$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/354/bRwxq6NCWThnL83iQFV_HL15SUg.roa File: bRwxq6NCWThnL83iQFV_HL15SUg.roa (raw, json) Hash identifier: i3aC46cXL9KmCjIe66+tAM/MBKoXFW6/N3LHKukn9k8= Subject key identifier: 6D:1C:31:AB:A3:42:59:38:67:2F:CD:E2:40:55:7F:1C:BD:79:49:48 Certificate issuer: /CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC Certificate serial: 0117 Authority key identifier: 0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/bRwxq6NCWThnL83iQFV_HL15SUg.roa Signing time: Fri 31 Jan 2025 01:31:07 +0000 ROA not before: Fri 31 Jan 2025 01:31:07 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9607 IP address blocks: 211.14.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 20:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 279 (0x117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC Validity Not Before: Jan 31 01:31:07 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=6D1C31ABA3425938672FCDE240557F1CBD794948 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:99:02:ef:1b:eb:9a:5f:6f:57:43:d3:dd:aa: ac:81:1c:09:a3:78:63:02:e5:a4:af:d4:58:e2:72: ba:eb:54:1d:98:b8:ce:33:db:8d:8a:0e:e8:a3:de: 45:46:6c:a9:ae:19:f1:7f:2d:fe:f5:63:8e:e5:40: a2:9c:12:3b:12:54:48:1a:f2:dc:d1:b2:66:e5:34: 83:42:7a:00:73:23:f8:b5:55:a4:c5:67:b5:dd:30: 1c:45:61:73:a7:29:89:e1:91:97:c2:ca:f4:d4:79: 19:b5:77:98:85:8c:8a:77:08:d9:cd:41:d8:47:a4: ab:95:98:1d:81:b2:04:f7:3d:7a:3a:73:78:22:94: 19:08:5f:fa:a3:b9:7c:0a:0f:df:64:02:25:3a:27: bb:59:1c:e8:6f:df:59:dc:57:c9:6e:51:48:97:30: 19:64:dc:53:cd:0d:60:b4:9c:6f:85:b0:3f:7c:95: e9:27:9d:1d:1c:df:dc:f4:10:dd:f9:54:2f:74:9b: 4f:06:d4:98:2f:66:23:cb:7f:af:4d:01:fe:b6:0b: 3c:46:d7:18:dd:1b:dc:48:bc:75:1d:be:83:10:3a: 47:35:08:5e:2e:29:c8:43:42:be:57:8d:d0:3c:be: b9:ac:51:3e:2d:43:fc:e9:59:47:86:f7:43:8c:e0: 95:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:1C:31:AB:A3:42:59:38:67:2F:CD:E2:40:55:7F:1C:BD:79:49:48 X509v3 Authority Key Identifier: keyid:0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/bRwxq6NCWThnL83iQFV_HL15SUg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.14.9.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:cb:73:72:fd:ef:86:ec:0f:b6:07:9c:ec:84:0a:a6:cd:51: f3:b4:82:2f:87:f3:06:4b:66:48:0a:e7:4a:0f:83:85:6c:7c: 1c:7c:8c:ae:bd:14:4c:e2:a6:c4:99:3f:ea:9f:74:66:7a:75: f1:1f:be:93:f1:dd:67:11:5a:78:66:44:28:1c:81:44:26:49: e6:cc:e7:6b:1e:77:2a:5a:1f:25:9f:8b:3d:76:d3:c2:28:5b: ce:f3:58:ac:ee:8f:55:85:b5:3f:49:c1:5c:e4:1d:4a:ad:4a: d0:49:07:72:fb:e7:36:c9:d9:77:28:bf:9e:2a:9b:44:db:6e: 48:b7:76:d3:8d:08:90:75:9b:ad:14:0e:8b:31:ea:ea:d0:b9: 85:1e:02:ce:19:19:59:99:5e:9a:68:a6:99:ef:4e:20:4e:25: c0:ff:91:db:fa:4d:a8:4c:07:44:4c:b5:f3:5a:72:70:57:ce: 48:cf:9b:7c:4d:bd:54:2a:be:be:66:3f:a9:e3:e9:5b:4f:1a: 4d:81:a4:28:85:c0:fd:4f:51:43:2c:b0:0e:f0:57:f8:f6:96: a7:3a:01:7a:16:67:ad:2c:7a:53:23:d5:92:ec:ce:26:50:d1: ea:cc:0c:e7:1c:41:17:c4:fc:ef:9e:a8:6e:c8:8e:57:33:4d: 6c:37:14:9d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICARcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEE1 QUNBQzI5OTBCRDhGODY1NUMwQzcyMUJBQ0ZGMDMwQTU5RDFGQzAeFw0yNTAxMzEw MTMxMDdaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDZEMUMzMUFCQTM0MjU5 Mzg2NzJGQ0RFMjQwNTU3RjFDQkQ3OTQ5NDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFmQLvG+uaX29XQ9PdqqyBHAmjeGMC5aSv1FjicrrrVB2YuM4z 242KDuij3kVGbKmuGfF/Lf71Y47lQKKcEjsSVEga8tzRsmblNINCegBzI/i1VaTF Z7XdMBxFYXOnKYnhkZfCyvTUeRm1d5iFjIp3CNnNQdhHpKuVmB2BsgT3PXo6c3gi lBkIX/qjuXwKD99kAiU6J7tZHOhv31ncV8luUUiXMBlk3FPNDWC0nG+FsD98lekn nR0c39z0EN35VC90m08G1JgvZiPLf69NAf62CzxG1xjdG9xIvHUdvoMQOkc1CF4u KchDQr5XjdA8vrmsUT4tQ/zpWUeG90OM4JVFAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUbRwxq6NCWThnL83iQFV/HL15SUgwHwYDVR0jBBgwFoAUClrKwpkL2PhlXAxy G6z/AwpZ0fwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM1NC9DbHJLd3BrTDJQaGxYQXh5RzZ6X0F3cFowZncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9DbHJLd3BrTDJQaGxYQXh5RzZ6X0F3 cFowZncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzU0L2JSd3hxNk5DV1Robkw4M2lRRlZfSEwxNVNVZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADTDgkwDQYJKoZIhvcNAQELBQADggEBAAzLc3L974bsD7YHnOyECqbNUfO0 gi+H8wZLZkgK50oPg4VsfBx8jK69FEzipsSZP+qfdGZ6dfEfvpPx3WcRWnhmRCgc gUQmSebM52sedypaHyWfiz1208IoW87zWKzuj1WFtT9JwVzkHUqtStBJB3L75zbJ 2Xcov54qm0Tbbki3dtONCJB1m60UDosx6urQuYUeAs4ZGVmZXppoppnvTiBOJcD/ kdv6TahMB0RMtfNacnBXzkjPm3xNvVQqvr5mP6nj6VtPGk2BpCiFwP1PUUMssA7w V/j2lqc6AXoWZ60selMj1ZLsziZQ0erMDOccQRfE/O+eqG7IjlczTWw3FJ0= -----END CERTIFICATE-----Generated at Wed Feb 19 22:45:00 2025 by rpki-client