$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/454/Gfl0t7N2mDuYfjbcq-_IlbyQ4dk.roa File: Gfl0t7N2mDuYfjbcq-_IlbyQ4dk.roa (raw, json) Hash identifier: rXx9oM+nLfArS7FJ0YCHxlQJ65o+phLftz1ecvVY+y0= Subject key identifier: 19:F9:74:B7:B3:76:98:3B:98:7E:36:DC:AB:EF:C8:95:BC:90:E1:D9 Certificate issuer: /CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0 Certificate serial: 41 Authority key identifier: AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/Gfl0t7N2mDuYfjbcq-_IlbyQ4dk.roa Signing time: Sat 31 Aug 2024 01:31:27 +0000 ROA not before: Sat 31 Aug 2024 01:31:27 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 10000 IP address blocks: 61.114.96.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0 Validity Not Before: Aug 31 01:31:27 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=19F974B7B376983B987E36DCABEFC895BC90E1D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:06:2f:49:b3:a8:90:31:2f:a7:b5:88:a4:1d: 5c:d9:7c:89:ab:8e:74:8e:41:94:ab:09:ca:ed:64: 3f:f0:c8:ae:8d:16:8e:cf:7e:4a:e9:f7:58:22:22: 20:f0:41:d9:9b:ca:18:ea:69:6f:a3:47:5c:e1:48: 44:ea:75:77:66:cc:8f:ab:16:af:ae:cf:70:1c:b4: 48:23:65:3a:88:5a:b8:e0:ca:35:65:d7:f9:01:b4: 52:19:71:dc:66:ef:5c:74:e1:0e:e6:e7:f5:f1:ac: c4:39:71:95:17:1b:2a:e4:1e:0c:28:ab:22:76:15: 19:36:49:31:4b:c7:15:1f:fa:c5:6c:10:ca:bf:36: a4:9d:71:8b:a7:99:b0:6f:46:52:7d:8c:76:ad:9b: 67:f6:d8:89:8d:64:2e:06:5a:ff:d8:bf:8c:6c:51: 0b:00:e0:56:ee:0c:6c:2b:d7:32:cb:5e:7f:96:c3: b7:48:08:e9:b4:3e:7f:4a:d3:d4:67:6e:68:df:f9: 4e:ef:70:43:1e:84:8d:ee:66:00:d8:d6:94:d5:7c: 90:6b:9d:36:91:fd:59:0f:42:bb:82:37:d6:7a:83: 7d:41:04:ea:f9:1a:19:0d:41:54:3c:30:e3:c5:4e: 96:15:c9:c2:6a:80:6c:97:22:d2:86:80:f5:39:5c: 16:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:F9:74:B7:B3:76:98:3B:98:7E:36:DC:AB:EF:C8:95:BC:90:E1:D9 X509v3 Authority Key Identifier: keyid:AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/Gfl0t7N2mDuYfjbcq-_IlbyQ4dk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.114.96.0/20 Signature Algorithm: sha256WithRSAEncryption 63:65:7b:35:c8:fe:fa:62:2d:3a:48:79:70:e2:05:3a:85:30: 12:35:41:5a:e8:6a:7b:3f:ad:d1:91:ad:ad:c3:74:08:dc:58: f5:09:31:bf:49:6d:90:1d:7d:00:0d:f8:6f:30:33:07:3c:78: 60:91:17:d2:53:6d:44:1e:04:af:96:fc:90:fa:b2:d0:7b:48: 4a:79:2d:ae:f3:64:dd:5a:c0:b4:ab:85:6a:ab:81:ad:1c:1c: 59:bd:27:30:91:0e:f1:66:79:97:05:8b:a5:a6:a8:d9:24:85: 58:f3:35:84:ec:80:d8:f1:cb:50:a6:9b:f2:01:bc:75:9b:49: 62:9c:d5:97:a6:87:7a:ef:5e:e3:4e:cf:dd:45:10:d7:29:be: 58:ef:87:e8:70:6d:7e:d0:43:a7:86:b9:23:ca:0c:be:18:5e: 15:f0:ea:75:8c:00:43:52:00:a4:7c:4a:c6:62:44:32:d3:16: 5e:0d:ec:e6:f2:ec:cd:dd:09:ac:a2:11:d0:54:d4:f5:97:15: 51:68:e0:45:1f:ac:ab:5c:c8:bb:c0:fb:8c:42:e3:c0:ca:d4: 74:fa:e2:73:21:ec:6d:84:3e:b8:db:21:f6:0b:57:00:ad:6a: 12:78:8e:ec:66:17:68:e2:3f:98:3b:4f:47:99:0d:d9:b8:fe: b5:54:70:22 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBQTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBRDQ3 NDFGMDM0OUZCQzE1QTcwOEUyOEEyQ0UzMDc5MDZDQUM1REUwMB4XDTI0MDgzMTAx MzEyN1oXDTI1MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoMTlGOTc0QjdCMzc2OTgz Qjk4N0UzNkRDQUJFRkM4OTVCQzkwRTFEOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMMGL0mzqJAxL6e1iKQdXNl8iauOdI5BlKsJyu1kP/DIro0Wjs9+ Sun3WCIiIPBB2ZvKGOppb6NHXOFIROp1d2bMj6sWr67PcBy0SCNlOohauODKNWXX +QG0Uhlx3GbvXHThDubn9fGsxDlxlRcbKuQeDCirInYVGTZJMUvHFR/6xWwQyr82 pJ1xi6eZsG9GUn2Mdq2bZ/bYiY1kLgZa/9i/jGxRCwDgVu4MbCvXMstef5bDt0gI 6bQ+f0rT1GduaN/5Tu9wQx6Eje5mANjWlNV8kGudNpH9WQ9Cu4I31nqDfUEE6vka GQ1BVDww48VOlhXJwmqAbJci0oaA9TlcFkECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQZ+XS3s3aYO5h+Ntyr78iVvJDh2TAfBgNVHSMEGDAWgBStR0HwNJ+8FacI4oos 4weQbKxd4DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDU0L3JVZEI4RFNmdkJXbkNPS0tMT01Ia0d5c1hlQS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3JVZEI4RFNmdkJXbkNPS0tMT01Ia0d5 c1hlQS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80NTQvR2ZsMHQ3TjJtRHVZZmpiY3EtX0lsYnlRNGRrLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBD1yYDANBgkqhkiG9w0BAQsFAAOCAQEAY2V7Ncj++mItOkh5cOIFOoUwEjVB Wuhqez+t0ZGtrcN0CNxY9Qkxv0ltkB19AA34bzAzBzx4YJEX0lNtRB4Er5b8kPqy 0HtISnktrvNk3VrAtKuFaquBrRwcWb0nMJEO8WZ5lwWLpaao2SSFWPM1hOyA2PHL UKab8gG8dZtJYpzVl6aHeu9e407P3UUQ1ym+WO+H6HBtftBDp4a5I8oMvhheFfDq dYwAQ1IApHxKxmJEMtMWXg3s5vLszd0JrKIR0FTU9ZcVUWjgRR+sq1zIu8D7jELj wMrUdPricyHsbYQ+uNsh9gtXAK1qEniO7GYXaOI/mDtPR5kN2bj+tVRwIg== -----END CERTIFICATE-----Generated at Sun Feb 16 22:27:40 2025 by rpki-client