$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/uEHehzX7x9iRzjzeFZdTxbqRxho.roa File: uEHehzX7x9iRzjzeFZdTxbqRxho.roa (raw, json) Hash identifier: h6gZJzJMlVSrHZnFImN16YPFQrLPlJP8uxkg7h4CHIk= Subject key identifier: B8:41:DE:87:35:FB:C7:D8:91:CE:3C:DE:15:97:53:C5:BA:91:C6:1A Certificate issuer: /CN=095A182FA18D458233284AA8DC88BD075E5D702D Certificate serial: 0147 Authority key identifier: 09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/uEHehzX7x9iRzjzeFZdTxbqRxho.roa Signing time: Mon 30 Sep 2024 01:30:34 +0000 ROA not before: Mon 30 Sep 2024 01:30:34 +0000 ROA not after: Mon 15 Sep 2025 01:30:03 +0000 asID: 2527 IP address blocks: 202.226.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 327 (0x147) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=095A182FA18D458233284AA8DC88BD075E5D702D Validity Not Before: Sep 30 01:30:34 2024 GMT Not After : Sep 15 01:30:03 2025 GMT Subject: CN=B841DE8735FBC7D891CE3CDE159753C5BA91C61A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:0e:85:56:ef:5a:b1:bb:ca:78:8c:eb:4b:26: ce:ee:2e:54:60:b6:51:4c:e7:fa:96:3b:19:9f:65: 06:ce:42:a1:d3:d0:52:44:59:ce:fb:2d:c9:fb:95: e8:89:df:38:fc:06:c6:cc:fc:2d:a3:2b:28:02:93: ef:f2:8c:34:f2:f9:a7:79:4f:56:57:31:bb:c9:54: 5b:29:1b:44:45:4d:37:b9:85:0d:1b:49:0e:4a:c0: a2:8b:b8:cf:28:26:f5:c0:68:df:fb:af:80:0b:4c: 44:74:e9:97:27:c2:84:55:c0:34:81:e6:ce:fb:a1: 49:d6:c6:00:67:59:31:b1:c6:ba:08:5b:60:37:91: e0:17:48:55:fd:2a:fb:68:a9:50:4e:59:72:2a:a9: 0d:a5:7a:b8:fd:97:fc:2d:9e:ae:92:14:98:4b:b9: d3:7d:3e:94:1b:67:d0:05:a6:65:de:00:93:6e:b5: e9:6c:94:6f:28:8c:35:1a:e2:cd:89:95:c8:4a:c3: 98:e5:da:66:ca:e1:ae:fb:09:5f:a9:94:5c:27:76: ae:53:52:fc:ef:4d:d0:5d:c5:5a:e8:75:a1:b1:24: 6d:e6:6f:87:6b:a6:11:92:48:d0:c2:8e:01:6e:15: 4b:6e:52:69:2a:be:d2:b1:1f:81:78:bf:14:c9:8d: 0b:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:41:DE:87:35:FB:C7:D8:91:CE:3C:DE:15:97:53:C5:BA:91:C6:1A X509v3 Authority Key Identifier: keyid:09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/uEHehzX7x9iRzjzeFZdTxbqRxho.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.226.20.0/22 Signature Algorithm: sha256WithRSAEncryption 0f:27:8e:49:8a:24:09:21:40:17:63:f2:27:1e:b9:78:26:d2: 8f:a7:42:73:57:cd:83:df:be:21:37:e4:f4:70:c5:51:92:5a: a3:50:cd:63:83:9e:a3:a9:2a:19:7c:b2:28:ed:03:06:6e:91: 47:0e:b6:5a:6c:76:0e:cd:4d:bc:5a:a7:f9:16:5a:b1:d7:28: 80:ea:a8:1d:9e:80:f5:33:94:bb:34:59:34:03:9c:ea:c8:c5: f4:2c:7c:80:d6:e5:3a:d1:34:a0:0a:f5:51:fd:8a:eb:79:41: 00:69:55:61:28:2f:8a:89:b9:5c:95:25:a4:01:3f:e2:08:74: f1:d9:61:6b:e5:d3:aa:4b:68:a1:dc:b8:86:5b:b6:fa:4d:b3: f1:00:48:d0:2b:9e:2a:70:1a:61:3c:d7:aa:cd:54:5e:69:4b: 69:a6:8e:f2:40:47:e1:f8:94:5e:f4:58:58:37:21:b1:0b:03: f0:92:53:83:e8:92:62:7c:a5:5a:4b:20:89:17:4d:23:cf:cd: 01:7c:f3:f5:e7:df:75:c0:2b:ef:4a:51:35:d6:c1:8f:e9:22: 3d:5a:99:07:b7:d2:63:7a:9c:38:3d:fb:bc:b3:b5:22:10:a3: 47:4d:cf:4e:e8:d4:24:db:42:49:18:96:85:50:2a:38:4f:da: 50:74:ed:51 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgICAUcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDk1 QTE4MkZBMThENDU4MjMzMjg0QUE4REM4OEJEMDc1RTVENzAyRDAeFw0yNDA5MzAw MTMwMzRaFw0yNTA5MTUwMTMwMDNaMDMxMTAvBgNVBAMTKEI4NDFERTg3MzVGQkM3 RDg5MUNFM0NERTE1OTc1M0M1QkE5MUM2MUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgDoVW71qxu8p4jOtLJs7uLlRgtlFM5/qWOxmfZQbOQqHT0FJE Wc77Lcn7leiJ3zj8BsbM/C2jKygCk+/yjDTy+ad5T1ZXMbvJVFspG0RFTTe5hQ0b SQ5KwKKLuM8oJvXAaN/7r4ALTER06ZcnwoRVwDSB5s77oUnWxgBnWTGxxroIW2A3 keAXSFX9KvtoqVBOWXIqqQ2lerj9l/wtnq6SFJhLudN9PpQbZ9AFpmXeAJNutels lG8ojDUa4s2JlchKw5jl2mbK4a77CV+plFwndq5TUvzvTdBdxVrodaGxJG3mb4dr phGSSNDCjgFuFUtuUmkqvtKxH4F4vxTJjQudAgMBAAGjggIiMIICHjAdBgNVHQ4E FgQUuEHehzX7x9iRzjzeFZdTxbqRxhowHwYDVR0jBBgwFoAUCVoYL6GNRYIzKEqo 3Ii9B15dcC0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQzL0NWb1lMNkdOUllJektFcW8zSWk5QjE1ZGNDMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0NWb1lMNkdOUllJektFcW8zSWk5QjE1 ZGNDMC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80My91RUhlaHpYN3g5aVJ6anplRlpkVHhicVJ4aG8ucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCyuIUMA0GCSqGSIb3DQEBCwUAA4IBAQAPJ45JiiQJIUAXY/InHrl4JtKPp0Jz V82D374hN+T0cMVRklqjUM1jg56jqSoZfLIo7QMGbpFHDrZabHYOzU28Wqf5Flqx 1yiA6qgdnoD1M5S7NFk0A5zqyMX0LHyA1uU60TSgCvVR/YrreUEAaVVhKC+Kiblc lSWkAT/iCHTx2WFr5dOqS2ih3LiGW7b6TbPxAEjQK54qcBphPNeqzVReaUtppo7y QEfh+JRe9FhYNyGxCwPwklOD6JJifKVaSyCJF00jz80BfPP15991wCvvSlE11sGP 6SI9WpkHt9Jjepw4Pfu8s7UiEKNHTc9O6NQk20JJGJaFUCo4T9pQdO1R -----END CERTIFICATE-----Generated at Sun Feb 16 22:23:25 2025 by rpki-client