$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20128/y2CpeOmeClJuRkBbV6Od4IGAvxs.roa File: y2CpeOmeClJuRkBbV6Od4IGAvxs.roa (raw, json) Hash identifier: X43OLL2sN+syUD3sbqr7Q3OESpSTehQjAGoPhAwSMcA= Subject key identifier: CB:60:A9:78:E9:9E:0A:52:6E:46:40:5B:57:A3:9D:E0:81:80:BF:1B Certificate issuer: /CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Certificate serial: 80 Authority key identifier: 8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/y2CpeOmeClJuRkBbV6Od4IGAvxs.roa Signing time: Tue 03 Dec 2024 17:20:26 +0000 ROA not before: Tue 03 Dec 2024 17:20:26 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 20940 IP address blocks: 117.104.142.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Validity Not Before: Dec 3 17:20:26 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=CB60A978E99E0A526E46405B57A39DE08180BF1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:83:e9:7e:a5:76:28:5a:9e:b4:d3:78:ea:37: db:36:51:26:51:a3:c4:cd:bc:50:c9:6b:e5:fd:a8: 26:71:cc:53:30:d7:3d:c8:18:7d:ea:eb:db:b9:da: 55:42:b6:11:de:05:b1:ad:b6:c2:83:0e:7d:5f:52: 70:a0:e5:10:4b:c7:be:f3:9e:a3:01:51:7b:7a:0d: ab:03:29:6b:0a:b1:b8:86:7e:2f:40:f7:45:06:9c: 1e:4d:bb:64:4c:24:da:75:b9:70:06:11:4b:f7:2d: 4d:62:b9:53:8c:b3:30:34:be:33:2e:96:51:41:ec: bb:0e:34:59:f5:6f:96:d6:c3:46:da:b3:6b:c6:96: ad:45:e1:73:a4:1d:ea:fb:42:5f:ee:0e:96:c2:26: 19:37:7b:0f:b9:f4:ad:ce:4e:95:3b:21:05:9f:53: 20:42:50:92:6e:07:15:24:da:07:f8:cd:dd:89:5f: b0:0f:5b:c8:cf:a0:f8:3a:86:93:8d:9a:4e:f6:fb: b7:52:04:a6:15:19:f6:eb:3a:f6:1d:d7:36:12:cb: 5d:5c:aa:c3:67:d2:99:54:c8:28:0d:70:28:ad:62: b3:ab:42:82:de:e9:8d:41:6c:19:c8:c5:29:6d:22: 98:6a:fb:9e:91:b9:22:b0:54:3b:45:7e:4b:a6:68: 7d:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:60:A9:78:E9:9E:0A:52:6E:46:40:5B:57:A3:9D:E0:81:80:BF:1B X509v3 Authority Key Identifier: keyid:8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/y2CpeOmeClJuRkBbV6Od4IGAvxs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.104.142.0/23 Signature Algorithm: sha256WithRSAEncryption 59:a8:8b:c7:d3:b7:05:63:d5:4b:24:73:66:b1:b9:b7:85:d7: 49:92:cd:35:c4:10:27:75:53:d3:58:0a:b6:49:b3:cf:21:df: 78:fd:83:c4:6b:f7:41:88:3e:4a:39:0e:dd:f8:28:52:5b:b1: e1:ed:af:c5:1d:09:e5:55:b1:38:e9:1c:4d:4e:79:8d:98:8b: 77:90:59:83:6d:7f:e7:0a:4d:2c:f8:f0:77:5f:a8:9f:c3:51: 17:b6:cf:5a:e9:db:c4:6c:ae:89:38:c6:e4:9c:8a:76:13:76: 64:ae:e2:a9:9f:04:69:93:8d:a0:30:e5:ac:ce:0f:40:98:7f: 63:91:59:ed:bc:d6:6f:b3:eb:78:d6:85:94:1f:a6:67:b8:8f: 91:7b:21:df:9e:a9:02:1c:d1:bc:3b:78:71:8e:8b:db:6e:44: 4d:f2:80:82:bd:3b:85:80:0e:c0:9f:e2:7d:6a:e4:21:95:64: 23:52:24:a9:01:b5:62:a1:54:d7:74:3a:2a:c5:87:fa:5a:b5: 28:a9:a4:18:f6:0e:90:48:9c:9e:6a:7a:3d:71:85:e2:50:d4: 87:6f:26:34:6f:11:19:1e:26:bb:ae:1d:0b:82:39:e9:ad:96: 06:82:79:45:6e:c6:80:e4:b8:94:5c:38:93:99:d6:9f:b2:da: 59:32:42:72 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEQ0 NkRERjg4QTQ2RTRFQzJEOUE5QkFCNUZGMTMwNUZEMDU3RjEzODAeFw0yNDEyMDMx NzIwMjZaFw0yNTExMTUwMTMwMDNaMDMxMTAvBgNVBAMTKENCNjBBOTc4RTk5RTBB NTI2RTQ2NDA1QjU3QTM5REUwODE4MEJGMUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNg+l+pXYoWp6003jqN9s2USZRo8TNvFDJa+X9qCZxzFMw1z3I GH3q69u52lVCthHeBbGttsKDDn1fUnCg5RBLx77znqMBUXt6DasDKWsKsbiGfi9A 90UGnB5Nu2RMJNp1uXAGEUv3LU1iuVOMszA0vjMullFB7LsONFn1b5bWw0bas2vG lq1F4XOkHer7Ql/uDpbCJhk3ew+59K3OTpU7IQWfUyBCUJJuBxUk2gf4zd2JX7AP W8jPoPg6hpONmk72+7dSBKYVGfbrOvYd1zYSy11cqsNn0plUyCgNcCitYrOrQoLe 6Y1BbBnIxSltIphq+56RuSKwVDtFfkumaH2jAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUy2CpeOmeClJuRkBbV6Od4IGAvxswHwYDVR0jBBgwFoAUjUbd+IpG5Owtmpur X/EwX9BX8TgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMTI4L2pVYmQtSXBHNU93dG1wdXJYX0V3WDlCWDhUZy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2pVYmQtSXBHNU93dG1wdXJYX0V3 WDlCWDhUZy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDEyOC95MkNwZU9tZUNsSnVSa0JiVjZPZDRJR0F2eHMu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBdWiOMA0GCSqGSIb3DQEBCwUAA4IBAQBZqIvH07cFY9VLJHNmsbm3 hddJks01xBAndVPTWAq2SbPPId94/YPEa/dBiD5KOQ7d+ChSW7Hh7a/FHQnlVbE4 6RxNTnmNmIt3kFmDbX/nCk0s+PB3X6ifw1EXts9a6dvEbK6JOMbknIp2E3ZkruKp nwRpk42gMOWszg9AmH9jkVntvNZvs+t41oWUH6ZnuI+ReyHfnqkCHNG8O3hxjovb bkRN8oCCvTuFgA7An+J9auQhlWQjUiSpAbVioVTXdDoqxYf6WrUoqaQY9g6QSJye ano9cYXiUNSHbyY0bxEZHia7rh0LgjnprZYGgnlFbsaA5LiUXDiTmdafstpZMkJy -----END CERTIFICATE-----Generated at Sat Apr 5 17:45:00 2025 by rpki-client