$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20174/1ZwWI41NECO-jMDxlYE2a5p3-9c.roa File: 1ZwWI41NECO-jMDxlYE2a5p3-9c.roa (raw, json) Hash identifier: S3AGLvJvhspKnVCb3rsCu9bDvxosHBKNBhHWtHy1lNM= Subject key identifier: D5:9C:16:23:8D:4D:10:23:BE:8C:C0:F1:95:81:36:6B:9A:77:FB:D7 Certificate issuer: /CN=B6F3909EDB829A43BA546F18CAA4F29010209B4B Certificate serial: 1C Authority key identifier: B6:F3:90:9E:DB:82:9A:43:BA:54:6F:18:CA:A4:F2:90:10:20:9B:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/tvOQntuCmkO6VG8YyqTykBAgm0s.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20174/1ZwWI41NECO-jMDxlYE2a5p3-9c.roa Signing time: Sun 30 Jun 2024 01:32:24 +0000 ROA not before: Sun 30 Jun 2024 01:32:24 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 146974 IP address blocks: 103.175.110.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20174/tvOQntuCmkO6VG8YyqTykBAgm0s.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20174/tvOQntuCmkO6VG8YyqTykBAgm0s.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/tvOQntuCmkO6VG8YyqTykBAgm0s.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F3909EDB829A43BA546F18CAA4F29010209B4B Validity Not Before: Jun 30 01:32:24 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=D59C16238D4D1023BE8CC0F19581366B9A77FBD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:0f:15:b7:f5:eb:ca:af:aa:2f:4d:d3:b0:ad: a0:5d:fe:01:0f:cc:f6:85:45:a0:02:49:47:b6:d3: 7f:ae:95:d5:b4:df:6b:8b:10:fb:39:7d:51:14:02: af:6c:c9:47:8c:51:39:7d:94:43:bd:7f:81:5b:8e: 6e:ca:b7:73:bd:17:a3:9f:8f:cb:ea:11:cb:b2:03: f6:ab:c4:b4:f3:0b:a0:59:1e:88:a4:c8:33:46:98: 98:9d:6c:ad:41:fd:26:b8:b6:cc:4f:e6:bb:62:d4: 03:52:6e:fb:88:c1:be:b0:ff:54:a7:d7:54:9c:f5: 8b:0e:bb:60:01:35:74:49:64:a5:f0:1f:e5:37:22: e8:5a:18:f8:03:05:a8:a3:c1:c0:0a:14:09:e1:37: 06:6d:bc:f4:04:75:53:f0:ad:e5:46:d9:17:e4:d2: 99:ba:cc:ab:ef:af:4c:a3:5e:4f:01:35:b5:01:9e: 9b:b8:81:9c:91:87:01:4f:ac:e2:c6:46:22:d3:b2: 11:9c:2b:00:44:37:2f:0c:4e:c0:98:37:46:c2:5a: d3:77:bc:79:8f:f0:45:9a:8f:bb:97:96:b5:35:52: 81:1e:0d:9b:c0:9c:d8:9a:7e:b7:e0:2b:95:4d:d5: 37:db:68:0a:83:70:ae:46:af:ee:6f:24:b1:fa:87: a1:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:9C:16:23:8D:4D:10:23:BE:8C:C0:F1:95:81:36:6B:9A:77:FB:D7 X509v3 Authority Key Identifier: keyid:B6:F3:90:9E:DB:82:9A:43:BA:54:6F:18:CA:A4:F2:90:10:20:9B:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20174/tvOQntuCmkO6VG8YyqTykBAgm0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/tvOQntuCmkO6VG8YyqTykBAgm0s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20174/1ZwWI41NECO-jMDxlYE2a5p3-9c.