$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/KldclJNnrFM2hqmD8-Vo34U3nzQ.roa File: KldclJNnrFM2hqmD8-Vo34U3nzQ.roa (raw, json) Hash identifier: erp6EImqhYfB5hRFaFt/qWZdiWj3YvqCi2J6k9Pjl0I= Subject key identifier: 2A:57:5C:94:93:67:AC:53:36:86:A9:83:F3:E5:68:DF:85:37:9F:34 Certificate issuer: /CN=095A182FA18D458233284AA8DC88BD075E5D702D Certificate serial: 0166 Authority key identifier: 09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/KldclJNnrFM2hqmD8-Vo34U3nzQ.roa Signing time: Thu 31 Oct 2024 01:34:18 +0000 ROA not before: Thu 31 Oct 2024 01:34:18 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 2527 IP address blocks: 121.2.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 358 (0x166) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=095A182FA18D458233284AA8DC88BD075E5D702D Validity Not Before: Oct 31 01:34:18 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=2A575C949367AC533686A983F3E568DF85379F34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:5d:06:61:3a:d9:66:6e:58:cc:5a:f6:ef:be: 8f:38:0f:5c:20:5a:43:59:57:a5:f1:08:3f:db:87: ce:88:e8:8d:a8:b9:02:87:86:ac:2c:ab:bf:d7:2f: 89:ff:ea:d5:42:e2:6d:c1:7b:f0:57:14:d8:d5:09: 93:74:14:88:c0:52:f6:16:d2:03:a2:be:53:7e:ed: d8:67:c8:0e:51:e3:45:2e:42:19:18:22:f3:0b:fe: 89:a6:7b:2a:35:8f:b4:38:de:56:9d:6b:0e:01:0b: ce:21:04:93:79:29:c2:25:b6:88:f4:85:a5:10:56: f4:57:5d:57:d1:76:81:7d:b0:c7:e8:cc:79:e1:07: 27:19:de:2f:cc:22:8b:f4:65:56:9b:5d:d9:d4:e4: 63:bf:d9:9e:91:03:5a:6e:4a:f0:45:d5:35:d1:8e: a5:ad:58:a5:8d:16:a2:e6:b8:47:71:b6:1a:af:cb: 38:f3:da:65:60:30:69:56:30:0e:10:20:f9:ae:01: c9:0a:8d:bf:31:aa:8b:ff:5c:33:3c:e0:ef:60:02: 8a:4a:b9:9e:72:81:81:00:ae:f1:f3:99:00:ac:79: a0:78:14:6f:37:6c:99:dd:bb:f2:f4:d8:4d:d7:f9: e7:d1:35:07:3a:8d:95:0a:f9:ae:7c:67:56:75:f6: fd:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:57:5C:94:93:67:AC:53:36:86:A9:83:F3:E5:68:DF:85:37:9F:34 X509v3 Authority Key Identifier: keyid:09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/KldclJNnrFM2hqmD8-Vo34U3nzQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 121.2.0.0/15 Signature Algorithm: sha256WithRSAEncryption 57:d9:5f:3a:5c:77:cd:78:2d:c3:86:5a:57:17:23:89:89:50: 7d:fe:f8:ca:f6:91:00:8d:04:27:b5:f9:d8:f7:20:b4:76:4a: 69:b5:8e:5b:cc:eb:ba:89:c7:11:c5:f7:0a:c5:4d:d4:8a:b0: 92:f2:90:94:35:83:8b:cb:7f:4e:31:8d:d0:25:f0:4e:c5:ac: 64:97:42:c2:be:1f:45:d1:cd:3c:b5:24:94:1b:43:2e:a3:9b: ab:d7:c2:e4:9b:f0:d9:22:72:6b:a2:5f:3f:60:2d:5d:2c:69: b0:87:56:69:11:88:f5:5b:80:00:72:70:e1:8d:ce:32:2b:9f: 46:87:67:e3:af:36:eb:65:5f:e7:8e:15:fc:01:be:0d:30:cb: 1d:f0:98:36:8f:12:33:54:91:b5:12:82:b5:60:6c:7c:58:46: df:f9:89:b7:9b:52:54:37:4a:c3:a4:1d:ca:53:61:81:39:e0: c3:a6:33:4e:3e:9b:f6:3f:62:46:14:d3:ca:c6:9e:f4:13:26: 0b:25:3c:80:54:c3:39:09:66:ce:db:13:1e:1c:35:41:de:4a: 31:3d:f0:4d:7b:c6:3f:10:02:61:69:51:61:fa:65:18:9d:e8: 0c:9e:0c:74:c5:28:45:76:39:3f:84:c7:e4:5b:ec:05:50:fb: f4:14:95:a4 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgICAWYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDk1 QTE4MkZBMThENDU4MjMzMjg0QUE4REM4OEJEMDc1RTVENzAyRDAeFw0yNDEwMzEw MTM0MThaFw0yNTEwMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDJBNTc1Qzk0OTM2N0FD NTMzNjg2QTk4M0YzRTU2OERGODUzNzlGMzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEXQZhOtlmbljMWvbvvo84D1wgWkNZV6XxCD/bh86I6I2ouQKH hqwsq7/XL4n/6tVC4m3Be/BXFNjVCZN0FIjAUvYW0gOivlN+7dhnyA5R40UuQhkY IvML/ommeyo1j7Q43ladaw4BC84hBJN5KcIltoj0haUQVvRXXVfRdoF9sMfozHnh BycZ3i/MIov0ZVabXdnU5GO/2Z6RA1puSvBF1TXRjqWtWKWNFqLmuEdxthqvyzjz 2mVgMGlWMA4QIPmuAckKjb8xqov/XDM84O9gAopKuZ5ygYEArvHzmQCseaB4FG83 bJndu/L02E3X+efRNQc6jZUK+a58Z1Z19v25AgMBAAGjggIhMIICHTAdBgNVHQ4E FgQUKldclJNnrFM2hqmD8+Vo34U3nzQwHwYDVR0jBBgwFoAUCVoYL6GNRYIzKEqo 3Ii9B15dcC0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQzL0NWb1lMNkdOUllJektFcW8zSWk5QjE1ZGNDMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0NWb1lMNkdOUllJektFcW8zSWk5QjE1 ZGNDMC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80My9LbGRjbEpObnJGTTJocW1EOC1WbzM0VTNuelEucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAF AwMBeQIwDQYJKoZIhvcNAQELBQADggEBAFfZXzpcd814LcOGWlcXI4mJUH3++Mr2 kQCNBCe1+dj3ILR2Smm1jlvM67qJxxHF9wrFTdSKsJLykJQ1g4vLf04xjdAl8E7F rGSXQsK+H0XRzTy1JJQbQy6jm6vXwuSb8NkicmuiXz9gLV0sabCHVmkRiPVbgABy cOGNzjIrn0aHZ+OvNutlX+eOFfwBvg0wyx3wmDaPEjNUkbUSgrVgbHxYRt/5ibeb UlQ3SsOkHcpTYYE54MOmM04+m/Y/YkYU08rGnvQTJgslPIBUwzkJZs7bEx4cNUHe SjE98E17xj8QAmFpUWH6ZRid6AyeDHTFKEV2OT+Ex+Rb7AVQ+/QUlaQ= -----END CERTIFICATE-----Generated at Sun Feb 16 22:33:19 2025 by rpki-client