$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/sSXBoTsrRbGQwsrATFdETzo-HIA.roa File: sSXBoTsrRbGQwsrATFdETzo-HIA.roa (raw, json) Hash identifier: qgAF5jx6/+FObe84u87nJ1nvL5BnFS+vLvXry2DbBfk= Subject key identifier: B1:25:C1:A1:3B:2B:45:B1:90:C2:CA:C0:4C:57:44:4F:3A:3E:1C:80 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 0353 Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/sSXBoTsrRbGQwsrATFdETzo-HIA.roa Signing time: Fri 24 Jan 2025 01:11:26 +0000 ROA not before: Fri 24 Jan 2025 01:11:26 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 10013 IP address blocks: 210.159.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 20:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 851 (0x353) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Jan 24 01:11:26 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=B125C1A13B2B45B190C2CAC04C57444F3A3E1C80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d7:0b:66:63:2e:1c:05:ee:6c:35:45:9a:e5: 19:45:6f:25:71:ab:30:3f:c5:dc:9a:85:31:c7:c4: 23:3f:26:2f:62:f9:fe:af:f9:7c:4c:37:42:fe:98: e6:37:59:68:9a:77:f2:0b:32:de:74:c2:f9:63:a6: 58:68:6a:ee:ff:c9:c8:7b:09:39:cb:cb:bc:b3:8f: f0:3a:64:a9:5d:72:fc:7d:87:9f:92:98:df:5e:46: 24:37:72:54:17:55:6e:1a:3e:42:47:86:ea:5d:7f: 43:a2:1d:95:ae:ec:09:72:f9:ae:72:28:6a:c0:6c: 05:c7:7e:c0:3d:ce:f4:b1:07:2f:d3:c3:b0:19:44: b0:f1:98:55:45:51:02:77:5c:14:dd:2d:3f:f4:19: 75:14:5a:2e:e5:8b:c7:51:6d:6f:af:dc:ac:87:fa: 39:15:11:5e:30:70:dc:ad:32:74:02:ef:db:59:fc: db:51:1e:e3:da:56:c2:c3:b8:f7:fd:e2:74:c3:70: 93:6b:ef:55:0c:33:7b:0e:58:f0:94:00:51:a3:9f: a5:f9:25:14:12:c2:5f:f0:01:18:71:b8:89:58:b3: bc:81:09:bf:53:20:ee:17:0b:9c:d8:28:bf:d8:15: 04:74:6e:77:9a:ff:8f:01:ea:c6:28:0a:de:90:df: 2f:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:25:C1:A1:3B:2B:45:B1:90:C2:CA:C0:4C:57:44:4F:3A:3E:1C:80 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/sSXBoTsrRbGQwsrATFdETzo-HIA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.159.129.0/24 Signature Algorithm: sha256WithRSAEncryption 85:68:b0:38:f4:99:15:c7:58:16:52:19:97:96:b3:d9:db:a6: ee:5a:ef:b0:8a:82:47:64:fd:e7:82:19:74:a0:15:94:39:8c: bb:6d:b9:33:30:de:41:22:be:3c:e9:05:be:6f:2b:36:02:2a: c1:64:9f:1d:d2:7a:43:b6:81:7e:39:c9:12:c0:75:66:3a:d9: ad:9b:b8:ee:f7:37:d4:3f:12:67:2b:a5:d2:f6:5f:af:56:1a: 8a:b8:bf:d4:79:17:30:15:f0:e0:80:b9:1c:07:77:d9:68:97: eb:80:9d:26:28:97:d2:3d:40:71:b9:02:87:d3:74:e3:99:2d: 28:0a:59:1a:58:6a:ce:d1:f8:1c:9f:c9:ba:3f:27:f2:a8:bb: 10:2a:4b:33:45:9e:fb:2a:03:c2:0f:d0:91:de:cb:d8:8c:28: 5d:b1:fe:71:46:04:dd:c9:7f:18:eb:0f:df:80:45:b4:68:8d: 63:21:e3:bb:5a:87:7c:05:48:1e:bf:85:eb:9d:e7:f8:5c:52: 00:55:a7:c4:ec:1c:9a:d2:01:c6:34:6c:1a:22:e9:8b:d3:c3: e5:ff:a8:32:72:4c:9c:0c:7a:97:17:45:51:41:c2:7d:8a:3b: 35:1b:11:0f:43:b0:82:e2:05:88:23:55:23:39:39:07:9a:bf: 8c:0a:dc:2e -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA1MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTAxMjQw MTExMjZaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEIxMjVDMUExM0IyQjQ1 QjE5MEMyQ0FDMDRDNTc0NDRGM0EzRTFDODAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDV1wtmYy4cBe5sNUWa5RlFbyVxqzA/xdyahTHHxCM/Ji9i+f6v +XxMN0L+mOY3WWiad/ILMt50wvljplhoau7/ych7CTnLy7yzj/A6ZKldcvx9h5+S mN9eRiQ3clQXVW4aPkJHhupdf0OiHZWu7Aly+a5yKGrAbAXHfsA9zvSxBy/Tw7AZ RLDxmFVFUQJ3XBTdLT/0GXUUWi7li8dRbW+v3KyH+jkVEV4wcNytMnQC79tZ/NtR HuPaVsLDuPf94nTDcJNr71UMM3sOWPCUAFGjn6X5JRQSwl/wARhxuIlYs7yBCb9T IO4XC5zYKL/YFQR0bnea/48B6sYoCt6Q3y8TAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUsSXBoTsrRbGQwsrATFdETzo+HIAwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L3NTWEJvVHNyUmJHUXdzckFURmRFVHpvLUhJQS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADSn4EwDQYJKoZIhvcNAQELBQADggEBAIVosDj0mRXHWBZSGZeWs9nbpu5a 77CKgkdk/eeCGXSgFZQ5jLttuTMw3kEivjzpBb5vKzYCKsFknx3SekO2gX45yRLA dWY62a2buO73N9Q/EmcrpdL2X69WGoq4v9R5FzAV8OCAuRwHd9lol+uAnSYol9I9 QHG5AofTdOOZLSgKWRpYas7R+Byfybo/J/KouxAqSzNFnvsqA8IP0JHey9iMKF2x /nFGBN3JfxjrD9+ARbRojWMh47tah3wFSB6/heud5/hcUgBVp8TsHJrSAcY0bBoi 6YvTw+X/qDJyTJwMepcXRVFBwn2KOzUbEQ9DsILiBYgjVSM5OQeav4wK3C4= -----END CERTIFICATE-----Generated at Wed Feb 19 22:46:07 2025 by rpki-client