$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/0Jglxz5p08jSZ8V0gEoqhC91_Fg.roa File: 0Jglxz5p08jSZ8V0gEoqhC91_Fg.roa (raw, json) Hash identifier: m2Tr0UfbuJjoRlR73O4bO3IQred784lk8rzCYXQHkrc= Subject key identifier: D0:98:25:C7:3E:69:D3:C8:D2:67:C5:74:80:4A:2A:84:2F:75:FC:58 Certificate issuer: /CN=F89E0F15C1E20E191AAF17288F6E30FF01869A6E Certificate serial: 4D Authority key identifier: F8:9E:0F:15:C1:E2:0E:19:1A:AF:17:28:8F:6E:30:FF:01:86:9A:6E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/0Jglxz5p08jSZ8V0gEoqhC91_Fg.roa Signing time: Sun 30 Jun 2024 01:42:31 +0000 ROA not before: Sun 30 Jun 2024 01:42:31 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 9605 IP address blocks: 158.199.48.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F89E0F15C1E20E191AAF17288F6E30FF01869A6E Validity Not Before: Jun 30 01:42:31 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=D09825C73E69D3C8D267C574804A2A842F75FC58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:36:03:ca:52:8c:ee:70:19:67:69:d4:1e:55: c7:8f:f1:db:f4:00:72:3d:cd:1b:d8:5c:1c:5f:4f: cd:39:1d:2a:0a:41:9c:b8:7f:c1:d9:61:41:0e:f0: cb:00:67:53:b7:86:b3:ec:9c:a4:aa:e5:9d:37:bf: 70:4d:be:d3:a2:ac:29:8c:22:be:f7:ec:38:f0:49: 8d:48:36:97:46:06:ce:ac:4b:ca:2a:19:fd:6c:95: 98:0f:3e:ba:c8:76:b1:8f:1f:ae:00:55:a0:78:c0: 77:91:d5:ae:32:8b:14:56:6d:07:64:16:2a:ef:75: f4:6e:1e:39:33:bf:19:c9:a1:d0:0c:ec:74:e3:d5: 29:5e:4e:b3:02:23:55:8a:d9:10:92:3a:c1:8e:95: a2:c5:3b:12:d8:50:5c:af:58:97:6f:fd:3a:54:a4: f0:9a:6d:d3:3a:8c:06:38:ef:12:28:0a:15:ab:50: c8:87:86:b5:33:d2:60:d6:78:5d:25:b0:e8:28:c1: 09:5b:3f:a2:d9:30:2b:a9:34:2c:ea:8c:da:db:05: e4:41:ff:a1:89:cf:b0:ff:b2:73:2e:dc:71:d4:d7: 7e:0a:62:03:6d:0c:e3:2d:8d:69:fb:69:4f:5a:64: 49:48:16:49:d1:95:9d:c0:cf:de:d6:52:1a:ba:5b: c6:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:98:25:C7:3E:69:D3:C8:D2:67:C5:74:80:4A:2A:84:2F:75:FC:58 X509v3 Authority Key Identifier: keyid:F8:9E:0F:15:C1:E2:0E:19:1A:AF:17:28:8F:6E:30:FF:01:86:9A:6E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-J4PFcHiDhkarxcoj24w_wGGmm4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-J4PFcHiDhkarxcoj24w_wGGmm4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/0Jglxz5p08jSZ8V0gEoqhC91_Fg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 158.199.48.0/20 Signature Algorithm: sha256WithRSAEncryption