$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/354/Qm-ovxjft_ONKgVlddgYBViiXI8.roa File: Qm-ovxjft_ONKgVlddgYBViiXI8.roa (raw, json) Hash identifier: reNHyL6JrrdFmS7tyh8caGRlR5ntXNFETd8Vu4ktyXE= Subject key identifier: 42:6F:A8:BF:18:DF:B7:F3:8D:2A:05:65:75:D8:18:05:58:A2:5C:8F Certificate issuer: /CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC Certificate serial: 0115 Authority key identifier: 0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/Qm-ovxjft_ONKgVlddgYBViiXI8.roa Signing time: Fri 31 Jan 2025 01:31:06 +0000 ROA not before: Fri 31 Jan 2025 01:31:06 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9607 IP address blocks: 211.14.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 20:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 277 (0x115) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC Validity Not Before: Jan 31 01:31:06 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=426FA8BF18DFB7F38D2A056575D8180558A25C8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:e7:94:ed:95:54:83:11:9a:b7:c7:9a:a1:bd: d1:13:53:43:48:74:73:5a:74:1d:45:d5:1b:a3:ff: 3f:42:8e:10:5b:42:7c:c4:c5:4d:c9:6d:6b:52:1c: 99:b1:86:6e:02:33:37:6f:40:91:da:ee:31:6c:19: c1:cc:f3:96:40:d3:54:d1:36:cd:bb:92:22:c7:0d: 13:a7:dd:5a:1b:7f:70:17:7b:03:0c:17:20:f1:55: fb:37:06:fa:d1:dd:f9:3b:2d:50:0c:9e:d6:74:5f: 10:9e:b0:8e:50:43:cf:19:91:15:d4:18:a8:66:10: 5e:5c:02:f4:37:d4:89:3d:64:78:a6:0f:af:ae:94: d6:63:01:72:cd:7b:81:ff:42:91:12:c0:ba:c3:39: 06:bc:73:6d:21:cf:bb:1b:84:3d:c0:3a:b6:7a:31: a6:e2:79:5a:ea:b9:ff:d0:43:83:ee:82:58:66:e3: fb:59:d4:ea:97:97:e7:d4:77:dc:67:c4:fa:83:ff: 28:d8:5b:a9:6b:cf:42:30:5b:ba:42:4a:33:52:c1: bc:23:f3:b4:d3:68:ea:21:93:7b:fb:38:2f:da:a4: 1d:41:7a:93:6f:b5:7c:a8:37:4b:aa:25:46:70:ee: 01:8b:39:6b:f1:76:0f:e8:f9:52:6e:92:3e:6b:6d: b9:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:6F:A8:BF:18:DF:B7:F3:8D:2A:05:65:75:D8:18:05:58:A2:5C:8F X509v3 Authority Key Identifier: keyid:0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/Qm-ovxjft_ONKgVlddgYBViiXI8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.14.0.0/21 Signature Algorithm: sha256WithRSAEncryption 00:df:9e:8a:9c:e8:58:73:d9:a9:fc:6b:80:d7:71:50:a4:ea: 67:9a:db:2f:9b:b3:7a:8c:85:27:07:af:09:0f:c2:81:a6:41: 6c:cc:60:d4:8c:c0:3b:ae:e7:e3:b3:af:e4:4b:11:6c:2d:7c: a4:f5:f3:ee:c9:fc:f2:57:f0:e7:0e:7b:9c:88:1f:82:f4:b8: 82:1b:11:6a:89:83:24:95:07:24:e2:a8:0f:fe:77:a0:c5:7a: 4a:68:c6:c8:3d:2b:99:86:48:8a:56:eb:13:7a:f2:50:4a:55: 39:c2:44:d1:9d:84:8d:e1:df:d1:b7:d8:a1:94:ca:f2:1c:c7: aa:a6:4f:d2:41:02:3a:f3:bc:63:6f:f7:3a:11:1f:94:4f:de: 80:85:b1:c9:e1:96:1d:31:88:f8:64:b9:35:d4:ec:28:95:9f: 36:8e:07:3d:48:44:ee:63:61:67:3b:8c:e1:dd:f6:14:8a:7a: 34:89:cd:69:d5:cb:5c:3a:bc:dc:a9:e4:98:80:f8:fa:9c:10: 40:51:33:18:f4:4e:1c:36:36:a0:b6:64:dc:23:5b:3a:3a:ac: 07:05:42:fc:88:12:c2:02:83:89:ee:dc:a0:6b:93:c5:fd:f7: 48:34:84:29:d7:ae:e3:12:ef:d1:b8:1b:1f:50:8f:ad:56:77: 5c:36:38:8a -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICARUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEE1 QUNBQzI5OTBCRDhGODY1NUMwQzcyMUJBQ0ZGMDMwQTU5RDFGQzAeFw0yNTAxMzEw MTMxMDZaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDQyNkZBOEJGMThERkI3 RjM4RDJBMDU2NTc1RDgxODA1NThBMjVDOEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDs55TtlVSDEZq3x5qhvdETU0NIdHNadB1F1Ruj/z9CjhBbQnzE xU3JbWtSHJmxhm4CMzdvQJHa7jFsGcHM85ZA01TRNs27kiLHDROn3Vobf3AXewMM FyDxVfs3BvrR3fk7LVAMntZ0XxCesI5QQ88ZkRXUGKhmEF5cAvQ31Ik9ZHimD6+u lNZjAXLNe4H/QpESwLrDOQa8c20hz7sbhD3AOrZ6MabieVrquf/QQ4Puglhm4/tZ 1OqXl+fUd9xnxPqD/yjYW6lrz0IwW7pCSjNSwbwj87TTaOohk3v7OC/apB1BepNv tXyoN0uqJUZw7gGLOWvxdg/o+VJukj5rbbnVAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUQm+ovxjft/ONKgVlddgYBViiXI8wHwYDVR0jBBgwFoAUClrKwpkL2PhlXAxy G6z/AwpZ0fwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM1NC9DbHJLd3BrTDJQaGxYQXh5RzZ6X0F3cFowZncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9DbHJLd3BrTDJQaGxYQXh5RzZ6X0F3 cFowZncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzU0L1FtLW92eGpmdF9PTktnVmxkZGdZQlZpaVhJOC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPTDgAwDQYJKoZIhvcNAQELBQADggEBAADfnoqc6Fhz2an8a4DXcVCk6mea 2y+bs3qMhScHrwkPwoGmQWzMYNSMwDuu5+Ozr+RLEWwtfKT18+7J/PJX8OcOe5yI H4L0uIIbEWqJgySVByTiqA/+d6DFekpoxsg9K5mGSIpW6xN68lBKVTnCRNGdhI3h 39G32KGUyvIcx6qmT9JBAjrzvGNv9zoRH5RP3oCFscnhlh0xiPhkuTXU7CiVnzaO Bz1IRO5jYWc7jOHd9hSKejSJzWnVy1w6vNyp5JiA+PqcEEBRMxj0Thw2NqC2ZNwj Wzo6rAcFQvyIEsICg4nu3KBrk8X990g0hCnXruMS79G4Gx9Qj61Wd1w2OIo= -----END CERTIFICATE-----Generated at Wed Feb 19 22:32:02 2025 by rpki-client