$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20116/Cm589daFEQ2d5d2duRfyNYFZo1Q.roa File: Cm589daFEQ2d5d2duRfyNYFZo1Q.roa (raw, json) Hash identifier: dPfpRjdktttTuhvBKs0xpT33zoKnf0fBjiFPCO4Xpv8= Subject key identifier: 0A:6E:7C:F5:D6:85:11:0D:9D:E5:DD:9D:B9:17:F2:35:81:59:A3:54 Certificate issuer: /CN=C49E64FB7C8C7C6B5CD7C7701882E8597C42838E Certificate serial: 60 Authority key identifier: C4:9E:64:FB:7C:8C:7C:6B:5C:D7:C7:70:18:82:E8:59:7C:42:83:8E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xJ5k-3yMfGtc18dwGILoWXxCg44.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/Cm589daFEQ2d5d2duRfyNYFZo1Q.roa Signing time: Mon 01 Jul 2024 06:15:44 +0000 ROA not before: Mon 01 Jul 2024 06:15:44 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 38631 IP address blocks: 203.104.128.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/xJ5k-3yMfGtc18dwGILoWXxCg44.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/xJ5k-3yMfGtc18dwGILoWXxCg44.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xJ5k-3yMfGtc18dwGILoWXxCg44.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E64FB7C8C7C6B5CD7C7701882E8597C42838E Validity Not Before: Jul 1 06:15:44 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=0A6E7CF5D685110D9DE5DD9DB917F2358159A354 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:9d:73:c6:9c:7b:b7:d6:7e:8b:4a:5e:fe:d2: b1:ee:37:28:e7:1d:0b:b8:8a:ca:13:2c:ec:01:0c: 1d:89:ec:28:44:96:7c:7f:0f:50:3d:8d:f4:6c:1d: 8d:13:e2:7e:ce:c3:69:0c:66:d9:7a:41:e0:48:28: cd:d4:e6:4f:b2:8e:6d:95:2c:fe:1f:c5:89:90:aa: 78:bb:a9:c3:ba:3a:32:63:d3:f2:97:f3:bb:02:24: d0:dc:50:b5:40:cf:37:09:2a:24:cd:ad:e7:57:35: e3:05:bc:56:80:ae:7b:d8:79:fc:6f:c9:36:04:bf: 4e:c1:6f:f2:2f:62:74:7d:f5:34:61:e7:fd:b6:54: 43:63:da:ac:3c:86:37:cc:a2:70:e2:31:e3:55:a2: da:8c:50:94:35:73:1d:3d:83:07:ae:e0:6e:0e:79: 0f:b5:37:af:ba:d4:d6:72:0c:9f:b1:49:bd:96:fd: 97:33:dd:0b:64:10:c7:07:cc:a0:b6:e2:39:8b:c1: f0:72:aa:45:e9:30:71:0a:2c:1e:ef:65:af:f1:48: 2b:bc:7a:41:c1:5f:dc:4d:a6:77:56:a5:7c:85:7e: 31:9d:da:57:e6:cb:94:1b:ff:04:50:d9:55:c7:8a: 9e:78:0b:25:6e:ec:8a:f1:ee:b4:82:ba:0a:ab:fd: 85:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:6E:7C:F5:D6:85:11:0D:9D:E5:DD:9D:B9:17:F2:35:81:59:A3:54 X509v3 Authority Key Identifier: keyid:C4:9E:64:FB:7C:8C:7C:6B:5C:D7:C7:70:18:82:E8:59:7C:42:83:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/xJ5k-3yMfGtc18dwGILoWXxCg44.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xJ5k-3yMfGtc18dwGILoWXxCg44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/Cm589daFEQ2d5d2duRfyNYFZo1Q.