe:8c:bf:0d: e6:0b:ee:56:14:f2:ed:a3:3f:86:e9:60:74:a9:1b: 64:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:1E:5A:D0:C9:37:92:CF:CF:95:60:B7:0B:C8:6E:94:36:DB:C1:1D X509v3 Authority Key Identifier: keyid:8C:86:E3:2E:CE:9A:3C:85:0F:EB:EA:69:64:1F:35:44:27:3D:53:71 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1091/jIbjLs6aPIUP6-ppZB81RCc9U3E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jIbjLs6aPIUP6-ppZB81RCc9U3E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1091/4x5a0Mk3ks_PlWC3C8hulDbbwR0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.101.22.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:d4:59:80:ab:8d:70:51:66:44:04:25:aa:88:f1:e4:3c:25: 87:3d:c2:6c:35:3c:6d:b0:ff:cb:27:14:4f:b6:91:cc:73:5c: ca:65:26:95:e4:d4:a2:79:55:94:6a:94:f3:3f:8a:66:ce:08: 9a:34:55:6e:a6:6d:98:27:09:c0:ba:83:ef:18:f3:6a:de:0d: 5f:ad:07:61:7f:2b:d4:17:6b:e2:25:6d:ad:5a:42:0e:c6:52: 77:66:88:7d:13:bf:96:a5:23:86:41:ac:a7:cd:7f:11:46:5d: 9f:8e:dc:c1:c0:20:62:3c:3b:db:ba:23:4c:7a:45:4d:97:c5: 7f:06:bf:5c:f1:12:2b:c9:28:e7:f2:be:f6:8b:6b:65:ec:7c: 33:fd:68:1e:c0:a0:f6:5e:88:49:83:85:df:cb:b7:e2:1e:04: 37:0b:bf:b2:69:79:1c:c6:04:66:47:20:a7:d2:ec:7f:c6:43: b3:82:fe:37:5a:b4:4b:5a:67:2f:b9:62:8b:d0:74:96:d1:47: 86:8e:18:bb:4d:bd:f9:da:5e:9f:9d:9c:e8:3a:39:20:ee:7e: 21:dc:56:de:85:f3:08:01:f5:f5:2e:8e:12:bc:b1:79:82:b1: 4d:f3:0e:cd:7c:fb:27:3c:37:02:dd:3d:6a:e9:06:bf:25:34: 02:d7:e1:83 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBBTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4Qzg2 RTMyRUNFOUEzQzg1MEZFQkVBNjk2NDFGMzU0NDI3M0Q1MzcxMB4XDTI0MTAyMjA5 MDk0NVoXDTI1MTAxNTAxMzAwMlowMzExMC8GA1UEAxMoRTMxRTVBRDBDOTM3OTJD RkNGOTU2MEI3MEJDODZFOTQzNkRCQzExRDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALrbvsigp+ZOAziPm+Pa8u98YCXr7uaFgxpMOqbpAqnENqVjK5Xb h07li9xBP3GEnVjVUsIilGu9H4yYbQ4RvKuUw+SWnNlPgsIqIQyfMLksowntHnl8 fxteUFAFLNRx/L6ymbeStgJT7pHQw9UaMzvFfLW7i7CYHM0sLR/5y4X1HK581uDU 2VHfz2qhC/vTtWpr1etTc2OJUwzu7czoz2NmIMJs/rcro5jR2KEdEWBXmwF5QqjH cKnZQ8Te1Z4bZfh6VldNZDbzbumv4dL2/kJt4LHkrT8Az133v4ZwZTvhx6zFspbR khO1Af3+jL8N5gvuVhTy7aM/hulgdKkbZFECAwEAAaOCAiYwggIiMB0GA1UdDgQW BBTjHlrQyTeSz8+VYLcLyG6UNtvBHTAfBgNVHSMEGDAWgBSMhuMuzpo8hQ/r6mlk HzVEJz1TcTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTA5MS9qSWJqTHM2YVBJVVA2LXBwWkI4MVJDYzlVM0UuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9qSWJqTHM2YVBJVVA2LXBwWkI4MVJD YzlVM0UuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTA5MS80eDVhME1rM2tzX1BsV0MzQzhodWxEYmJ3UjAucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQBimUWMA0GCSqGSIb3DQEBCwUAA4IBAQBf1FmAq41wUWZEBCWqiPHkPCWH PcJsNTxtsP/LJxRPtpHMc1zKZSaV5NSieVWUapTzP4pmzgiaNFVupm2YJwnAuoPv GPNq3g1frQdhfyvUF2viJW2tWkIOxlJ3Zoh9E7+WpSOGQaynzX8RRl2fjtzBwCBi PDvbuiNMekVNl8V/Br9c8RIrySjn8r72i2tl7Hwz/WgewKD2XohJg4Xfy7fiHgQ3 C7+yaXkcxgRmRyCn0ux/xkOzgv43WrRLWmcvuWKL0HSW0UeGjhi7Tb352l6fnZzo Ojkg7n4h3FbehfMIAfX1Lo4SvLF5grFN8w7NfPsnPDcC3T1q6Qa/JTQC1+GD -----END CERTIFICATE-----Generated at Sun Feb 16 15:43:46 2025 by rpki-client