$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/VKe_6GZeczYVIRuE7AaLfNT0mQM.roa File: VKe_6GZeczYVIRuE7AaLfNT0mQM.roa (raw, json) Hash identifier: Qu5D0JCez3c3UDrXSHRcMSCKOGTwHuGASMpVs+MX4o0= Subject key identifier: 54:A7:BF:E8:66:5E:73:36:15:21:1B:84:EC:06:8B:7C:D4:F4:99:03 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 032E Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/VKe_6GZeczYVIRuE7AaLfNT0mQM.roa Signing time: Wed 15 Jan 2025 01:07:36 +0000 ROA not before: Wed 15 Jan 2025 01:07:36 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 10013 IP address blocks: 61.192.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 814 (0x32e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Jan 15 01:07:36 2025 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=54A7BFE8665E733615211B84EC068B7CD4F49903 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:01:a9:a7:72:be:02:10:9e:52:d1:39:b7:b6: b9:18:9a:02:47:9f:a3:e0:6e:1c:ab:70:12:c9:54: 94:4d:9a:9c:f7:64:ad:91:ff:75:c8:ed:07:e7:ce: cc:5e:28:b7:5f:9d:c2:65:28:6e:48:8b:65:87:c3: 7a:6c:03:f5:93:3e:6d:9f:86:ff:76:7e:d0:16:b2: 51:cf:4e:df:23:09:2c:02:c6:c8:70:6f:bd:9a:5d: 2b:17:1b:77:dc:53:30:ea:e5:58:14:87:43:3c:ef: 3c:3c:a1:da:80:1d:e4:44:1d:b6:e5:67:39:4b:6a: d8:1e:94:d1:7b:6c:61:e5:47:c9:e0:46:89:20:ce: 61:9d:53:eb:af:ab:e6:dc:bc:d9:e3:3d:fb:0d:07: cd:63:f8:0c:48:5a:25:46:5c:e9:36:fe:9a:e6:bf: b9:5f:12:43:4a:86:d9:7f:8c:ea:cf:db:b9:d2:d5: 1f:97:a6:ba:14:9f:9a:a3:01:42:b5:b2:5e:fc:b4: d6:83:59:45:ee:38:f9:e3:89:8f:74:ff:54:e5:28: 58:7d:7b:f6:56:d9:4e:f4:7a:3f:47:45:77:f2:59: 24:ba:6b:8c:6f:da:d9:a3:2f:1d:4c:bc:7f:5f:c3: e9:97:cb:bf:fc:b0:bb:4d:0d:b1:fc:f4:a1:f7:11: 79:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:A7:BF:E8:66:5E:73:36:15:21:1B:84:EC:06:8B:7C:D4:F4:99:03 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/VKe_6GZeczYVIRuE7AaLfNT0mQM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.192.128.0/19 Signature Algorithm: sha256WithRSAEncryption 0b:1a:fc:8a:d7:75:fa:f7:b3:99:a6:52:cf:12:92:d0:e0:28: aa:a5:51:0e:5b:34:ef:ff:eb:94:a0:9f:68:7f:93:7c:7c:52: 3b:67:b6:3d:4e:1f:f9:bb:d8:a3:75:af:c3:50:c2:79:78:5b: eb:a8:98:b8:98:01:e1:f4:99:f9:13:3e:fe:e3:2e:7c:e0:8c: 31:48:38:c5:c7:18:1b:f5:07:1a:35:6a:89:8b:14:bb:2e:15: 40:63:34:f1:d6:ca:03:ea:0a:e5:7d:94:8a:ec:9c:2e:34:6b: b8:48:99:ea:8e:42:61:cf:9a:a3:1d:40:81:1d:05:d4:81:e5: b4:cc:f6:cb:dc:5a:f1:64:55:2e:4a:06:4d:44:30:82:3f:3c: cd:93:1e:12:16:01:ca:82:6e:51:9e:a4:13:c9:de:f9:28:75: 07:2a:4b:ad:f5:a8:06:d5:89:56:90:39:a6:e9:3d:35:48:4e: dc:9f:7f:02:25:1c:96:ec:61:1b:01:91:0d:1f:3e:63:25:65: 00:81:ca:d4:05:36:3e:1d:cb:3e:37:dc:15:a9:82:cb:0d:61: 9f:53:41:a4:97:52:2c:1c:0c:6d:10:73:ef:51:ad:28:5d:b2: 98:ee:7e:78:10:fb:10:ed:39:30:3b:4c:ca:c9:8d:b6:86:71: 34:7f:7e:86 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAy4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTAxMTUw MTA3MzZaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDU0QTdCRkU4NjY1RTcz MzYxNTIxMUI4NEVDMDY4QjdDRDRGNDk5MDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPAamncr4CEJ5S0Tm3trkYmgJHn6PgbhyrcBLJVJRNmpz3ZK2R /3XI7QfnzsxeKLdfncJlKG5Ii2WHw3psA/WTPm2fhv92ftAWslHPTt8jCSwCxshw b72aXSsXG3fcUzDq5VgUh0M87zw8odqAHeREHbblZzlLatgelNF7bGHlR8ngRokg zmGdU+uvq+bcvNnjPfsNB81j+AxIWiVGXOk2/prmv7lfEkNKhtl/jOrP27nS1R+X proUn5qjAUK1sl78tNaDWUXuOPnjiY90/1TlKFh9e/ZW2U70ej9HRXfyWSS6a4xv 2tmjLx1MvH9fw+mXy7/8sLtNDbH89KH3EXkTAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUVKe/6GZeczYVIRuE7AaLfNT0mQMwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L1ZLZV82R1plY3pZVklSdUU3QWFMZk5UMG1RTS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAU9wIAwDQYJKoZIhvcNAQELBQADggEBAAsa/IrXdfr3s5mmUs8SktDgKKql UQ5bNO//65Sgn2h/k3x8Ujtntj1OH/m72KN1r8NQwnl4W+uomLiYAeH0mfkTPv7j LnzgjDFIOMXHGBv1Bxo1aomLFLsuFUBjNPHWygPqCuV9lIrsnC40a7hImeqOQmHP mqMdQIEdBdSB5bTM9svcWvFkVS5KBk1EMII/PM2THhIWAcqCblGepBPJ3vkodQcq S631qAbViVaQOabpPTVITtyffwIlHJbsYRsBkQ0fPmMlZQCBytQFNj4dyz433BWp gssNYZ9TQaSXUiwcDG0Qc+9RrShdspjufngQ+xDtOTA7TMrJjbaGcTR/foY= -----END CERTIFICATE-----Generated at Wed Feb 19 22:36:24 2025 by rpki-client