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.104.128.0/20 Signature Algorithm: sha256WithRSAEncryption 1e:10:55:de:86:15:78:71:58:0e:60:c8:07:bf:86:38:03:0e: 46:20:08:73:ec:a5:4f:1d:e0:10:8d:b6:db:9d:33:95:76:79: b4:6b:a0:ee:c2:08:ed:7c:16:08:3f:40:32:9a:82:8d:72:19: d9:66:c5:ae:95:6f:12:ef:b3:c1:11:7c:78:4e:b7:c0:58:26: 39:92:b0:1c:ed:21:be:a7:5b:1b:0a:70:de:c3:98:41:67:a8: 3a:82:96:7f:15:5a:59:bc:66:52:7f:b9:45:f9:c6:c7:1e:bc: 7b:4c:9e:de:b8:1c:40:f0:68:5a:74:24:d3:c0:c1:2b:11:86: a0:5e:6d:7b:29:32:30:30:de:2a:b7:a4:96:72:59:f0:cc:33: 23:5c:c2:9f:c7:06:95:e0:d6:6b:3a:b2:23:0c:d2:55:c7:a6: 22:4f:eb:ae:24:87:dd:4e:ee:18:a2:48:09:2b:8d:2f:60:12: a6:74:c7:c7:16:73:34:87:1b:f8:ec:3e:31:08:be:48:b9:92: df:f8:65:87:31:cc:4d:10:14:f4:d5:f5:59:b0:ca:87:92:95: 47:09:05:17:f9:3f:fb:2e:69:06:9e:ca:dc:b3:d5:a1:fb:45: 15:d4:75:ce:30:73:dc:33:9b:d4:70:df:be:1f:ca:44:81:e7: ce:22:03:59 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBYDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDNDlF NjRGQjdDOEM3QzZCNUNEN0M3NzAxODgyRTg1OTdDNDI4MzhFMB4XDTI0MDcwMTA2 MTU0NFoXDTI1MDYyNDEwNDY0NVowMzExMC8GA1UEAxMoMEE2RTdDRjVENjg1MTEw RDlERTVERDlEQjkxN0YyMzU4MTU5QTM1NDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAM2dc8ace7fWfotKXv7Sse43KOcdC7iKyhMs7AEMHYnsKESWfH8P UD2N9GwdjRPifs7DaQxm2XpB4EgozdTmT7KObZUs/h/FiZCqeLupw7o6MmPT8pfz uwIk0NxQtUDPNwkqJM2t51c14wW8VoCue9h5/G/JNgS/TsFv8i9idH31NGHn/bZU Q2ParDyGN8yicOIx41Wi2oxQlDVzHT2DB67gbg55D7U3r7rU1nIMn7FJvZb9lzPd C2QQxwfMoLbiOYvB8HKqRekwcQosHu9lr/FIK7x6QcFf3E2md1alfIV+MZ3aV+bL lBv/BFDZVceKnngLJW7sivHutIK6Cqv9hf8CAwEAAaOCAigwggIkMB0GA1UdDgQW BBQKbnz11oURDZ3l3Z25F/I1gVmjVDAfBgNVHSMEGDAWgBTEnmT7fIx8a1zXx3AY guhZfEKDjjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAxMTYveEo1ay0zeU1mR3RjMThkd0dJTG9XWHhDZzQ0LmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAveEo1ay0zeU1mR3RjMThkd0dJTG9X WHhDZzQ0LmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMTE2L0NtNTg5ZGFGRVEyZDVkMmR1UmZ5TllGWm8xUS5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBATLaIAwDQYJKoZIhvcNAQELBQADggEBAB4QVd6GFXhxWA5gyAe/hjgD DkYgCHPspU8d4BCNttudM5V2ebRroO7CCO18Fgg/QDKago1yGdlmxa6VbxLvs8ER fHhOt8BYJjmSsBztIb6nWxsKcN7DmEFnqDqCln8VWlm8ZlJ/uUX5xscevHtMnt64 HEDwaFp0JNPAwSsRhqBebXspMjAw3iq3pJZyWfDMMyNcwp/HBpXg1ms6siMM0lXH piJP664kh91O7hiiSAkrjS9gEqZ0x8cWczSHG/jsPjEIvki5kt/4ZYcxzE0QFPTV 9VmwyoeSlUcJBRf5P/suaQaeytyz1aH7RRXUdc4wc9wzm9Rw374fykSB584iA1k= -----END CERTIFICATE-----Generated at Sun Feb 16 22:17:34 2025 by rpki-client