$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/iRYp0em1U5ehCgHD3Ezp-KE-D4o.roa File: iRYp0em1U5ehCgHD3Ezp-KE-D4o.roa (raw, json) Hash identifier: nyG5dxT0NcpiRz+Ni9YJBSDLA6yTdfPcCF2XRegZ3+w= Subject key identifier: 89:16:29:D1:E9:B5:53:97:A1:0A:01:C3:DC:4C:E9:F8:A1:3E:0F:8A Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0347 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/iRYp0em1U5ehCgHD3Ezp-KE-D4o.roa Signing time: Thu 23 Jan 2025 01:14:36 +0000 ROA not before: Thu 23 Jan 2025 01:14:36 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 10013 IP address blocks: 182.236.40.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 20:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 839 (0x347) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Jan 23 01:14:36 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=891629D1E9B55397A10A01C3DC4CE9F8A13E0F8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1c:d0:6c:08:ac:27:21:bc:35:36:81:60:68: 7a:ef:b0:77:ed:b6:c0:53:c4:17:bb:64:9f:94:54: 18:a9:3d:f1:4d:71:11:1b:f1:a1:f0:7b:f7:8e:55: 2b:ca:ac:20:65:85:86:9d:33:b6:47:b7:77:d4:58: 5c:97:dc:1b:68:6e:17:52:4f:61:8d:e4:10:28:e5: 57:03:0b:3a:a0:ae:21:48:14:86:e8:46:d0:5b:9b: d9:77:43:c9:57:b0:2a:b6:cd:2a:6f:01:88:14:9c: 5c:b2:14:e3:f0:a7:e7:f6:61:d2:62:71:5a:64:89: 40:27:15:2d:5b:86:21:c7:a5:28:4d:5c:fa:b6:e1: d5:45:6c:84:ed:68:a3:ff:d9:62:af:7e:2e:19:d5: a0:52:dc:60:17:03:cf:5e:5d:e4:35:cd:e3:1a:ce: c5:f8:8f:1a:45:a3:1d:2e:b5:19:7f:91:27:c2:33: 86:87:5a:d6:81:38:b5:e6:d9:6e:eb:b8:9e:84:d1: 24:01:d4:74:19:e2:80:f4:ca:1d:9d:3f:69:a6:2d: 51:c3:c7:be:47:25:80:f9:0b:cf:13:92:bc:f1:02: e5:b8:b2:2e:3e:da:5f:68:e3:c3:5e:49:49:f3:cc: ce:dc:ab:31:2f:e1:f1:c5:b7:da:1b:85:97:25:01: 93:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:16:29:D1:E9:B5:53:97:A1:0A:01:C3:DC:4C:E9:F8:A1:3E:0F:8A X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/iRYp0em1U5ehCgHD3Ezp-KE-D4o.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 182.236.40.0/23 Signature Algorithm: sha256WithRSAEncryption 57:23:46:bb:69:02:97:c3:b1:f9:0a:af:a8:53:98:49:bc:89: 04:39:1e:c4:12:15:07:7b:a4:c4:75:98:58:8e:7f:c2:1a:37: 40:95:82:08:22:b4:9c:10:36:18:1b:35:c1:9a:10:4a:bb:df: 12:db:a3:24:0b:3c:ee:cb:5b:60:9c:bd:65:07:db:f3:c0:39: 3f:dc:6d:1a:85:2b:52:52:75:7b:b0:a5:51:15:eb:c1:10:7f: 65:9b:4a:23:49:4c:7e:cb:50:62:8a:27:b9:0a:3a:f5:db:78: 7d:1c:13:7c:c9:a4:ba:e3:52:39:aa:1a:f8:39:88:88:94:01: 3b:3b:06:5b:d5:0f:21:57:f6:49:5f:d1:ef:fc:50:b0:99:57: ee:95:0b:39:b8:6b:6c:4f:83:59:f7:f6:83:c6:16:87:bd:28: 59:13:95:7b:20:85:c1:e8:fd:07:01:1f:fa:31:d0:ec:8d:f9: a8:bb:86:c3:42:57:46:24:78:50:dd:b5:7b:e4:eb:c1:98:85: 6d:cb:47:b2:cd:5d:e5:c4:56:0b:b6:9c:16:09:31:7b:3b:be: 46:b8:54:f1:23:2e:6d:51:25:d6:d2:35:34:4c:be:d9:b0:98: 67:51:fd:92:d5:4c:c8:f3:e2:f8:67:2e:e5:ca:4a:ad:84:72: 4a:d0:58:b1 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA0cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTAxMjMw MTE0MzZaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDg5MTYyOUQxRTlCNTUz OTdBMTBBMDFDM0RDNENFOUY4QTEzRTBGOEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5HNBsCKwnIbw1NoFgaHrvsHfttsBTxBe7ZJ+UVBipPfFNcREb 8aHwe/eOVSvKrCBlhYadM7ZHt3fUWFyX3BtobhdST2GN5BAo5VcDCzqgriFIFIbo RtBbm9l3Q8lXsCq2zSpvAYgUnFyyFOPwp+f2YdJicVpkiUAnFS1bhiHHpShNXPq2 4dVFbITtaKP/2WKvfi4Z1aBS3GAXA89eXeQ1zeMazsX4jxpFox0utRl/kSfCM4aH WtaBOLXm2W7ruJ6E0SQB1HQZ4oD0yh2dP2mmLVHDx75HJYD5C88TkrzxAuW4si4+ 2l9o48NeSUnzzM7cqzEv4fHFt9obhZclAZNRAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUiRYp0em1U5ehCgHD3Ezp+KE+D4owHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L2lSWXAwZW0xVTVlaENnSEQzRXpwLUtFLUQ0by5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAG27CgwDQYJKoZIhvcNAQELBQADggEBAFcjRrtpApfDsfkKr6hTmEm8iQQ5 HsQSFQd7pMR1mFiOf8IaN0CVgggitJwQNhgbNcGaEEq73xLboyQLPO7LW2CcvWUH 2/PAOT/cbRqFK1JSdXuwpVEV68EQf2WbSiNJTH7LUGKKJ7kKOvXbeH0cE3zJpLrj UjmqGvg5iIiUATs7BlvVDyFX9klf0e/8ULCZV+6VCzm4a2xPg1n39oPGFoe9KFkT lXsghcHo/QcBH/ox0OyN+ai7hsNCV0YkeFDdtXvk68GYhW3LR7LNXeXEVgu2nBYJ MXs7vka4VPEjLm1RJdbSNTRMvtmwmGdR/ZLVTMjz4vhnLuXKSq2EckrQWLE= -----END CERTIFICATE-----Generated at Wed Feb 19 22:41:02 2025 by rpki-client