$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20081/7nqw-BnvipRy7I2ml2j2SuQkV6I.roa File: 7nqw-BnvipRy7I2ml2j2SuQkV6I.roa (raw, json) Hash identifier: QdIQdbwEfOrAl9/ZY+k/zkpEkFbBZEaOiieKIIwadJE= Subject key identifier: EE:7A:B0:F8:19:EF:8A:94:72:EC:8D:A6:97:68:F6:4A:E4:24:57:A2 Certificate issuer: /CN=049B35AACA20B630F4AD52CB598F951250FF07FD Certificate serial: 0D Authority key identifier: 04:9B:35:AA:CA:20:B6:30:F4:AD:52:CB:59:8F:95:12:50:FF:07:FD Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BJs1qsogtjD0rVLLWY-VElD_B_0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20081/7nqw-BnvipRy7I2ml2j2SuQkV6I.roa Signing time: Thu 30 Jan 2025 01:22:48 +0000 ROA not before: Thu 30 Jan 2025 01:22:48 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 17529 IP address blocks: 120.138.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20081/BJs1qsogtjD0rVLLWY-VElD_B_0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20081/BJs1qsogtjD0rVLLWY-VElD_B_0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BJs1qsogtjD0rVLLWY-VElD_B_0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 28 Feb 2025 22:25:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=049B35AACA20B630F4AD52CB598F951250FF07FD Validity Not Before: Jan 30 01:22:48 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=EE7AB0F819EF8A9472EC8DA69768F64AE42457A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:1d:50:e9:c6:3b:e3:86:0d:7a:82:17:0c:84: a9:58:e9:95:dd:e2:f0:58:0d:dd:0e:da:b2:d1:96: b4:7e:16:b0:c5:68:58:af:6b:94:04:9c:5e:4b:b6: d5:f2:d1:08:8b:2f:a4:52:50:89:30:6d:84:53:e4: eb:1a:e5:3e:56:98:51:dd:d7:7b:e3:c9:5f:5b:64: c8:02:f5:c4:52:39:29:4a:89:d2:5a:bf:73:ed:9c: cf:d9:a9:c9:7a:15:23:56:c4:b2:2a:bb:c9:52:cc: 2b:c1:1d:70:06:18:35:53:39:9f:8a:9d:d4:1c:71: fa:2f:59:2e:a3:ab:74:31:20:76:66:cf:a0:24:f0: cc:e4:84:d9:b9:6a:a6:d7:8e:e0:9c:25:a9:d1:fc: 54:c2:e4:c3:bc:61:23:f6:a3:81:ee:83:b6:26:df: a7:2b:0b:e6:b8:9f:b6:f8:be:47:90:5b:8d:eb:e8: 79:da:0e:d7:01:8f:5b:5e:f3:d1:42:72:92:95:8b: fc:32:38:ae:f3:54:83:76:bc:78:4a:94:24:37:80: 7d:bd:53:38:07:c8:63:2e:a6:3f:64:ed:cb:95:89: 25:cd:cd:d5:10:9e:59:aa:e3:6a:4a:69:50:f0:a7: 78:ce:d7:88:4d:86:26:13:f0:9d:e7:ee:68:de:3c: 45:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:7A:B0:F8:19:EF:8A:94:72:EC:8D:A6:97:68:F6:4A:E4:24:57:A2 X509v3 Authority Key Identifier: keyid:04:9B:35:AA:CA:20:B6:30:F4:AD:52:CB:59:8F:95:12:50:FF:07:FD X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20081/BJs1qsogtjD0rVLLWY-VElD_B_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BJs1qsogtjD0rVLLWY-VElD_B_0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20081/7nqw-BnvipRy7I2ml2j2SuQkV6I.