$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/533/IosHzcmaxjTBsJeH3_drJt-_wZc.roa File: IosHzcmaxjTBsJeH3_drJt-_wZc.roa (raw, json) Hash identifier: c3zeKpgRPTD1+2gqJo6bFPtInZ6mec4so5xMSLyBDtc= Subject key identifier: 22:8B:07:CD:C9:9A:C6:34:C1:B0:97:87:DF:F7:6B:26:DF:BF:C1:97 Certificate issuer: /CN=3CA2621A703340B3DE460CB36D089C28E4C47039 Certificate serial: 03 Authority key identifier: 3C:A2:62:1A:70:33:40:B3:DE:46:0C:B3:6D:08:9C:28:E4:C4:70:39 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/PKJiGnAzQLPeRgyzbQicKOTEcDk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/533/IosHzcmaxjTBsJeH3_drJt-_wZc.roa Signing time: Mon 12 Aug 2024 00:10:17 +0000 ROA not before: Mon 12 Aug 2024 00:10:17 +0000 ROA not after: Thu 07 Aug 2025 09:46:37 +0000 asID: 55891 IP address blocks: 103.10.240.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/533/PKJiGnAzQLPeRgyzbQicKOTEcDk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/533/PKJiGnAzQLPeRgyzbQicKOTEcDk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/PKJiGnAzQLPeRgyzbQicKOTEcDk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3CA2621A703340B3DE460CB36D089C28E4C47039 Validity Not Before: Aug 12 00:10:17 2024 GMT Not After : Aug 7 09:46:37 2025 GMT Subject: CN=228B07CDC99AC634C1B09787DFF76B26DFBFC197 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:07:4b:ac:c1:91:29:a2:0a:6e:9e:0c:8b:06: cc:51:99:76:67:12:88:02:c4:3d:05:7f:d4:1e:c7: 12:cb:2c:bf:e7:5e:47:74:de:fe:5c:dd:e1:ec:44: 60:c2:48:94:52:53:be:02:8e:00:23:83:a5:49:cd: ba:d0:d9:91:f5:88:51:fb:4d:3f:c5:ec:c3:68:d5: eb:c2:38:20:91:f1:63:4a:9d:d5:19:a7:1a:66:ce: d2:b0:f0:18:12:a0:19:50:6a:cc:76:ac:d5:ef:82: 98:f5:44:93:7a:8b:b7:c2:b3:a1:bd:a8:06:d1:ae: c6:e4:ac:e0:e5:d3:49:f0:b7:4d:e5:9a:4c:83:fb: 84:12:e6:2a:71:9d:3e:90:e2:db:2b:fe:6a:69:a9: c7:eb:40:23:64:ac:03:67:b0:b0:62:8f:5d:c0:59: 02:45:73:36:6e:89:8a:85:64:58:16:84:58:e4:04: 67:e6:e6:ce:a3:7d:e8:0b:75:0c:6f:86:cd:9b:0c: 91:f9:c9:0f:87:a4:4e:a4:e3:7c:fd:37:07:20:10: 49:7d:93:fe:8f:66:f4:f3:a2:8d:4c:93:92:c6:f7: 77:07:87:2c:97:a2:2d:e6:50:0f:8c:b0:4b:ad:0f: df:93:c8:86:72:5f:a0:28:9d:00:c1:ba:48:56:77: a0:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:8B:07:CD:C9:9A:C6:34:C1:B0:97:87:DF:F7:6B:26:DF:BF:C1:97 X509v3 Authority Key Identifier: keyid:3C:A2:62:1A:70:33:40:B3:DE:46:0C:B3:6D:08:9C:28:E4:C4:70:39 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/533/PKJiGnAzQLPeRgyzbQicKOTEcDk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/PKJiGnAzQLPeRgyzbQicKOTEcDk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/533/IosHzcmaxjTBsJeH3_drJt-_wZc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.10.240.0/22 