$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20060/3gBZfKSMoG2RZXZ6DNyteDfUd2s.roa File: 3gBZfKSMoG2RZXZ6DNyteDfUd2s.roa (raw, json) Hash identifier: m7tDtC3IeuMITARaVNOKAsudnA1m7Nq8eDoD0gD8wcA= Subject key identifier: DE:00:59:7C:A4:8C:A0:6D:91:65:76:7A:0C:DC:AD:78:37:D4:77:6B Certificate issuer: /CN=C163A3387592F96B1BCC77F8ACFCF4F1F11FA99D Certificate serial: 04 Authority key identifier: C1:63:A3:38:75:92:F9:6B:1B:CC:77:F8:AC:FC:F4:F1:F1:1F:A9:9D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/wWOjOHWS-WsbzHf4rPz08fEfqZ0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20060/3gBZfKSMoG2RZXZ6DNyteDfUd2s.roa Signing time: Tue 14 May 2024 01:01:45 +0000 ROA not before: Tue 14 May 2024 01:01:45 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 131928 IP address blocks: 103.106.124.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20060/wWOjOHWS-WsbzHf4rPz08fEfqZ0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20060/wWOjOHWS-WsbzHf4rPz08fEfqZ0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/wWOjOHWS-WsbzHf4rPz08fEfqZ0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C163A3387592F96B1BCC77F8ACFCF4F1F11FA99D Validity Not Before: May 14 01:01:45 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=DE00597CA48CA06D9165767A0CDCAD7837D4776B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:fc:51:d3:07:81:6b:f6:26:36:2d:c3:40:1c: 0b:ce:d5:11:b9:fa:fb:89:76:cf:c6:ce:3a:b4:67: 6b:33:ea:f8:30:c0:76:e9:19:ff:3e:f5:db:cd:39: 28:2c:fe:eb:d9:f1:d2:e9:e2:2f:5e:e6:50:3c:3a: 7b:be:e1:b5:fc:76:8f:d2:87:9d:ac:5c:a7:ac:be: f4:4d:20:2b:c3:12:fa:55:72:d6:08:c4:34:e1:75: 8a:55:4d:f0:dd:60:a1:40:1f:a1:18:93:0f:65:50: 03:8c:ea:f7:28:b1:38:53:38:0f:e0:75:fe:c5:9b: 16:97:be:fa:21:e3:68:c7:27:25:71:05:75:cd:45: 50:1a:8e:27:ac:11:9f:e6:aa:6b:7d:71:dc:74:cc: 17:d6:67:e1:87:8d:55:1e:d3:56:2d:c1:03:dc:43: c0:19:fd:a2:b9:53:c6:a1:fd:0e:d4:53:64:81:65: 4e:ed:5a:20:7a:c0:cb:71:0c:59:25:86:02:55:55: 06:7d:03:59:51:ea:13:3c:e9:34:76:3e:db:03:50: cf:fe:f1:8b:56:f2:5b:a8:a7:87:bc:33:ed:b8:88: db:8c:47:f2:c7:37:d2:29:ed:e9:b5:54:a4:a6:27: 8a:53:81:d0:a1:f5:31:16:e4:62:a2:05:67:f4:75: f9:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:00:59:7C:A4:8C:A0:6D:91:65:76:7A:0C:DC:AD:78:37:D4:77:6B X509v3 Authority Key Identifier: keyid:C1:63:A3:38:75:92:F9:6B:1B:CC:77:F8:AC:FC:F4:F1:F1:1F:A9:9D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20060/wWOjOHWS-WsbzHf4rPz08fEfqZ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/wWOjOHWS-WsbzHf4rPz08fEfqZ0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20060/3gBZfKSMoG2RZXZ6DNyteDfUd2s.