$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/oZ0g9xuJU9_PrZxAAKRd4YBfKKk.roa File: oZ0g9xuJU9_PrZxAAKRd4YBfKKk.roa (raw, json) Hash identifier: yvYM4QpRYE59kaJOSto44DTz/RCSxlsnasLAVntTgaE= Subject key identifier: A1:9D:20:F7:1B:89:53:DF:CF:AD:9C:40:00:A4:5D:E1:80:5F:28:A9 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0348 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/oZ0g9xuJU9_PrZxAAKRd4YBfKKk.roa Signing time: Thu 23 Jan 2025 01:14:36 +0000 ROA not before: Thu 23 Jan 2025 01:14:36 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 10013 IP address blocks: 182.236.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 20:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 840 (0x348) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Jan 23 01:14:36 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=A19D20F71B8953DFCFAD9C4000A45DE1805F28A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d5:3f:62:eb:9a:37:68:be:e9:92:61:7d:10: 3c:a5:a0:c1:23:6f:78:c2:86:ab:1f:e6:a6:cb:49: 44:ab:36:fc:46:e0:29:75:bf:3b:af:e7:82:64:f9: 2d:06:ac:b2:37:e8:c7:10:f8:b8:b7:d5:55:36:e7: c4:cb:53:e6:24:bc:06:d4:f6:7d:9e:3d:25:2e:c1: 1e:1a:28:b6:53:b0:7e:0c:0a:a1:5d:82:a4:79:59: 02:88:0e:40:38:1c:a6:ed:41:4e:9b:4e:0b:8f:a7: c2:3d:58:43:88:37:c8:91:c1:08:d1:d0:19:82:51: b8:3f:d7:45:ca:cc:06:44:27:23:61:67:4e:c1:28: 98:32:0a:34:8a:35:67:15:e3:38:51:4d:a2:5d:8e: 2d:a2:8d:45:4d:20:e2:d6:41:0b:e8:43:2d:3d:03: 75:fa:4f:80:ca:dc:17:e2:53:e7:c7:a4:e6:72:f5: fa:32:00:9b:95:ce:c7:35:da:6a:8b:93:7c:38:79: 04:13:4a:ca:a2:f7:0b:57:7a:c9:cc:83:c5:5c:b2: 52:52:f6:ca:e9:25:c3:7f:f2:3d:a4:57:fe:b5:d3: 85:97:a7:56:7f:59:ca:9e:6e:5d:ff:e1:bb:01:7b: 58:c5:12:b8:55:3f:ae:01:43:84:fa:28:20:ee:c7: 8b:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:9D:20:F7:1B:89:53:DF:CF:AD:9C:40:00:A4:5D:E1:80:5F:28:A9 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/oZ0g9xuJU9_PrZxAAKRd4YBfKKk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 182.236.43.0/24 Signature Algorithm: sha256WithRSAEncryption 19:40:59:d9:bd:a7:90:7d:f1:aa:40:90:92:3f:ae:48:a1:1d: ad:a6:2b:c6:25:09:49:bc:03:73:9e:3e:32:fa:7a:00:cf:7b: 3d:df:b2:ce:c6:b1:eb:86:b0:9b:b0:ac:a7:6b:5e:37:d5:53: dd:c0:7e:63:3f:e7:da:02:24:62:cb:d0:76:2f:2a:59:f8:ed: fa:20:dd:40:e3:77:d7:4f:07:ce:40:df:80:44:95:9a:48:f6: 10:1c:fa:8c:40:8b:20:75:fc:b3:5f:01:01:fc:53:0e:c9:c5: 8c:94:70:b2:28:82:06:25:29:a9:c3:98:dd:32:a3:e2:95:1b: 8e:b9:bc:c8:7b:16:fc:bf:9d:83:8f:d0:ee:9f:2b:6f:b1:b4: b4:e8:11:8b:9c:d8:e5:d7:16:c2:ba:c8:d9:a4:78:d6:16:34: 27:50:6d:6d:5e:27:5b:b9:96:b2:60:49:2c:8d:c1:73:9e:58: 2f:22:8a:30:05:b6:54:03:f4:9d:85:4a:8a:ce:45:2c:3d:35: 6a:81:cf:4f:c3:92:25:f8:39:61:49:40:2c:3c:fe:6f:1e:f4: 8b:f9:7f:8c:fc:17:41:56:67:2c:45:c6:ad:ce:de:ee:b3:7f: 83:5c:17:5d:ac:e5:e1:37:84:2f:72:03:db:b0:59:52:0b:d6: 04:91:f8:54 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA0gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTAxMjMw MTE0MzZaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEExOUQyMEY3MUI4OTUz REZDRkFEOUM0MDAwQTQ1REUxODA1RjI4QTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDH1T9i65o3aL7pkmF9EDyloMEjb3jChqsf5qbLSUSrNvxG4Cl1 vzuv54Jk+S0GrLI36McQ+Li31VU258TLU+YkvAbU9n2ePSUuwR4aKLZTsH4MCqFd gqR5WQKIDkA4HKbtQU6bTguPp8I9WEOIN8iRwQjR0BmCUbg/10XKzAZEJyNhZ07B KJgyCjSKNWcV4zhRTaJdji2ijUVNIOLWQQvoQy09A3X6T4DK3BfiU+fHpOZy9foy AJuVzsc12mqLk3w4eQQTSsqi9wtXesnMg8VcslJS9srpJcN/8j2kV/6104WXp1Z/ Wcqebl3/4bsBe1jFErhVP64BQ4T6KCDux4v3AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUoZ0g9xuJU9/PrZxAAKRd4YBfKKkwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L29aMGc5eHVKVTlfUHJaeEFBS1JkNFlCZktLay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAC27CswDQYJKoZIhvcNAQELBQADggEBABlAWdm9p5B98apAkJI/rkihHa2m K8YlCUm8A3OePjL6egDPez3fss7GseuGsJuwrKdrXjfVU93AfmM/59oCJGLL0HYv Kln47fog3UDjd9dPB85A34BElZpI9hAc+oxAiyB1/LNfAQH8Uw7JxYyUcLIoggYl KanDmN0yo+KVG465vMh7Fvy/nYOP0O6fK2+xtLToEYuc2OXXFsK6yNmkeNYWNCdQ bW1eJ1u5lrJgSSyNwXOeWC8iijAFtlQD9J2FSorORSw9NWqBz0/DkiX4OWFJQCw8 /m8e9Iv5f4z8F0FWZyxFxq3O3u6zf4NcF12s5eE3hC9yA9uwWVIL1gSR+FQ= -----END CERTIFICATE-----Generated at Wed Feb 19 22:44:27 2025 by rpki-client