$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/lmJGZH9ijz4Nwbe8CBUOzJPV8Eg.roa File: lmJGZH9ijz4Nwbe8CBUOzJPV8Eg.roa (raw, json) Hash identifier: KEb1om03er8PNWF0+2RW+6YVIu0aknTCVSMa2dRWIqY= Subject key identifier: 96:62:46:64:7F:62:8F:3E:0D:C1:B7:BC:08:15:0E:CC:93:D5:F0:48 Certificate issuer: /CN=095A182FA18D458233284AA8DC88BD075E5D702D Certificate serial: 014F Authority key identifier: 09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/lmJGZH9ijz4Nwbe8CBUOzJPV8Eg.roa Signing time: Thu 31 Oct 2024 01:30:48 +0000 ROA not before: Thu 31 Oct 2024 01:30:48 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 2527 IP address blocks: 219.111.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 20:25:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 335 (0x14f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=095A182FA18D458233284AA8DC88BD075E5D702D Validity Not Before: Oct 31 01:30:48 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=966246647F628F3E0DC1B7BC08150ECC93D5F048 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d1:9f:00:03:bb:d7:4d:23:04:56:de:5b:9c: 49:3e:48:5c:1a:e2:42:54:fd:6f:93:49:9d:ce:d9: ab:62:f8:71:0e:df:59:82:ec:5b:8d:43:00:ec:ab: 4b:1e:13:15:86:c8:7a:85:ee:3f:fa:47:9e:ae:84: fc:8d:4c:bf:71:73:53:bc:3a:49:2a:23:87:04:be: 75:80:4c:94:62:c8:b5:15:7b:c8:56:bc:8c:3b:ec: c4:83:e5:86:74:f2:8d:c3:a6:59:cc:a3:a5:44:e9: 6c:a1:07:3b:3e:6d:8b:18:12:96:72:d7:7c:68:00: 8e:28:34:d3:88:ab:1d:2e:d6:3e:71:31:b9:8b:d2: 55:98:e4:6d:79:29:b1:c1:ab:d7:8d:3c:ed:5e:32: 11:5a:4b:24:b1:7a:5f:ab:57:97:39:6a:6d:8e:5c: c4:2c:71:89:9d:1b:44:7d:57:d0:b5:b0:cf:a4:34: 26:65:ae:84:84:71:39:07:c4:5f:b8:d0:d0:79:4d: ea:db:0a:11:87:e9:62:cc:2a:20:b5:e5:ae:39:af: 9d:f4:00:f5:f0:a1:10:ae:d8:64:21:6e:dc:57:bc: 92:9b:51:b8:f5:df:a8:8f:f0:3c:7c:0b:62:e3:4b: 06:76:69:b2:d8:e7:65:57:f0:eb:b7:72:b1:e0:fc: 48:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:62:46:64:7F:62:8F:3E:0D:C1:B7:BC:08:15:0E:CC:93:D5:F0:48 X509v3 Authority Key Identifier: keyid:09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/lmJGZH9ijz4Nwbe8CBUOzJPV8Eg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.111.128.0/18 Signature Algorithm: sha256WithRSAEncryption 92:a5:af:01:a2:ff:21:19:89:fd:09:38:65:9a:a3:2d:41:f6: d7:8f:f8:7b:ad:37:fb:32:74:cc:b2:61:19:49:46:b4:f3:9e: 44:98:6a:e3:27:50:3f:a2:21:f8:bc:16:47:07:45:0f:1e:76: 96:e7:18:b6:5c:04:90:b6:c2:a6:dc:b5:36:ee:c5:05:b1:0d: 21:95:6b:df:29:af:a4:22:7b:8e:c1:47:3a:e1:9f:70:42:7f: 1e:0d:b4:a3:8d:8a:2b:40:65:08:ea:e0:0f:b3:e2:03:6a:d3: 78:5a:ed:46:68:15:f2:5f:fc:84:ca:c3:62:d1:97:05:20:7d: 59:7e:5a:20:31:fc:b4:c9:81:ba:5c:87:7f:02:6c:a9:b1:44: 24:8e:19:bd:58:6f:aa:b7:30:80:7f:22:97:f3:29:62:f4:57: f8:ed:45:fb:6e:3d:f8:a2:69:f9:75:59:d1:5c:c3:0b:b5:d2: 7c:a5:3a:10:c9:70:9b:d2:61:4c:a9:96:15:ef:34:e1:cb:2d: 6e:04:d8:c5:11:77:92:e0:64:f9:54:49:64:bb:42:bb:b5:a4: f9:75:95:1a:7f:db:bd:72:19:cf:f9:94:2e:02:28:26:90:9e: 14:48:13:21:ee:e2:82:18:18:fb:ad:b1:2a:41:5f:7f:a0:51: 21:98:db:44 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAU8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDk1 QTE4MkZBMThENDU4MjMzMjg0QUE4REM4OEJEMDc1RTVENzAyRDAeFw0yNDEwMzEw MTMwNDhaFw0yNTEwMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDk2NjI0NjY0N0Y2MjhG M0UwREMxQjdCQzA4MTUwRUNDOTNENUYwNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC40Z8AA7vXTSMEVt5bnEk+SFwa4kJU/W+TSZ3O2ati+HEO31mC 7FuNQwDsq0seExWGyHqF7j/6R56uhPyNTL9xc1O8OkkqI4cEvnWATJRiyLUVe8hW vIw77MSD5YZ08o3DplnMo6VE6WyhBzs+bYsYEpZy13xoAI4oNNOIqx0u1j5xMbmL 0lWY5G15KbHBq9eNPO1eMhFaSySxel+rV5c5am2OXMQscYmdG0R9V9C1sM+kNCZl roSEcTkHxF+40NB5TerbChGH6WLMKiC15a45r530APXwoRCu2GQhbtxXvJKbUbj1 36iP8Dx8C2LjSwZ2abLY52VX8Ou3crHg/EipAgMBAAGjggIiMIICHjAdBgNVHQ4E FgQUlmJGZH9ijz4Nwbe8CBUOzJPV8EgwHwYDVR0jBBgwFoAUCVoYL6GNRYIzKEqo 3Ii9B15dcC0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQzL0NWb1lMNkdOUllJektFcW8zSWk5QjE1ZGNDMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0NWb1lMNkdOUllJektFcW8zSWk5QjE1 ZGNDMC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80My9sbUpHWkg5aWp6NE53YmU4Q0JVT3pKUFY4RWcucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQG22+AMA0GCSqGSIb3DQEBCwUAA4IBAQCSpa8Bov8hGYn9CThlmqMtQfbXj/h7 rTf7MnTMsmEZSUa0855EmGrjJ1A/oiH4vBZHB0UPHnaW5xi2XASQtsKm3LU27sUF sQ0hlWvfKa+kInuOwUc64Z9wQn8eDbSjjYorQGUI6uAPs+IDatN4Wu1GaBXyX/yE ysNi0ZcFIH1ZflogMfy0yYG6XId/AmypsUQkjhm9WG+qtzCAfyKX8yli9Ff47UX7 bj34omn5dVnRXMMLtdJ8pToQyXCb0mFMqZYV7zThyy1uBNjFEXeS4GT5VElku0K7 taT5dZUaf9u9chnP+ZQuAigmkJ4USBMh7uKCGBj7rbEqQV9/oFEhmNtE -----END CERTIFICATE-----Generated at Thu Mar 13 01:42:02 2025 by rpki-client