$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20031/OCvbfOuYvEPCldOw4FnWc5TjMi4.roa File: OCvbfOuYvEPCldOw4FnWc5TjMi4.roa (raw, json) Hash identifier: z2a8dhskVOr2VUTK6msHUs/qUSMFiDsLY99A4fmo/vM= Subject key identifier: 38:2B:DB:7C:EB:98:BC:43:C2:95:D3:B0:E0:59:D6:73:94:E3:32:2E Certificate issuer: /CN=7642A07D9AC9D227EA42F79E6D131CB1A920EDCE Certificate serial: 28 Authority key identifier: 76:42:A0:7D:9A:C9:D2:27:EA:42:F7:9E:6D:13:1C:B1:A9:20:ED:CE Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/dkKgfZrJ0ifqQveebRMcsakg7c4.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20031/OCvbfOuYvEPCldOw4FnWc5TjMi4.roa Signing time: Thu 31 Oct 2024 01:31:18 +0000 ROA not before: Thu 31 Oct 2024 01:31:18 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 7511 IP address blocks: 103.53.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20031/dkKgfZrJ0ifqQveebRMcsakg7c4.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20031/dkKgfZrJ0ifqQveebRMcsakg7c4.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/dkKgfZrJ0ifqQveebRMcsakg7c4.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7642A07D9AC9D227EA42F79E6D131CB1A920EDCE Validity Not Before: Oct 31 01:31:18 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=382BDB7CEB98BC43C295D3B0E059D67394E3322E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:6b:3d:05:9d:74:4b:ed:0f:a9:28:da:7b:6b: 39:ae:dc:07:20:a3:a3:11:4e:37:9a:b3:54:7c:fd: 63:9c:5d:24:3a:07:cc:8e:26:e6:e2:8e:e6:10:0c: 82:55:98:67:fb:73:79:3f:f0:21:5f:4a:48:c0:0b: de:0f:e3:95:d8:a9:a9:48:40:9d:6e:b9:f5:11:50: 8a:e9:ea:54:a6:fc:5b:2d:51:59:d9:6d:7f:55:eb: da:fd:8b:0f:05:41:d5:d2:cb:12:e3:ad:cf:64:01: c1:9f:33:fc:a1:76:d0:18:20:e6:a3:29:4d:99:08: 52:a1:b1:60:ea:89:7c:28:98:5f:62:83:29:95:fd: 54:d4:45:65:4c:61:88:f7:9a:db:0b:49:5d:0c:7d: 20:6d:09:90:0c:a0:fa:bc:74:a3:f1:ba:ae:d6:d9: 85:be:a3:dc:52:9a:49:a0:3c:38:c7:38:5a:78:00: f0:43:71:9d:a3:22:be:ba:d9:ad:3d:94:9c:ef:a5: 64:e7:f9:e9:55:71:cd:84:77:7c:33:77:fb:16:2b: 81:76:2f:d1:fa:56:3c:5f:ef:f8:37:27:cf:23:e0: 63:e7:05:f7:1d:f3:5d:fa:51:e4:7b:71:b5:8e:86: 0e:bb:aa:93:e6:65:3c:0f:c1:6b:8f:81:e2:03:0b: 2e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:2B:DB:7C:EB:98:BC:43:C2:95:D3:B0:E0:59:D6:73:94:E3:32:2E X509v3 Authority Key Identifier: keyid:76:42:A0:7D:9A:C9:D2:27:EA:42:F7:9E:6D:13:1C:B1:A9:20:ED:CE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20031/dkKgfZrJ0ifqQveebRMcsakg7c4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/dkKgfZrJ0ifqQveebRMcsakg7c4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20031/OCvbfOuYvEPCldOw4FnWc5TjMi4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.53.120.0/22 