$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/r-8MoOHipbYhgQ0GBhtcB3tL8Dg.roa File: r-8MoOHipbYhgQ0GBhtcB3tL8Dg.roa (raw, json) Hash identifier: 0oSEMtjLbf3Dcf3JgTOZJExltwwUXxbYPCDDdp8Okm4= Subject key identifier: AF:EF:0C:A0:E1:E2:A5:B6:21:81:0D:06:06:1B:5C:07:7B:4B:F0:38 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 02EC Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/r-8MoOHipbYhgQ0GBhtcB3tL8Dg.roa Signing time: Fri 11 Oct 2024 01:16:50 +0000 ROA not before: Fri 11 Oct 2024 01:16:50 +0000 ROA not after: Mon 15 Sep 2025 01:30:03 +0000 asID: 10013 IP address blocks: 36.52.220.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 748 (0x2ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Oct 11 01:16:50 2024 GMT Not After : Sep 15 01:30:03 2025 GMT Subject: CN=AFEF0CA0E1E2A5B621810D06061B5C077B4BF038 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:32:8e:65:69:31:e9:be:85:d8:be:df:b0:14: a9:cf:d1:66:e1:1a:e3:53:ae:02:a1:c2:32:83:1f: 9f:74:63:e9:2f:56:dc:46:2a:1b:ef:fa:e4:f3:6e: 6b:b6:c9:6d:53:50:91:dd:ac:d5:dd:a8:91:fc:e7: f7:69:e6:eb:e4:4f:11:72:89:ba:d3:35:d9:f4:b6: 63:d5:89:b7:89:86:ce:92:5f:e6:1b:90:40:92:c2: 9f:85:27:e5:25:f4:c3:dc:b9:74:5b:bd:c3:46:c3: 51:08:ce:29:ec:b7:51:9d:ee:ba:21:c3:64:38:3e: 4c:dd:6c:0f:5f:e8:c9:87:d4:c6:5d:5e:1c:bb:9c: 47:4f:1e:d9:9d:29:73:2b:99:5a:79:8f:66:d8:df: c9:af:d5:6f:32:9f:ec:6c:ec:52:25:8e:58:5c:45: ea:87:ff:32:93:bf:0c:84:b3:53:26:f3:32:7d:d9: 16:aa:18:af:25:03:b5:60:4e:3b:3c:94:28:92:28: e2:36:bb:67:a7:12:76:cf:c8:c0:df:72:02:c7:32: 6c:9c:17:da:dc:9e:f2:f2:c3:50:0f:c8:e2:7d:4e: c3:5b:c5:d5:27:78:9a:fd:14:c5:95:46:57:b1:66: c8:21:ef:32:db:f5:4b:6d:dd:06:6d:ff:fe:cd:75: e3:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:EF:0C:A0:E1:E2:A5:B6:21:81:0D:06:06:1B:5C:07:7B:4B:F0:38 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/r-8MoOHipbYhgQ0GBhtcB3tL8Dg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.52.220.0/23 Signature Algorithm: sha256WithRSAEncryption 7d:34:42:03:1a:d7:43:ff:31:0f:64:7d:86:37:34:12:ff:14: 9c:46:c8:3c:a2:0e:44:fa:4a:01:49:85:9c:85:f2:f0:86:ec: c2:9a:a9:c4:89:5c:95:99:84:69:a6:ca:64:3c:c4:02:f1:f9: e6:21:d3:20:5a:f1:d5:25:0f:15:03:63:ef:9d:28:44:ff:03: d6:05:d1:e4:d6:19:3f:36:6b:5a:f2:b3:e1:a0:e2:0c:26:87: 9b:ea:fd:f5:03:16:9f:81:c0:02:cd:f0:86:df:f2:36:7a:a6: 16:cd:b5:59:ca:9e:eb:cc:39:de:be:94:7b:e9:4e:33:08:5a: 6c:b9:e6:8f:43:a6:58:99:a3:79:e1:ab:36:db:86:d8:38:74: c3:db:c4:1c:1f:de:7f:63:27:f8:5d:31:55:0e:e0:35:72:45: a4:fb:26:fd:3e:c6:bc:af:ba:fa:c2:61:92:fb:68:68:de:cb: 25:aa:93:00:5c:38:25:c3:35:b5:41:b9:d2:bb:cb:81:1c:61: 65:82:e0:15:75:76:df:c3:4d:0d:4a:01:ce:4d:67:1a:9e:a7: f7:20:7d:5d:2c:95:a8:ac:a6:c3:be:8a:e9:fa:cc:59:c0:2b: 87:19:f2:5d:49:7d:67:54:97:94:a3:01:da:d3:75:a4:43:ec: 35:dd:fb:98 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAuwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNDEwMTEw MTE2NTBaFw0yNTA5MTUwMTMwMDNaMDMxMTAvBgNVBAMTKEFGRUYwQ0EwRTFFMkE1 QjYyMTgxMEQwNjA2MUI1QzA3N0I0QkYwMzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuMo5laTHpvoXYvt+wFKnP0WbhGuNTrgKhwjKDH590Y+kvVtxG Khvv+uTzbmu2yW1TUJHdrNXdqJH85/dp5uvkTxFyibrTNdn0tmPVibeJhs6SX+Yb kECSwp+FJ+Ul9MPcuXRbvcNGw1EIzinst1Gd7rohw2Q4PkzdbA9f6MmH1MZdXhy7 nEdPHtmdKXMrmVp5j2bY38mv1W8yn+xs7FIljlhcReqH/zKTvwyEs1Mm8zJ92Raq GK8lA7VgTjs8lCiSKOI2u2enEnbPyMDfcgLHMmycF9rcnvLyw1APyOJ9TsNbxdUn eJr9FMWVRlexZsgh7zLb9Utt3QZt//7NdeNZAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUr+8MoOHipbYhgQ0GBhtcB3tL8DgwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L3ItOE1vT0hpcGJZaGdRMEdCaHRjQjN0TDhEZy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEkNNwwDQYJKoZIhvcNAQELBQADggEBAH00QgMa10P/MQ9kfYY3NBL/FJxG yDyiDkT6SgFJhZyF8vCG7MKaqcSJXJWZhGmmymQ8xALx+eYh0yBa8dUlDxUDY++d KET/A9YF0eTWGT82a1rys+Gg4gwmh5vq/fUDFp+BwALN8Ibf8jZ6phbNtVnKnuvM Od6+lHvpTjMIWmy55o9DpliZo3nhqzbbhtg4dMPbxBwf3n9jJ/hdMVUO4DVyRaT7 Jv0+xryvuvrCYZL7aGjeyyWqkwBcOCXDNbVBudK7y4EcYWWC4BV1dt/DTQ1KAc5N Zxqep/cgfV0slaispsO+iun6zFnAK4cZ8l1JfWdUl5SjAdrTdaRD7DXd+5g= -----END CERTIFICATE-----Generated at Sun Feb 16 22:16:46 2025 by rpki-client