$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/354/KCiQVuBn8IHJVws-iesLMcGRBBQ.roa File: KCiQVuBn8IHJVws-iesLMcGRBBQ.roa (raw, json) Hash identifier: POukAMGTmHMpeQO/7OmrkGtK2qqAVDbtE+M5WEAGusk= Subject key identifier: 28:28:90:56:E0:67:F0:81:C9:57:0B:3E:89:EB:0B:31:C1:91:04:14 Certificate issuer: /CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC Certificate serial: 0100 Authority key identifier: 0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/KCiQVuBn8IHJVws-iesLMcGRBBQ.roa Signing time: Sun 30 Jun 2024 01:28:35 +0000 ROA not before: Sun 30 Jun 2024 01:28:35 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 7530 IP address blocks: 210.231.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 256 (0x100) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC Validity Not Before: Jun 30 01:28:35 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=28289056E067F081C9570B3E89EB0B31C1910414 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:03:07:a7:ae:fb:77:8d:d2:a1:0d:19:83:13: 90:64:54:c7:d3:1c:c2:04:a4:bc:7b:e0:75:09:2b: 8e:18:a3:af:80:e3:34:6f:71:42:a6:e4:c5:54:5c: 51:e6:b3:fc:cf:0e:b8:5b:9d:5a:8d:4a:95:6e:eb: 33:64:02:44:59:20:53:a2:92:eb:92:f8:20:47:e1: 4c:c1:94:f8:8c:af:dd:4b:e2:11:22:fb:16:24:db: 24:c1:02:1a:38:a2:0c:80:7b:6c:cb:e7:c9:68:d4: da:05:42:3c:f1:4d:69:92:8f:6e:1c:9e:75:12:fd: a4:c4:30:65:ce:4d:61:0b:28:12:24:b1:25:78:d5: 18:e2:ab:48:6c:b9:14:32:40:ff:2c:d6:cf:2c:2e: 41:6b:82:d6:00:b1:8f:e0:47:fa:86:3a:ac:c9:32: 02:11:10:2e:1f:20:99:5e:23:ce:47:64:a0:f4:8b: 49:c2:0a:8d:91:3f:cd:70:e5:b4:4c:26:89:87:19: a8:15:0e:7e:00:65:0d:1c:9a:85:1c:da:4b:be:dc: 2f:3b:1d:39:bb:05:c2:4b:0a:7e:52:33:e6:60:7e: c6:1f:6a:b9:a6:df:3a:64:72:74:42:2a:1e:4d:bd: 23:0a:ea:aa:0e:f1:b7:23:fc:5b:a6:1e:f0:11:ff: 84:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:28:90:56:E0:67:F0:81:C9:57:0B:3E:89:EB:0B:31:C1:91:04:14 X509v3 Authority Key Identifier: keyid:0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/KCiQVuBn8IHJVws-iesLMcGRBBQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.231.208.0/20 Signature Algorithm: sha256WithRSAEncryption 06:cd:8e:3e:dc:1d:ec:75:42:d2:01:47:a6:76:6c:76:15:93: 82:3e:2b:db:95:a9:a7:a9:9d:e1:1d:5e:c7:49:a5:f5:58:b1: 53:23:b7:bd:84:41:3d:51:d6:80:4f:dd:5d:b9:8e:44:9c:5b: 58:8f:7b:5d:fd:45:92:69:ff:26:31:4e:18:71:e9:fd:95:68: 2b:5f:d5:80:8c:1c:61:1c:9f:ac:ba:42:05:46:f3:1b:d8:17: 37:f8:52:b4:42:c0:7b:dd:0a:d7:d3:8c:c2:c4:63:e7:6b:9d: 88:bb:c0:3c:cf:66:5e:fc:9d:26:dc:4b:13:c5:45:c0:61:f5: 0c:3b:81:d8:55:1f:38:2f:62:da:89:9c:96:fb:15:43:ec:05: 89:3b:95:1a:e9:be:61:9f:2e:33:73:c4:02:36:f0:7b:fb:d7: 29:4d:9f:8d:72:63:8a:55:fa:5f:30:86:b0:63:91:a1:0a:d7: 50:9b:45:2d:bf:96:54:09:80:3a:cf:0d:6e:d8:9a:a0:18:9e: 84:37:d2:c4:9f:ef:48:17:bd:f2:d5:c9:30:c1:32:1b:05:41: 91:4a:13:7b:98:ae:a0:d0:0e:7c:97:16:f3:01:3a:f1:8e:e4: 7e:32:5a:95:cd:60:f9:b2:ab:3c:6f:3c:a7:52:0e:35:c2:6a: 9c:e0:61:69 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAQAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEE1 QUNBQzI5OTBCRDhGODY1NUMwQzcyMUJBQ0ZGMDMwQTU5RDFGQzAeFw0yNDA2MzAw MTI4MzVaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDI4Mjg5MDU2RTA2N0Yw ODFDOTU3MEIzRTg5RUIwQjMxQzE5MTA0MTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3Awenrvt3jdKhDRmDE5BkVMfTHMIEpLx74HUJK44Yo6+A4zRv cUKm5MVUXFHms/zPDrhbnVqNSpVu6zNkAkRZIFOikuuS+CBH4UzBlPiMr91L4hEi +xYk2yTBAho4ogyAe2zL58lo1NoFQjzxTWmSj24cnnUS/aTEMGXOTWELKBIksSV4 1Rjiq0hsuRQyQP8s1s8sLkFrgtYAsY/gR/qGOqzJMgIREC4fIJleI85HZKD0i0nC Co2RP81w5bRMJomHGagVDn4AZQ0cmoUc2ku+3C87HTm7BcJLCn5SM+ZgfsYfarmm 3zpkcnRCKh5NvSMK6qoO8bcj/FumHvAR/4SZAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUKCiQVuBn8IHJVws+iesLMcGRBBQwHwYDVR0jBBgwFoAUClrKwpkL2PhlXAxy G6z/AwpZ0fwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM1NC9DbHJLd3BrTDJQaGxYQXh5RzZ6X0F3cFowZncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9DbHJLd3BrTDJQaGxYQXh5RzZ6X0F3 cFowZncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzU0L0tDaVFWdUJuOElISlZ3cy1pZXNMTWNHUkJCUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATS59AwDQYJKoZIhvcNAQELBQADggEBAAbNjj7cHex1QtIBR6Z2bHYVk4I+ K9uVqaepneEdXsdJpfVYsVMjt72EQT1R1oBP3V25jkScW1iPe139RZJp/yYxThhx 6f2VaCtf1YCMHGEcn6y6QgVG8xvYFzf4UrRCwHvdCtfTjMLEY+drnYi7wDzPZl78 nSbcSxPFRcBh9Qw7gdhVHzgvYtqJnJb7FUPsBYk7lRrpvmGfLjNzxAI28Hv71ylN n41yY4pV+l8whrBjkaEK11CbRS2/llQJgDrPDW7YmqAYnoQ30sSf70gXvfLVyTDB MhsFQZFKE3uYrqDQDnyXFvMBOvGO5H4yWpXNYPmyqzxvPKdSDjXCapzgYWk= -----END CERTIFICATE-----Generated at Sun Feb 16 22:07:07 2025 by rpki-client