$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/240/r1aM9ZJty9-9SSG93gQSc--k3t8.roa File: r1aM9ZJty9-9SSG93gQSc--k3t8.roa (raw, json) Hash identifier: cDFofGdQUMcxwu4HAA0MmlheW5+QpCJoSPfkNmwUGqg= Subject key identifier: AF:56:8C:F5:92:6D:CB:DF:BD:49:21:BD:DE:04:12:73:EF:A4:DE:DF Certificate issuer: /CN=B96964A7CE0A58F4AE3673F47D7A1D425BE4A07D Certificate serial: 24 Authority key identifier: B9:69:64:A7:CE:0A:58:F4:AE:36:73:F4:7D:7A:1D:42:5B:E4:A0:7D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uWlkp84KWPSuNnP0fXodQlvkoH0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/r1aM9ZJty9-9SSG93gQSc--k3t8.roa Signing time: Sat 03 Aug 2024 02:01:46 +0000 ROA not before: Sat 03 Aug 2024 02:01:46 +0000 ROA not after: Tue 15 Jul 2025 01:30:02 +0000 asID: 9597 IP address blocks: 117.20.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/uWlkp84KWPSuNnP0fXodQlvkoH0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/uWlkp84KWPSuNnP0fXodQlvkoH0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uWlkp84KWPSuNnP0fXodQlvkoH0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B96964A7CE0A58F4AE3673F47D7A1D425BE4A07D Validity Not Before: Aug 3 02:01:46 2024 GMT Not After : Jul 15 01:30:02 2025 GMT Subject: CN=AF568CF5926DCBDFBD4921BDDE041273EFA4DEDF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:fa:0b:6f:f0:bb:9d:77:21:e1:00:85:d5:fd: 45:93:0a:c2:fc:ef:28:88:e8:84:fb:a1:4f:aa:84: 59:98:d5:85:b1:07:f8:13:9b:aa:a2:30:91:5c:c1: 3c:89:7b:b5:3c:7f:c4:18:3b:7b:6f:37:d0:69:4b: 76:12:83:08:a2:6b:79:c4:b4:b6:60:25:d1:9d:c9: 12:0b:0c:f3:5f:8d:33:a9:bb:09:5d:14:13:73:59: 64:05:0d:bb:5b:a7:c8:24:9f:d6:e3:00:02:d9:39: d5:38:4e:8b:a1:c8:8a:dc:1c:ab:55:30:1b:20:68: a0:cf:63:b8:ff:65:f8:bd:32:d2:f4:46:c5:eb:53: ad:80:f4:8e:0c:71:eb:c3:ac:0a:4f:29:97:fe:ae: 30:66:64:5a:9c:36:8c:2a:00:cb:5b:0d:ba:2f:24: db:f8:ba:2b:7e:06:30:5a:00:53:e8:da:dd:6b:93: 40:57:01:ff:f6:66:a9:f9:0c:0e:c7:29:66:d5:6b: 11:07:5e:81:5a:09:84:e4:21:cb:82:89:b1:d6:92: 0e:eb:11:fc:a1:3b:ac:a4:a3:3b:a1:64:30:fd:34: 52:93:03:7f:24:9d:2d:9b:f8:d4:62:03:20:0b:41: e8:44:04:fa:21:fc:45:71:94:35:8f:3f:79:69:c2: 1d:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:56:8C:F5:92:6D:CB:DF:BD:49:21:BD:DE:04:12:73:EF:A4:DE:DF X509v3 Authority Key Identifier: keyid:B9:69:64:A7:CE:0A:58:F4:AE:36:73:F4:7D:7A:1D:42:5B:E4:A0:7D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/uWlkp84KWPSuNnP0fXodQlvkoH0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uWlkp84KWPSuNnP0fXodQlvkoH0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/240/r1aM9ZJty9-9SSG93gQSc--k3t8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.20.96.0/20 