$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/qJhZiCX3SPrDHBlUNIl0PQV1zeA.roa File: qJhZiCX3SPrDHBlUNIl0PQV1zeA.roa (raw, json) Hash identifier: w/CC3rZkLHao4W/BF09xsai8cC9Vi+lwaSw2+9NFXyw= Subject key identifier: A8:98:59:88:25:F7:48:FA:C3:1C:19:54:34:89:74:3D:05:75:CD:E0 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0331 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/qJhZiCX3SPrDHBlUNIl0PQV1zeA.roa Signing time: Wed 15 Jan 2025 01:11:34 +0000 ROA not before: Wed 15 Jan 2025 01:11:34 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 10013 IP address blocks: 61.192.164.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 20:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 817 (0x331) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Jan 15 01:11:34 2025 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=A898598825F748FAC31C19543489743D0575CDE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:29:3a:1b:d6:a8:67:81:fc:3a:f5:ac:17:d6: 0c:ec:b1:6b:3a:5c:57:91:2f:2d:3f:c4:54:62:e7: e5:74:c9:2d:68:3b:4b:03:5b:f4:b1:48:86:ff:1a: 14:46:9f:5b:53:54:46:89:1e:4f:54:5c:3c:9d:48: 8d:0c:cb:db:c8:50:63:a4:96:25:5e:e9:cf:f6:6a: e5:de:03:aa:44:53:9a:9d:af:48:01:83:b4:a7:3c: 7e:06:ac:ab:bc:75:a8:b7:f0:61:dd:34:1c:dc:69: 75:58:e0:ed:e4:c9:3a:39:fa:d9:69:d3:d4:c8:88: 28:20:61:71:71:96:15:94:24:89:c2:9a:71:33:9b: ab:10:e4:1b:13:23:ce:dd:1a:c8:f7:59:12:ff:b2: f0:b0:f5:42:94:30:9d:47:cf:33:fb:27:58:93:91: 16:53:54:6c:79:75:9f:8a:46:7f:09:fa:24:fc:ca: 01:e8:84:2c:cd:65:95:78:6c:d7:f4:82:43:c7:1c: 54:27:67:52:e3:8b:8a:33:aa:dc:15:45:de:6f:97: 49:1a:a4:04:80:a5:05:fc:6e:64:4c:e4:f6:31:d9: 8f:73:fb:c7:72:62:85:c3:e7:87:21:f6:bd:ab:1b: 54:7f:66:b6:27:6d:c6:89:9d:cc:55:e2:62:67:bf: 8c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:98:59:88:25:F7:48:FA:C3:1C:19:54:34:89:74:3D:05:75:CD:E0 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/qJhZiCX3SPrDHBlUNIl0PQV1zeA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.192.164.0/22 Signature Algorithm: sha256WithRSAEncryption 96:b9:28:58:28:a8:ce:4b:6c:49:88:7e:db:6e:47:a8:4f:3d: 66:70:9f:2b:91:d1:a8:86:c2:d4:e8:71:35:7b:fb:9b:4b:da: 0d:16:de:b8:f9:3b:94:66:b7:5b:0c:00:bb:83:57:8e:80:e2: 37:8e:0f:95:af:64:22:a7:83:c8:ec:5a:c7:9c:bf:cc:64:2c: 37:14:dc:3a:69:2b:30:98:9f:c5:e9:6c:b9:0c:77:91:88:2e: 5b:c2:e4:1f:65:6a:8a:ce:a5:88:6e:e6:67:9b:48:1e:c4:d7: 9b:a4:d9:86:db:e0:82:52:a9:06:71:90:be:33:32:71:2d:d5: 6c:a7:2e:53:df:10:03:c6:e3:50:7c:fe:3d:9d:4d:72:44:ac: f9:10:fd:f6:c0:27:1c:d9:70:fc:e1:52:19:9c:5f:73:c6:51: 60:71:8f:3a:6d:61:a9:0f:fe:eb:67:14:f0:c9:ac:b5:dc:c9: 7f:0c:73:ca:25:15:f0:b4:34:31:79:ea:9e:78:5a:cc:8a:e8: 01:23:09:09:9d:86:d6:eb:bf:1e:70:b4:61:d5:9a:44:92:ea: 33:a9:a0:ec:c9:13:5d:37:8e:35:1e:34:ab:65:bf:72:27:f5: 4d:87:2c:1f:6d:12:2f:6a:46:85:7d:46:67:5c:9c:80:f9:84: e3:a6:ae:b1 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAzEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTAxMTUw MTExMzRaFw0yNTEyMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEE4OTg1OTg4MjVGNzQ4 RkFDMzFDMTk1NDM0ODk3NDNEMDU3NUNERTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCVKTob1qhngfw69awX1gzssWs6XFeRLy0/xFRi5+V0yS1oO0sD W/SxSIb/GhRGn1tTVEaJHk9UXDydSI0My9vIUGOkliVe6c/2auXeA6pEU5qdr0gB g7SnPH4GrKu8dai38GHdNBzcaXVY4O3kyTo5+tlp09TIiCggYXFxlhWUJInCmnEz m6sQ5BsTI87dGsj3WRL/svCw9UKUMJ1HzzP7J1iTkRZTVGx5dZ+KRn8J+iT8ygHo hCzNZZV4bNf0gkPHHFQnZ1Lji4ozqtwVRd5vl0kapASApQX8bmRM5PYx2Y9z+8dy YoXD54ch9r2rG1R/ZrYnbcaJncxV4mJnv4zTAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUqJhZiCX3SPrDHBlUNIl0PQV1zeAwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L3FKaFppQ1gzU1ByREhCbFVOSWwwUFFWMXplQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAI9wKQwDQYJKoZIhvcNAQELBQADggEBAJa5KFgoqM5LbEmIfttuR6hPPWZw nyuR0aiGwtTocTV7+5tL2g0W3rj5O5Rmt1sMALuDV46A4jeOD5WvZCKng8jsWsec v8xkLDcU3DppKzCYn8XpbLkMd5GILlvC5B9laorOpYhu5mebSB7E15uk2Ybb4IJS qQZxkL4zMnEt1WynLlPfEAPG41B8/j2dTXJErPkQ/fbAJxzZcPzhUhmcX3PGUWBx jzptYakP/utnFPDJrLXcyX8Mc8olFfC0NDF56p54WsyK6AEjCQmdhtbrvx5wtGHV mkSS6jOpoOzJE103jjUeNKtlv3In9U2HLB9tEi9qRoV9RmdcnID5hOOmrrE= -----END CERTIFICATE-----Generated at Wed Feb 19 22:43:41 2025 by rpki-client