$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/nuoSL0-dy4yhh7lK5F2iXeWJjVM.roa File: nuoSL0-dy4yhh7lK5F2iXeWJjVM.roa (raw, json) Hash identifier: v9Knumg6xlpxwWe5PFyY5/wCU5HpwMnpWToL4R94sBc= Subject key identifier: 9E:EA:12:2F:4F:9D:CB:8C:A1:87:B9:4A:E4:5D:A2:5D:E5:89:8D:53 Certificate issuer: /CN=095A182FA18D458233284AA8DC88BD075E5D702D Certificate serial: 015F Authority key identifier: 09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/nuoSL0-dy4yhh7lK5F2iXeWJjVM.roa Signing time: Thu 31 Oct 2024 01:30:56 +0000 ROA not before: Thu 31 Oct 2024 01:30:56 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 2527 IP address blocks: 202.238.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 351 (0x15f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=095A182FA18D458233284AA8DC88BD075E5D702D Validity Not Before: Oct 31 01:30:56 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=9EEA122F4F9DCB8CA187B94AE45DA25DE5898D53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:06:72:76:b2:d6:2c:ef:d1:52:e7:26:bb:c7: f4:22:65:de:53:db:d9:f5:01:64:fd:ae:bb:a8:6c: f6:3a:5a:12:eb:66:ef:ac:8a:ee:c4:9b:40:e2:c5: af:46:b1:01:98:01:ea:1e:99:04:35:b5:57:97:0b: 91:a7:c3:6c:22:c7:a5:53:45:79:f1:b0:c0:32:9a: 6a:96:dd:65:1d:da:4e:e3:3e:02:32:c1:3a:3a:aa: 3f:7d:9b:80:5b:28:5e:20:23:24:2f:91:6a:8e:c9: 72:21:c7:e9:61:8a:80:b8:fc:c7:93:6d:f6:45:85: 1b:86:d7:44:6b:c3:4e:0d:97:aa:e1:86:08:3e:5f: d4:75:4e:75:97:19:94:c3:8d:ad:92:8c:f4:c2:86: 3a:9b:0e:85:8d:d4:ca:29:76:13:d9:bb:6a:c9:3a: 56:c3:08:72:b1:97:34:b8:91:74:b1:8c:59:ef:28: da:5d:01:3a:e4:ce:f2:9d:65:28:c5:5b:3b:d7:fa: aa:a2:53:2c:19:fb:b9:4f:50:c5:73:12:7a:88:35: 62:f3:08:af:32:8a:8d:f3:89:1c:e5:76:9f:28:80: c2:03:41:ab:67:f4:33:bb:6a:91:6c:aa:46:e0:82: 04:7f:e5:e1:57:c1:e1:28:dc:45:b1:f9:23:5e:68: 70:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:EA:12:2F:4F:9D:CB:8C:A1:87:B9:4A:E4:5D:A2:5D:E5:89:8D:53 X509v3 Authority Key Identifier: keyid:09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/nuoSL0-dy4yhh7lK5F2iXeWJjVM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.238.64.0/18 Signature Algorithm: sha256WithRSAEncryption a5:5d:bd:a1:c0:db:4c:49:23:36:bd:36:cf:af:2b:98:6e:ad: 65:0c:89:13:45:f2:3d:54:ae:4a:2d:f6:76:ac:18:00:1e:f3: 6c:97:2b:bf:ea:7d:2d:75:80:f7:a9:52:9a:fe:71:59:74:41: 87:65:e5:43:86:16:88:7e:76:35:0e:cc:db:e7:4c:d0:6a:c4: 05:b6:7f:da:57:58:73:62:82:a3:9a:4d:9c:df:02:6b:6d:02: 3b:79:6e:af:2b:b1:a6:fb:aa:c1:cf:53:6b:29:b1:cb:03:18: d4:8e:76:18:b0:a8:50:4b:a9:3d:f6:40:62:59:ee:84:be:ab: 92:e8:a5:79:0c:d4:c7:0c:8f:ab:23:25:12:24:53:44:18:25: f1:a5:e1:82:80:15:79:b1:ae:a5:a3:b9:43:ad:b0:15:14:e9: a8:57:56:e5:77:7e:54:4f:f3:cf:34:f9:e1:01:43:2b:df:e4: 29:a2:de:45:fe:4d:e7:3e:80:75:cc:38:39:85:11:da:5c:6b: 47:ee:ff:59:6e:04:7d:74:a0:2e:cf:de:61:70:3f:0f:e8:d4: 3f:b0:33:34:b8:d7:08:b0:2a:10:ea:7b:d7:9b:ae:69:2c:2e: a0:e8:65:76:e6:c6:44:d0:fc:17:7b:1f:d9:0d:de:2b:51:28: 32:9e:b7:2d -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAV8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDk1 QTE4MkZBMThENDU4MjMzMjg0QUE4REM4OEJEMDc1RTVENzAyRDAeFw0yNDEwMzEw MTMwNTZaFw0yNTEwMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDlFRUExMjJGNEY5RENC OENBMTg3Qjk0QUU0NURBMjVERTU4OThENTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1BnJ2stYs79FS5ya7x/QiZd5T29n1AWT9rruobPY6WhLrZu+s iu7Em0Dixa9GsQGYAeoemQQ1tVeXC5Gnw2wix6VTRXnxsMAymmqW3WUd2k7jPgIy wTo6qj99m4BbKF4gIyQvkWqOyXIhx+lhioC4/MeTbfZFhRuG10Rrw04Nl6rhhgg+ X9R1TnWXGZTDja2SjPTChjqbDoWN1MopdhPZu2rJOlbDCHKxlzS4kXSxjFnvKNpd ATrkzvKdZSjFWzvX+qqiUywZ+7lPUMVzEnqINWLzCK8yio3ziRzldp8ogMIDQatn 9DO7apFsqkbgggR/5eFXweEo3EWx+SNeaHC/AgMBAAGjggIiMIICHjAdBgNVHQ4E FgQUnuoSL0+dy4yhh7lK5F2iXeWJjVMwHwYDVR0jBBgwFoAUCVoYL6GNRYIzKEqo 3Ii9B15dcC0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQzL0NWb1lMNkdOUllJektFcW8zSWk5QjE1ZGNDMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0NWb1lMNkdOUllJektFcW8zSWk5QjE1 ZGNDMC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80My9udW9TTDAtZHk0eWhoN2xLNUYyaVhlV0pqVk0ucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQGyu5AMA0GCSqGSIb3DQEBCwUAA4IBAQClXb2hwNtMSSM2vTbPryuYbq1lDIkT RfI9VK5KLfZ2rBgAHvNslyu/6n0tdYD3qVKa/nFZdEGHZeVDhhaIfnY1Dszb50zQ asQFtn/aV1hzYoKjmk2c3wJrbQI7eW6vK7Gm+6rBz1NrKbHLAxjUjnYYsKhQS6k9 9kBiWe6EvquS6KV5DNTHDI+rIyUSJFNEGCXxpeGCgBV5sa6lo7lDrbAVFOmoV1bl d35UT/PPNPnhAUMr3+Qpot5F/k3nPoB1zDg5hRHaXGtH7v9ZbgR9dKAuz95hcD8P 6NQ/sDM0uNcIsCoQ6nvXm65pLC6g6GV25sZE0PwXex/ZDd4rUSgynrct -----END CERTIFICATE-----Generated at Sun Feb 16 22:28:10 2025 by rpki-client