Signature Algorithm: sha256WithRSAEncryption 61:46:ca:b5:66:0c:a0:17:7a:bf:12:59:da:ee:94:a8:9e:d6: 04:bc:2a:3a:4c:24:21:fc:6b:e0:68:f0:27:05:f4:16:08:6e: c8:fd:d5:3a:ff:3c:e2:ee:4f:50:6a:de:a8:e7:b8:33:9e:3c: 21:9c:12:9e:ab:8a:50:2e:75:9b:5e:04:de:b8:7c:be:2a:80: b6:f4:ed:05:10:cd:25:ef:ba:82:df:84:21:96:29:4b:e8:17: f4:a9:9f:98:63:bb:12:c0:e6:a4:f5:81:1e:4f:83:e6:d1:58: f0:3f:9e:00:3a:7f:87:57:9a:a1:7f:9d:13:d3:21:07:f5:3f: 45:be:d0:e5:81:52:a6:8e:95:43:ca:a1:9b:9b:36:92:28:1a: a6:8c:25:9d:6d:df:30:5c:49:9e:37:4c:1c:16:d7:f9:d4:72: 25:e6:98:80:b7:f0:61:9e:8a:ab:bc:e3:b6:66:2e:14:a4:63: 19:f3:ec:23:ee:05:6a:61:f2:58:36:0d:8c:15:d1:72:84:0e: 6a:ef:f1:17:32:c5:02:bd:da:1d:54:47:0d:e1:04:a2:f7:9e: 04:13:de:de:50:98:d0:c7:c8:b2:dc:55:b2:23:df:a2:75:76: fd:95:2d:38:be:36:50:e9:8a:ee:99:1a:86:85:7c:7a:ec:e8: a5:d5:8f:b1 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBJDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCOTY5 NjRBN0NFMEE1OEY0QUUzNjczRjQ3RDdBMUQ0MjVCRTRBMDdEMB4XDTI0MDgwMzAy MDE0NloXDTI1MDcxNTAxMzAwMlowMzExMC8GA1UEAxMoQUY1NjhDRjU5MjZEQ0JE RkJENDkyMUJEREUwNDEyNzNFRkE0REVERjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALL6C2/wu513IeEAhdX9RZMKwvzvKIjohPuhT6qEWZjVhbEH+BOb qqIwkVzBPIl7tTx/xBg7e2830GlLdhKDCKJrecS0tmAl0Z3JEgsM81+NM6m7CV0U E3NZZAUNu1unyCSf1uMAAtk51ThOi6HIitwcq1UwGyBooM9juP9l+L0y0vRGxetT rYD0jgxx68OsCk8pl/6uMGZkWpw2jCoAy1sNui8k2/i6K34GMFoAU+ja3WuTQFcB //ZmqfkMDscpZtVrEQdegVoJhOQhy4KJsdaSDusR/KE7rKSjO6FkMP00UpMDfySd LZv41GIDIAtB6EQE+iH8RXGUNY8/eWnCHSsCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSvVoz1km3L371JIb3eBBJz76Te3zAfBgNVHSMEGDAWgBS5aWSnzgpY9K42c/R9 eh1CW+SgfTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjQwL3VXbGtwODRLV1BTdU5uUDBmWG9kUWx2a29IMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3VXbGtwODRLV1BTdU5uUDBmWG9kUWx2 a29IMC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8yNDAvcjFhTTlaSnR5OS05U1NHOTNnUVNjLS1rM3Q4LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBHUUYDANBgkqhkiG9w0BAQsFAAOCAQEAYUbKtWYMoBd6vxJZ2u6UqJ7WBLwq OkwkIfxr4GjwJwX0FghuyP3VOv884u5PUGreqOe4M548IZwSnquKUC51m14E3rh8 viqAtvTtBRDNJe+6gt+EIZYpS+gX9KmfmGO7EsDmpPWBHk+D5tFY8D+eADp/h1ea oX+dE9MhB/U/Rb7Q5YFSpo6VQ8qhm5s2kigapowlnW3fMFxJnjdMHBbX+dRyJeaY gLfwYZ6Kq7zjtmYuFKRjGfPsI+4FamHyWDYNjBXRcoQOau/xFzLFAr3aHVRHDeEE oveeBBPe3lCY0MfIstxVsiPfonV2/ZUtOL42UOmK7pkahoV8euzopdWPsQ== -----END CERTIFICATE-----Generated at Sun Feb 16 22:23:28 2025 by rpki-client