$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/RZGeD9yDp4kTSgfy-sMurM6dzdo.roa File: RZGeD9yDp4kTSgfy-sMurM6dzdo.roa (raw, json) Hash identifier: pDm5wzs5Rsa47WzgusL9+TI1+OvTfP4+gY9nodVRrw4= Subject key identifier: 45:91:9E:0F:DC:83:A7:89:13:4A:07:F2:FA:C3:2E:AC:CE:9D:CD:DA Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0356 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/RZGeD9yDp4kTSgfy-sMurM6dzdo.roa Signing time: Fri 24 Jan 2025 01:11:27 +0000 ROA not before: Fri 24 Jan 2025 01:11:27 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 10013 IP address blocks: 210.229.80.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 854 (0x356) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Jan 24 01:11:27 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=45919E0FDC83A789134A07F2FAC32EACCE9DCDDA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:22:5e:fa:28:fe:e6:28:61:61:b0:79:7d:ea: 14:0d:1a:09:95:37:c3:6d:93:58:b1:6c:87:98:6b: a7:fc:cf:d0:99:ab:fb:1e:e1:72:5d:76:ec:f7:05: 22:78:d1:28:dc:0e:69:db:b4:ab:0b:76:ef:7f:0b: a9:39:ba:26:5c:3e:d5:55:6a:6e:4e:b3:9f:03:a5: bf:b6:ee:46:23:81:ac:36:52:08:b0:d5:2d:0c:bd: 5a:d1:4a:a7:7d:90:ff:94:59:c2:7b:04:79:cd:69: ce:4a:97:84:ae:fc:4b:70:d2:08:19:06:7b:65:7e: 46:62:a9:f9:be:e0:e0:53:75:07:9e:d5:e0:20:48: 4b:76:a1:75:ac:6a:b2:1b:89:84:2b:bc:b9:89:f9: a7:5b:a4:a5:f0:ef:ec:cf:14:b8:a7:7e:b4:0c:7d: cf:c0:31:e9:cc:60:c7:d3:c0:db:5b:23:22:60:37: 7f:b7:b5:09:1a:db:f2:0d:4b:9b:96:6a:c1:db:e5: 8b:46:f6:1a:76:9b:d6:ee:60:f5:3d:6a:1b:b8:af: af:10:32:2c:fb:5e:81:74:3d:90:1a:ad:17:f3:d2: 45:8f:21:01:ab:e6:c7:2f:5d:47:71:7c:a4:ba:43: c6:f1:6d:78:88:69:40:d4:13:28:04:51:0c:2b:3f: 55:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:91:9E:0F:DC:83:A7:89:13:4A:07:F2:FA:C3:2E:AC:CE:9D:CD:DA X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/RZGeD9yDp4kTSgfy-sMurM6dzdo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.229.80.0/22 Signature Algorithm: sha256WithRSAEncryption 29:7a:26:01:e4:93:66:c8:9e:f2:c7:c0:e2:61:28:35:97:cf: 53:cf:03:bc:96:af:42:0e:48:ae:24:60:18:58:c8:fe:9e:93: e1:eb:af:0b:52:c6:d9:1f:79:f9:73:64:b3:0a:9a:01:71:b5: 38:a8:00:3e:55:46:05:4d:59:0c:82:e6:be:2b:e9:87:95:cf: 67:7c:5a:8d:cb:b9:67:83:a4:59:c7:69:a8:06:4f:22:04:d3: 78:03:cb:06:54:3a:f0:45:55:e8:aa:cd:69:df:1a:6e:c5:a1: bc:cc:ae:6a:5f:97:ff:18:12:0b:8b:11:b9:ce:83:79:89:ba: c5:dd:ff:a1:7d:6a:2a:48:d9:c4:d8:ec:46:f3:0c:41:62:db: 50:cd:1e:42:75:92:af:ce:bb:24:fa:e7:ed:72:96:5f:38:d0: 49:45:b3:e6:ce:31:e3:f4:94:1f:fd:38:03:b0:c1:06:81:4b: 25:06:4f:43:ea:93:eb:98:41:4a:12:46:d8:b3:1a:67:1e:4b: cb:d7:93:ad:b2:78:d0:41:60:01:9a:74:2b:d8:b3:ed:c7:87: 01:2e:7c:fc:6b:0b:1a:06:40:93:df:84:93:7c:14:32:8c:4a: 02:81:0b:4c:a5:02:64:a0:a6:3c:a2:06:c9:6a:ba:8e:fd:78: 9b:f0:c1:d6 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA1YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTAxMjQw MTExMjdaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDQ1OTE5RTBGREM4M0E3 ODkxMzRBMDdGMkZBQzMyRUFDQ0U5RENEREEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0Il76KP7mKGFhsHl96hQNGgmVN8Ntk1ixbIeYa6f8z9CZq/se 4XJdduz3BSJ40SjcDmnbtKsLdu9/C6k5uiZcPtVVam5Os58Dpb+27kYjgaw2Ugiw 1S0MvVrRSqd9kP+UWcJ7BHnNac5Kl4Su/Etw0ggZBntlfkZiqfm+4OBTdQee1eAg SEt2oXWsarIbiYQrvLmJ+adbpKXw7+zPFLinfrQMfc/AMenMYMfTwNtbIyJgN3+3 tQka2/INS5uWasHb5YtG9hp2m9buYPU9ahu4r68QMiz7XoF0PZAarRfz0kWPIQGr 5scvXUdxfKS6Q8bxbXiIaUDUEygEUQwrP1VXAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQURZGeD9yDp4kTSgfy+sMurM6dzdowHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L1JaR2VEOXlEcDRrVFNnZnktc011ck02ZHpkby5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALS5VAwDQYJKoZIhvcNAQELBQADggEBACl6JgHkk2bInvLHwOJhKDWXz1PP A7yWr0IOSK4kYBhYyP6ek+HrrwtSxtkfeflzZLMKmgFxtTioAD5VRgVNWQyC5r4r 6YeVz2d8Wo3LuWeDpFnHaagGTyIE03gDywZUOvBFVeiqzWnfGm7FobzMrmpfl/8Y EguLEbnOg3mJusXd/6F9aipI2cTY7EbzDEFi21DNHkJ1kq/OuyT65+1yll840ElF s+bOMeP0lB/9OAOwwQaBSyUGT0Pqk+uYQUoSRtizGmceS8vXk62yeNBBYAGadCvY s+3HhwEufPxrCxoGQJPfhJN8FDKMSgKBC0ylAmSgpjyiBslquo79eJvwwdY= -----END CERTIFICATE-----Generated at Wed Feb 19 22:29:46 2025 by rpki-client