$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/2154/L1ArHsJJh9_MmzhA7wSfhtltGD4.roa File: L1ArHsJJh9_MmzhA7wSfhtltGD4.roa (raw, json) Hash identifier: sX3RNFxFCN+BPhh936llbs/T9eZAOXP3iZfUpa27hBQ= Subject key identifier: 2F:50:2B:1E:C2:49:87:DF:CC:9B:38:40:EF:04:9F:86:D9:6D:18:3E Certificate issuer: /CN=35892143C493B9B2CC1E79133F5231C72E152685 Certificate serial: 39 Authority key identifier: 35:89:21:43:C4:93:B9:B2:CC:1E:79:13:3F:52:31:C7:2E:15:26:85 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/NYkhQ8STubLMHnkTP1Ixxy4VJoU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2154/L1ArHsJJh9_MmzhA7wSfhtltGD4.roa Signing time: Thu 31 Oct 2024 01:33:23 +0000 ROA not before: Thu 31 Oct 2024 01:33:23 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 396982 IP address blocks: 202.250.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2154/NYkhQ8STubLMHnkTP1Ixxy4VJoU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2154/NYkhQ8STubLMHnkTP1Ixxy4VJoU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/NYkhQ8STubLMHnkTP1Ixxy4VJoU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35892143C493B9B2CC1E79133F5231C72E152685 Validity Not Before: Oct 31 01:33:23 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=2F502B1EC24987DFCC9B3840EF049F86D96D183E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:1c:a8:5c:50:96:b0:1f:db:ed:28:3a:11:5d: 13:9e:19:8d:25:62:37:14:7c:1b:ef:56:46:f7:15: e3:a6:11:cd:31:09:73:31:b3:cf:e3:1c:5e:62:c9: cf:94:05:a1:b7:16:e6:3d:ba:44:91:be:a6:af:17: d2:19:48:5d:9d:35:e8:4a:82:4a:a5:7e:c7:7d:10: 9e:17:e5:e9:63:31:58:de:04:d2:dc:e7:be:e8:50: 6b:78:e3:8a:c4:41:9a:0e:76:f9:8e:0b:21:6f:91: 36:5a:43:f6:ac:0c:5d:89:89:f3:d3:1f:a0:dc:36: f5:b9:32:6c:a2:ae:07:02:7b:4c:7b:ae:27:e8:d1: 90:63:37:7c:e7:8d:99:52:d5:a1:da:ba:7e:a2:56: 43:00:1a:a4:67:0e:dc:60:a6:1a:03:14:d9:37:51: 15:6d:bd:28:bf:b8:5b:18:b6:46:04:38:6c:2f:1c: ab:04:33:69:73:18:46:8c:f3:b8:fe:08:97:ee:82: 82:5d:32:ce:7b:3f:4e:1b:48:68:7c:de:6b:31:06: f4:6c:60:58:7c:55:17:b7:89:d6:8a:c8:3e:34:46: 16:a7:bc:2a:17:37:1e:86:07:4f:b8:f7:4c:d0:71: af:6c:5c:ab:2c:2c:d9:e5:bc:2f:a4:44:4d:ed:61: 92:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:50:2B:1E:C2:49:87:DF:CC:9B:38:40:EF:04:9F:86:D9:6D:18:3E X509v3 Authority Key Identifier: keyid:35:89:21:43:C4:93:B9:B2:CC:1E:79:13:3F:52:31:C7:2E:15:26:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2154/NYkhQ8STubLMHnkTP1Ixxy4VJoU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/NYkhQ8STubLMHnkTP1Ixxy4VJoU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2154/L1ArHsJJh9_MmzhA7wSfhtltGD4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.250.28.0/24 