$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/nJgQ3lhwSjhVj2gMTaoudeKGZ1Y.roa File: nJgQ3lhwSjhVj2gMTaoudeKGZ1Y.roa (raw, json) Hash identifier: EpbKIr5F/0fca8NYg4O2lpzzXwwcm2lzlpkg1Nwig9s= Subject key identifier: 9C:98:10:DE:58:70:4A:38:55:8F:68:0C:4D:AA:2E:75:E2:86:67:56 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0334 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/nJgQ3lhwSjhVj2gMTaoudeKGZ1Y.roa Signing time: Wed 15 Jan 2025 01:11:35 +0000 ROA not before: Wed 15 Jan 2025 01:11:35 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 10013 IP address blocks: 61.192.192.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 820 (0x334) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Jan 15 01:11:35 2025 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=9C9810DE58704A38558F680C4DAA2E75E2866756 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4f:74:40:77:c9:58:0b:24:de:47:9a:a5:52: 2e:13:64:e7:4c:f3:df:9b:c3:46:b5:18:2a:f2:e6: cf:69:54:11:54:b7:3e:0f:a1:a4:a8:10:45:d2:39: bb:65:fe:d3:f8:cd:e7:cf:58:f1:e6:23:02:2a:ba: 72:b9:77:92:b7:35:64:0e:a5:da:93:fa:d7:b3:77: 65:a2:78:38:b8:95:c6:69:5e:ed:20:8b:a8:bd:0e: 23:92:d6:b6:44:9a:80:71:4a:b0:78:39:a7:91:26: 85:8c:fc:26:ef:74:b8:ad:c2:41:06:b6:55:68:ac: 58:c0:92:4e:d3:cf:de:4c:80:7a:3f:06:0a:e3:93: 84:cf:7d:9d:19:ed:8f:84:7b:0c:bb:65:6f:82:4c: ea:f3:a3:7e:34:d1:61:00:1d:d0:15:93:06:7b:2c: cd:19:3e:57:1b:eb:b9:8a:0a:1e:9d:67:9f:d0:4b: 0f:83:54:fb:1d:6a:6e:79:db:59:4a:05:98:2c:e2: 13:ef:3c:54:6b:6c:04:d2:ff:b4:4a:d0:05:c0:27: 6f:b4:44:b6:82:1f:86:33:90:ce:3f:e0:45:ad:3e: 9e:cd:51:b7:4b:9c:88:cc:a7:45:fc:1c:6d:54:79: de:8d:18:7f:db:9a:31:86:9c:92:60:c0:b2:56:57: 95:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:98:10:DE:58:70:4A:38:55:8F:68:0C:4D:AA:2E:75:E2:86:67:56 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/nJgQ3lhwSjhVj2gMTaoudeKGZ1Y.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.192.192.0/20 Signature Algorithm: sha256WithRSAEncryption 78:58:4a:9a:6a:9e:b6:b8:62:12:52:1d:ea:96:93:44:28:29: 16:90:e2:84:fb:71:37:e8:e1:cc:36:bf:3c:ce:73:36:fb:32: 17:23:6b:65:b2:3f:b2:fa:f6:5e:72:0e:0b:b1:97:d9:c2:33: ed:8b:c7:b2:a5:6c:4d:fb:33:f1:61:09:2a:38:f2:09:a2:92: 82:9a:e9:39:59:0b:91:9e:39:90:3a:0f:79:f0:25:23:0a:3f: b8:7c:09:35:a9:71:83:3f:96:20:94:29:0e:d3:67:71:ce:30: f0:e0:89:f4:20:ee:80:e3:b9:dc:bf:49:63:d5:78:bc:66:33: 39:a4:c2:c8:be:6b:f0:8f:b1:39:ba:1f:cd:5b:e2:79:92:aa: 0f:25:af:5c:5e:07:be:04:37:5f:c9:29:1d:78:ca:e0:69:a2: 9d:a5:b2:6f:89:87:d8:2f:af:09:97:8b:c5:7a:d0:33:4e:bd: e2:d2:28:5b:87:8e:be:67:8c:16:e3:f1:87:00:4f:de:85:e8: 3f:53:6e:61:ce:fa:82:05:ff:e1:ca:e4:84:47:0d:cb:0d:55: 50:b4:e7:b7:fe:cb:23:7b:5d:ff:92:88:4e:8f:fa:a6:39:87: f6:ba:3b:3f:bb:32:90:16:ca:26:26:d6:50:7f:a2:d2:2a:a5: 81:b0:e4:6c -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAzQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTAxMTUw MTExMzVaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKDlDOTgxMERFNTg3MDRB Mzg1NThGNjgwQzREQUEyRTc1RTI4NjY3NTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHT3RAd8lYCyTeR5qlUi4TZOdM89+bw0a1GCry5s9pVBFUtz4P oaSoEEXSObtl/tP4zefPWPHmIwIqunK5d5K3NWQOpdqT+tezd2WieDi4lcZpXu0g i6i9DiOS1rZEmoBxSrB4OaeRJoWM/CbvdLitwkEGtlVorFjAkk7Tz95MgHo/Bgrj k4TPfZ0Z7Y+Eewy7ZW+CTOrzo3400WEAHdAVkwZ7LM0ZPlcb67mKCh6dZ5/QSw+D VPsdam5521lKBZgs4hPvPFRrbATS/7RK0AXAJ2+0RLaCH4YzkM4/4EWtPp7NUbdL nIjMp0X8HG1Ued6NGH/bmjGGnJJgwLJWV5V7AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUnJgQ3lhwSjhVj2gMTaoudeKGZ1YwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L25KZ1EzbGh3U2poVmoyZ01UYW91ZGVLR1oxWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQ9wMAwDQYJKoZIhvcNAQELBQADggEBAHhYSppqnra4YhJSHeqWk0QoKRaQ 4oT7cTfo4cw2vzzOczb7Mhcja2WyP7L69l5yDguxl9nCM+2Lx7KlbE37M/FhCSo4 8gmikoKa6TlZC5GeOZA6D3nwJSMKP7h8CTWpcYM/liCUKQ7TZ3HOMPDgifQg7oDj udy/SWPVeLxmMzmkwsi+a/CPsTm6H81b4nmSqg8lr1xeB74EN1/JKR14yuBpop2l sm+Jh9gvrwmXi8V60DNOveLSKFuHjr5njBbj8YcAT96F6D9TbmHO+oIF/+HK5IRH DcsNVVC057f+yyN7Xf+SiE6P+qY5h/a6Oz+7MpAWyiYm1lB/otIqpYGw5Gw= -----END CERTIFICATE-----Generated at Wed Feb 19 22:45:28 2025 by rpki-client