$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/5nx-YNKt6zktxoJMcLzo6Wx3QW0.roa File: 5nx-YNKt6zktxoJMcLzo6Wx3QW0.roa (raw, json) Hash identifier: 7BMjeEYWVAeFgEZ8Bg4yJclvsbW8AID/btrfnswcSI0= Subject key identifier: E6:7C:7E:60:D2:AD:EB:39:2D:C6:82:4C:70:BC:E8:E9:6C:77:41:6D Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0335 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/5nx-YNKt6zktxoJMcLzo6Wx3QW0.roa Signing time: Wed 15 Jan 2025 01:11:35 +0000 ROA not before: Wed 15 Jan 2025 01:11:35 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 10013 IP address blocks: 61.192.208.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 20:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 821 (0x335) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Jan 15 01:11:35 2025 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=E67C7E60D2ADEB392DC6824C70BCE8E96C77416D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:4c:a3:24:97:8c:57:74:f2:85:a4:52:49:d7: 37:56:27:a4:19:d8:7a:21:d7:b6:c7:4f:05:7b:4f: de:07:65:12:fa:9f:7a:4f:99:b2:fe:c5:e4:dc:1e: 16:4b:82:d8:2f:a6:06:16:1e:2f:7a:4c:cf:36:a3: 5a:d7:b4:3a:5a:e3:ee:ea:15:24:b4:64:0e:85:db: b2:ed:8b:af:74:26:02:f5:95:fd:81:bd:fd:af:ab: b3:db:49:ec:65:b3:5d:9a:ea:d7:93:7b:02:6b:c7: bc:51:48:0a:4b:e1:7c:ec:77:df:ab:45:a3:b3:1a: 17:21:7a:45:b9:f1:b8:83:c4:1b:e5:bb:e1:99:83: 3a:77:31:4a:cc:33:9a:37:b5:ef:d9:b6:d1:9f:4e: 04:2f:b9:c5:20:d0:c6:05:1f:5a:d6:2f:58:65:9f: bf:a1:0d:7e:96:06:d3:04:7f:fe:b4:44:44:0b:6f: 64:7a:03:5b:41:d5:84:c1:e2:41:11:98:55:75:1e: c2:fa:43:ae:99:32:6d:0a:71:82:2b:7b:71:b5:70: 53:5e:f7:b5:da:73:c4:df:c5:64:c3:33:69:4c:04: 6a:a2:cb:29:da:9f:cf:ff:97:4d:51:46:7a:07:a1: 21:e4:31:80:9c:f9:25:43:f9:5d:a8:1f:7a:f1:0e: fd:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:7C:7E:60:D2:AD:EB:39:2D:C6:82:4C:70:BC:E8:E9:6C:77:41:6D X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/5nx-YNKt6zktxoJMcLzo6Wx3QW0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.192.208.0/21 Signature Algorithm: sha256WithRSAEncryption 4f:f1:23:49:00:f4:0e:67:af:22:ea:b0:47:c1:1f:46:86:b0: e6:58:04:27:ac:7c:4b:a6:09:01:a0:eb:9f:e4:51:ac:f0:52: 67:2c:b7:97:fd:58:b0:4d:45:38:b3:6b:43:06:23:04:e7:0e: 23:2c:bb:94:b1:ba:33:ba:51:12:b6:b8:7b:1f:ce:8c:41:05: d6:39:2a:65:04:4c:e4:3c:ea:19:91:9c:3d:fd:34:df:54:0f: d3:15:bc:80:10:a9:d2:ca:35:01:79:96:dd:1a:aa:4a:ec:92: 91:5e:c3:63:51:90:4b:62:9f:e0:12:f5:91:9e:07:39:47:76: 55:b7:c0:d1:b2:43:7c:eb:59:75:a9:4d:9a:13:56:f0:8c:13: 6d:4f:a0:02:64:74:95:f9:0d:7c:7b:ac:75:e8:90:83:25:b9: 6c:8c:95:45:78:cc:cc:56:47:ba:9f:29:82:3f:17:56:f5:dd: 12:f3:7d:6d:80:b6:74:30:14:d1:dc:c4:67:3d:9e:0c:15:bf: 5a:e8:0f:9e:b8:aa:67:33:1f:48:27:b7:b3:bb:75:fe:8c:1b: 99:ef:13:58:7c:e9:c2:a8:92:bf:df:c6:5b:1c:07:d5:38:6e: 64:8e:0a:e2:f5:c5:36:d8:47:d9:6f:90:dd:21:b7:cb:8b:fd: 8b:8c:98:3a -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAzUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTAxMTUw MTExMzVaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEU2N0M3RTYwRDJBREVC MzkyREM2ODI0QzcwQkNFOEU5NkM3NzQxNkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTTKMkl4xXdPKFpFJJ1zdWJ6QZ2Hoh17bHTwV7T94HZRL6n3pP mbL+xeTcHhZLgtgvpgYWHi96TM82o1rXtDpa4+7qFSS0ZA6F27Lti690JgL1lf2B vf2vq7PbSexls12a6teTewJrx7xRSApL4Xzsd9+rRaOzGhchekW58biDxBvlu+GZ gzp3MUrMM5o3te/ZttGfTgQvucUg0MYFH1rWL1hln7+hDX6WBtMEf/60REQLb2R6 A1tB1YTB4kERmFV1HsL6Q66ZMm0KcYIre3G1cFNe97Xac8TfxWTDM2lMBGqiyyna n8//l01RRnoHoSHkMYCc+SVD+V2oH3rxDv3hAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU5nx+YNKt6zktxoJMcLzo6Wx3QW0wHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0LzVueC1ZTkt0NnprdHhvSk1jTHpvNld4M1FXMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAM9wNAwDQYJKoZIhvcNAQELBQADggEBAE/xI0kA9A5nryLqsEfBH0aGsOZY BCesfEumCQGg65/kUazwUmcst5f9WLBNRTiza0MGIwTnDiMsu5SxujO6URK2uHsf zoxBBdY5KmUETOQ86hmRnD39NN9UD9MVvIAQqdLKNQF5lt0aqkrskpFew2NRkEti n+AS9ZGeBzlHdlW3wNGyQ3zrWXWpTZoTVvCME21PoAJkdJX5DXx7rHXokIMluWyM lUV4zMxWR7qfKYI/F1b13RLzfW2AtnQwFNHcxGc9ngwVv1roD564qmczH0gnt7O7 df6MG5nvE1h86cKokr/fxlscB9U4bmSOCuL1xTbYR9lvkN0ht8uL/YuMmDo= -----END CERTIFICATE-----Generated at Wed Feb 19 22:39:39 2025 by rpki-client