bd:7b:ea:fc:9b:dd:2a:ec:db:6e:29:87:eb:49:ba:2c:25:b1: 71:e4:ec:94:38:79:8a:c5:2f:77:f3:1d:5b:e0:f1:f3:43:39: 80:6b:87:6c:83:fa:81:1c:84:5c:b4:93:fd:c0:19:16:30:0c: bc:da:41:a3:f1:53:20:77:fa:3f:8d:f3:f4:c2:03:98:6c:a7: 8a:b6:b4:49:c5:75:d0:02:7c:f9:49:2d:82:a4:09:71:0a:5f: 14:61:76:1d:6c:a8:04:71:0b:4f:cf:5f:c8:3b:16:60:84:ab: fb:1c:95:b7:95:ba:52:80:ed:59:9a:ba:52:f0:96:d8:d2:c9: b4:57:8c:62:8a:8c:ef:8c:76:05:81:28:ed:8d:f6:70:a4:7f: 1c:b5:3a:17:25:d2:4b:10:4e:21:d3:14:9b:e3:bf:6c:7c:78: 87:3b:81:84:52:e8:b1:b6:86:e8:ab:61:e9:ef:1b:03:51:9a: be:89:8d:0a:b2:c1:a8:6c:31:af:ed:ae:62:99:ce:0d:24:4e: 87:94:1c:6e:df:08:43:a4:92:7f:ad:c0:e4:6f:3d:01:03:6e: a7:9e:ae:1f:29:41:39:0a:f0:7c:6e:42:07:dd:a1:1b:ab:81: 4c:12:86:35:4a:76:7f:a1:01:01:eb:b9:26:54:30:e5:40:a5: 52:65:8e:92 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBTTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGODlF MEYxNUMxRTIwRTE5MUFBRjE3Mjg4RjZFMzBGRjAxODY5QTZFMB4XDTI0MDYzMDAx NDIzMVoXDTI1MDYyNDEwNDY0NVowMzExMC8GA1UEAxMoRDA5ODI1QzczRTY5RDND OEQyNjdDNTc0ODA0QTJBODQyRjc1RkM1ODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMM2A8pSjO5wGWdp1B5Vx4/x2/QAcj3NG9hcHF9PzTkdKgpBnLh/ wdlhQQ7wywBnU7eGs+ycpKrlnTe/cE2+06KsKYwivvfsOPBJjUg2l0YGzqxLyioZ /WyVmA8+ush2sY8frgBVoHjAd5HVrjKLFFZtB2QWKu919G4eOTO/Gcmh0AzsdOPV KV5OswIjVYrZEJI6wY6VosU7EthQXK9Yl2/9OlSk8Jpt0zqMBjjvEigKFatQyIeG tTPSYNZ4XSWw6CjBCVs/otkwK6k0LOqM2tsF5EH/oYnPsP+ycy7ccdTXfgpiA20M 4y2NaftpT1pkSUgWSdGVncDP3tZSGrpbxocCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTQmCXHPmnTyNJnxXSASiqEL3X8WDAfBgNVHSMEGDAWgBT4ng8VweIOGRqvFyiP bjD/AYaabjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMzA5Ly1KNFBGY0hpRGhrYXJ4Y29qMjR3X3dHR21tNC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLy1KNFBGY0hpRGhrYXJ4Y29qMjR3X3dH R21tNC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC8zMDkvMEpnbHh6NXAwOGpTWjhWMGdFb3FoQzkxX0ZnLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBJ7HMDANBgkqhkiG9w0BAQsFAAOCAQEAvXvq/JvdKuzbbimH60m6LCWxceTs lDh5isUvd/MdW+Dx80M5gGuHbIP6gRyEXLST/cAZFjAMvNpBo/FTIHf6P43z9MID mGynira0ScV10AJ8+UktgqQJcQpfFGF2HWyoBHELT89fyDsWYISr+xyVt5W6UoDt WZq6UvCW2NLJtFeMYoqM74x2BYEo7Y32cKR/HLU6FyXSSxBOIdMUm+O/bHx4hzuB hFLosbaG6Kth6e8bA1GavomNCrLBqGwxr+2uYpnODSROh5Qcbt8IQ6SSf63A5G89 AQNup56uHylBOQrwfG5CB92hG6uBTBKGNUp2f6EBAeu5JlQw5UClUmWOkg== -----END CERTIFICATE-----Generated at Sun Feb 16 22:28:37 2025 by rpki-client