$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/530/sMLui9ydBCKSSPPRNivVSmfLYYs.roa File: sMLui9ydBCKSSPPRNivVSmfLYYs.roa (raw, json) Hash identifier: akjkddKuicBQThhRQN1R1ULj9ZOyt4RcTyMzOKvFvjI= Subject key identifier: B0:C2:EE:8B:DC:9D:04:22:92:48:F3:D1:36:2B:D5:4A:67:CB:61:8B Certificate issuer: /CN=1B20A06A21205820B28FD06CE0A84F03FCDAEBC5 Certificate serial: 4D Authority key identifier: 1B:20:A0:6A:21:20:58:20:B2:8F:D0:6C:E0:A8:4F:03:FC:DA:EB:C5 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GyCgaiEgWCCyj9Bs4KhPA_za68U.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/sMLui9ydBCKSSPPRNivVSmfLYYs.roa Signing time: Tue 30 Apr 2024 01:28:46 +0000 ROA not before: Tue 30 Apr 2024 01:28:46 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 59125 IP address blocks: 1.21.128.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/GyCgaiEgWCCyj9Bs4KhPA_za68U.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/GyCgaiEgWCCyj9Bs4KhPA_za68U.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GyCgaiEgWCCyj9Bs4KhPA_za68U.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1B20A06A21205820B28FD06CE0A84F03FCDAEBC5 Validity Not Before: Apr 30 01:28:46 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=B0C2EE8BDC9D04229248F3D1362BD54A67CB618B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:83:45:e4:04:b0:13:20:46:d5:09:b9:db:c2: 40:07:61:50:74:55:e3:d9:07:d9:a1:cb:4a:4d:09: 77:6b:40:78:56:35:d0:b7:9a:b1:2c:44:a5:10:51: ce:de:f3:94:bc:d3:cb:76:a6:cf:e2:a4:1d:e1:1b: 26:6e:2d:9f:e8:6f:ba:c5:e5:c9:3b:88:cf:7b:0c: 29:12:fb:f9:9d:34:72:20:e1:eb:4e:6b:e4:b1:f1: 5c:1c:a8:4d:aa:37:98:c9:81:68:9f:28:61:a6:b2: 39:f0:c6:9a:48:62:8e:f0:8c:0b:1b:e2:2e:b3:d6: 30:d9:ce:e8:7e:cb:d5:c9:97:75:6c:45:d6:c2:c4: d7:65:19:ac:f9:e3:30:76:f4:3c:62:21:1b:d6:da: 39:7b:f9:4b:6f:90:46:cc:bb:d2:13:ea:34:c0:c6: e2:6b:12:22:2d:b5:31:ef:a0:6a:db:b1:a1:08:1a: f6:5b:e1:66:8e:f2:f7:69:01:8d:c9:d3:31:a6:eb: 71:44:e8:d2:fc:06:df:ce:12:ed:8e:38:b5:4d:3a: 05:ad:23:c8:8b:b8:eb:6a:9d:0b:8a:9d:3d:68:ae: 38:eb:f4:98:fa:e2:db:35:64:42:63:00:e0:63:36: 42:3e:09:b6:7e:e0:84:42:6e:2e:3b:67:18:c8:98: d5:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:C2:EE:8B:DC:9D:04:22:92:48:F3:D1:36:2B:D5:4A:67:CB:61:8B X509v3 Authority Key Identifier: keyid:1B:20:A0:6A:21:20:58:20:B2:8F:D0:6C:E0:A8:4F:03:FC:DA:EB:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/GyCgaiEgWCCyj9Bs4KhPA_za68U.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GyCgaiEgWCCyj9Bs4KhPA_za68U.