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.138.128.0/18 Signature Algorithm: sha256WithRSAEncryption 07:94:0f:7d:47:10:ca:2a:80:df:3f:63:2f:da:dc:bf:da:69: d7:e3:99:a7:24:9d:47:57:04:95:c0:a7:d4:a6:61:80:a7:3e: c6:97:2a:6f:e5:60:91:b8:78:32:01:ab:9b:7a:f6:a4:25:cf: ba:af:2c:78:f2:3b:28:b2:8b:43:95:c2:c3:84:0c:e8:25:3a: 09:f8:16:4b:cb:84:44:b1:6e:e2:8d:9a:a3:be:92:3f:8e:52: d8:5d:49:2a:e2:f7:e8:1d:b6:8c:dd:be:8d:6e:8d:95:cc:bd: f5:f5:15:ae:09:a6:d9:10:59:ed:53:37:1b:b7:cd:83:e8:8d: 0f:2d:13:a5:f5:2f:95:7a:ac:06:ec:e4:25:82:f4:09:03:d7: 72:da:36:d9:77:d3:5e:11:ea:28:fa:48:e5:da:60:c0:5f:c4: 6c:1f:e9:48:34:dd:99:7d:a2:e6:87:6b:98:c4:3b:4b:39:9d: 13:dd:91:7a:e9:9b:7b:c7:f4:3f:30:26:44:fa:7a:dd:9d:01: 6f:4c:12:99:d0:c6:05:eb:da:06:87:3f:bd:17:7c:03:55:cc: 71:f7:58:9d:fa:72:54:bd:47:9a:5d:2a:11:1e:e5:83:96:ce: 8c:71:92:22:de:87:3d:77:06:30:d8:36:a0:0c:73:10:3e:68: f3:7f:1d:71 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBDTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwNDlC MzVBQUNBMjBCNjMwRjRBRDUyQ0I1OThGOTUxMjUwRkYwN0ZEMB4XDTI1MDEzMDAx MjI0OFoXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoRUU3QUIwRjgxOUVGOEE5 NDcyRUM4REE2OTc2OEY2NEFFNDI0NTdBMjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMYdUOnGO+OGDXqCFwyEqVjpld3i8FgN3Q7astGWtH4WsMVoWK9r lAScXku21fLRCIsvpFJQiTBthFPk6xrlPlaYUd3Xe+PJX1tkyAL1xFI5KUqJ0lq/ c+2cz9mpyXoVI1bEsiq7yVLMK8EdcAYYNVM5n4qd1Bxx+i9ZLqOrdDEgdmbPoCTw zOSE2blqpteO4JwlqdH8VMLkw7xhI/ajge6DtibfpysL5riftvi+R5BbjevoedoO 1wGPW17z0UJykpWL/DI4rvNUg3a8eEqUJDeAfb1TOAfIYy6mP2Tty5WJJc3N1RCe WarjakppUPCneM7XiE2GJhPwnefuaN48RV0CAwEAAaOCAigwggIkMB0GA1UdDgQW BBTuerD4Ge+KlHLsjaaXaPZK5CRXojAfBgNVHSMEGDAWgBQEmzWqyiC2MPStUstZ j5USUP8H/TAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAwODEvQkpzMXFzb2d0akQwclZMTFdZLVZFbERfQl8wLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvQkpzMXFzb2d0akQwclZMTFdZLVZF bERfQl8wLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMDgxLzducXctQm52aXBSeTdJMm1sMmoyU3VRa1Y2SS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAZ4ioAwDQYJKoZIhvcNAQELBQADggEBAAeUD31HEMoqgN8/Yy/a3L/a adfjmacknUdXBJXAp9SmYYCnPsaXKm/lYJG4eDIBq5t69qQlz7qvLHjyOyiyi0OV wsOEDOglOgn4FkvLhESxbuKNmqO+kj+OUthdSSri9+gdtozdvo1ujZXMvfX1Fa4J ptkQWe1TNxu3zYPojQ8tE6X1L5V6rAbs5CWC9AkD13LaNtl3014R6ij6SOXaYMBf xGwf6Ug03Zl9ouaHa5jEO0s5nRPdkXrpm3vH9D8wJkT6et2dAW9MEpnQxgXr2gaH P70XfANVzHH3WJ36clS9R5pdKhEe5YOWzoxxkiLehz13BjDYNqAMcxA+aPN/HXE= -----END CERTIFICATE-----Generated at Sat Feb 22 04:33:47 2025 by rpki-client