$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/csWLrUeJWiBzQ5ZEGP4vPjmImGw.roa File: csWLrUeJWiBzQ5ZEGP4vPjmImGw.roa (raw, json) Hash identifier: gIzbldEcIH+xNTvvfU01GLNlP512z5RGyGiMZuNUzfY= Subject key identifier: 72:C5:8B:AD:47:89:5A:20:73:43:96:44:18:FE:2F:3E:39:88:98:6C Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0337 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/csWLrUeJWiBzQ5ZEGP4vPjmImGw.roa Signing time: Wed 15 Jan 2025 01:11:36 +0000 ROA not before: Wed 15 Jan 2025 01:11:36 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 10013 IP address blocks: 61.192.220.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 20:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 823 (0x337) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Jan 15 01:11:36 2025 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=72C58BAD47895A207343964418FE2F3E3988986C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:6e:ec:a5:30:3b:4f:85:b4:fa:dd:f1:a6:94: 61:77:cc:3b:4a:27:c6:2e:7e:51:8e:77:9a:ed:5d: 4c:83:0e:bc:36:61:b8:fe:74:01:0f:ee:8c:0a:d8: 0e:0c:af:0c:6a:0a:1e:39:ed:23:b1:bf:b9:09:34: 59:96:b6:8f:c0:ba:84:c1:71:f5:85:21:16:d4:a1: b8:03:88:5c:2c:68:bf:18:36:d5:39:8f:55:19:13: e9:6a:29:c7:83:35:97:07:c3:7c:55:fc:e6:34:51: fb:c7:bf:61:6e:46:74:18:33:bb:47:6c:29:20:9c: be:0a:7e:da:38:27:b1:4f:08:6c:c0:3f:3e:10:7d: 45:f3:01:e0:30:1f:38:50:2c:ce:4f:fe:6d:78:45: 52:ef:be:42:58:9a:af:42:97:2e:bb:c7:e0:f1:b1: 03:0c:00:98:aa:7b:fc:a5:71:f9:7b:26:b1:e5:71: 36:0d:82:45:a3:e8:3f:65:39:7b:79:db:5d:64:27: 86:ba:0a:92:69:3a:04:c3:9d:a1:de:36:bf:22:6a: 33:ce:1f:e2:3f:ef:c5:ee:d3:07:e8:5c:53:0f:53: f5:d8:00:79:80:a1:ae:15:35:ba:8a:4d:09:e5:6a: 07:50:d0:82:d2:0e:97:80:36:b6:7c:4b:e9:e7:68: 56:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:C5:8B:AD:47:89:5A:20:73:43:96:44:18:FE:2F:3E:39:88:98:6C X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/csWLrUeJWiBzQ5ZEGP4vPjmImGw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.192.220.0/23 Signature Algorithm: sha256WithRSAEncryption 50:00:af:9e:2d:c3:b6:a0:88:4f:95:ac:23:c2:a0:e5:15:6f: 16:7b:ae:e3:72:13:ab:4a:75:2a:5c:a0:18:30:29:ae:40:db: 90:76:8e:fa:c5:a9:d5:8b:d4:35:29:51:37:08:30:a9:70:f1: c9:14:25:eb:46:ff:7e:7b:88:b4:07:0a:58:d4:44:80:a1:34: a6:dd:6d:75:27:ca:3d:94:91:59:21:20:68:f2:e9:c1:50:51: 0a:39:e1:a7:17:e8:68:8f:de:99:eb:31:19:3b:97:da:12:06: 98:ad:1a:68:b1:4e:6c:01:c0:1a:fc:b8:a8:21:54:b1:bb:ad: 60:c8:b8:ff:54:81:ce:0c:2e:39:4f:50:39:10:95:12:67:8c: b4:52:2e:67:bc:71:31:2c:5a:7a:0b:f7:bb:66:d4:77:f5:94: ec:7c:54:35:70:8e:f5:06:7d:9e:38:e1:1e:cc:59:11:96:47: 94:73:d1:17:50:0c:51:9b:21:29:d1:3e:0b:a4:51:90:2d:88: 3d:8a:25:8d:94:8a:04:9e:1f:10:01:67:2c:0d:bb:f0:92:90: fc:4e:ac:04:05:44:dc:a5:54:61:c1:88:e3:0e:17:26:76:43: f7:15:67:11:16:33:55:f5:cf:01:0c:e8:40:1e:bf:7d:17:f5: 4e:4f:80:c1 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAzcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTAxMTUw MTExMzZaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDcyQzU4QkFENDc4OTVB MjA3MzQzOTY0NDE4RkUyRjNFMzk4ODk4NkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEbuylMDtPhbT63fGmlGF3zDtKJ8YuflGOd5rtXUyDDrw2Ybj+ dAEP7owK2A4MrwxqCh457SOxv7kJNFmWto/AuoTBcfWFIRbUobgDiFwsaL8YNtU5 j1UZE+lqKceDNZcHw3xV/OY0UfvHv2FuRnQYM7tHbCkgnL4Kfto4J7FPCGzAPz4Q fUXzAeAwHzhQLM5P/m14RVLvvkJYmq9Cly67x+DxsQMMAJiqe/ylcfl7JrHlcTYN gkWj6D9lOXt5211kJ4a6CpJpOgTDnaHeNr8iajPOH+I/78Xu0wfoXFMPU/XYAHmA oa4VNbqKTQnlagdQ0ILSDpeANrZ8S+nnaFbLAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUcsWLrUeJWiBzQ5ZEGP4vPjmImGwwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L2NzV0xyVWVKV2lCelE1WkVHUDR2UGptSW1Hdy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAE9wNwwDQYJKoZIhvcNAQELBQADggEBAFAAr54tw7agiE+VrCPCoOUVbxZ7 ruNyE6tKdSpcoBgwKa5A25B2jvrFqdWL1DUpUTcIMKlw8ckUJetG/357iLQHCljU RIChNKbdbXUnyj2UkVkhIGjy6cFQUQo54acX6GiP3pnrMRk7l9oSBpitGmixTmwB wBr8uKghVLG7rWDIuP9Ugc4MLjlPUDkQlRJnjLRSLme8cTEsWnoL97tm1Hf1lOx8 VDVwjvUGfZ444R7MWRGWR5Rz0RdQDFGbISnRPgukUZAtiD2KJY2UigSeHxABZywN u/CSkPxOrAQFRNylVGHBiOMOFyZ2Q/cVZxEWM1X1zwEM6EAev30X9U5PgME= -----END CERTIFICATE-----Generated at Wed Feb 19 22:37:12 2025 by rpki-client