$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/232/sz5oFpvU-CaiMRFLDdqZB0dVkK8.roa File: sz5oFpvU-CaiMRFLDdqZB0dVkK8.roa (raw, json) Hash identifier: wla3nETfKtI3XxyjnIFYo/0hmkeDLzjiALUyvqxGvRM= Subject key identifier: B3:3E:68:16:9B:D4:F8:26:A2:31:11:4B:0D:DA:99:07:47:55:90:AF Certificate issuer: /CN=2222A4C3961E467181A78700B960718846C8404B Certificate serial: 23 Authority key identifier: 22:22:A4:C3:96:1E:46:71:81:A7:87:00:B9:60:71:88:46:C8:40:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/sz5oFpvU-CaiMRFLDdqZB0dVkK8.roa Signing time: Mon 20 May 2024 06:55:59 +0000 ROA not before: Mon 20 May 2024 06:55:59 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 7672 IP address blocks: 202.125.48.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2222A4C3961E467181A78700B960718846C8404B Validity Not Before: May 20 06:55:59 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=B33E68169BD4F826A231114B0DDA9907475590AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0d:e7:b1:d6:7e:2e:0b:d2:a4:6d:79:e9:03: ae:51:f2:91:f7:4e:d5:ea:bf:75:b9:38:7e:c1:20: 43:c4:d4:8a:54:48:97:94:7f:d7:10:38:2f:89:fe: cd:75:cc:0c:d7:45:e1:94:c2:af:08:ad:55:88:c0: b1:9e:0a:d3:8c:75:11:20:5d:80:b4:12:1d:29:59: 75:69:40:5c:90:64:9a:09:2d:94:1a:05:c9:a0:b8: c5:d9:ee:71:d6:e1:34:8b:86:ce:7d:e3:d8:fe:21: 1c:b1:4e:c6:ce:d9:10:71:0f:29:de:03:87:4f:96: f1:a1:37:d8:b1:70:c8:02:e1:57:84:c8:62:43:27: f6:db:8d:0f:35:54:de:32:b8:16:7c:f8:25:94:b3: 65:30:1c:6b:83:90:f3:d7:62:d0:44:9d:1c:16:4a: bc:60:ea:c8:56:a0:8b:91:cc:dd:33:26:8a:5f:0a: 67:5d:1f:25:bd:ac:26:d3:57:ad:66:b9:8d:72:48: 94:bf:d8:4a:40:23:b0:95:c4:fa:94:4b:0d:c4:40: ca:23:9f:d7:f1:39:ac:1b:b6:88:8c:94:27:eb:63: 73:ea:e7:56:d2:9c:c5:84:a5:aa:6c:1d:1e:55:d1: 2d:2e:3e:21:44:27:41:b1:a4:b5:78:61:d1:4c:24: e1:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:3E:68:16:9B:D4:F8:26:A2:31:11:4B:0D:DA:99:07:47:55:90:AF X509v3 Authority Key Identifier: keyid:22:22:A4:C3:96:1E:46:71:81:A7:87:00:B9:60:71:88:46:C8:40:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/IiKkw5YeRnGBp4cAuWBxiEbIQEs.