$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20081/6tkozI0IUM4Z0oRj0akMAVcyKZs.roa File: 6tkozI0IUM4Z0oRj0akMAVcyKZs.roa (raw, json) Hash identifier: DUwyq7/N1OiFB7kqwqTTJc7NblBySJLewjXeAHD8+Po= Subject key identifier: EA:D9:28:CC:8D:08:50:CE:19:D2:84:63:D1:A9:0C:01:57:32:29:9B Certificate issuer: /CN=049B35AACA20B630F4AD52CB598F951250FF07FD Certificate serial: 11 Authority key identifier: 04:9B:35:AA:CA:20:B6:30:F4:AD:52:CB:59:8F:95:12:50:FF:07:FD Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BJs1qsogtjD0rVLLWY-VElD_B_0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20081/6tkozI0IUM4Z0oRj0akMAVcyKZs.roa Signing time: Thu 30 Jan 2025 01:26:44 +0000 ROA not before: Thu 30 Jan 2025 01:26:44 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 17529 IP address blocks: 203.91.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20081/BJs1qsogtjD0rVLLWY-VElD_B_0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20081/BJs1qsogtjD0rVLLWY-VElD_B_0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BJs1qsogtjD0rVLLWY-VElD_B_0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 28 Feb 2025 22:25:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=049B35AACA20B630F4AD52CB598F951250FF07FD Validity Not Before: Jan 30 01:26:44 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=EAD928CC8D0850CE19D28463D1A90C015732299B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:fd:0e:33:e5:c1:25:fa:a6:a0:b4:ba:16:7a: 34:59:f8:b6:32:8d:00:0b:49:8f:03:0e:bc:41:27: 48:58:8b:0c:9d:80:92:24:f7:dc:3f:3a:cd:2c:d8: 15:08:2a:1a:25:64:39:31:9c:b5:5c:51:af:a0:b2: 86:aa:a3:1c:a7:01:b9:30:c2:36:9f:45:c9:b9:fb: 48:e9:ab:eb:c1:6c:a3:94:43:b4:79:56:9b:2d:f8: 27:d2:75:72:94:4c:96:93:3c:50:fc:5c:55:23:3e: cc:0c:ea:f5:23:50:83:68:d9:74:08:7d:ae:53:55: 00:1b:ed:76:39:5c:65:27:b0:08:38:ea:f7:ee:32: 98:ca:8a:6d:46:b1:f7:92:ed:6f:cd:b1:30:da:43: 88:b3:2b:5d:92:13:6c:61:da:30:6f:c2:cd:49:af: 39:e0:a5:b7:0a:55:94:52:e1:55:08:00:27:bd:48: 43:4d:06:c7:d5:6e:8e:ac:51:1f:d1:50:68:82:d7: d9:ad:9d:77:e4:ee:19:89:33:38:08:a0:b8:ed:19: 54:cf:74:7a:8e:26:bd:11:51:73:f8:a1:c5:82:9c: b7:0d:98:00:1f:f5:b3:c9:cc:30:c3:45:47:1a:75: f1:a8:f5:27:16:f3:1f:29:f2:14:0d:fe:71:2b:f2: 47:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:D9:28:CC:8D:08:50:CE:19:D2:84:63:D1:A9:0C:01:57:32:29:9B X509v3 Authority Key Identifier: keyid:04:9B:35:AA:CA:20:B6:30:F4:AD:52:CB:59:8F:95:12:50:FF:07:FD X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20081/BJs1qsogtjD0rVLLWY-VElD_B_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BJs1qsogtjD0rVLLWY-VElD_B_0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20081/6tkozI0IUM4Z0oRj0akMAVcyKZs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.91.160.0/19 