$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/vH42XhWdk-OmqxgFTBYa-hjOiVc.roa File: vH42XhWdk-OmqxgFTBYa-hjOiVc.roa (raw, json) Hash identifier: 5J/0qPXEll9/uS3cre2XWneAZYaPHv+Dy0LYcjBdR0c= Subject key identifier: BC:7E:36:5E:15:9D:93:E3:A6:AB:18:05:4C:16:1A:FA:18:CE:89:57 Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Certificate serial: 02DD Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/vH42XhWdk-OmqxgFTBYa-hjOiVc.roa Signing time: Mon 30 Sep 2024 01:28:39 +0000 ROA not before: Mon 30 Sep 2024 01:28:39 +0000 ROA not after: Mon 15 Sep 2025 01:30:03 +0000 asID: 4686 IP address blocks: 220.150.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 733 (0x2dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C Validity Not Before: Sep 30 01:28:39 2024 GMT Not After : Sep 15 01:30:03 2025 GMT Subject: CN=BC7E365E159D93E3A6AB18054C161AFA18CE8957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:00:ac:26:ec:d1:e4:be:87:cd:2f:af:e6:ce: a5:d5:a7:02:b1:5e:fc:de:83:51:72:42:cc:14:48: 4e:29:f3:93:e1:ae:ea:f5:3c:00:15:5a:6e:d3:96: 99:fc:78:2a:f0:65:b4:ea:19:71:1d:76:97:23:a8: 90:05:e1:90:6c:6a:b5:06:b2:88:0b:83:80:1c:55: 9d:48:78:2a:36:d8:ec:e6:69:e5:f5:e0:24:7d:8e: 97:4a:0c:c5:d1:bf:d4:3f:11:07:18:47:3f:52:d2: 3f:c8:a2:6c:c6:b1:72:eb:d1:3e:b7:0f:03:15:59: 72:b4:37:99:46:a5:7e:9d:d7:ce:d1:5d:68:35:5c: 43:a3:99:d1:0c:1b:94:da:08:42:d9:c3:22:fc:92: f5:4d:ee:58:38:79:36:b9:6d:5e:1e:ca:da:cc:fb: 51:df:19:65:c6:5e:dc:f2:b7:ce:86:3d:ab:78:be: b2:55:f7:f7:65:c6:97:63:a5:a3:bf:df:fa:78:16: 04:d7:1c:e6:d4:7c:4f:a9:87:3f:e6:96:c0:e7:d5: c0:75:3b:e6:d1:d5:c7:05:30:47:5c:fb:7a:ef:02: 44:5a:96:6e:18:8c:e0:55:03:da:44:c7:72:42:e8: be:c7:9a:92:f5:64:6f:40:bd:de:8e:e9:27:56:76: b0:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:7E:36:5E:15:9D:93:E3:A6:AB:18:05:4C:16:1A:FA:18:CE:89:57 X509v3 Authority Key Identifier: keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/vH42XhWdk-OmqxgFTBYa-hjOiVc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.150.223.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:06:60:ef:fe:95:5a:f7:16:42:33:19:73:47:02:30:3a:48: b2:0d:cd:27:f2:52:20:86:f0:5f:89:6b:34:12:b5:a1:dc:8a: 11:48:c2:d2:f4:78:b0:0b:e1:f4:1b:5a:de:ac:db:17:63:42: 8d:6a:de:04:bd:3b:94:19:42:34:d9:95:c8:0b:f0:a4:85:fb: 3e:1f:2a:62:a2:c0:a4:e2:d0:69:3b:3b:00:b9:5f:25:30:a0: b7:1a:f6:33:25:b1:f9:03:53:54:bb:12:72:77:14:ba:10:0b: 3c:9a:74:8c:7b:7b:94:87:20:2a:9a:f8:79:20:55:58:a4:47: 7b:a1:ed:e2:f1:cf:dd:38:6f:e0:dc:23:c9:20:43:1a:94:09: c7:0a:75:97:c3:1f:4a:9b:05:1c:f7:80:3a:89:a8:db:38:88: 70:28:73:18:38:9b:44:74:9b:0e:96:53:03:34:d0:2b:20:9f: 7d:9a:cc:0a:58:34:b0:7b:43:fb:c4:58:99:58:d9:17:d5:29: 83:52:ee:66:47:a6:cb:07:60:30:42:c9:e4:88:57:1b:eb:64: 12:17:06:a9:b7:4c:0a:74:9e:3f:7c:87:82:c4:08:8c:a7:66: 93:d1:fb:39:b3:58:6f:d6:b0:55:f6:ed:d5:88:1a:35:99:a8: 3c:67:19:f9 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAt0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3 MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yNDA5MzAw MTI4MzlaFw0yNTA5MTUwMTMwMDNaMDMxMTAvBgNVBAMTKEJDN0UzNjVFMTU5RDkz RTNBNkFCMTgwNTRDMTYxQUZBMThDRTg5NTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9AKwm7NHkvofNL6/mzqXVpwKxXvzeg1FyQswUSE4p85Phrur1 PAAVWm7Tlpn8eCrwZbTqGXEddpcjqJAF4ZBsarUGsogLg4AcVZ1IeCo22OzmaeX1 4CR9jpdKDMXRv9Q/EQcYRz9S0j/IomzGsXLr0T63DwMVWXK0N5lGpX6d187RXWg1 XEOjmdEMG5TaCELZwyL8kvVN7lg4eTa5bV4eytrM+1HfGWXGXtzyt86GPat4vrJV 9/dlxpdjpaO/3/p4FgTXHObUfE+phz/mlsDn1cB1O+bR1ccFMEdc+3rvAkRalm4Y jOBVA9pEx3JC6L7HmpL1ZG9Avd6O6SdWdrDbAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUvH42XhWdk+OmqxgFTBYa+hjOiVcwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzk0L3ZINDJYaFdkay1PbXF4Z0ZUQllhLWhqT2lWYy5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADclt8wDQYJKoZIhvcNAQELBQADggEBAC8GYO/+lVr3FkIzGXNHAjA6SLIN zSfyUiCG8F+JazQStaHcihFIwtL0eLAL4fQbWt6s2xdjQo1q3gS9O5QZQjTZlcgL 8KSF+z4fKmKiwKTi0Gk7OwC5XyUwoLca9jMlsfkDU1S7EnJ3FLoQCzyadIx7e5SH ICqa+HkgVVikR3uh7eLxz904b+DcI8kgQxqUCccKdZfDH0qbBRz3gDqJqNs4iHAo cxg4m0R0mw6WUwM00Csgn32azApYNLB7Q/vEWJlY2RfVKYNS7mZHpssHYDBCyeSI VxvrZBIXBqm3TAp0nj98h4LECIynZpPR+zmzWG/WsFX27dWIGjWZqDxnGfk= -----END CERTIFICATE-----Generated at Sun Feb 16 22:30:25 2025 by rpki-client