Signature Algorithm: sha256WithRSAEncryption 78:94:3f:e1:f6:26:87:2d:05:fb:0c:b9:da:57:a1:fd:c3:ce: 75:c0:02:cd:63:20:47:7b:9a:ac:eb:e7:2a:57:f0:9b:52:43: 46:d2:01:ed:aa:63:30:fe:c2:4d:fe:c5:06:9b:16:b7:13:0f: 85:4d:35:f4:c4:2b:bf:c9:a8:d6:60:93:9d:ce:96:db:bf:16: 86:e0:2e:a9:26:14:77:cb:94:47:fa:30:93:2c:a7:52:f9:3f: 12:bf:c7:35:77:92:39:79:94:a6:e1:13:f0:77:46:48:c8:93: ca:78:ee:f4:99:ba:e5:00:58:b2:0b:a6:66:bb:95:66:a4:cf: a7:7b:5c:6a:7b:35:13:ae:34:e3:04:49:8c:af:a3:e4:c0:18: 37:4f:0d:1b:ed:98:3f:a3:c7:8f:3d:94:ed:51:79:ed:29:f4: 3e:74:cd:d3:40:e3:f4:71:19:0f:3d:4e:4d:d5:ec:b5:0a:34: ff:cb:93:f4:2e:f1:79:73:0d:c7:54:17:bf:77:f1:ad:f0:00: 30:f7:7a:1c:04:3d:3b:27:f8:d3:7b:7e:6f:a4:fa:27:a4:0c: ba:c7:71:df:dd:7b:b4:8e:41:5f:53:f9:36:8e:3d:03:b5:77: 00:be:bd:7c:f4:18:78:8b:b0:8d:de:a3:b1:a7:54:68:95:6d: 76:c7:f7:72 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBKDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3NjQy QTA3RDlBQzlEMjI3RUE0MkY3OUU2RDEzMUNCMUE5MjBFRENFMB4XDTI0MTAzMTAx MzExOFoXDTI1MTAxNTAxMzAwMlowMzExMC8GA1UEAxMoMzgyQkRCN0NFQjk4QkM0 M0MyOTVEM0IwRTA1OUQ2NzM5NEUzMzIyRTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAN5rPQWddEvtD6ko2ntrOa7cByCjoxFON5qzVHz9Y5xdJDoHzI4m 5uKO5hAMglWYZ/tzeT/wIV9KSMAL3g/jldipqUhAnW659RFQiunqVKb8Wy1RWdlt f1Xr2v2LDwVB1dLLEuOtz2QBwZ8z/KF20Bgg5qMpTZkIUqGxYOqJfCiYX2KDKZX9 VNRFZUxhiPea2wtJXQx9IG0JkAyg+rx0o/G6rtbZhb6j3FKaSaA8OMc4WngA8ENx naMivrrZrT2UnO+lZOf56VVxzYR3fDN3+xYrgXYv0fpWPF/v+DcnzyPgY+cF9x3z XfpR5HtxtY6GDruqk+ZlPA/Ba4+B4gMLLvcCAwEAAaOCAigwggIkMB0GA1UdDgQW BBQ4K9t865i8Q8KV07DgWdZzlOMyLjAfBgNVHSMEGDAWgBR2QqB9msnSJ+pC955t ExyxqSDtzjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwMzEvZGtLZ2ZackowaWZxUXZlZWJSTWNzYWtnN2M0LmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvZGtLZ2ZackowaWZxUXZlZWJSTWNz YWtnN2M0LmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMDMxL09DdmJmT3VZdkVQQ2xkT3c0Rm5XYzVUak1pNC5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAJnNXgwDQYJKoZIhvcNAQELBQADggEBAHiUP+H2JoctBfsMudpXof3D znXAAs1jIEd7mqzr5ypX8JtSQ0bSAe2qYzD+wk3+xQabFrcTD4VNNfTEK7/JqNZg k53Oltu/FobgLqkmFHfLlEf6MJMsp1L5PxK/xzV3kjl5lKbhE/B3RkjIk8p47vSZ uuUAWLILpma7lWakz6d7XGp7NROuNOMESYyvo+TAGDdPDRvtmD+jx489lO1Ree0p 9D50zdNA4/RxGQ89Tk3V7LUKNP/Lk/Qu8XlzDcdUF7938a3wADD3ehwEPTsn+NN7 fm+k+iekDLrHcd/de7SOQV9T+TaOPQO1dwC+vXz0GHiLsI3eo7GnVGiVbXbH93I= -----END CERTIFICATE-----Generated at Sun Feb 16 22:29:04 2025 by rpki-client