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/sMLui9ydBCKSSPPRNivVSmfLYYs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.21.128.0/20 Signature Algorithm: sha256WithRSAEncryption ad:d5:3f:ea:e1:d7:69:cd:a0:bd:55:e3:9b:78:e7:45:9d:27: 1e:86:8e:82:2f:3d:a3:64:dc:3b:42:21:9e:0c:5f:a6:cc:1a: 7a:26:f7:c7:ed:3a:c6:78:44:55:49:73:e5:44:60:16:20:7c: 80:f6:73:df:b3:b8:d7:eb:6c:0b:c0:fe:45:d9:d8:b0:af:50: f8:73:33:7f:12:e0:23:06:06:88:3f:81:6d:94:16:b3:64:b0: 26:1f:0d:8d:1c:2a:e3:8c:24:89:56:9a:3b:69:11:92:0b:93: 95:27:59:74:9c:df:1b:ff:53:9d:c2:d5:76:23:31:78:5e:5d: 49:f2:4b:cf:0f:1e:c9:76:15:c8:b1:72:13:2b:4b:75:c3:97: b1:88:77:09:9c:9b:1a:85:22:54:bc:bb:c8:c6:98:61:58:fd: 25:5b:53:fd:5b:2e:09:61:fd:80:e9:e1:57:9a:e4:3c:4e:e3: 38:f8:3e:b2:34:25:d2:b8:0f:c5:b5:fc:39:c6:d8:94:63:05: e6:af:72:f3:d3:59:9a:67:08:cd:ad:38:fd:a9:2e:41:ae:1a: 0a:f8:b0:42:1a:34:dc:32:e1:35:d0:3b:a4:a9:81:8f:b4:ac: 17:eb:dc:f2:a6:eb:bb:4f:2c:24:79:39:a2:3d:d8:0a:27:26: eb:42:9a:ad -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBTTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxQjIw QTA2QTIxMjA1ODIwQjI4RkQwNkNFMEE4NEYwM0ZDREFFQkM1MB4XDTI0MDQzMDAx Mjg0NloXDTI1MDQxNTAxMzAwMlowMzExMC8GA1UEAxMoQjBDMkVFOEJEQzlEMDQy MjkyNDhGM0QxMzYyQkQ1NEE2N0NCNjE4QjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOmDReQEsBMgRtUJudvCQAdhUHRV49kH2aHLSk0Jd2tAeFY10Lea sSxEpRBRzt7zlLzTy3amz+KkHeEbJm4tn+hvusXlyTuIz3sMKRL7+Z00ciDh605r 5LHxXByoTao3mMmBaJ8oYaayOfDGmkhijvCMCxviLrPWMNnO6H7L1cmXdWxF1sLE 12UZrPnjMHb0PGIhG9baOXv5S2+QRsy70hPqNMDG4msSIi21Me+gatuxoQga9lvh Zo7y92kBjcnTMabrcUTo0vwG384S7Y44tU06Ba0jyIu462qdC4qdPWiuOOv0mPri 2zVkQmMA4GM2Qj4Jtn7ghEJuLjtnGMiY1TkCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSwwu6L3J0EIpJI89E2K9VKZ8thizAfBgNVHSMEGDAWgBQbIKBqISBYILKP0Gzg qE8D/NrrxTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTMwL0d5Q2dhaUVnV0NDeWo5QnM0S2hQQV96YTY4VS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0d5Q2dhaUVnV0NDeWo5QnM0S2hQQV96 YTY4VS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81MzAvc01MdWk5eWRCQ0tTU1BQUk5pdlZTbWZMWVlzLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBAEVgDANBgkqhkiG9w0BAQsFAAOCAQEArdU/6uHXac2gvVXjm3jnRZ0nHoaO gi89o2TcO0Ihngxfpswaeib3x+06xnhEVUlz5URgFiB8gPZz37O41+tsC8D+RdnY sK9Q+HMzfxLgIwYGiD+BbZQWs2SwJh8NjRwq44wkiVaaO2kRkguTlSdZdJzfG/9T ncLVdiMxeF5dSfJLzw8eyXYVyLFyEytLdcOXsYh3CZybGoUiVLy7yMaYYVj9JVtT /VsuCWH9gOnhV5rkPE7jOPg+sjQl0rgPxbX8OcbYlGMF5q9y89NZmmcIza04/aku Qa4aCviwQho03DLhNdA7pKmBj7SsF+vc8qbru08sJHk5oj3YCicm60KarQ== -----END CERTIFICATE-----Generated at Sun Feb 16 22:06:24 2025 by rpki-client