$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/454/40k9HGu3ZZ2mvxUlKFC29Tc-4Dg.roa File: 40k9HGu3ZZ2mvxUlKFC29Tc-4Dg.roa (raw, json) Hash identifier: hBgWQSeBqaJ5uCYGcKo10Dn6zJBVh4prqHzT4GawwX4= Subject key identifier: E3:49:3D:1C:6B:B7:65:9D:A6:BF:15:25:28:50:B6:F5:37:3E:E0:38 Certificate issuer: /CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0 Certificate serial: 44 Authority key identifier: AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/40k9HGu3ZZ2mvxUlKFC29Tc-4Dg.roa Signing time: Sat 31 Aug 2024 01:31:28 +0000 ROA not before: Sat 31 Aug 2024 01:31:28 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 10000 IP address blocks: 111.91.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68 (0x44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0 Validity Not Before: Aug 31 01:31:28 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=E3493D1C6BB7659DA6BF15252850B6F5373EE038 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f9:87:df:ea:6d:11:5f:0c:50:22:00:f9:f0: f3:46:32:2c:3d:6e:0e:1d:47:ec:cb:75:b9:46:4f: 61:29:dc:4b:2f:91:0e:60:f1:32:7f:6f:1a:85:b6: 51:ae:52:2f:ae:d6:93:36:b1:b6:11:75:4d:cc:1b: b3:e9:d8:d5:70:df:69:f2:b2:ea:5b:b0:63:bd:04: 28:fc:4d:6a:9c:22:59:05:c1:9a:c6:28:bf:da:81: d4:98:0d:25:06:ef:eb:f7:4c:d8:cb:18:f5:a7:6d: 1b:3e:37:88:38:2e:85:b6:d5:f6:aa:13:d8:e6:58: 9a:35:29:0f:fb:cc:d4:d4:4f:38:81:72:5d:9f:2f: b9:77:45:97:ac:e3:2d:74:6f:65:b3:52:1a:3c:3b: b1:e2:1b:57:26:ad:d8:d8:1f:a4:d5:f5:df:1b:be: 4b:a1:c8:74:bd:81:19:eb:aa:fc:34:80:c3:9b:f2: 9e:b2:7a:ee:64:62:75:78:90:3b:3f:00:f0:7d:a9: 7d:6c:80:f4:19:18:eb:8c:5e:c2:99:e7:cf:e4:a4: 8a:19:8e:e0:7d:f5:6c:a4:60:dd:fd:e6:e2:bf:3d: 71:b7:59:79:de:bc:51:d3:29:00:e0:ec:05:bd:11: 2a:a3:ae:a0:d8:f6:d5:e5:23:4c:21:a2:f4:dd:16: dd:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:49:3D:1C:6B:B7:65:9D:A6:BF:15:25:28:50:B6:F5:37:3E:E0:38 X509v3 Authority Key Identifier: keyid:AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/40k9HGu3ZZ2mvxUlKFC29Tc-4Dg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.91.240.0/20 Signature Algorithm: sha256WithRSAEncryption 77:65:a4:e7:a0:1f:f7:26:4c:d3:d4:e1:ff:d9:4c:b7:86:a5: b3:f6:d3:0b:74:39:96:65:e7:91:9d:ff:40:c3:fa:d0:a7:9e: e4:bf:39:16:f3:fc:4e:2a:68:ee:ee:ce:16:0e:3f:b3:0d:1f: 92:44:cf:d5:7e:19:ca:ac:51:8a:1c:3a:5e:16:21:a5:b2:35: 5a:c2:de:e0:01:95:61:35:49:9c:a8:db:91:20:ae:e3:4b:4a: 15:9e:8d:3e:75:eb:39:55:0f:a0:9b:bf:2a:ea:6e:1e:c3:ab: 50:5c:21:49:40:8b:76:de:79:d1:a0:63:d8:bb:b2:a2:32:3d: 92:db:63:93:f5:47:63:13:1a:22:ef:35:fc:4d:36:98:9c:76: 15:7e:52:d1:fb:01:e6:57:72:48:ac:e7:e2:d1:c0:53:0b:7b: 36:61:3a:aa:8a:63:1f:43:64:df:a4:ab:ea:a5:37:0f:8e:b7: 87:58:c5:88:5a:7e:ea:bc:0f:de:df:a8:e1:a3:0b:a4:fd:cb: 34:cd:2b:de:2e:f8:89:b5:d6:7f:37:01:42:a2:8d:89:fc:19: e7:c3:70:2d:bd:34:2b:30:1e:fc:02:99:53:bd:af:3b:95:23: 8f:19:e2:82:dd:60:c8:5a:d7:b6:73:cd:85:f9:da:01:e1:40: e9:ec:aa:d2 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBRDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBRDQ3 NDFGMDM0OUZCQzE1QTcwOEUyOEEyQ0UzMDc5MDZDQUM1REUwMB4XDTI0MDgzMTAx MzEyOFoXDTI1MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoRTM0OTNEMUM2QkI3NjU5 REE2QkYxNTI1Mjg1MEI2RjUzNzNFRTAzODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMz5h9/qbRFfDFAiAPnw80YyLD1uDh1H7Mt1uUZPYSncSy+RDmDx Mn9vGoW2Ua5SL67WkzaxthF1Tcwbs+nY1XDfafKy6luwY70EKPxNapwiWQXBmsYo v9qB1JgNJQbv6/dM2MsY9adtGz43iDguhbbV9qoT2OZYmjUpD/vM1NRPOIFyXZ8v uXdFl6zjLXRvZbNSGjw7seIbVyat2NgfpNX13xu+S6HIdL2BGeuq/DSAw5vynrJ6 7mRidXiQOz8A8H2pfWyA9BkY64xewpnnz+SkihmO4H31bKRg3f3m4r89cbdZed68 UdMpAODsBb0RKqOuoNj21eUjTCGi9N0W3UECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTjST0ca7dlnaa/FSUoULb1Nz7gODAfBgNVHSMEGDAWgBStR0HwNJ+8FacI4oos 4weQbKxd4DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDU0L3JVZEI4RFNmdkJXbkNPS0tMT01Ia0d5c1hlQS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3JVZEI4RFNmdkJXbkNPS0tMT01Ia0d5 c1hlQS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80NTQvNDBrOUhHdTNaWjJtdnhVbEtGQzI5VGMtNERnLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBG9b8DANBgkqhkiG9w0BAQsFAAOCAQEAd2Wk56Af9yZM09Th/9lMt4als/bT C3Q5lmXnkZ3/QMP60Kee5L85FvP8Tipo7u7OFg4/sw0fkkTP1X4ZyqxRihw6XhYh pbI1WsLe4AGVYTVJnKjbkSCu40tKFZ6NPnXrOVUPoJu/KupuHsOrUFwhSUCLdt55 0aBj2LuyojI9kttjk/VHYxMaIu81/E02mJx2FX5S0fsB5ldySKzn4tHAUwt7NmE6 qopjH0Nk36Sr6qU3D463h1jFiFp+6rwP3t+o4aMLpP3LNM0r3i74ibXWfzcBQqKN ifwZ58NwLb00KzAe/AKZU72vO5Ujjxnigt1gyFrXtnPNhfnaAeFA6eyq0g== -----END CERTIFICATE-----Generated at Sun Feb 16 22:11:53 2025 by rpki-client