$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/354/G8KwsliqW15T47aiAYMnXe4jlm4.roa File: G8KwsliqW15T47aiAYMnXe4jlm4.roa (raw, json) Hash identifier: xn6zcq85FPyB2r5ifz93hawDmfQ82IbGy74MEiOX7Mk= Subject key identifier: 1B:C2:B0:B2:58:AA:5B:5E:53:E3:B6:A2:01:83:27:5D:EE:23:96:6E Certificate issuer: /CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC Certificate serial: 011D Authority key identifier: 0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/G8KwsliqW15T47aiAYMnXe4jlm4.roa Signing time: Fri 31 Jan 2025 01:31:12 +0000 ROA not before: Fri 31 Jan 2025 01:31:12 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9607 IP address blocks: 211.14.10.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 285 (0x11d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC Validity Not Before: Jan 31 01:31:12 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=1BC2B0B258AA5B5E53E3B6A20183275DEE23966E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:a0:4c:47:1b:3f:86:a7:46:39:9a:24:50:54: 0b:a4:7b:a2:ac:d4:5c:43:69:3d:fd:64:b7:e5:23: 86:a7:be:cc:f1:fe:61:4f:e5:22:8a:f8:85:61:3d: 9e:eb:45:ab:8f:30:5e:e2:48:31:02:9c:3e:ae:71: 20:27:bc:30:01:d9:8c:82:a7:30:d1:a4:ca:a0:09: 03:01:04:37:e0:d9:3a:f1:66:90:96:d0:fb:99:cd: 26:41:90:2d:ec:17:a5:88:4f:03:49:8d:0b:7f:1d: 5f:bb:2f:b3:00:45:1a:95:bc:de:81:77:c7:81:9b: 75:88:c3:b4:e0:35:ba:14:87:94:41:e7:e4:d0:74: 98:59:bd:a7:26:c5:fb:c2:06:72:e1:97:b7:77:8e: ad:07:c9:e2:62:c0:39:05:87:3e:48:9d:e3:6b:26: 64:bf:80:8d:e3:a4:53:43:10:d3:ae:e7:b2:77:26: 89:c0:9a:e5:e7:d0:f6:87:1b:72:bf:2a:39:80:58: a4:e6:4f:04:8e:e2:93:6f:62:6f:a8:38:89:e9:e2: 52:73:2b:6c:82:69:8a:ac:ef:32:77:f6:a6:c5:1d: 6e:23:05:a9:d1:09:93:5f:40:09:06:fe:24:39:ed: 97:cd:3e:d9:97:77:4c:2a:26:9f:de:54:03:ac:b1: 4c:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:C2:B0:B2:58:AA:5B:5E:53:E3:B6:A2:01:83:27:5D:EE:23:96:6E X509v3 Authority Key Identifier: keyid:0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/G8KwsliqW15T47aiAYMnXe4jlm4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.14.10.0/23 Signature Algorithm: sha256WithRSAEncryption bb:01:ad:55:73:56:d8:11:65:51:e1:11:9c:ee:ce:50:e2:61: ed:fe:d9:17:d9:bd:cb:08:36:24:28:f2:e3:64:81:3c:01:ab: 19:9e:42:34:60:c8:4e:d9:9b:21:30:aa:a0:42:54:1b:90:54: d1:d4:07:e3:15:a8:82:8a:3c:b0:c4:83:3d:73:5b:7a:d8:3d: 97:ef:19:1a:e8:b2:61:e4:07:b1:46:78:f5:db:e7:3a:a6:e7: b8:96:bc:7e:96:43:7f:00:e6:de:0e:09:36:be:01:08:80:d1: 71:78:e6:f5:cd:9f:5d:3f:35:af:07:57:50:99:ef:24:6e:d4: 1e:94:7b:1c:12:5f:69:e6:c0:11:49:48:80:f9:49:a9:a3:91: 33:22:33:93:39:a6:0b:d3:ea:a0:f3:d6:a1:2a:e9:85:90:a2: a0:6f:f5:24:83:fa:d0:67:36:3d:77:2f:a2:de:ea:64:22:f9: 6a:cb:f3:96:3d:48:a4:d4:fd:61:00:67:0d:a0:de:88:f6:cc: 86:47:19:0e:f7:aa:14:94:f4:b7:58:d2:ee:4b:e3:f5:31:ba: 71:e7:ac:c8:6a:99:8c:a5:ff:82:00:fe:b9:fb:b1:9b:60:d4: 01:0e:38:f2:98:e8:53:51:f3:67:f6:de:66:63:c8:ac:1d:75: 6a:b9:8a:94 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAR0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEE1 QUNBQzI5OTBCRDhGODY1NUMwQzcyMUJBQ0ZGMDMwQTU5RDFGQzAeFw0yNTAxMzEw MTMxMTJaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDFCQzJCMEIyNThBQTVC NUU1M0UzQjZBMjAxODMyNzVERUUyMzk2NkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgoExHGz+Gp0Y5miRQVAuke6Ks1FxDaT39ZLflI4anvszx/mFP 5SKK+IVhPZ7rRauPMF7iSDECnD6ucSAnvDAB2YyCpzDRpMqgCQMBBDfg2TrxZpCW 0PuZzSZBkC3sF6WITwNJjQt/HV+7L7MARRqVvN6Bd8eBm3WIw7TgNboUh5RB5+TQ dJhZvacmxfvCBnLhl7d3jq0HyeJiwDkFhz5IneNrJmS/gI3jpFNDENOu57J3JonA muXn0PaHG3K/KjmAWKTmTwSO4pNvYm+oOInp4lJzK2yCaYqs7zJ39qbFHW4jBanR CZNfQAkG/iQ57ZfNPtmXd0wqJp/eVAOssUy5AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUG8KwsliqW15T47aiAYMnXe4jlm4wHwYDVR0jBBgwFoAUClrKwpkL2PhlXAxy G6z/AwpZ0fwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM1NC9DbHJLd3BrTDJQaGxYQXh5RzZ6X0F3cFowZncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9DbHJLd3BrTDJQaGxYQXh5RzZ6X0F3 cFowZncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzU0L0c4S3dzbGlxVzE1VDQ3YWlBWU1uWGU0amxtNC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHTDgowDQYJKoZIhvcNAQELBQADggEBALsBrVVzVtgRZVHhEZzuzlDiYe3+ 2RfZvcsINiQo8uNkgTwBqxmeQjRgyE7ZmyEwqqBCVBuQVNHUB+MVqIKKPLDEgz1z W3rYPZfvGRrosmHkB7FGePXb5zqm57iWvH6WQ38A5t4OCTa+AQiA0XF45vXNn10/ Na8HV1CZ7yRu1B6UexwSX2nmwBFJSID5SamjkTMiM5M5pgvT6qDz1qEq6YWQoqBv 9SSD+tBnNj13L6Le6mQi+WrL85Y9SKTU/WEAZw2g3oj2zIZHGQ73qhSU9LdY0u5L 4/UxunHnrMhqmYyl/4IA/rn7sZtg1AEOOPKY6FNR82f23mZjyKwddWq5ipQ= -----END CERTIFICATE-----Generated at Wed Feb 19 22:38:09 2025 by rpki-client