$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/tNteWkUjeRp_F23Uyd9591_V2WQ.roa File: tNteWkUjeRp_F23Uyd9591_V2WQ.roa (raw, json) Hash identifier: Ztkx5jpCs/WT0KQIJ7laJMeMR1CstcqI23ejj3p1u3g= Subject key identifier: B4:DB:5E:5A:45:23:79:1A:7F:17:6D:D4:C9:DF:79:F7:5F:D5:D9:64 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 034F Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/tNteWkUjeRp_F23Uyd9591_V2WQ.roa Signing time: Fri 24 Jan 2025 01:07:24 +0000 ROA not before: Fri 24 Jan 2025 01:07:24 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 10013 IP address blocks: 202.75.236.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 20:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 847 (0x34f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Jan 24 01:07:24 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=B4DB5E5A4523791A7F176DD4C9DF79F75FD5D964 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:2d:80:e6:0f:a3:15:d8:2b:cc:28:6c:4c:a4: 6d:24:00:af:4e:36:4e:b6:1f:08:41:e6:b6:8a:2a: b8:da:b1:7b:0e:dc:a9:6b:56:d4:10:a0:d2:1e:8a: b7:5d:28:5f:f2:c1:1d:98:48:6c:7b:4c:69:b2:28: f0:c0:09:3e:ea:e5:1a:12:34:ea:a3:1b:7e:92:33: 61:78:47:f8:44:b8:f2:a3:d2:53:33:d6:60:76:d1: 56:3c:b6:2c:2f:d7:5d:6b:3f:1c:5f:68:b1:83:bd: 85:46:38:87:db:e5:d7:68:4b:a0:40:12:d9:4d:f7: e4:d7:25:5c:76:b3:cd:ca:50:01:77:30:e5:0b:8d: 8c:a4:18:f1:f2:ce:5f:e1:0a:3d:48:2c:e9:73:8a: 57:5b:92:dc:cc:ea:3c:38:f6:8c:4a:f1:a8:2a:93: 77:5d:66:b6:5d:de:39:74:2a:6c:3f:83:1b:a1:0b: 6e:69:da:db:a8:10:d6:a4:5d:d4:c8:71:23:64:df: 95:08:ac:46:d5:87:66:fc:e5:79:82:e0:4b:7c:5b: da:30:45:bd:8c:f2:cf:73:73:72:10:da:3d:31:28: 30:b4:f3:96:d5:c4:b3:14:f3:7a:c7:e7:72:8d:7d: 5d:fd:17:91:2e:20:94:16:c2:9c:40:95:2e:63:5e: 14:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:DB:5E:5A:45:23:79:1A:7F:17:6D:D4:C9:DF:79:F7:5F:D5:D9:64 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/tNteWkUjeRp_F23Uyd9591_V2WQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.75.236.0/23 Signature Algorithm: sha256WithRSAEncryption 23:36:43:09:77:51:98:5a:31:51:8b:0c:55:cd:b4:ad:0b:be: 5e:f6:92:63:d2:01:b8:f6:b2:2a:23:bf:cf:91:9b:d8:4c:5f: 1b:19:e5:8c:e6:17:36:3b:0d:9a:84:8b:b7:9c:66:80:d9:bf: 7f:dc:b2:f4:31:de:97:c0:b9:71:4d:d1:d7:c9:15:ad:7a:7f: 27:d4:bb:41:d5:73:4d:bf:04:28:5a:92:79:13:92:d9:7c:64: 80:ab:07:86:5f:f4:cc:9d:39:83:7a:a0:3d:f7:7c:6c:b7:a5: c8:2d:55:29:e1:89:97:ce:2d:84:7c:39:ff:7c:4a:37:40:1c: 0b:ad:3a:ca:6f:68:51:6e:86:20:ff:dd:fd:32:53:8d:48:8d: 99:30:2e:85:e0:e9:6f:94:2b:60:c3:59:cc:e9:f9:9d:84:99: 03:41:88:75:82:7a:12:f6:9b:81:ee:f2:eb:3c:2b:5e:e6:49: 07:9a:37:09:ff:f1:60:cc:e2:c7:16:54:91:ae:71:9d:dc:cd: 38:1c:e2:46:21:ec:90:bc:7c:a2:95:60:01:fd:d5:4e:9a:59: 28:ba:f7:0b:7f:e3:4b:8b:ef:f2:35:4a:c0:40:e6:a2:5d:76: 4c:43:de:52:7a:f1:4a:bc:3f:cb:37:3f:7e:bd:24:44:24:3d: ce:1f:60:b5 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICA08wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNTAxMjQw MTA3MjRaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEI0REI1RTVBNDUyMzc5 MUE3RjE3NkRENEM5REY3OUY3NUZENUQ5NjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDfLYDmD6MV2CvMKGxMpG0kAK9ONk62HwhB5raKKrjasXsO3Klr VtQQoNIeirddKF/ywR2YSGx7TGmyKPDACT7q5RoSNOqjG36SM2F4R/hEuPKj0lMz 1mB20VY8tiwv111rPxxfaLGDvYVGOIfb5ddoS6BAEtlN9+TXJVx2s83KUAF3MOUL jYykGPHyzl/hCj1ILOlzildbktzM6jw49oxK8agqk3ddZrZd3jl0Kmw/gxuhC25p 2tuoENakXdTIcSNk35UIrEbVh2b85XmC4Et8W9owRb2M8s9zc3IQ2j0xKDC085bV xLMU83rH53KNfV39F5EuIJQWwpxAlS5jXhQ5AgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUtNteWkUjeRp/F23Uyd9591/V2WQwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L3ROdGVXa1VqZVJwX0YyM1V5ZDk1OTFfVjJXUS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHKS+wwDQYJKoZIhvcNAQELBQADggEBACM2Qwl3UZhaMVGLDFXNtK0Lvl72 kmPSAbj2siojv8+Rm9hMXxsZ5YzmFzY7DZqEi7ecZoDZv3/csvQx3pfAuXFN0dfJ Fa16fyfUu0HVc02/BChaknkTktl8ZICrB4Zf9MydOYN6oD33fGy3pcgtVSnhiZfO LYR8Of98SjdAHAutOspvaFFuhiD/3f0yU41IjZkwLoXg6W+UK2DDWczp+Z2EmQNB iHWCehL2m4Hu8us8K17mSQeaNwn/8WDM4scWVJGucZ3czTgc4kYh7JC8fKKVYAH9 1U6aWSi69wt/40uL7/I1SsBA5qJddkxD3lJ68Uq8P8s3P369JEQkPc4fYLU= -----END CERTIFICATE-----Generated at Wed Feb 19 22:34:11 2025 by rpki-client