$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/_1QxlLFoqFP2ABJaO7lcIJWbjVE.roa File: _1QxlLFoqFP2ABJaO7lcIJWbjVE.roa (raw, json) Hash identifier: hPesa/Wr3cE9KApLx7MxZXRdIeaaHJnoR0uvYBy088w= Subject key identifier: FF:54:31:94:B1:68:A8:53:F6:00:12:5A:3B:B9:5C:20:95:9B:8D:51 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0345 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/_1QxlLFoqFP2ABJaO7lcIJWbjVE.roa Signing time: Thu 23 Jan 2025 01:10:46 +0000 ROA not before: Thu 23 Jan 2025 01:10:46 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 10013 IP address blocks: 182.236.8.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 837 (0x345) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Jan 23 01:10:46 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=FF543194B168A853F600125A3BB95C20959B8D51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:5b:4a:5a:70:22:79:84:05:29:5e:c9:a0:c8: 08:a7:13:51:ac:10:71:28:df:8c:80:d4:45:f6:79: 9d:b0:c9:56:1d:77:91:19:51:f7:20:86:70:5b:5a: 8e:a9:36:5a:00:f5:6a:9a:f7:41:ac:02:e4:ab:31: 84:52:42:2f:67:dc:ec:91:97:e0:82:80:ba:7c:61: dd:9d:d6:17:bd:56:e8:a6:53:bb:25:3e:90:c0:39: 8f:8e:df:35:94:85:09:d3:e4:94:2a:36:af:43:3c: d6:02:96:bb:5b:48:ba:65:89:a2:95:dc:10:ef:8d: 64:b1:1e:59:03:5d:20:d7:b9:93:9e:b7:71:8b:07: 09:98:14:c8:c2:6b:41:b1:6b:80:25:24:c0:6f:ea: 6b:99:d3:a5:ab:3b:13:39:cb:43:95:ef:6e:66:1f: 00:6c:f6:cc:c6:c0:bf:30:d5:3c:34:1a:f1:4c:91: 33:01:c3:5a:3a:a7:b9:9c:e5:8e:5e:d6:2a:aa:d5: 3a:ad:23:f8:1b:a2:2b:23:9d:0e:7d:32:8b:9c:aa: 40:4e:aa:30:73:bd:94:b7:3a:8e:62:30:e6:5d:6d: 59:c4:d0:08:20:4a:56:8b:90:59:fe:6b:21:cf:d4: 2e:03:da:b2:5d:1a:11:1b:84:4e:24:14:00:21:0b: 40:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:54:31:94:B1:68:A8:53:F6:00:12:5A:3B:B9:5C:20:95:9B:8D:51 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/_1QxlLFoqFP2ABJaO7lcIJWbjVE.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 182.236.8.0/23 Signature Algorithm: sha256WithRSAEncryption 47:bd:f7:90:b1:95:84:4c:f6:f3:82:ae:36:bd:34:d8:ff:a7: 97:ec:55:13:c3:24:66:db:1f:07:b6:fc:fe:8e:4c:a3:1b:f9: 88:68:ae:50:11:d6:f6:25:9f:a2:f2:c5:cb:78:59:5c:01:b3: 5f:f6:2a:69:65:4b:92:e8:65:1e:de:7d:4c:34:42:81:30:18: d0:bb:f3:c4:8b:48:db:47:42:ac:8c:a0:0c:ad:9e:f5:f1:fc: b4:84:b6:e2:60:8f:5c:2c:f8:4d:9c:e9:98:b5:23:59:c8:dc: c5:d3:70:29:1a:72:08:57:1d:4a:70:f1:40:f8:b8:52:11:46: dd:36:c9:79:4c:81:31:89:61:f2:7e:72:7b:1d:75:08:60:a4: 0d:7e:4b:ba:94:9f:11:ed:92:4d:e7:32:99:aa:ba:53:86:e4: 87:e9:7a:d2:17:db:0c:fe:79:03:54:41:f1:11:35:9c:d3:f9: b9:cf:3e:00:a1:77:a8:a2:f7:16:b8:53:d5:aa:fb:15:a3:45: fc:4e:89:31:c1:b8:e7:da:56:d2:03:a8:ca:36:a9:16:8a:5c: 07:4e:f7:3b:09:b5:46:71:62:cb:5d:48:17:7f:06:6c:b7:1d: dc:b5:37:00:d8:d6:95:50:89:df:bc:84:37:0f:11:c8:a8:66: c4:10:64:0b -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA0UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTAxMjMw MTEwNDZaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEZGNTQzMTk0QjE2OEE4 NTNGNjAwMTI1QTNCQjk1QzIwOTU5QjhENTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+W0pacCJ5hAUpXsmgyAinE1GsEHEo34yA1EX2eZ2wyVYdd5EZ UfcghnBbWo6pNloA9Wqa90GsAuSrMYRSQi9n3OyRl+CCgLp8Yd2d1he9VuimU7sl PpDAOY+O3zWUhQnT5JQqNq9DPNYClrtbSLpliaKV3BDvjWSxHlkDXSDXuZOet3GL BwmYFMjCa0Gxa4AlJMBv6muZ06WrOxM5y0OV725mHwBs9szGwL8w1Tw0GvFMkTMB w1o6p7mc5Y5e1iqq1TqtI/gboisjnQ59MoucqkBOqjBzvZS3Oo5iMOZdbVnE0Agg SlaLkFn+ayHP1C4D2rJdGhEbhE4kFAAhC0DXAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU/1QxlLFoqFP2ABJaO7lcIJWbjVEwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L18xUXhsTEZvcUZQMkFCSmFPN2xjSUpXYmpWRS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAG27AgwDQYJKoZIhvcNAQELBQADggEBAEe995CxlYRM9vOCrja9NNj/p5fs VRPDJGbbHwe2/P6OTKMb+YhorlAR1vYln6Lyxct4WVwBs1/2KmllS5LoZR7efUw0 QoEwGNC788SLSNtHQqyMoAytnvXx/LSEtuJgj1ws+E2c6Zi1I1nI3MXTcCkacghX HUpw8UD4uFIRRt02yXlMgTGJYfJ+cnsddQhgpA1+S7qUnxHtkk3nMpmqulOG5Ifp etIX2wz+eQNUQfERNZzT+bnPPgChd6ii9xa4U9Wq+xWjRfxOiTHBuOfaVtIDqMo2 qRaKXAdO9zsJtUZxYstdSBd/Bmy3Hdy1NwDY1pVQid+8hDcPEcioZsQQZAs= -----END CERTIFICATE-----Generated at Wed Feb 19 22:39:19 2025 by rpki-client