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.106.124.0/22 Signature Algorithm: sha256WithRSAEncryption 87:8b:9a:1a:77:f7:ee:eb:1c:d8:76:59:9d:43:96:2f:89:0f: bd:56:d3:99:9f:4a:f7:c4:3d:07:c6:8f:18:2b:6a:27:1d:e4: 20:5b:f3:bd:75:51:08:6d:8b:0f:bc:7c:a6:ec:55:b5:33:86: 1e:5d:19:eb:74:0a:c1:0e:e5:b4:c6:b3:92:c5:da:ec:8e:b5: b4:f6:13:74:b4:4b:51:04:38:e5:d3:ce:2e:82:32:d7:3a:18: cb:2d:3b:95:e1:b0:1d:c9:c6:90:1c:1d:33:72:17:9c:25:0d: 2c:80:2d:79:36:67:97:d7:97:d5:49:5e:c9:3a:dc:48:c6:d7: e1:20:4c:89:ff:ae:4d:38:f3:bd:02:ae:fa:d7:0a:cc:4b:ee: 7d:a2:01:12:98:50:2a:e8:6e:fa:83:7e:5d:ec:bc:4a:13:41: bb:3c:8c:1d:04:aa:0e:1e:e3:ca:86:00:cd:d5:f4:24:9d:47: c3:0e:80:c3:46:e7:55:8c:6e:33:dc:ee:32:97:65:3d:e0:01: 12:0e:8f:b5:44:27:f5:6e:b5:71:4c:64:f5:61:11:ad:c9:cd: 9b:09:d2:4c:4f:83:2b:7d:a9:b3:2b:7d:af:b9:72:c0:10:a1: 1a:3c:32:2c:b8:00:e6:63:ca:b7:0a:25:cc:3c:f7:08:55:a6: 6d:97:92:85 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBBDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDMTYz QTMzODc1OTJGOTZCMUJDQzc3RjhBQ0ZDRjRGMUYxMUZBOTlEMB4XDTI0MDUxNDAx MDE0NVoXDTI1MDQxNTAxMzAwMlowMzExMC8GA1UEAxMoREUwMDU5N0NBNDhDQTA2 RDkxNjU3NjdBMENEQ0FENzgzN0Q0Nzc2QjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANT8UdMHgWv2JjYtw0AcC87VEbn6+4l2z8bOOrRnazPq+DDAdukZ /z712805KCz+69nx0uniL17mUDw6e77htfx2j9KHnaxcp6y+9E0gK8MS+lVy1gjE NOF1ilVN8N1goUAfoRiTD2VQA4zq9yixOFM4D+B1/sWbFpe++iHjaMcnJXEFdc1F UBqOJ6wRn+aqa31x3HTMF9Zn4YeNVR7TVi3BA9xDwBn9orlTxqH9DtRTZIFlTu1a IHrAy3EMWSWGAlVVBn0DWVHqEzzpNHY+2wNQz/7xi1byW6inh7wz7biI24xH8sc3 0int6bVUpKYnilOB0KH1MRbkYqIFZ/R1+ZUCAwEAAaOCAigwggIkMB0GA1UdDgQW BBTeAFl8pIygbZFldnoM3K14N9R3azAfBgNVHSMEGDAWgBTBY6M4dZL5axvMd/is /PTx8R+pnTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwNjAvd1dPak9IV1MtV3NiekhmNHJQejA4ZkVmcVowLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvd1dPak9IV1MtV3NiekhmNHJQejA4 ZkVmcVowLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMDYwLzNnQlpmS1NNb0cyUlpYWjZETnl0ZURmVWQycy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAJnanwwDQYJKoZIhvcNAQELBQADggEBAIeLmhp39+7rHNh2WZ1Dli+J D71W05mfSvfEPQfGjxgraicd5CBb8711UQhtiw+8fKbsVbUzhh5dGet0CsEO5bTG s5LF2uyOtbT2E3S0S1EEOOXTzi6CMtc6GMstO5XhsB3JxpAcHTNyF5wlDSyALXk2 Z5fXl9VJXsk63EjG1+EgTIn/rk04870CrvrXCsxL7n2iARKYUCrobvqDfl3svEoT Qbs8jB0Eqg4e48qGAM3V9CSdR8MOgMNG51WMbjPc7jKXZT3gARIOj7VEJ/VutXFM ZPVhEa3JzZsJ0kxPgyt9qbMrfa+5csAQoRo8Miy4AOZjyrcKJcw89whVpm2XkoU= -----END CERTIFICATE-----Generated at Sun Feb 16 22:27:15 2025 by rpki-client