$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20042/0HDsxTg9uw-4bpXQtNZpcPH9QKE.roa File: 0HDsxTg9uw-4bpXQtNZpcPH9QKE.roa (raw, json) Hash identifier: /25Sio1zQjKyGBFtkSn3MF/D7PTjWg4a6L8dZxbpweE= Subject key identifier: D0:70:EC:C5:38:3D:BB:0F:B8:6E:95:D0:B4:D6:69:70:F1:FD:40:A1 Certificate issuer: /CN=961BC18512722AAF9A90D898ADEA9AF7793C2543 Certificate serial: 6B Authority key identifier: 96:1B:C1:85:12:72:2A:AF:9A:90:D8:98:AD:EA:9A:F7:79:3C:25:43 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lhvBhRJyKq-akNiYreqa93k8JUM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/0HDsxTg9uw-4bpXQtNZpcPH9QKE.roa Signing time: Wed 04 Sep 2024 06:29:25 +0000 ROA not before: Wed 04 Sep 2024 06:29:25 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 15830 IP address blocks: 202.53.16.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/lhvBhRJyKq-akNiYreqa93k8JUM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/lhvBhRJyKq-akNiYreqa93k8JUM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lhvBhRJyKq-akNiYreqa93k8JUM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=961BC18512722AAF9A90D898ADEA9AF7793C2543 Validity Not Before: Sep 4 06:29:25 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=D070ECC5383DBB0FB86E95D0B4D66970F1FD40A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ec:33:99:1a:ec:e3:1f:e5:b6:e1:44:7b:91: b2:ce:db:d9:bb:93:10:25:4f:a2:51:34:79:57:e1: 06:c9:4f:91:3e:e2:40:a4:d2:0d:15:23:b9:2a:55: 55:14:e2:b6:7e:2e:6b:f4:0a:f7:65:b9:c9:27:f1: d6:98:c4:f2:61:65:5e:3d:25:e1:9a:d7:7a:be:43: 53:0e:eb:58:06:53:1b:2a:41:0d:49:16:02:5e:fc: c1:3f:b3:a2:95:ae:bc:0f:6f:e4:2c:ee:d2:68:7f: 3f:0e:9b:26:3e:cf:22:65:b0:89:50:75:9e:dc:cc: e6:18:db:b1:24:f6:fd:93:e5:d6:b2:24:15:51:fb: be:f0:e0:b6:52:9e:45:29:fc:10:cf:b9:b0:e4:b3: 03:a3:8c:30:4f:49:f9:45:cc:3c:e3:d1:97:d2:c7: 39:35:2e:1d:ea:44:e0:15:e3:2e:c6:37:3a:15:ff: 13:79:aa:94:47:3e:ec:0a:8a:7b:d3:05:3a:19:b4: 55:12:72:da:66:23:56:1f:1a:a0:29:9a:6e:38:aa: 5e:61:fc:50:2c:3f:85:e3:b4:4d:4f:7f:f2:d1:9a: 1a:b5:bd:e7:c8:67:3f:55:f6:5a:e5:71:0c:bc:bd: 90:06:7f:33:f8:cc:6f:07:2b:7d:39:67:90:a7:5c: 9b:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:70:EC:C5:38:3D:BB:0F:B8:6E:95:D0:B4:D6:69:70:F1:FD:40:A1 X509v3 Authority Key Identifier: keyid:96:1B:C1:85:12:72:2A:AF:9A:90:D8:98:AD:EA:9A:F7:79:3C:25:43 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/lhvBhRJyKq-akNiYreqa93k8JUM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/lhvBhRJyKq-akNiYreqa93k8JUM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20042/0HDsxTg9uw-4bpXQtNZpcPH9QKE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.53.16.0/20 