$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/454/9HhNndi5jTQ0bAO1t02O8-GvQSo.roa File: 9HhNndi5jTQ0bAO1t02O8-GvQSo.roa (raw, json) Hash identifier: stTzslRfemgBc1ouLDtz1OnBysVbMBIL9kA5JkyXjvQ= Subject key identifier: F4:78:4D:9D:D8:B9:8D:34:34:6C:03:B5:B7:4D:8E:F3:E1:AF:41:2A Certificate issuer: /CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0 Certificate serial: 4F Authority key identifier: AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/9HhNndi5jTQ0bAO1t02O8-GvQSo.roa Signing time: Sat 31 Aug 2024 01:31:33 +0000 ROA not before: Sat 31 Aug 2024 01:31:33 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 10000 IP address blocks: 219.109.64.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0 Validity Not Before: Aug 31 01:31:33 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=F4784D9DD8B98D34346C03B5B74D8EF3E1AF412A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:58:77:0d:d5:b3:09:f4:8b:1d:c8:66:34:93: f6:67:bf:8a:3f:e0:8b:d9:77:7e:5a:b9:86:50:7f: a6:9b:ec:38:8d:59:78:aa:93:70:13:47:9a:fa:73: 91:78:12:06:f5:b8:29:3a:ab:1d:48:7f:84:25:95: 67:bd:96:66:a8:cb:31:b2:40:d8:47:04:fc:e4:98: 3e:6b:2c:fb:b7:5d:52:3b:48:49:0c:9c:73:e6:67: 2c:17:b4:18:d3:40:ad:2f:86:88:0b:52:d9:f0:ae: e2:dc:1c:e6:1f:bb:5a:06:d2:c9:ba:bd:30:3e:b6: 4f:ef:b1:df:67:dc:a1:ec:d3:f0:4f:35:6f:41:c9: 76:32:d8:37:4f:f3:d3:8e:69:3c:5d:e9:8a:a0:55: a4:fe:46:d5:30:36:92:16:89:ee:b5:4a:93:fb:3c: 61:15:28:a5:22:d4:8b:63:a0:cb:47:44:7c:a7:af: ea:ff:cc:fc:69:f9:d4:27:dc:fa:4e:5f:6c:6a:e4: 6b:01:6e:02:7b:ab:49:a7:19:36:17:fb:f7:38:83: fe:2d:fc:25:c5:a7:42:01:4d:27:3f:f1:d0:1b:75: 07:fe:bf:0c:7a:68:54:33:69:b6:32:5b:f2:dc:3a: 9d:83:02:0d:06:e5:d4:c6:68:58:42:35:16:e8:68: 99:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:78:4D:9D:D8:B9:8D:34:34:6C:03:B5:B7:4D:8E:F3:E1:AF:41:2A X509v3 Authority Key Identifier: keyid:AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/9HhNndi5jTQ0bAO1t02O8-GvQSo.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.109.64.0/20 Signature Algorithm: sha256WithRSAEncryption 2a:4c:0f:c6:02:93:20:56:db:91:84:dc:88:a5:ff:e0:65:21: 8a:6f:0a:b1:bf:97:2a:e2:ca:d4:ef:a9:d9:8c:d7:6e:8d:c7: ac:4d:15:0f:4e:3d:f1:db:dd:46:16:00:e6:19:b6:8a:5d:f4: 65:ec:d9:8c:1e:92:3f:b3:65:8d:0b:2e:42:67:14:e3:72:d5: 22:f0:06:4f:6a:70:81:07:ec:5e:01:c6:f2:66:b4:bd:a6:06: fe:e6:09:27:a7:e5:c4:ac:90:46:41:dd:31:96:91:fc:b6:63: 18:3a:6f:13:43:37:08:d0:4c:f7:d5:03:53:bb:86:f3:ae:de: 61:06:36:ad:ad:ec:17:3e:43:00:7e:14:20:02:87:c7:48:8a: d5:bf:0b:6a:3c:31:36:a8:75:87:6c:83:fa:1a:ef:91:a7:12: 74:8e:95:40:3c:f8:bf:d2:a1:3f:45:e0:a2:4c:e2:7c:56:b1: f6:8c:30:6e:13:ac:67:b5:77:11:91:20:0d:3f:d8:40:b1:8e: 44:3c:d4:d2:7c:ff:45:23:d1:81:06:a3:f3:d6:5d:0a:b2:75: 3a:3b:dd:9c:f9:cc:36:f0:ad:be:f8:71:d4:63:4c:6a:7c:78: 6f:79:f6:b1:ab:3c:dd:b5:dc:c9:49:f0:27:4c:b1:a9:02:bc: 42:5f:ae:11 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBTzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBRDQ3 NDFGMDM0OUZCQzE1QTcwOEUyOEEyQ0UzMDc5MDZDQUM1REUwMB4XDTI0MDgzMTAx MzEzM1oXDTI1MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoRjQ3ODREOUREOEI5OEQz NDM0NkMwM0I1Qjc0RDhFRjNFMUFGNDEyQTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMdYdw3Vswn0ix3IZjST9me/ij/gi9l3flq5hlB/ppvsOI1ZeKqT cBNHmvpzkXgSBvW4KTqrHUh/hCWVZ72WZqjLMbJA2EcE/OSYPmss+7ddUjtISQyc c+ZnLBe0GNNArS+GiAtS2fCu4twc5h+7WgbSybq9MD62T++x32fcoezT8E81b0HJ djLYN0/z045pPF3piqBVpP5G1TA2khaJ7rVKk/s8YRUopSLUi2Ogy0dEfKev6v/M /Gn51Cfc+k5fbGrkawFuAnurSacZNhf79ziD/i38JcWnQgFNJz/x0Bt1B/6/DHpo VDNptjJb8tw6nYMCDQbl1MZoWEI1FuhombkCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBT0eE2d2LmNNDRsA7W3TY7z4a9BKjAfBgNVHSMEGDAWgBStR0HwNJ+8FacI4oos 4weQbKxd4DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDU0L3JVZEI4RFNmdkJXbkNPS0tMT01Ia0d5c1hlQS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3JVZEI4RFNmdkJXbkNPS0tMT01Ia0d5 c1hlQS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80NTQvOUhoTm5kaTVqVFEwYkFPMXQwMk84LUd2UVNvLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNttQDANBgkqhkiG9w0BAQsFAAOCAQEAKkwPxgKTIFbbkYTciKX/4GUhim8K sb+XKuLK1O+p2YzXbo3HrE0VD0498dvdRhYA5hm2il30ZezZjB6SP7NljQsuQmcU 43LVIvAGT2pwgQfsXgHG8ma0vaYG/uYJJ6flxKyQRkHdMZaR/LZjGDpvE0M3CNBM 99UDU7uG867eYQY2ra3sFz5DAH4UIAKHx0iK1b8LajwxNqh1h2yD+hrvkacSdI6V QDz4v9KhP0XgokzifFax9owwbhOsZ7V3EZEgDT/YQLGORDzU0nz/RSPRgQaj89Zd CrJ1OjvdnPnMNvCtvvhx1GNManx4b3n2sas83bXcyUnwJ0yxqQK8Ql+uEQ== -----END CERTIFICATE-----Generated at Sun Feb 16 22:17:58 2025 by rpki-client