$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20220/BnNLo_5snqXjfVplb18umcDTSL0.roa File: BnNLo_5snqXjfVplb18umcDTSL0.roa (raw, json) Hash identifier: ltNelRki3baff5pSzR2mAXyePcuvKroacAiywt2HV1k= Subject key identifier: 06:73:4B:A3:FE:6C:9E:A5:E3:7D:5A:65:6F:5F:2E:99:C0:D3:48:BD Certificate issuer: /CN=FF0CF78BA02D6955CE5D696ABCA0A7FE1D2C571A Certificate serial: 0F Authority key identifier: FF:0C:F7:8B:A0:2D:69:55:CE:5D:69:6A:BC:A0:A7:FE:1D:2C:57:1A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/_wz3i6AtaVXOXWlqvKCn_h0sVxo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20220/BnNLo_5snqXjfVplb18umcDTSL0.roa Signing time: Tue 18 Jun 2024 05:38:50 +0000 ROA not before: Tue 18 Jun 2024 05:38:50 +0000 ROA not after: Sun 15 Jun 2025 01:30:03 +0000 asID: 149042 IP address blocks: 103.214.168.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20220/_wz3i6AtaVXOXWlqvKCn_h0sVxo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20220/_wz3i6AtaVXOXWlqvKCn_h0sVxo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/_wz3i6AtaVXOXWlqvKCn_h0sVxo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF0CF78BA02D6955CE5D696ABCA0A7FE1D2C571A Validity Not Before: Jun 18 05:38:50 2024 GMT Not After : Jun 15 01:30:03 2025 GMT Subject: CN=06734BA3FE6C9EA5E37D5A656F5F2E99C0D348BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:cd:b1:fc:8a:c3:ca:c2:94:40:07:02:45:ec: 16:75:9c:b0:91:50:e8:53:78:16:c2:89:aa:f6:42: 40:54:75:c3:a7:73:54:07:82:78:c2:e5:75:4a:c3: b0:27:ee:4f:63:5e:12:08:8f:fb:86:93:f5:34:08: 62:3c:39:0b:88:24:26:cc:eb:4e:22:21:8e:a6:5d: 22:19:83:6c:43:2d:fa:9d:e8:0d:2b:75:9a:a3:e0: dc:95:aa:17:de:21:44:dd:e1:aa:7c:bf:23:a3:35: 46:87:05:c1:ad:49:ce:1a:bd:d7:3c:f4:37:1a:5e: b5:93:62:72:45:e3:3b:97:20:b0:b8:a3:7a:bd:ab: cd:ba:66:fa:5a:f9:60:b6:a0:35:9a:d5:b3:b2:85: b1:0f:50:a7:8a:71:f3:16:67:e4:42:a0:dd:1a:fa: 9c:8a:0f:00:6a:2e:5c:ea:96:79:57:68:b3:56:bf: 22:c3:fb:e0:9c:d3:15:d6:fa:93:21:89:c4:12:e0: 14:21:86:aa:34:8b:dd:ab:cd:72:be:58:78:0e:14: 6e:9d:5d:eb:8d:a5:5b:f8:5e:4a:e5:e2:e3:ff:22: d1:08:ea:2b:71:49:18:82:3e:1c:95:b9:d4:a2:f1: e5:35:89:3b:e8:f8:70:f8:77:06:a0:bb:1c:b7:17: 5b:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:73:4B:A3:FE:6C:9E:A5:E3:7D:5A:65:6F:5F:2E:99:C0:D3:48:BD X509v3 Authority Key Identifier: keyid:FF:0C:F7:8B:A0:2D:69:55:CE:5D:69:6A:BC:A0:A7:FE:1D:2C:57:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20220/_wz3i6AtaVXOXWlqvKCn_h0sVxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/_wz3i6AtaVXOXWlqvKCn_h0sVxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20220/BnNLo_5snqXjfVplb18umcDTSL0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.214.168.