$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/MR8JKrFWvvyFlE0GKWwUNP8Bf9I.roa File: MR8JKrFWvvyFlE0GKWwUNP8Bf9I.roa (raw, json) Hash identifier: 76km3jemaPqMYCIa/gtxx/lWyroD7Dvy7eGw5rI3+4E= Subject key identifier: 31:1F:09:2A:B1:56:BE:FC:85:94:4D:06:29:6C:14:34:FF:01:7F:D2 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0343 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/MR8JKrFWvvyFlE0GKWwUNP8Bf9I.roa Signing time: Thu 23 Jan 2025 01:10:45 +0000 ROA not before: Thu 23 Jan 2025 01:10:45 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 10013 IP address blocks: 182.236.4.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 835 (0x343) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Jan 23 01:10:45 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=311F092AB156BEFC85944D06296C1434FF017FD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ad:55:14:e4:c5:f6:3b:e9:4a:bb:7a:34:75: 3e:cc:e3:de:89:4a:f2:ae:bb:1a:3d:a6:4c:74:02: 9c:ee:6a:01:f0:81:2d:2a:41:f0:a7:e4:a5:6b:5b: 75:5b:1b:34:f8:52:14:cf:a0:5b:ed:39:46:1f:9c: ad:e3:b0:3b:b0:1d:65:eb:f3:05:be:60:d0:a6:50: 08:fe:c9:69:4e:d5:d5:6a:cf:d1:05:51:fd:80:9d: 1b:b0:cf:3f:89:62:d4:9a:95:08:37:db:7a:52:74: 7c:1f:91:08:7a:71:0c:c2:3c:6c:f8:7b:bd:05:d3: c6:c9:11:5a:f1:ec:53:e6:b0:1c:ca:5d:41:24:d7: 13:b3:8d:97:b1:6e:30:96:94:01:07:41:1f:bd:7a: d5:85:d3:5c:d5:3a:10:7a:91:9a:29:4b:10:15:a6: c3:b2:cb:34:04:c9:38:47:07:fd:85:17:ee:a0:66: 09:5d:c8:34:cd:37:e6:3b:43:dd:57:61:01:72:f1: f3:0c:04:fa:28:76:b7:7e:d9:a5:03:f7:d3:b6:af: e8:29:0f:92:bf:5e:b2:2d:50:a3:31:56:38:c2:bc: 41:fb:20:3d:e0:d7:05:fe:6e:37:4b:0c:a9:17:04: 0d:24:13:e8:2c:38:d1:0f:7b:36:a4:44:57:b9:83: c7:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:1F:09:2A:B1:56:BE:FC:85:94:4D:06:29:6C:14:34:FF:01:7F:D2 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/MR8JKrFWvvyFlE0GKWwUNP8Bf9I.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 182.236.4.0/23 Signature Algorithm: sha256WithRSAEncryption 73:a0:37:3f:d9:10:5a:6f:dd:b8:0f:b9:f9:9e:32:96:cd:ff: a6:84:1d:4e:ce:11:fa:a8:f4:e1:ad:a9:c8:31:bb:af:13:bf: 12:31:43:e4:ff:94:41:f0:3b:eb:8d:ac:cd:bd:d3:93:06:9f: be:42:d1:c7:e2:9b:53:ec:93:9c:1a:2d:5e:30:49:3f:1d:b1: eb:24:18:54:1c:cc:ef:ba:59:ae:ae:8c:dc:21:56:0d:3f:ec: 2c:f9:20:0d:38:0e:d1:d3:e6:14:0e:dd:f6:ed:9a:17:65:63: 32:e3:1f:8e:1c:4e:3a:71:72:1c:2b:e9:65:82:03:3a:fb:d6: 80:b2:9c:57:af:11:a4:00:fe:db:f9:56:79:9e:ff:4f:66:01: 4e:15:34:a9:ab:01:16:17:7d:e2:ae:e7:a2:7d:13:46:f4:6c: 50:8e:f0:57:10:24:a2:69:4e:f9:11:ca:93:b0:ab:bf:99:a8: c3:43:3e:fe:24:a0:7e:b7:a7:b8:1c:7a:9e:13:12:fd:8e:e7: fc:4f:76:e5:0f:e9:00:31:33:d8:ef:e2:52:b1:4e:bd:a4:df: c0:57:7a:0d:99:0d:47:8d:61:28:61:04:0e:08:06:db:5a:04: 08:67:32:0e:d9:e5:ea:6d:91:5e:03:55:69:d5:89:a7:4c:a9: 24:f7:49:28 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA0MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTAxMjMw MTEwNDVaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDMxMUYwOTJBQjE1NkJF RkM4NTk0NEQwNjI5NkMxNDM0RkYwMTdGRDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRrVUU5MX2O+lKu3o0dT7M496JSvKuuxo9pkx0ApzuagHwgS0q QfCn5KVrW3VbGzT4UhTPoFvtOUYfnK3jsDuwHWXr8wW+YNCmUAj+yWlO1dVqz9EF Uf2AnRuwzz+JYtSalQg323pSdHwfkQh6cQzCPGz4e70F08bJEVrx7FPmsBzKXUEk 1xOzjZexbjCWlAEHQR+9etWF01zVOhB6kZopSxAVpsOyyzQEyThHB/2FF+6gZgld yDTNN+Y7Q91XYQFy8fMMBPoodrd+2aUD99O2r+gpD5K/XrItUKMxVjjCvEH7ID3g 1wX+bjdLDKkXBA0kE+gsONEPezakRFe5g8efAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUMR8JKrFWvvyFlE0GKWwUNP8Bf9IwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L01SOEpLckZXdnZ5RmxFMEdLV3dVTlA4QmY5SS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAG27AQwDQYJKoZIhvcNAQELBQADggEBAHOgNz/ZEFpv3bgPufmeMpbN/6aE HU7OEfqo9OGtqcgxu68TvxIxQ+T/lEHwO+uNrM2905MGn75C0cfim1Psk5waLV4w ST8dseskGFQczO+6Wa6ujNwhVg0/7Cz5IA04DtHT5hQO3fbtmhdlYzLjH44cTjpx chwr6WWCAzr71oCynFevEaQA/tv5Vnme/09mAU4VNKmrARYXfeKu56J9E0b0bFCO 8FcQJKJpTvkRypOwq7+ZqMNDPv4koH63p7gcep4TEv2O5/xPduUP6QAxM9jv4lKx Tr2k38BXeg2ZDUeNYShhBA4IBttaBAhnMg7Z5eptkV4DVWnViadMqST3SSg= -----END CERTIFICATE-----Generated at Wed Feb 19 22:39:40 2025 by rpki-client