$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/DhZYTeNI2douD7zdlvawjNjsCcA.roa File: DhZYTeNI2douD7zdlvawjNjsCcA.roa (raw, json) Hash identifier: CmHY3XzhFPVZ7uwL9N8CqfB7jR8HRtaUmEOMw+BZKbU= Subject key identifier: 0E:16:58:4D:E3:48:D9:DA:2E:0F:BC:DD:96:F6:B0:8C:D8:EC:09:C0 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0359 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DhZYTeNI2douD7zdlvawjNjsCcA.roa Signing time: Fri 24 Jan 2025 01:11:28 +0000 ROA not before: Fri 24 Jan 2025 01:11:28 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 10013 IP address blocks: 210.229.90.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 857 (0x359) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Jan 24 01:11:28 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=0E16584DE348D9DA2E0FBCDD96F6B08CD8EC09C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:68:39:b3:7c:0e:82:5d:a3:c4:cd:93:ab:84: 8d:28:3b:f1:90:e1:72:9c:ae:a9:5a:4d:48:18:cc: a6:1b:86:7d:f6:90:10:5a:40:16:e7:f4:74:21:1a: 4d:51:cb:a5:f8:c4:17:2a:94:29:d7:5f:7e:03:6a: 13:57:cd:c7:6d:78:9e:29:a7:33:ac:b3:d5:f2:42: d5:45:8e:9b:22:2b:44:42:fe:f6:f2:30:62:8b:1a: da:c5:16:19:02:ee:be:f9:61:3a:ef:b0:fc:f3:cd: 18:72:51:d8:da:7f:99:35:4a:69:95:86:2d:0a:2e: 67:7c:21:36:42:49:c0:58:a1:ee:0e:ca:99:ea:b8: d1:d5:71:01:9d:ab:9a:41:f6:16:a4:47:09:ad:f4: f6:9f:73:72:11:f8:f3:28:3d:79:5a:5c:c3:cb:30: 1f:5b:8f:cc:44:99:69:a3:d0:d7:ef:6e:eb:f5:52: ee:79:27:54:06:93:5a:05:ac:89:b2:1c:f2:df:03: d2:90:b7:32:bb:12:43:df:29:d5:a1:00:2a:2e:f5: 8b:68:9e:a2:89:a6:da:ac:a4:2b:b8:4f:04:44:09: 0d:f5:40:36:4a:32:de:9a:79:7e:f0:29:cc:1b:63: 09:6e:14:bb:9c:34:b0:77:e8:2a:9b:8b:ab:61:40: fa:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:16:58:4D:E3:48:D9:DA:2E:0F:BC:DD:96:F6:B0:8C:D8:EC:09:C0 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DhZYTeNI2douD7zdlvawjNjsCcA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.229.90.0/23 Signature Algorithm: sha256WithRSAEncryption 39:05:59:f3:1a:30:23:39:da:61:c9:07:00:a4:b4:f3:4c:65: ad:34:17:04:b7:bd:df:be:13:c5:6b:ee:d0:ab:46:28:c0:98: 8f:92:b1:79:d9:85:c9:82:35:c6:b7:3d:08:99:27:5f:86:18: 7b:c3:ff:26:cf:2b:1b:4b:13:fe:c5:ca:dd:fb:a6:7b:56:f5: 27:0a:ad:12:b8:c9:f4:03:01:29:78:bc:87:2f:bc:d9:31:2d: 49:02:27:fc:ad:40:79:9a:2f:4f:a7:12:91:d1:bc:b9:6a:cd: 88:91:71:b9:74:e2:73:a6:79:ab:ed:08:39:ec:38:34:15:43: 84:6e:87:58:08:5e:e4:14:53:c5:a7:6a:e8:fa:45:52:a0:c8: b9:4b:93:76:c5:a8:3a:1e:8c:43:e1:50:a3:63:c0:79:2e:a8: d6:cf:7e:e5:3f:75:47:65:04:70:ff:7f:97:74:0b:ec:c7:9e: 75:40:ae:73:f2:cd:89:32:b1:70:54:42:b9:f1:23:d6:23:4f: 64:3a:51:ee:97:64:61:64:b9:45:05:f8:c6:31:fe:d1:d4:ee: 7e:94:79:5f:0c:db:b5:74:46:44:53:c5:ca:34:1e:d9:64:78: 84:d8:d1:65:06:8c:cc:b7:1b:77:67:03:d7:6c:f9:f2:48:5b: eb:22:a9:00 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA1kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTAxMjQw MTExMjhaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDBFMTY1ODRERTM0OEQ5 REEyRTBGQkNERDk2RjZCMDhDRDhFQzA5QzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5aDmzfA6CXaPEzZOrhI0oO/GQ4XKcrqlaTUgYzKYbhn32kBBa QBbn9HQhGk1Ry6X4xBcqlCnXX34DahNXzcdteJ4ppzOss9XyQtVFjpsiK0RC/vby MGKLGtrFFhkC7r75YTrvsPzzzRhyUdjaf5k1SmmVhi0KLmd8ITZCScBYoe4Oypnq uNHVcQGdq5pB9hakRwmt9Pafc3IR+PMoPXlaXMPLMB9bj8xEmWmj0Nfvbuv1Uu55 J1QGk1oFrImyHPLfA9KQtzK7EkPfKdWhACou9YtonqKJptqspCu4TwRECQ31QDZK Mt6aeX7wKcwbYwluFLucNLB36Cqbi6thQPoJAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUDhZYTeNI2douD7zdlvawjNjsCcAwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L0RoWllUZU5JMmRvdUQ3emRsdmF3ak5qc0NjQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHS5VowDQYJKoZIhvcNAQELBQADggEBADkFWfMaMCM52mHJBwCktPNMZa00 FwS3vd++E8Vr7tCrRijAmI+SsXnZhcmCNca3PQiZJ1+GGHvD/ybPKxtLE/7Fyt37 pntW9ScKrRK4yfQDASl4vIcvvNkxLUkCJ/ytQHmaL0+nEpHRvLlqzYiRcbl04nOm eavtCDnsODQVQ4Ruh1gIXuQUU8Wnauj6RVKgyLlLk3bFqDoejEPhUKNjwHkuqNbP fuU/dUdlBHD/f5d0C+zHnnVArnPyzYkysXBUQrnxI9YjT2Q6Ue6XZGFkuUUF+MYx /tHU7n6UeV8M27V0RkRTxco0HtlkeITY0WUGjMy3G3dnA9ds+fJIW+siqQA= -----END CERTIFICATE-----Generated at Wed Feb 19 22:36:24 2025 by rpki-client