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:03:3a:7e:8c:a8:2d:5a:3e:aa:5a:a8:ac:95:59:92:33:eb: c9:f8:72:91:d8:e5:35:01:6c:7a:e1:02:f6:5f:4e:e2:8e:b9: 79:b6:16:6d:4d:05:be:b9:4c:5a:f8:4d:9b:e9:83:74:8c:ed: 8b:05:1e:60:1c:46:ab:eb:d6:13:35:cc:d7:a8:09:b1:3b:1a: 65:a8:1d:62:4d:10:cb:80:d8:44:0f:a0:21:1c:f9:57:39:db: a2:e8:08:ac:3c:68:e7:c1:cc:bf:00:ec:c3:7f:d6:a0:99:7d: 23:fb:12:32:b9:fe:fd:4d:e1:65:bb:20:74:8f:47:93:54:f1: 30:21:fe:c1:33:ce:0f:db:2c:95:c5:6b:9a:f4:2e:3b:02:52: 78:ed:ef:e4:8e:2f:c3:05:04:9f:58:95:87:77:79:05:ec:3d: 9c:29:5d:c7:41:f3:60:22:11:76:41:cb:96:82:6d:f9:30:3d: ab:f0:10:d8:6e:b2:a6:54:ce:7c:7c:34:f3:2d:ba:c7:e0:4f: 7f:0e:76:a5:ae:10:4d:85:a5:da:4f:09:36:20:5c:81:9e:ec: fb:9d:35:4c:7d:af:d2:ec:0b:7c:71:c3:e8:c0:cb:9c:9f:99: 65:29:99:15:48:c6:ec:bd:9a:5a:ed:35:fa:55:99:47:9a:27: c5:21:b4:d7 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBDzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGRjBD Rjc4QkEwMkQ2OTU1Q0U1RDY5NkFCQ0EwQTdGRTFEMkM1NzFBMB4XDTI0MDYxODA1 Mzg1MFoXDTI1MDYxNTAxMzAwM1owMzExMC8GA1UEAxMoMDY3MzRCQTNGRTZDOUVB NUUzN0Q1QTY1NkY1RjJFOTlDMEQzNDhCRDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL/NsfyKw8rClEAHAkXsFnWcsJFQ6FN4FsKJqvZCQFR1w6dzVAeC eMLldUrDsCfuT2NeEgiP+4aT9TQIYjw5C4gkJszrTiIhjqZdIhmDbEMt+p3oDSt1 mqPg3JWqF94hRN3hqny/I6M1RocFwa1Jzhq91zz0NxpetZNickXjO5cgsLijer2r zbpm+lr5YLagNZrVs7KFsQ9Qp4px8xZn5EKg3Rr6nIoPAGouXOqWeVdos1a/IsP7 4JzTFdb6kyGJxBLgFCGGqjSL3avNcr5YeA4Ubp1d642lW/heSuXi4/8i0QjqK3FJ GII+HJW51KLx5TWJO+j4cPh3BqC7HLcXWwkCAwEAAaOCAigwggIkMB0GA1UdDgQW BBQGc0uj/myepeN9WmVvXy6ZwNNIvTAfBgNVHSMEGDAWgBT/DPeLoC1pVc5daWq8 oKf+HSxXGjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAyMjAvX3d6M2k2QXRhVlhPWFdscXZLQ25faDBzVnhvLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvX3d6M2k2QXRhVlhPWFdscXZLQ25f aDBzVnhvLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMjIwL0JuTkxvXzVzbnFYamZWcGxiMTh1bWNEVFNMMC5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAFn1qgwDQYJKoZIhvcNAQELBQADggEBABoDOn6MqC1aPqpaqKyVWZIz 68n4cpHY5TUBbHrhAvZfTuKOuXm2Fm1NBb65TFr4TZvpg3SM7YsFHmAcRqvr1hM1 zNeoCbE7GmWoHWJNEMuA2EQPoCEc+Vc526LoCKw8aOfBzL8A7MN/1qCZfSP7EjK5 /v1N4WW7IHSPR5NU8TAh/sEzzg/bLJXFa5r0LjsCUnjt7+SOL8MFBJ9YlYd3eQXs PZwpXcdB82AiEXZBy5aCbfkwPavwENhusqZUznx8NPMtusfgT38OdqWuEE2FpdpP CTYgXIGe7PudNUx9r9LsC3xxw+jAy5yfmWUpmRVIxuy9mlrtNfpVmUeaJ8UhtNc= -----END CERTIFICATE-----Generated at Sun Feb 16 22:13:39 2025 by rpki-client