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IiKkw5YeRnGBp4cAuWBxiEbIQEs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/232/sz5oFpvU-CaiMRFLDdqZB0dVkK8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.125.48.0/20 Signature Algorithm: sha256WithRSAEncryption 1d:56:c8:67:59:1a:cd:19:8b:65:af:b2:55:42:ac:27:a4:a5: 5c:bc:f2:61:a8:d1:2c:4a:dd:e3:be:b2:07:e5:42:71:28:f7: 71:b4:41:b4:0c:4f:ed:42:d3:c3:74:e5:3a:42:9d:23:64:ac: 07:09:73:6e:94:03:c3:22:cf:e9:a3:bb:78:9e:ca:8f:2e:c8: 3f:2b:0d:ab:1b:fe:39:de:0e:2a:b0:fc:5a:aa:47:53:62:98: 5e:3d:f7:7f:bb:e9:82:e1:7e:d2:d2:f8:14:92:3f:47:1d:ec: 39:f4:26:38:0e:35:56:e7:5d:67:13:8f:6e:fd:c9:e2:db:f2: 29:9b:35:cf:83:4c:60:50:6c:b6:2b:f8:0a:4f:72:b0:20:eb: 99:9f:0c:32:d9:c4:1a:10:16:06:4b:1d:41:58:7f:fd:95:0f: 51:3c:6f:1b:35:2d:ec:c8:9d:c2:20:3e:cf:49:22:78:95:46: aa:fd:84:f6:f5:79:7a:3f:fd:45:77:93:4c:c7:55:cb:e1:98: a9:cf:f3:a3:0c:eb:25:e3:d4:74:44:be:fa:50:71:9e:10:dc: c4:17:e6:fd:ab:d9:18:83:85:18:6b:3f:61:41:97:2e:b2:e1: b1:7b:52:92:9c:90:36:09:45:9a:bc:b5:75:8e:5b:87:2f:6e: f9:77:e5:80 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBIzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyMjIy QTRDMzk2MUU0NjcxODFBNzg3MDBCOTYwNzE4ODQ2Qzg0MDRCMB4XDTI0MDUyMDA2 NTU1OVoXDTI1MDUxNTAxMzAwM1owMzExMC8GA1UEAxMoQjMzRTY4MTY5QkQ0Rjgy NkEyMzExMTRCMEREQTk5MDc0NzU1OTBBRjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL8N57HWfi4L0qRteekDrlHykfdO1eq/dbk4fsEgQ8TUilRIl5R/ 1xA4L4n+zXXMDNdF4ZTCrwitVYjAsZ4K04x1ESBdgLQSHSlZdWlAXJBkmgktlBoF yaC4xdnucdbhNIuGzn3j2P4hHLFOxs7ZEHEPKd4Dh0+W8aE32LFwyALhV4TIYkMn 9tuNDzVU3jK4Fnz4JZSzZTAca4OQ89di0ESdHBZKvGDqyFagi5HM3TMmil8KZ10f Jb2sJtNXrWa5jXJIlL/YSkAjsJXE+pRLDcRAyiOf1/E5rBu2iIyUJ+tjc+rnVtKc xYSlqmwdHlXRLS4+IUQnQbGktXhh0Uwk4YECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSzPmgWm9T4JqIxEUsN2pkHR1WQrzAfBgNVHSMEGDAWgBQiIqTDlh5GcYGnhwC5 YHGIRshASzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjMyL0lpS2t3NVllUm5HQnA0Y0F1V0J4aUViSVFFcy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0lpS2t3NVllUm5HQnA0Y0F1V0J4aUVi SVFFcy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yMzIvc3o1b0ZwdlUtQ2FpTVJGTERkcVpCMGRWa0s4LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBMp9MDANBgkqhkiG9w0BAQsFAAOCAQEAHVbIZ1kazRmLZa+yVUKsJ6SlXLzy YajRLErd476yB+VCcSj3cbRBtAxP7ULTw3TlOkKdI2SsBwlzbpQDwyLP6aO7eJ7K jy7IPysNqxv+Od4OKrD8WqpHU2KYXj33f7vpguF+0tL4FJI/Rx3sOfQmOA41Vudd ZxOPbv3J4tvyKZs1z4NMYFBstiv4Ck9ysCDrmZ8MMtnEGhAWBksdQVh//ZUPUTxv GzUt7MidwiA+z0kieJVGqv2E9vV5ej/9RXeTTMdVy+GYqc/zowzrJePUdES++lBx nhDcxBfm/avZGIOFGGs/YUGXLrLhsXtSkpyQNglFmry1dY5bhy9u+XflgA== -----END CERTIFICATE-----Generated at Sun Feb 16 22:34:07 2025 by rpki-client