$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/29/X04Ijwvh_7Z6BHyo_kigKW_a3ZY.roa File: X04Ijwvh_7Z6BHyo_kigKW_a3ZY.roa (raw, json) Hash identifier: hKQWIS6gSytl5p9DFNm0VQldW5mPK9GH5HbrIA5OpHs= Subject key identifier: 5F:4E:08:8F:0B:E1:FF:B6:7A:04:7C:A8:FE:48:A0:29:6F:DA:DD:96 Certificate issuer: /CN=06FA662194FCF1EB983AB44CC913004180770D18 Certificate serial: 60 Authority key identifier: 06:FA:66:21:94:FC:F1:EB:98:3A:B4:4C:C9:13:00:41:80:77:0D:18 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BvpmIZT88euYOrRMyRMAQYB3DRg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/X04Ijwvh_7Z6BHyo_kigKW_a3ZY.roa Signing time: Tue 31 Dec 2024 01:31:15 +0000 ROA not before: Tue 31 Dec 2024 01:31:15 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 2514 IP address blocks: 203.138.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/BvpmIZT88euYOrRMyRMAQYB3DRg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/BvpmIZT88euYOrRMyRMAQYB3DRg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BvpmIZT88euYOrRMyRMAQYB3DRg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06FA662194FCF1EB983AB44CC913004180770D18 Validity Not Before: Dec 31 01:31:15 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=5F4E088F0BE1FFB67A047CA8FE48A0296FDADD96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:e3:74:a5:97:45:0e:25:4a:91:43:36:0e:84: 5f:df:36:c4:51:0c:9c:ab:98:42:a3:9d:7e:4c:06: ed:ce:02:65:2c:1f:4e:52:c9:97:ba:75:0c:cb:0b: d2:ec:2c:94:75:cf:1e:a1:f9:f7:3c:67:aa:94:2d: f5:96:68:13:4f:27:a7:a7:61:7a:87:7e:0e:ce:d3: 10:a4:8a:86:1d:10:4a:ef:e5:82:9a:92:32:7a:67: 4d:0e:b5:8f:cc:35:5b:2e:8e:0d:27:66:41:41:92: 4c:18:87:ed:84:f1:94:4d:e7:86:64:2d:27:a3:6b: 56:32:d2:7a:48:a9:3f:c1:a0:0f:7f:56:98:6f:c1: 28:4f:83:61:9f:1e:18:25:6f:4f:84:be:d9:b0:75: f2:b8:84:83:cf:01:67:d4:db:80:a1:28:45:6f:60: 29:a0:5d:6b:ab:07:6c:06:f6:47:e3:77:65:7d:20: 5d:d0:b5:18:fb:51:16:be:74:61:aa:b0:2e:4b:87: 90:98:cf:6e:22:7d:bb:20:0c:67:7a:14:b9:04:2c: 30:29:6d:f9:21:40:7b:d8:38:77:76:7d:a2:b6:4b: 91:3a:67:8f:11:26:83:77:49:47:56:3d:fd:84:6a: cf:c0:cc:d4:68:1d:80:32:3f:24:7c:02:59:44:a0: 44:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:4E:08:8F:0B:E1:FF:B6:7A:04:7C:A8:FE:48:A0:29:6F:DA:DD:96 X509v3 Authority Key Identifier: keyid:06:FA:66:21:94:FC:F1:EB:98:3A:B4:4C:C9:13:00:41:80:77:0D:18 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/BvpmIZT88euYOrRMyRMAQYB3DRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BvpmIZT88euYOrRMyRMAQYB3DRg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/29/X04Ijwvh_7Z6BHyo_kigKW_a3ZY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.138.0.0/16 