$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/307/zapOgopN1f4qTBXvHnKinGsH5Fo.roa File: zapOgopN1f4qTBXvHnKinGsH5Fo.roa (raw, json) Hash identifier: aDZWR+a9bDcexU4T+cDZgi//dOzlgQoDly+Lafy3oBA= Subject key identifier: CD:AA:4E:82:8A:4D:D5:FE:2A:4C:15:EF:1E:72:A2:9C:6B:07:E4:5A Certificate issuer: /CN=6D1ED16D8C6D3BA40BF42CB3A29652ADAB76D061 Certificate serial: 2A Authority key identifier: 6D:1E:D1:6D:8C:6D:3B:A4:0B:F4:2C:B3:A2:96:52:AD:AB:76:D0:61 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/bR7RbYxtO6QL9CyzopZSrat20GE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/zapOgopN1f4qTBXvHnKinGsH5Fo.roa Signing time: Thu 31 Oct 2024 01:32:11 +0000 ROA not before: Thu 31 Oct 2024 01:32:11 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 23783 IP address blocks: 203.179.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/bR7RbYxtO6QL9CyzopZSrat20GE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/bR7RbYxtO6QL9CyzopZSrat20GE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/bR7RbYxtO6QL9CyzopZSrat20GE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D1ED16D8C6D3BA40BF42CB3A29652ADAB76D061 Validity Not Before: Oct 31 01:32:11 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=CDAA4E828A4DD5FE2A4C15EF1E72A29C6B07E45A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:0b:39:7c:fb:ee:75:81:69:a1:d2:8c:53:a1: 2f:60:5c:c3:db:26:13:64:60:a8:2c:e7:eb:20:43: 8a:28:cb:26:6a:7b:9d:7b:15:ae:7f:b6:90:b0:23: 0e:08:53:93:ef:c3:32:7c:bb:c8:4a:33:be:4f:af: 82:99:87:cc:1a:92:21:92:83:06:73:c1:5c:ff:4f: 93:5f:e6:a8:f7:80:22:3e:7d:cf:1e:2d:6d:d7:37: 5e:91:65:c7:3d:40:95:e1:ea:2d:04:8b:fa:a7:e1: 16:88:0b:b7:f8:a5:d1:f8:54:51:b2:e1:45:69:0f: 5a:7e:a7:77:8a:88:de:9e:2f:0a:80:b0:47:96:0b: c4:24:cc:6b:61:62:73:b6:5b:81:8f:d7:ad:8a:5d: 74:0f:d5:19:82:d2:3e:21:6f:d7:42:b9:f8:ae:a3: b3:9f:18:85:ff:5e:b7:03:92:c7:1f:1d:7f:5c:29: 19:12:9f:fa:5e:24:41:47:40:68:d9:f5:e5:c2:16: a7:57:b1:67:16:22:b3:d2:c3:a0:ae:6d:fd:ec:d1: db:f9:58:43:76:2b:94:33:02:ec:ab:09:71:c2:18: a0:5b:d1:31:f1:0d:d9:58:92:82:ac:68:dc:9c:ae: b9:7f:c0:c9:70:f8:93:8b:28:0b:0a:7a:35:46:fe: 5b:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:AA:4E:82:8A:4D:D5:FE:2A:4C:15:EF:1E:72:A2:9C:6B:07:E4:5A X509v3 Authority Key Identifier: keyid:6D:1E:D1:6D:8C:6D:3B:A4:0B:F4:2C:B3:A2:96:52:AD:AB:76:D0:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/bR7RbYxtO6QL9CyzopZSrat20GE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/bR7RbYxtO6QL9CyzopZSrat20GE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/zapOgopN1f4qTBXvHnKinGsH5Fo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.179.252.0/22 