Signature Algorithm: sha256WithRSAEncryption aa:ac:1e:1c:4b:47:e6:03:db:18:9a:7c:27:d1:f6:9b:e3:27: d7:5a:39:74:c0:f6:fd:53:98:c8:8c:45:df:86:8b:80:22:0b: 25:09:28:d9:81:36:ef:d7:f2:87:e5:e9:ed:2d:e4:ea:5f:64: 6e:f9:fc:f6:02:d2:b4:ce:2c:35:f5:d9:a6:e6:dd:a6:fd:11: f7:af:c2:08:e8:c7:69:db:c9:09:a4:7b:22:86:cf:90:8b:e9: 62:ce:ae:09:14:68:11:ff:3f:a5:72:2c:05:56:92:7a:c3:53: e5:95:9d:30:b9:b9:56:cc:de:d3:5d:b7:6b:69:d4:8d:35:98: 60:73:3a:2b:ef:b6:a6:51:e0:f1:7d:e7:70:8c:2f:59:d3:ce: 44:16:35:09:9c:28:d3:0e:8f:79:e8:6d:c0:d6:34:3a:82:a1: 29:23:e5:7c:20:6c:20:37:ed:dc:79:e1:78:0c:7a:d8:be:77: 29:1f:ba:6c:fe:b5:7a:de:14:0e:4d:39:aa:b9:de:65:30:96: 83:d7:9a:1d:f2:5e:5d:68:98:50:06:83:e1:ef:d3:fb:8e:96: b9:fb:37:e1:f7:3e:64:93:1e:62:f4:57:38:ee:b1:dc:3c:90: 13:14:6f:97:73:94:bc:b7:6d:50:24:dc:8c:7d:17:ed:cf:fb: 09:a5:53:2a -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBETANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwNDlC MzVBQUNBMjBCNjMwRjRBRDUyQ0I1OThGOTUxMjUwRkYwN0ZEMB4XDTI1MDEzMDAx MjY0NFoXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoRUFEOTI4Q0M4RDA4NTBD RTE5RDI4NDYzRDFBOTBDMDE1NzMyMjk5QjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMT9DjPlwSX6pqC0uhZ6NFn4tjKNAAtJjwMOvEEnSFiLDJ2AkiT3 3D86zSzYFQgqGiVkOTGctVxRr6CyhqqjHKcBuTDCNp9Fybn7SOmr68Fso5RDtHlW my34J9J1cpRMlpM8UPxcVSM+zAzq9SNQg2jZdAh9rlNVABvtdjlcZSewCDjq9+4y mMqKbUax95Ltb82xMNpDiLMrXZITbGHaMG/CzUmvOeCltwpVlFLhVQgAJ71IQ00G x9VujqxRH9FQaILX2a2dd+TuGYkzOAiguO0ZVM90eo4mvRFRc/ihxYKctw2YAB/1 s8nMMMNFRxp18aj1JxbzHynyFA3+cSvyR+8CAwEAAaOCAigwggIkMB0GA1UdDgQW BBTq2SjMjQhQzhnShGPRqQwBVzIpmzAfBgNVHSMEGDAWgBQEmzWqyiC2MPStUstZ j5USUP8H/TAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwODEvQkpzMXFzb2d0akQwclZMTFdZLVZFbERfQl8wLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvQkpzMXFzb2d0akQwclZMTFdZLVZF bERfQl8wLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMDgxLzZ0a296STBJVU00WjBvUmowYWtNQVZjeUtacy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAXLW6AwDQYJKoZIhvcNAQELBQADggEBAKqsHhxLR+YD2xiafCfR9pvj J9daOXTA9v1TmMiMRd+Gi4AiCyUJKNmBNu/X8ofl6e0t5OpfZG75/PYC0rTOLDX1 2abm3ab9Efevwgjox2nbyQmkeyKGz5CL6WLOrgkUaBH/P6VyLAVWknrDU+WVnTC5 uVbM3tNdt2tp1I01mGBzOivvtqZR4PF953CML1nTzkQWNQmcKNMOj3nobcDWNDqC oSkj5XwgbCA37dx54XgMeti+dykfumz+tXreFA5NOaq53mUwloPXmh3yXl1omFAG g+Hv0/uOlrn7N+H3PmSTHmL0Vzjusdw8kBMUb5dzlLy3bVAk3Ix9F+3P+wmlUyo= -----END CERTIFICATE-----Generated at Sat Feb 22 04:26:44 2025 by rpki-client