Signature Algorithm: sha256WithRSAEncryption 9a:81:a3:d2:cc:1c:11:c7:95:58:63:34:eb:dd:38:e4:a4:0d: 4e:07:74:46:27:f1:e5:d3:c6:95:db:75:24:a0:6d:e1:85:88: 22:a4:80:19:4d:fd:8e:34:c3:cc:11:13:f3:c1:41:71:90:92: 11:10:f3:21:cd:61:93:e6:ac:49:03:fc:c1:c2:b9:98:56:83: ab:a5:7e:7a:b7:df:54:34:5e:32:67:d2:08:29:c5:ab:7c:7f: 77:a7:33:ab:c8:4b:97:10:af:63:6a:67:55:09:fe:7f:d8:15: e2:a4:1c:8e:3d:1c:dd:cc:ca:47:e9:a9:46:65:ea:67:1e:04: b7:be:4a:2a:10:56:77:69:ab:96:25:5a:ec:bd:b2:a1:63:28: 0f:99:a0:42:f9:71:a8:f5:8a:8f:98:98:33:b9:c4:19:e0:03: ac:89:73:42:85:20:3f:26:63:4b:9d:4f:3b:ab:91:64:83:50: 5f:6d:a9:ef:72:52:ba:6d:c3:07:97:87:2e:01:58:6a:db:e6: fb:75:01:25:a6:0f:20:3b:45:ba:84:ef:64:36:fe:37:77:cb: 71:e5:bd:86:dd:e4:32:30:4f:24:32:f0:1a:76:19:d1:50:fa: 80:1f:58:f0:8b:29:78:7c:bc:8c:ad:01:1b:8e:1c:55:25:5d: 4b:b7:c7:73 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBazANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5NjFC QzE4NTEyNzIyQUFGOUE5MEQ4OThBREVBOUFGNzc5M0MyNTQzMB4XDTI0MDkwNDA2 MjkyNVoXDTI1MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoRDA3MEVDQzUzODNEQkIw RkI4NkU5NUQwQjRENjY5NzBGMUZENDBBMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAK/sM5ka7OMf5bbhRHuRss7b2buTECVPolE0eVfhBslPkT7iQKTS DRUjuSpVVRTitn4ua/QK92W5ySfx1pjE8mFlXj0l4ZrXer5DUw7rWAZTGypBDUkW Al78wT+zopWuvA9v5Czu0mh/Pw6bJj7PImWwiVB1ntzM5hjbsST2/ZPl1rIkFVH7 vvDgtlKeRSn8EM+5sOSzA6OMME9J+UXMPOPRl9LHOTUuHepE4BXjLsY3OhX/E3mq lEc+7AqKe9MFOhm0VRJy2mYjVh8aoCmabjiqXmH8UCw/heO0TU9/8tGaGrW958hn P1X2WuVxDLy9kAZ/M/jMbwcrfTlnkKdcm7cCAwEAAaOCAigwggIkMB0GA1UdDgQW BBTQcOzFOD27D7huldC01mlw8f1AoTAfBgNVHSMEGDAWgBSWG8GFEnIqr5qQ2Jit 6pr3eTwlQzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwNDIvbGh2QmhSSnlLcS1ha05pWXJlcWE5M2s4SlVNLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvbGh2QmhSSnlLcS1ha05pWXJlcWE5 M2s4SlVNLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMDQyLzBIRHN4VGc5dXctNGJwWFF0TlpwY1BIOVFLRS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBATKNRAwDQYJKoZIhvcNAQELBQADggEBAJqBo9LMHBHHlVhjNOvdOOSk DU4HdEYn8eXTxpXbdSSgbeGFiCKkgBlN/Y40w8wRE/PBQXGQkhEQ8yHNYZPmrEkD /MHCuZhWg6ulfnq331Q0XjJn0ggpxat8f3enM6vIS5cQr2NqZ1UJ/n/YFeKkHI49 HN3MykfpqUZl6mceBLe+SioQVndpq5YlWuy9sqFjKA+ZoEL5caj1io+YmDO5xBng A6yJc0KFID8mY0udTzurkWSDUF9tqe9yUrptwweXhy4BWGrb5vt1ASWmDyA7RbqE 72Q2/jd3y3HlvYbd5DIwTyQy8Bp2GdFQ+oAfWPCLKXh8vIytARuOHFUlXUu3x3M= -----END CERTIFICATE-----Generated at Sun Feb 16 15:53:37 2025 by rpki-client