Signature Algorithm: sha256WithRSAEncryption 5b:0c:ad:7b:2b:3e:f3:5c:28:9d:e3:ff:1b:b7:d3:29:78:c5: e2:bf:aa:bc:ef:b3:25:8c:e0:9e:7b:e3:b5:10:13:80:91:fb: 05:16:a1:e3:b8:ac:ab:48:f4:60:44:9a:1a:9a:94:5a:51:19: f6:61:eb:a8:f6:b1:8a:7b:c7:4b:4f:ac:9b:56:95:a6:a0:6c: e1:9b:1a:50:94:36:f3:5b:e9:3e:fd:66:1a:b3:0f:6a:81:5d: ff:ed:cb:3f:e1:2b:41:e4:54:50:ba:5d:a2:0a:50:a3:c4:07: 1a:9d:ae:4d:42:63:ad:24:e0:aa:1f:57:44:b7:2c:38:7c:36: 60:9c:31:4d:23:bb:6e:05:b1:30:b5:59:1c:d0:63:d9:50:17: ed:94:f8:bd:b1:93:ea:33:fd:f7:20:22:6e:f4:37:04:10:33: 94:01:d0:e4:64:94:26:fc:1f:c0:8f:56:11:22:5c:c9:7f:db: 04:ca:08:c5:46:2b:0d:ef:11:75:ce:ad:d9:61:44:17:cc:b7: b0:22:3d:81:20:13:cc:77:b6:9d:21:50:94:8b:04:9c:3e:fe: d4:b3:60:27:23:96:48:2e:f0:ad:90:50:54:1e:5a:be:cc:a9: ea:72:5a:ac:bc:bf:c0:f1:5b:83:2e:94:bd:ed:2c:92:a3:45: c4:35:64:f5 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBAzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzQ0Ey NjIxQTcwMzM0MEIzREU0NjBDQjM2RDA4OUMyOEU0QzQ3MDM5MB4XDTI0MDgxMjAw MTAxN1oXDTI1MDgwNzA5NDYzN1owMzExMC8GA1UEAxMoMjI4QjA3Q0RDOTlBQzYz NEMxQjA5Nzg3REZGNzZCMjZERkJGQzE5NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAK0HS6zBkSmiCm6eDIsGzFGZdmcSiALEPQV/1B7HEsssv+deR3Te /lzd4exEYMJIlFJTvgKOACODpUnNutDZkfWIUftNP8Xsw2jV68I4IJHxY0qd1Rmn GmbO0rDwGBKgGVBqzHas1e+CmPVEk3qLt8Kzob2oBtGuxuSs4OXTSfC3TeWaTIP7 hBLmKnGdPpDi2yv+ammpx+tAI2SsA2ewsGKPXcBZAkVzNm6JioVkWBaEWOQEZ+bm zqN96At1DG+GzZsMkfnJD4ekTqTjfP03ByAQSX2T/o9m9POijUyTksb3dweHLJei LeZQD4ywS60P35PIhnJfoCidAMG6SFZ3oDsCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQiiwfNyZrGNMGwl4ff92sm37/BlzAfBgNVHSMEGDAWgBQ8omIacDNAs95GDLNt CJwo5MRwOTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTMzL1BLSmlHbkF6UUxQZVJneXpiUWljS09URWNEay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1BLSmlHbkF6UUxQZVJneXpiUWljS09U RWNEay5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81MzMvSW9zSHpjbWF4alRCc0plSDNfZHJKdC1fd1pjLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmcK8DANBgkqhkiG9w0BAQsFAAOCAQEAWwyteys+81woneP/G7fTKXjF4r+q vO+zJYzgnnvjtRATgJH7BRah47isq0j0YESaGpqUWlEZ9mHrqPaxinvHS0+sm1aV pqBs4ZsaUJQ281vpPv1mGrMPaoFd/+3LP+ErQeRUULpdogpQo8QHGp2uTUJjrSTg qh9XRLcsOHw2YJwxTSO7bgWxMLVZHNBj2VAX7ZT4vbGT6jP99yAibvQ3BBAzlAHQ 5GSUJvwfwI9WESJcyX/bBMoIxUYrDe8Rdc6t2WFEF8y3sCI9gSATzHe2nSFQlIsE nD7+1LNgJyOWSC7wrZBQVB5avsyp6nJarLy/wPFbgy6Uve0skqNFxDVk9Q== -----END CERTIFICATE-----Generated at Sun Feb 16 22:31:48 2025 by rpki-client