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.175.110.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:79:b5:33:4f:84:ef:c0:c6:85:f9:6c:bd:fd:74:b7:54:bc: 48:7d:71:07:d7:7a:7b:d0:e3:c9:38:02:2f:3d:68:67:76:f9: 26:cd:85:72:8c:0a:12:66:48:6b:5c:ba:a9:25:08:7d:93:d0: a1:fb:06:49:ef:97:f6:0e:93:76:6e:02:f0:96:24:6c:5c:cd: 7f:4d:77:47:9f:ca:6c:a1:52:ba:03:6e:fb:01:f2:6d:0d:9d: e7:5f:d8:89:43:fa:b0:5f:1f:29:07:bf:df:c9:f9:88:26:13: e5:58:8a:81:35:0a:1e:e3:73:59:9e:74:ea:10:96:80:5a:84: 90:2f:cd:0c:bf:39:b1:63:b6:c8:18:3a:a4:a6:3f:d8:b7:bb: 1e:85:8b:e4:79:06:21:8d:b5:b1:ae:75:1f:2c:6b:a8:a0:db: 7e:ad:e4:a9:1b:fe:d8:9f:0b:a3:9c:de:be:d7:71:b2:35:8e: 8f:32:fd:d4:77:03:10:0e:18:06:5b:bb:9a:77:6b:38:71:54: ed:69:2c:bd:3d:f0:7b:d9:ab:51:d0:6a:83:9c:00:00:69:ea: b0:0d:1d:13:06:52:33:21:d3:45:8b:9a:50:f1:92:14:f1:ea: fc:e2:62:6a:0c:8d:3f:81:82:34:19:ac:9b:6e:38:a5:f9:3a: e4:d5:9f:c6 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBHDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCNkYz OTA5RURCODI5QTQzQkE1NDZGMThDQUE0RjI5MDEwMjA5QjRCMB4XDTI0MDYzMDAx MzIyNFoXDTI1MDYyNDEwNDY0NVowMzExMC8GA1UEAxMoRDU5QzE2MjM4RDREMTAy M0JFOENDMEYxOTU4MTM2NkI5QTc3RkJENzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANUPFbf168qvqi9N07CtoF3+AQ/M9oVFoAJJR7bTf66V1bTfa4sQ +zl9URQCr2zJR4xROX2UQ71/gVuObsq3c70Xo5+Py+oRy7ID9qvEtPMLoFkeiKTI M0aYmJ1srUH9Jri2zE/mu2LUA1Ju+4jBvrD/VKfXVJz1iw67YAE1dElkpfAf5Tci 6FoY+AMFqKPBwAoUCeE3Bm289AR1U/Ct5UbZF+TSmbrMq++vTKNeTwE1tQGem7iB nJGHAU+s4sZGItOyEZwrAEQ3LwxOwJg3RsJa03e8eY/wRZqPu5eWtTVSgR4Nm8Cc 2Jp+t+ArlU3VN9toCoNwrkav7m8ksfqHoc0CAwEAAaOCAigwggIkMB0GA1UdDgQW BBTVnBYjjU0QI76MwPGVgTZrmnf71zAfBgNVHSMEGDAWgBS285Ce24KaQ7pUbxjK pPKQECCbSzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAxNzQvdHZPUW50dUNta082Vkc4WXlxVHlrQkFnbTBzLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvdHZPUW50dUNta082Vkc4WXlxVHlr QkFnbTBzLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMTc0LzFad1dJNDFORUNPLWpNRHhsWUUyYTVwMy05Yy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAFnr24wDQYJKoZIhvcNAQELBQADggEBAG55tTNPhO/AxoX5bL39dLdU vEh9cQfXenvQ48k4Ai89aGd2+SbNhXKMChJmSGtcuqklCH2T0KH7Bknvl/YOk3Zu AvCWJGxczX9Nd0efymyhUroDbvsB8m0Nnedf2IlD+rBfHykHv9/J+YgmE+VYioE1 Ch7jc1medOoQloBahJAvzQy/ObFjtsgYOqSmP9i3ux6Fi+R5BiGNtbGudR8sa6ig 236t5Kkb/tifC6Oc3r7XcbI1jo8y/dR3AxAOGAZbu5p3azhxVO1pLL098HvZq1HQ aoOcAABp6rANHRMGUjMh00WLmlDxkhTx6vziYmoMjT+BgjQZrJtuOKX5OuTVn8Y= -----END CERTIFICATE-----Generated at Sun Feb 16 22:09:16 2025 by rpki-client