Signature Algorithm: sha256WithRSAEncryption 91:78:2b:32:2f:43:0d:eb:24:45:10:32:25:d3:a5:96:d6:70: 38:6c:d1:41:65:10:2a:2b:5d:c6:d4:b7:c5:96:af:7c:a0:d7: 55:ec:ef:d6:e5:f7:77:47:94:6f:68:6b:4f:d8:3f:c8:2b:b7: ea:70:4a:e8:d0:9c:49:aa:68:0d:d2:ba:6b:c9:40:c3:44:50: fc:8e:56:f3:ed:1e:2a:39:1f:9f:d7:d5:cf:71:57:26:a0:23: 0a:be:94:a4:89:94:10:df:49:60:ca:2c:f6:c6:1d:80:75:c9: 0b:e0:17:51:0e:e2:4f:22:5b:e5:40:63:f9:b3:af:65:df:cb: f2:1a:35:15:c8:7e:82:b2:0b:bb:26:94:45:3a:c9:3f:64:33: be:5f:93:99:d3:b8:af:ec:85:a5:c3:7e:95:7b:8c:48:02:ea: ab:96:9a:59:79:5f:e5:6c:a2:90:41:b7:fe:22:d0:ca:1d:01: 26:e0:07:c8:65:19:fd:e6:28:57:90:6d:b1:cc:d6:2f:10:96: da:47:d4:6c:20:db:ae:3a:55:6e:93:b1:bf:06:1e:08:35:e4: f7:82:23:5e:04:3a:4a:54:15:38:da:c9:c2:9a:d3:77:5c:b0: f4:df:e4:90:66:75:54:fd:89:0c:9b:72:3c:4c:b0:db:bf:55: 96:e1:6b:b9 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBOTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzNTg5 MjE0M0M0OTNCOUIyQ0MxRTc5MTMzRjUyMzFDNzJFMTUyNjg1MB4XDTI0MTAzMTAx MzMyM1oXDTI1MTAxNTAxMzAwMlowMzExMC8GA1UEAxMoMkY1MDJCMUVDMjQ5ODdE RkNDOUIzODQwRUYwNDlGODZEOTZEMTgzRTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKkcqFxQlrAf2+0oOhFdE54ZjSViNxR8G+9WRvcV46YRzTEJczGz z+McXmLJz5QFobcW5j26RJG+pq8X0hlIXZ016EqCSqV+x30Qnhfl6WMxWN4E0tzn vuhQa3jjisRBmg52+Y4LIW+RNlpD9qwMXYmJ89MfoNw29bkybKKuBwJ7THuuJ+jR kGM3fOeNmVLVodq6fqJWQwAapGcO3GCmGgMU2TdRFW29KL+4Wxi2RgQ4bC8cqwQz aXMYRozzuP4Il+6Cgl0yzns/ThtIaHzeazEG9GxgWHxVF7eJ1orIPjRGFqe8Khc3 HoYHT7j3TNBxr2xcqyws2eW8L6RETe1hkiECAwEAAaOCAiYwggIiMB0GA1UdDgQW BBQvUCsewkmH38ybOEDvBJ+G2W0YPjAfBgNVHSMEGDAWgBQ1iSFDxJO5ssweeRM/ UjHHLhUmhTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjE1NC9OWWtoUThTVHViTE1IbmtUUDFJeHh5NFZKb1UuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9OWWtoUThTVHViTE1IbmtUUDFJeHh5 NFZKb1UuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMjE1NC9MMUFySHNKSmg5X01temhBN3dTZmh0bHRHRDQucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAyvocMA0GCSqGSIb3DQEBCwUAA4IBAQCReCsyL0MN6yRFEDIl06WW1nA4 bNFBZRAqK13G1LfFlq98oNdV7O/W5fd3R5RvaGtP2D/IK7fqcEro0JxJqmgN0rpr yUDDRFD8jlbz7R4qOR+f19XPcVcmoCMKvpSkiZQQ30lgyiz2xh2AdckL4BdRDuJP IlvlQGP5s69l38vyGjUVyH6Csgu7JpRFOsk/ZDO+X5OZ07iv7IWlw36Ve4xIAuqr lppZeV/lbKKQQbf+ItDKHQEm4AfIZRn95ihXkG2xzNYvEJbaR9RsINuuOlVuk7G/ Bh4INeT3giNeBDpKVBU42snCmtN3XLD03+SQZnVU/YkMm3I8TLDbv1WW4Wu5 -----END CERTIFICATE-----Generated at Sun Feb 16 15:12:45 2025 by rpki-client