$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/mXvLTVJdvtWdEQm-oG36qsI9NDM.roa File: mXvLTVJdvtWdEQm-oG36qsI9NDM.roa (raw, json) Hash identifier: 1JO8GxGs/HUUCPUGWrZvAk2DP+wu6h/jx2NWOxCEIwk= Subject key identifier: 99:7B:CB:4D:52:5D:BE:D5:9D:11:09:BE:A0:6D:FA:AA:C2:3D:34:33 Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Certificate serial: 01B0 Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/mXvLTVJdvtWdEQm-oG36qsI9NDM.roa Signing time: Sun 31 Mar 2024 01:29:07 +0000 ROA not before: Sun 31 Mar 2024 01:29:07 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 4713 IP address blocks: 118.0.0.0/12 maxlen: 12 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 432 (0x1b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B Validity Not Before: Mar 31 01:29:07 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=997BCB4D525DBED59D1109BEA06DFAAAC23D3433 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:bb:13:c0:a2:5e:10:5c:90:db:a6:d3:3f:a6: 1e:9f:c6:78:cf:b8:df:4c:58:65:68:9a:cb:82:14: 3e:6a:3f:98:aa:8b:9b:94:d5:36:00:01:a0:b7:0c: 9f:a2:f9:63:c5:bf:44:90:50:93:e0:85:2a:dd:d8: 12:04:11:0e:6e:19:ef:c4:bd:b3:87:d4:d5:73:52: 57:32:2d:8b:a4:76:f1:b9:a4:de:f2:aa:55:ec:be: d1:13:cd:46:2c:6b:b1:ce:66:91:f6:a0:fe:52:fc: 05:33:8f:22:7b:b6:2b:b3:b7:23:24:b0:0f:96:4a: 25:d3:b7:91:69:02:dc:c0:f6:7b:c9:72:76:7d:ab: 6c:43:d7:ea:b1:df:3a:19:c6:5a:1a:1c:25:39:99: eb:1a:96:ca:47:f9:d9:46:67:b9:01:30:97:56:42: bb:d1:65:37:3b:d4:e3:f5:e9:45:d8:7c:8b:24:0f: 7f:1f:dd:ee:b4:6c:82:e3:a1:c9:73:3e:66:b1:d2: 50:a9:ed:5e:93:8e:73:3b:d4:f9:b6:67:64:4f:d3: c9:38:e5:b6:05:3c:d6:34:82:56:eb:6f:4d:ef:81: 5e:2a:4a:a8:f1:72:ed:7c:07:2e:34:96:d9:17:38: a8:ec:20:9d:70:c5:d2:ee:c0:9a:df:d0:1d:f7:8f: 79:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:7B:CB:4D:52:5D:BE:D5:9D:11:09:BE:A0:6D:FA:AA:C2:3D:34:33 X509v3 Authority Key Identifier: keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/mXvLTVJdvtWdEQm-oG36qsI9NDM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.0.0.0/12 Signature Algorithm: sha256WithRSAEncryption bd:ef:3e:76:b8:7d:de:db:6c:e2:4b:14:fb:a3:f9:ff:0e:02: 55:87:76:03:56:ae:06:7d:33:3b:69:5f:ae:1e:08:7c:d3:5d: ae:50:fb:f6:d3:40:d5:4b:54:b2:68:24:67:68:23:45:1d:2b: ef:8c:3f:bd:de:32:20:8f:d8:67:ee:83:c6:75:d3:99:8d:2e: f9:7e:23:d7:5d:59:db:c7:eb:99:db:c1:2b:76:b4:c0:13:e8: 98:dd:6f:b0:b6:90:ff:20:31:b4:36:71:99:ef:8a:79:f0:ee: 52:d9:96:6d:13:d7:ae:aa:32:f8:7a:ef:09:11:84:33:de:af: b8:3b:79:40:99:96:3e:ae:b2:36:ce:c6:d1:58:bc:31:27:d5: 44:32:6f:e5:ee:ce:04:f5:71:2f:e6:45:a8:96:67:21:7b:9d: 3e:2a:ee:8d:79:b4:13:dd:7a:65:28:05:a1:d3:08:89:e8:0a: 1d:f8:b2:9b:33:31:f8:d1:2b:7c:e5:bb:87:8c:5c:10:20:f7: 6e:8b:c7:19:85:c6:f9:de:bf:fa:cb:58:99:78:39:14:88:cc: c3:a0:ab:9a:0c:58:9a:24:7b:f2:f9:f3:3e:10:c9:fb:44:57: ff:45:66:3a:19:35:45:05:ac:06:78:42:52:f0:ba:33:45:0f: 4f:80:4f:59 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICAbAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZD MDk5MjNCMDVBN0U4RjFBREQ5QTU5ODRFREMxOTMyMERCOTc0QjAeFw0yNDAzMzEw MTI5MDdaFw0yNTAzMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDk5N0JDQjRENTI1REJF RDU5RDExMDlCRUEwNkRGQUFBQzIzRDM0MzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzuxPAol4QXJDbptM/ph6fxnjPuN9MWGVomsuCFD5qP5iqi5uU 1TYAAaC3DJ+i+WPFv0SQUJPghSrd2BIEEQ5uGe/EvbOH1NVzUlcyLYukdvG5pN7y qlXsvtETzUYsa7HOZpH2oP5S/AUzjyJ7tiuztyMksA+WSiXTt5FpAtzA9nvJcnZ9 q2xD1+qx3zoZxloaHCU5mesalspH+dlGZ7kBMJdWQrvRZTc71OP16UXYfIskD38f 3e60bILjoclzPmax0lCp7V6TjnM71Pm2Z2RP08k45bYFPNY0glbrb03vgV4qSqjx cu18By40ltkXOKjsIJ1wxdLuwJrf0B33j3mPAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUmXvLTVJdvtWdEQm+oG36qsI9NDMwHwYDVR0jBBgwFoAUL8CZI7Bafo8a3ZpZ hO3BkyDbl0swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEzMS9MOENaSTdCYWZvOGEzWnBaaE8zQmt5RGJsMHMuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9MOENaSTdCYWZvOGEzWnBaaE8zQmt5 RGJsMHMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTMxL21YdkxUVkpkdnRXZEVRbS1vRzM2cXNJOU5ETS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwR2ADANBgkqhkiG9w0BAQsFAAOCAQEAve8+drh93tts4ksU+6P5/w4CVYd2 A1auBn0zO2lfrh4IfNNdrlD79tNA1UtUsmgkZ2gjRR0r74w/vd4yII/YZ+6DxnXT mY0u+X4j111Z28frmdvBK3a0wBPomN1vsLaQ/yAxtDZxme+KefDuUtmWbRPXrqoy +HrvCRGEM96vuDt5QJmWPq6yNs7G0Vi8MSfVRDJv5e7OBPVxL+ZFqJZnIXudPiru jXm0E916ZSgFodMIiegKHfiymzMx+NErfOW7h4xcECD3bovHGYXG+d6/+stYmXg5 FIjMw6CrmgxYmiR78vnzPhDJ+0RX/0VmOhk1RQWsBnhCUvC6M0UPT4BPWQ== -----END CERTIFICATE-----Generated at Sun Feb 16 22:20:15 2025 by rpki-client