$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/uK5TQPAET0QrAYXyjXnQ2HFRpeA.roa File: uK5TQPAET0QrAYXyjXnQ2HFRpeA.roa (raw, json) Hash identifier: TiPtlUWNPYLnM189JrysFdFLoqofrCum4erMSajYRpY= Subject key identifier: B8:AE:53:40:F0:04:4F:44:2B:01:85:F2:8D:79:D0:D8:71:51:A5:E0 Certificate issuer: /CN=095A182FA18D458233284AA8DC88BD075E5D702D Certificate serial: 0171 Authority key identifier: 09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/uK5TQPAET0QrAYXyjXnQ2HFRpeA.roa Signing time: Thu 31 Oct 2024 01:34:25 +0000 ROA not before: Thu 31 Oct 2024 01:34:25 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 2527 IP address blocks: 218.110.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 20:25:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=095A182FA18D458233284AA8DC88BD075E5D702D Validity Not Before: Oct 31 01:34:25 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=B8AE5340F0044F442B0185F28D79D0D87151A5E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:3e:0b:13:13:a3:34:e6:7d:c3:f9:3c:81:50: 71:ad:67:c7:a3:09:3f:a1:0a:0a:20:c3:c7:41:5d: 92:08:2e:3a:51:4f:3c:10:ce:6f:b6:00:24:25:8f: 44:dd:19:4d:8e:3b:b3:bb:06:91:ac:03:33:31:a1: 7d:08:f1:04:22:1a:6e:de:7c:3c:4a:e1:c8:f4:7b: 61:e5:03:b1:36:72:64:e5:ea:46:aa:58:73:db:a8: b9:91:1c:c8:71:c2:ba:e7:55:4d:95:66:cb:95:6f: 59:0a:0e:2e:57:2f:02:2e:b3:c9:cc:31:0f:8b:d3: c8:ef:11:13:fa:2f:4c:74:2d:8b:9c:b4:2a:da:d1: 7e:fb:63:28:b9:48:14:1c:c6:d7:a6:4a:80:2b:ac: 94:61:51:ba:e7:5d:e0:c3:e9:02:35:85:22:1e:c4: 7d:16:c9:64:6f:02:22:cb:ed:e4:6a:c4:20:92:57: 7f:c6:38:25:c1:79:1b:da:65:7b:14:23:7e:06:96: 90:1a:6c:f1:cd:7a:a7:ee:42:ef:f5:7a:e6:7f:bf: b4:ce:f7:1c:cc:aa:46:a7:4a:38:20:d8:b1:49:a1: de:c3:81:df:c1:10:03:2e:ca:2b:30:4f:55:3a:63: 0a:fa:18:43:1f:5f:bf:1f:17:4f:b2:a8:76:d4:b7: 9e:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:AE:53:40:F0:04:4F:44:2B:01:85:F2:8D:79:D0:D8:71:51:A5:E0 X509v3 Authority Key Identifier: keyid:09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/uK5TQPAET0QrAYXyjXnQ2HFRpeA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.110.0.0/16 Signature Algorithm: sha256WithRSAEncryption b6:42:5f:00:63:82:31:cf:36:5c:9c:ba:62:a8:29:4b:c9:a6: 9e:9e:fa:26:57:4f:31:db:4c:14:58:97:5f:5a:a4:a1:03:e1: f7:ea:98:f3:cf:23:37:5e:3f:c8:3b:91:0e:dc:7c:21:28:fa: 43:82:b4:8f:44:2e:fd:1b:f2:be:fb:2a:1b:53:79:6a:bd:ed: 