Signature Algorithm: sha256WithRSAEncryption 65:d5:f1:94:55:98:60:62:fb:b3:ef:f1:a0:21:57:60:bd:68: 6f:05:f0:48:03:72:61:95:6f:47:ea:79:ee:1e:7e:29:ec:d1: 01:cb:ee:83:31:00:9e:d2:3b:57:5d:c0:db:c0:b3:5b:d8:6c: eb:00:cc:c0:ce:f1:74:6e:ef:36:6a:71:8a:6a:6c:50:85:4a: 44:47:5d:d4:3e:ad:23:91:88:db:b6:91:57:3e:9a:d5:6a:da: ad:36:b9:b2:25:40:c0:6f:a2:d6:a6:b0:40:bd:29:f4:c0:fe: ef:0b:d8:ac:02:86:55:d7:00:a5:6b:4e:88:40:8d:9d:c7:97: 8e:a6:f4:cb:92:6e:28:0e:f6:b5:19:11:37:94:ef:24:95:c8: ff:7b:b3:f3:b1:ed:1f:09:9d:7f:18:e6:b9:03:09:08:f2:0a: 0d:12:9a:b3:57:ed:26:4c:7a:2e:97:f5:2e:fb:c9:9d:82:1e: d6:9e:4d:94:89:ee:7a:2c:1a:39:81:cd:d9:56:b5:a3:6a:72: a8:dc:bb:0e:ea:ff:54:e5:70:fe:fa:14:0e:75:2f:3c:2b:c3: 8c:4a:5b:6e:cc:7c:14:dd:fe:7a:b0:ad:57:b0:5e:5e:8a:6f: 84:47:3b:73:df:bd:bf:2c:03:7f:14:91:39:18:67:2f:ba:75: 96:da:25:93 -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgIBYDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwNkZB NjYyMTk0RkNGMUVCOTgzQUI0NENDOTEzMDA0MTgwNzcwRDE4MB4XDTI0MTIzMTAx MzExNVoXDTI1MTIxNTAxMzAwM1owMzExMC8GA1UEAxMoNUY0RTA4OEYwQkUxRkZC NjdBMDQ3Q0E4RkU0OEEwMjk2RkRBREQ5NjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKDjdKWXRQ4lSpFDNg6EX982xFEMnKuYQqOdfkwG7c4CZSwfTlLJ l7p1DMsL0uwslHXPHqH59zxnqpQt9ZZoE08np6dheod+Ds7TEKSKhh0QSu/lgpqS MnpnTQ61j8w1Wy6ODSdmQUGSTBiH7YTxlE3nhmQtJ6NrVjLSekipP8GgD39WmG/B KE+DYZ8eGCVvT4S+2bB18riEg88BZ9TbgKEoRW9gKaBda6sHbAb2R+N3ZX0gXdC1 GPtRFr50YaqwLkuHkJjPbiJ9uyAMZ3oUuQQsMClt+SFAe9g4d3Z9orZLkTpnjxEm g3dJR1Y9/YRqz8DM1GgdgDI/JHwCWUSgRHkCAwEAAaOCAiEwggIdMB0GA1UdDgQW BBRfTgiPC+H/tnoEfKj+SKApb9rdljAfBgNVHSMEGDAWgBQG+mYhlPzx65g6tEzJ EwBBgHcNGDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjkvQnZwbUlaVDg4ZXVZT3JSTXlSTUFRWUIzRFJnLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvQnZwbUlaVDg4ZXVZT3JSTXlSTUFRWUIz RFJnLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzI5L1gwNElqd3ZoXzdaNkJIeW9fa2lnS1dfYTNaWS5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUD AwDLijANBgkqhkiG9w0BAQsFAAOCAQEAZdXxlFWYYGL7s+/xoCFXYL1obwXwSANy YZVvR+p57h5+KezRAcvugzEAntI7V13A28CzW9hs6wDMwM7xdG7vNmpximpsUIVK REdd1D6tI5GI27aRVz6a1WrarTa5siVAwG+i1qawQL0p9MD+7wvYrAKGVdcApWtO iECNnceXjqb0y5JuKA72tRkRN5TvJJXI/3uz87HtHwmdfxjmuQMJCPIKDRKas1ft Jkx6Lpf1LvvJnYIe1p5NlInueiwaOYHN2Va1o2pyqNy7Dur/VOVw/voUDnUvPCvD jEpbbsx8FN3+erCtV7BeXopvhEc7c9+9vywDfxSRORhnL7p1ltolkw== -----END CERTIFICATE-----Generated at Wed Feb 19 22:41:53 2025 by rpki-client