$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/h9RHs7HhZZP9HbFs5dN30gzO-eY.roa File: h9RHs7HhZZP9HbFs5dN30gzO-eY.roa (raw, json) Hash identifier: xcUJU48PbzxmzQC0lSsKKSkb4sPdYweZmKzIpXVY/80= Subject key identifier: 87:D4:47:B3:B1:E1:65:93:FD:1D:B1:6C:E5:D3:77:D2:0C:CE:F9:E6 Certificate issuer: /CN=095A182FA18D458233284AA8DC88BD075E5D702D Certificate serial: 0164 Authority key identifier: 09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/h9RHs7HhZZP9HbFs5dN30gzO-eY.roa Signing time: Thu 31 Oct 2024 01:34:17 +0000 ROA not before: Thu 31 Oct 2024 01:34:17 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 2527 IP address blocks: 211.128.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 23:55:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 356 (0x164) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=095A182FA18D458233284AA8DC88BD075E5D702D Validity Not Before: Oct 31 01:34:17 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=87D447B3B1E16593FD1DB16CE5D377D20CCEF9E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:1c:8b:13:22:20:5a:5f:61:78:af:bc:91:bb: f1:2b:a4:ca:e1:f9:1a:cc:9b:29:83:0d:bf:eb:88: be:bb:b5:1a:7c:78:03:c0:9f:62:bc:0d:db:ad:eb: 3e:33:85:71:31:46:85:6c:99:02:c2:99:ad:98:b9: 12:32:ca:91:0e:a0:1a:9c:e9:0d:a0:a0:b7:3d:12: bb:7f:7c:bc:14:7a:4f:d3:e6:06:a7:c9:5f:9d:7b: 8c:d1:56:63:e3:38:2e:fb:ab:74:37:0b:6f:71:f3: 20:f3:54:8e:1b:bd:8c:32:38:56:a2:07:4c:30:2e: 19:b8:b4:da:ba:77:e7:b7:a7:2b:45:3c:cc:ec:07: 9c:45:a1:8d:da:27:8f:8e:d1:27:d4:0b:ae:45:af: 5a:77:bd:68:b9:bf:44:fc:00:3a:c7:6c:88:74:30: 6a:e6:66:9d:32:bd:43:98:63:a6:ea:62:18:47:fc: 9d:d6:1a:63:cb:52:4c:6f:46:09:f8:ec:2b:25:94: 2d:05:89:4e:d1:e0:14:e5:8b:a4:6b:21:f4:0e:07: eb:a2:0f:b1:e2:d7:2b:d2:f1:c4:a2:d9:3a:1c:16: 92:d7:17:a9:04:a6:f0:2b:63:40:49:21:a7:98:29: a7:35:fb:6e:89:c4:c2:8d:fa:46:c5:d1:d0:e7:f4: a4:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:D4:47:B3:B1:E1:65:93:FD:1D:B1:6C:E5:D3:77:D2:0C:CE:F9:E6 X509v3 Authority Key Identifier: keyid:09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/h9RHs7HhZZP9HbFs5dN30gzO-eY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.128.32.0/19 Signature Algorithm: sha256WithRSAEncryption b0:c3:40:26:fc:5f:ab:69:19:73:92:94:b9:67:4c:3a:de:3e: 4c:29:b4:97:80:fa:c8:27:6f:e0:40:d7:e4:ce:e7:72:5a:7c: 45:14:19:cc:d5:a9:f5:99:8d:00:bd:e1:bc:bd:7f:62:d4:79: 0b:ed:d6:11:53:6f:76:4e:df:e1:cc:b8:63:6f:45:d2:0a:26: 38:20:c7:df:c8:45:af:3a:32:25:cd:66:a1:ec:c6:f3:87:6f: a6:be:24:09:2f:37:12:20:8d:b5:db:d4:45:77:97:eb:04:d4: b1:ff:27:2e:7b:70:4f:2d:f6:cf:9f:ad:88:d3:9a:c5:15:9b: 75:3e:c5:e4:00:ba:47:0c:3a:29:62:eb:9b:42:ef:0f:0c:63: 5a:5f:c2:3b:fa:a6:6c:09:e5:5e:71:ca:4b:92:f3:ab:b0:c6: 1a:e4:33:c5:5a:01:77:8e:72:db:72:a3:12:18:2e:73:59:13: 1e:83:71:35:6e:38:4f:0a:6f:9f:de:78:ab:67:b5:9f:48:a1: 31:5a:5b:41:ad:dc:94:88:c8:8c:4a:96:42:a3:47:7b:71:f6: 8f:b8:bd:cf:19:dd:fc:2b:fb:e8:e6:33:f2:93:f1:54:79:71: c8:e3:7b:58:40:5e:a0:2f:e8:79:32:f8:d3:10:d5:e6:18:39: be:8f:8a:5a -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAWQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDk1 QTE4MkZBMThENDU4MjMzMjg0QUE4REM4OEJEMDc1RTVENzAyRDAeFw0yNDEwMzEw MTM0MTdaFw0yNTEwMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDg3RDQ0N0IzQjFFMTY1 OTNGRDFEQjE2Q0U1RDM3N0QyMENDRUY5RTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPHIsTIiBaX2F4r7yRu/ErpMrh+RrMmymDDb/riL67tRp8eAPA n2K8Ddut6z4zhXExRoVsmQLCma2YuRIyypEOoBqc6Q2goLc9Ert/fLwUek/T5gan yV+de4zRVmPjOC77q3Q3C29x8yDzVI4bvYwyOFaiB0wwLhm4tNq6d+e3pytFPMzs B5xFoY3aJ4+O0SfUC65Fr1p3vWi5v0T8ADrHbIh0MGrmZp0yvUOYY6bqYhhH/J3W GmPLUkxvRgn47CsllC0FiU7R4BTli6RrIfQOB+uiD7Hi1yvS8cSi2TocFpLXF6kE pvArY0BJIaeYKac1+26JxMKN+kbF0dDn9KRXAgMBAAGjggIiMIICHjAdBgNVHQ4E FgQUh9RHs7HhZZP9HbFs5dN30gzO+eYwHwYDVR0jBBgwFoAUCVoYL6GNRYIzKEqo 3Ii9B15dcC0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQzL0NWb1lMNkdOUllJektFcW8zSWk5QjE1ZGNDMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0NWb1lMNkdOUllJektFcW8zSWk5QjE1 ZGNDMC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80My9oOVJIczdIaFpaUDlIYkZzNWROMzBnek8tZVkucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQF04AgMA0GCSqGSIb3DQEBCwUAA4IBAQCww0Am/F+raRlzkpS5Z0w63j5MKbSX gPrIJ2/gQNfkzudyWnxFFBnM1an1mY0AveG8vX9i1HkL7dYRU292Tt/hzLhjb0XS CiY4IMffyEWvOjIlzWah7Mbzh2+mviQJLzcSII2129RFd5frBNSx/ycue3BPLfbP n62I05rFFZt1PsXkALpHDDopYuubQu8PDGNaX8I7+qZsCeVeccpLkvOrsMYa5DPF WgF3jnLbcqMSGC5zWRMeg3E1bjhPCm+f3nirZ7WfSKExWltBrdyUiMiMSpZCo0d7 cfaPuL3PGd38K/vo5jPyk/FUeXHI43tYQF6gL+h5MvjTENXmGDm+j4pa -----END CERTIFICATE-----Generated at Thu Mar 13 01:46:25 2025 by rpki-client