22:01:e5:d5:dc:37:62:13:b0:8a:3f:24:1c:8a:50:24:b0:cc: 87:57:21:24:61:97:97:47:7f:94:3c:cb:c1:24:16:cb:a3:a8: fc:a7:17:7d:c0:c8:97:3f:5c:ee:12:a7:6f:f8:43:67:72:ed: ff:22:4b:9c:24:ab:d1:f5:e2:13:56:75:d4:b8:7d:b1:80:04: 6b:49:97:3d:9b:8a:d4:2e:4e:fe:51:0a:d1:fe:55:82:90:39: 7e:98:91:d4:a5:35:64:90:e3:f4:03:48:51:4f:17:80:58:94: 42:be:6c:32:55:bf:22:6b:2e:06:92:60:5a:45:2c:1a:d9:2f: 32:65:02:7c:b7:16:4c:f5:6f:e2:35:68:f8:6b:5c:b3:26:c8: d9:d2:7d:32:5c:ff:3d:f9:38:20:90:06:e3:22:b0:34:96:e7: 01:9d:a8:f6:8a:f5:b2:e7:f7:50:68:59:f2:04:7c:26:0d:d1: 51:94:d3:9a -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDk1 QTE4MkZBMThENDU4MjMzMjg0QUE4REM4OEJEMDc1RTVENzAyRDAeFw0yNDEwMzEw MTM0MjVaFw0yNTEwMTUwMTMwMDJaMDMxMTAvBgNVBAMTKEI4QUU1MzQwRjAwNDRG NDQyQjAxODVGMjhENzlEMEQ4NzE1MUE1RTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDePgsTE6M05n3D+TyBUHGtZ8ejCT+hCgogw8dBXZIILjpRTzwQ zm+2ACQlj0TdGU2OO7O7BpGsAzMxoX0I8QQiGm7efDxK4cj0e2HlA7E2cmTl6kaq WHPbqLmRHMhxwrrnVU2VZsuVb1kKDi5XLwIus8nMMQ+L08jvERP6L0x0LYuctCra 0X77Yyi5SBQcxtemSoArrJRhUbrnXeDD6QI1hSIexH0WyWRvAiLL7eRqxCCSV3/G OCXBeRvaZXsUI34GlpAabPHNeqfuQu/1euZ/v7TO9xzMqkanSjgg2LFJod7Dgd/B EAMuyiswT1U6Ywr6GEMfX78fF0+yqHbUt54RAgMBAAGjggIhMIICHTAdBgNVHQ4E FgQUuK5TQPAET0QrAYXyjXnQ2HFRpeAwHwYDVR0jBBgwFoAUCVoYL6GNRYIzKEqo 3Ii9B15dcC0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBgNVHR8EXjBcMFqg WKBWhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQzL0NWb1lMNkdOUllJektFcW8zSWk5QjE1ZGNDMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0NWb1lMNkdOUllJektFcW8zSWk5QjE1 ZGNDMC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG6BggrBgEFBQcBCwSBrTCBqjBgBggr BgEFBQcwC4ZUcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80My91SzVUUVBBRVQwUXJBWVh5alhuUTJIRlJwZUEucm9hMEYG CCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvcnJk cC9hcC9ub3RpZmljYXRpb24ueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAF AwMA2m4wDQYJKoZIhvcNAQELBQADggEBALZCXwBjgjHPNlycumKoKUvJpp6e+iZX TzHbTBRYl19apKED4ffqmPPPIzdeP8g7kQ7cfCEo+kOCtI9ELv0b8r77KhtTeWq9 7SIB5dXcN2ITsIo/JByKUCSwzIdXISRhl5dHf5Q8y8EkFsujqPynF33AyJc/XO4S p2/4Q2dy7f8iS5wkq9H14hNWddS4fbGABGtJlz2bitQuTv5RCtH+VYKQOX6YkdSl NWSQ4/QDSFFPF4BYlEK+bDJVvyJrLgaSYFpFLBrZLzJlAny3Fkz1b+I1aPhrXLMm yNnSfTJc/z35OCCQBuMisDSW5wGdqPaK9bLn91BoWfIEfCYN0VGU05o= -----END CERTIFICATE-----Generated at Thu Mar 13 01:42:27 2025 by rpki-client