$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/454/RkYm9eFzLcWDwWxqV-pL1dO9SUw.roa File: RkYm9eFzLcWDwWxqV-pL1dO9SUw.roa (raw, json) Hash identifier: pco1nvWOLf/3pHvQGeX4/fx7RMaUQki0Qc0G1xQ+HtI= Subject key identifier: 46:46:26:F5:E1:73:2D:C5:83:C1:6C:6A:57:EA:4B:D5:D3:BD:49:4C Certificate issuer: /CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0 Certificate serial: 4D Authority key identifier: AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/RkYm9eFzLcWDwWxqV-pL1dO9SUw.roa Signing time: Sat 31 Aug 2024 01:31:33 +0000 ROA not before: Sat 31 Aug 2024 01:31:33 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 10000 IP address blocks: 218.216.0.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0 Validity Not Before: Aug 31 01:31:33 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=464626F5E1732DC583C16C6A57EA4BD5D3BD494C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:10:87:57:59:96:fa:e2:16:bf:81:41:84:3c: 0c:aa:f6:25:b5:e5:87:6c:2a:84:80:b2:77:9d:a6: 87:68:a5:17:30:a2:37:a0:75:06:3a:a2:16:75:d9: b6:2f:48:88:5a:e7:ca:1a:63:06:4d:b0:d6:7f:0d: 02:ed:1e:be:d8:ac:53:95:82:93:01:7d:ac:73:aa: 80:82:66:29:23:ab:ce:ec:dc:60:11:f8:c4:9a:09: 7b:5e:0c:23:b2:1a:f1:e1:68:97:e4:ce:ee:31:17: 89:a7:71:5c:15:a8:05:e3:28:dd:6e:7f:c9:7a:32: 0a:64:40:03:ac:eb:5c:37:f7:d5:dc:54:4e:12:71: 4e:11:86:de:cf:da:ca:a5:d0:02:fa:3e:73:30:27: c1:66:0b:62:73:cd:fe:45:12:0e:7e:ab:88:5f:aa: 22:e4:7a:02:23:2a:c2:de:84:00:8a:30:ea:bb:1e: e3:a6:93:3b:66:06:12:f8:01:d9:59:17:a5:fc:e8: f1:e2:7b:ac:c0:52:31:75:9a:2d:a2:02:97:0f:1c: 94:08:d8:8d:17:56:55:17:34:d2:ce:0d:c7:c6:9d: 3e:3e:f4:2f:60:66:5f:b9:62:cb:ea:50:18:53:34: d2:60:e1:96:75:05:6e:a5:8c:ef:7b:64:84:ed:6d: 73:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:46:26:F5:E1:73:2D:C5:83:C1:6C:6A:57:EA:4B:D5:D3:BD:49:4C X509v3 Authority Key Identifier: keyid:AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/RkYm9eFzLcWDwWxqV-pL1dO9SUw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.216.0.0/20 Signature Algorithm: sha256WithRSAEncryption 4b:af:9f:1d:46:9e:62:e1:4c:cb:74:77:fa:90:45:89:7f:9f: 02:10:7c:d7:52:a9:3b:db:8a:34:5b:c8:15:51:e3:9b:44:51: 76:6b:6b:72:d1:87:99:b0:35:9c:27:66:39:7b:a7:01:3f:bc: 4e:05:f7:32:96:5c:ad:3d:cb:88:ff:79:b0:5e:b2:ce:e2:fb: dd:54:59:71:4b:a4:09:73:46:b3:d5:f1:df:96:0c:47:8e:0a: f8:28:2c:d2:e1:d6:52:d9:de:58:45:51:0f:26:f1:b5:90:64: bf:23:d4:0b:96:af:af:a6:69:19:e0:7c:1a:96:fb:96:88:d9: 48:b1:66:90:a0:a4:73:e7:08:e7:6a:f3:8b:bb:96:3e:4e:3f: 70:2c:ea:ef:8f:0c:0a:15:39:8e:4b:b8:b9:54:3a:94:7b:a9: 76:5d:e1:d8:2d:db:f3:d0:24:16:8e:fb:47:1f:3a:98:aa:94: a1:d8:09:9b:1e:9b:31:f7:a9:56:3c:95:7c:e8:d5:60:44:67: 5f:b0:22:61:07:ce:53:d3:d1:bf:b7:b6:2a:13:b1:93:4f:ce: a1:8e:66:d5:02:1b:2a:21:aa:3f:a9:cc:5a:72:cc:75:83:9f: d4:5b:94:5c:31:fb:41:12:68:c1:84:6c:1b:bb:17:c3:2c:d7: fb:29:74:a9 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBTTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBRDQ3 NDFGMDM0OUZCQzE1QTcwOEUyOEEyQ0UzMDc5MDZDQUM1REUwMB4XDTI0MDgzMTAx MzEzM1oXDTI1MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoNDY0NjI2RjVFMTczMkRD NTgzQzE2QzZBNTdFQTRCRDVEM0JENDk0QzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMMQh1dZlvriFr+BQYQ8DKr2JbXlh2wqhICyd52mh2ilFzCiN6B1 BjqiFnXZti9IiFrnyhpjBk2w1n8NAu0evtisU5WCkwF9rHOqgIJmKSOrzuzcYBH4 xJoJe14MI7Ia8eFol+TO7jEXiadxXBWoBeMo3W5/yXoyCmRAA6zrXDf31dxUThJx ThGG3s/ayqXQAvo+czAnwWYLYnPN/kUSDn6riF+qIuR6AiMqwt6EAIow6rse46aT O2YGEvgB2VkXpfzo8eJ7rMBSMXWaLaIClw8clAjYjRdWVRc00s4Nx8adPj70L2Bm X7liy+pQGFM00mDhlnUFbqWM73tkhO1tc1ECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRGRib14XMtxYPBbGpX6kvV071JTDAfBgNVHSMEGDAWgBStR0HwNJ+8FacI4oos 4weQbKxd4DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNDU0L3JVZEI4RFNmdkJXbkNPS0tMT01Ia0d5c1hlQS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3JVZEI4RFNmdkJXbkNPS0tMT01Ia0d5 c1hlQS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC80NTQvUmtZbTllRnpMY1dEd1d4cVYtcEwxZE85U1V3LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNrYADANBgkqhkiG9w0BAQsFAAOCAQEAS6+fHUaeYuFMy3R3+pBFiX+fAhB8 11KpO9uKNFvIFVHjm0RRdmtrctGHmbA1nCdmOXunAT+8TgX3MpZcrT3LiP95sF6y zuL73VRZcUukCXNGs9Xx35YMR44K+Cgs0uHWUtneWEVRDybxtZBkvyPUC5avr6Zp GeB8Gpb7lojZSLFmkKCkc+cI52rzi7uWPk4/cCzq748MChU5jku4uVQ6lHupdl3h 2C3b89AkFo77Rx86mKqUodgJmx6bMfepVjyVfOjVYERnX7AiYQfOU9PRv7e2KhOx k0/OoY5m1QIbKiGqP6nMWnLMdYOf1FuUXDH7QRJowYRsG7sXwyzX+yl0qQ== -----END CERTIFICATE-----Generated at Sun Feb 16 22:07:34 2025 by rpki-client