Signature Algorithm: sha256WithRSAEncryption b9:64:4b:9a:10:4c:08:b9:87:5c:3f:d1:9f:ab:e0:69:33:09: b1:b4:e2:22:95:75:86:08:8a:21:ba:94:49:31:9a:4f:7d:67: 01:39:98:83:3e:7e:35:fe:3b:0f:1e:e3:0a:8a:10:a1:37:0f: 6b:73:6b:95:07:3c:74:d7:21:4f:1b:ae:22:14:01:04:05:36: 90:74:4e:b2:82:c5:d1:29:54:a4:81:c3:c2:34:ae:c7:d9:65: 89:7b:d0:4c:92:93:86:c8:e9:2b:96:7b:f1:7b:4f:25:27:8e: 2e:10:b4:0e:77:03:87:8f:e3:56:d8:e9:29:bc:38:bd:b1:73: 2d:47:3f:2b:5b:da:ee:29:5c:20:53:90:9d:b7:db:03:0e:42: 26:64:a8:3f:00:26:f0:41:53:c0:56:1a:a0:44:c4:bc:0d:cd: 23:d7:2d:50:9d:2b:d0:f2:d9:05:d8:ed:eb:e9:ba:d9:a6:7d: db:56:c5:74:38:64:ec:77:69:d4:11:c9:ff:4e:67:4e:e8:91: b2:23:0d:1c:3e:08:27:57:6c:78:8b:0c:cf:e0:96:a0:1e:94: 4f:fc:c8:8a:1b:e1:92:a0:38:2b:f6:62:20:ce:c7:dd:28:0f: 89:33:b6:6a:8d:7a:e7:8f:fb:93:9a:2c:6f:34:0f:fb:65:93: 55:15:b2:f0 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBKjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2RDFF RDE2RDhDNkQzQkE0MEJGNDJDQjNBMjk2NTJBREFCNzZEMDYxMB4XDTI0MTAzMTAx MzIxMVoXDTI1MTAxNTAxMzAwMlowMzExMC8GA1UEAxMoQ0RBQTRFODI4QTRERDVG RTJBNEMxNUVGMUU3MkEyOUM2QjA3RTQ1QTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMwLOXz77nWBaaHSjFOhL2Bcw9smE2RgqCzn6yBDiijLJmp7nXsV rn+2kLAjDghTk+/DMny7yEozvk+vgpmHzBqSIZKDBnPBXP9Pk1/mqPeAIj59zx4t bdc3XpFlxz1AleHqLQSL+qfhFogLt/il0fhUUbLhRWkPWn6nd4qI3p4vCoCwR5YL xCTMa2Fic7ZbgY/XrYpddA/VGYLSPiFv10K5+K6js58Yhf9etwOSxx8df1wpGRKf +l4kQUdAaNn15cIWp1exZxYis9LDoK5t/ezR2/lYQ3YrlDMC7KsJccIYoFvRMfEN 2ViSgqxo3JyuuX/AyXD4k4soCwp6NUb+W3cCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTNqk6Cik3V/ipMFe8ecqKcawfkWjAfBgNVHSMEGDAWgBRtHtFtjG07pAv0LLOi llKtq3bQYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA3L2JSN1JiWXh0TzZRTDlDeXpvcFpTcmF0MjBHRS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2JSN1JiWXh0TzZRTDlDeXpvcFpTcmF0 MjBHRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8zMDcvemFwT2dvcE4xZjRxVEJYdkhuS2luR3NINUZvLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAsuz/DANBgkqhkiG9w0BAQsFAAOCAQEAuWRLmhBMCLmHXD/Rn6vgaTMJsbTi IpV1hgiKIbqUSTGaT31nATmYgz5+Nf47Dx7jCooQoTcPa3NrlQc8dNchTxuuIhQB BAU2kHROsoLF0SlUpIHDwjSux9lliXvQTJKThsjpK5Z78XtPJSeOLhC0DncDh4/j VtjpKbw4vbFzLUc/K1va7ilcIFOQnbfbAw5CJmSoPwAm8EFTwFYaoETEvA3NI9ct UJ0r0PLZBdjt6+m62aZ921bFdDhk7Hdp1BHJ/05nTuiRsiMNHD4IJ1dseIsMz+CW oB6UT/zIihvhkqA4K/ZiIM7H3SgPiTO2ao1654/7k5osbzQP+2WTVRWy8A== -----END CERTIFICATE-----Generated at Sun Feb 16 22:10:20 2025 by rpki-client