$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/539/Qf9XroLtiUOb2dZyAT560w1QYcU.roa File: Qf9XroLtiUOb2dZyAT560w1QYcU.roa (raw, json) Hash identifier: LTGwgjphMXURJ3v+Eu72w1zekdVQeMP8X6DgmUnGQO0= Subject key identifier: 41:FF:57:AE:82:ED:89:43:9B:D9:D6:72:01:3E:7A:D3:0D:50:61:C5 Certificate issuer: /CN=5B0D72F9F430B7D4003375F10D5025B9E5C00437 Certificate serial: 7C Authority key identifier: 5B:0D:72:F9:F4:30:B7:D4:00:33:75:F1:0D:50:25:B9:E5:C0:04:37 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Qf9XroLtiUOb2dZyAT560w1QYcU.roa Signing time: Tue 05 Nov 2024 10:31:55 +0000 ROA not before: Tue 05 Nov 2024 10:31:55 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 55900 IP address blocks: 123.100.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Ww1y-fQwt9QAM3XxDVAlueXABDc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Ww1y-fQwt9QAM3XxDVAlueXABDc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5B0D72F9F430B7D4003375F10D5025B9E5C00437 Validity Not Before: Nov 5 10:31:55 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=41FF57AE82ED89439BD9D672013E7AD30D5061C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:82:0e:da:a4:89:65:0a:c9:06:17:1a:89:5e: 60:ce:0e:a1:75:98:90:5a:c0:1e:7a:5a:07:69:1b: 65:c7:a4:1a:b5:e2:70:5b:38:18:3b:10:5a:ec:02: 3a:e0:71:2d:67:ce:24:7b:a0:c2:01:38:f0:39:1b: 45:b0:27:33:d8:94:2a:2d:54:51:5a:d3:56:ef:bc: 6f:0d:85:e7:bc:a9:39:59:11:1d:5b:84:46:8b:bc: 03:98:3b:a6:9f:69:42:64:3f:74:16:84:84:8b:7c: 1f:2b:1b:73:6d:be:68:18:29:fe:19:86:9f:3f:3e: 37:d9:1a:ee:7e:b8:ff:9f:1a:3f:29:3b:d6:e1:82: e7:10:82:e6:bc:4c:c5:1a:3e:3b:23:1c:50:b0:18: bb:12:87:97:ec:a3:e1:6a:2a:43:93:3a:9e:98:42: 3f:72:e8:c5:e2:cb:73:df:4f:0e:cd:3a:33:7b:64: f9:8c:de:b1:70:d2:98:32:9d:dc:ee:22:82:bd:e6: b8:46:03:6e:6e:8d:08:49:95:5c:bb:63:0d:7c:42: d1:98:57:f1:e8:84:36:83:f7:8a:fd:4d:09:6f:6d: 16:3a:9d:00:51:b8:7b:b5:c8:e6:8f:f1:bf:6f:80: 12:cc:3f:a9:b7:be:3c:7b:94:b7:98:7b:a6:9b:9a: 18:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:FF:57:AE:82:ED:89:43:9B:D9:D6:72:01:3E:7A:D3:0D:50:61:C5 X509v3 Authority Key Identifier: keyid:5B:0D:72:F9:F4:30:B7:D4:00:33:75:F1:0D:50:25:B9:E5:C0:04:37 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Ww1y-fQwt9QAM3XxDVAlueXABDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Qf9XroLtiUOb2dZyAT560w1QYcU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.100.136.0/22 Signature Algorithm: sha256WithRSAEncryption e6:c9:ac:8b:ed:4e:83:34:2c:12:1e:82:32:8d:cd:c1:4f:6b: 16:3c:86:74:a0:93:2b:45:07:9f:b8:a0:2d:07:c4:e0:8b:a9: d1:1b:a2:73:60:f5:5e:05:35:e5:af:30:a6:14:d3:fb:48:28: 56:d7:43:a0:0a:dd:2a:31:ef:85:d2:8c:da:bb:a1:13:ed:ed: 37:2b:ad:9b:c2:05:25:85:2b:fd:29:e5:b4:f8:65:e2:73:72: e5:cc:3d:80:e3:a8:93:76:2b:72:e3:7f:22:a3:d9:d6:aa:92: 34:dd:19:50:86:1a:b0:46:e7:9d:5a:88:47:5c:a8:f6:75:26: 91:d2:95:83:05:4a:07:eb:85:9d:5c:96:17:f3:cb:4d:6b:ea: 52:73:c9:1a:d6:26:7d:57:f7:30:ff:79:5b:69:b9:ad:06:1b: 11:b8:e6:e0:77:cc:63:8c:fe:f2:68:45:3b:de:cc:99:44:0a: 50:c1:e1:d5:e0:69:d8:b6:c4:c8:4d:90:66:3b:fa:78:27:c7: 7b:3a:7a:46:be:80:fb:ee:6f:38:9f:82:bc:0a:87:18:9a:74: b2:98:18:78:50:e2:b1:e7:fb:64:a2:77:80:ab:3a:6c:6e:e8: 4d:1c:de:32:b7:51:78:d0:96:45:63:e6:f7:20:1b:3b:62:77: f6:62:dc:f1 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBfDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1QjBE NzJGOUY0MzBCN0Q0MDAzMzc1RjEwRDUwMjVCOUU1QzAwNDM3MB4XDTI0MTEwNTEw MzE1NVoXDTI1MTAxNTAxMzAwMlowMzExMC8GA1UEAxMoNDFGRjU3QUU4MkVEODk0 MzlCRDlENjcyMDEzRTdBRDMwRDUwNjFDNTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOaCDtqkiWUKyQYXGoleYM4OoXWYkFrAHnpaB2kbZcekGrXicFs4 GDsQWuwCOuBxLWfOJHugwgE48DkbRbAnM9iUKi1UUVrTVu+8bw2F57ypOVkRHVuE Rou8A5g7pp9pQmQ/dBaEhIt8Hysbc22+aBgp/hmGnz8+N9ka7n64/58aPyk71uGC 5xCC5rxMxRo+OyMcULAYuxKHl+yj4WoqQ5M6nphCP3LoxeLLc99PDs06M3tk+Yze sXDSmDKd3O4igr3muEYDbm6NCEmVXLtjDXxC0ZhX8eiENoP3iv1NCW9tFjqdAFG4 e7XI5o/xv2+AEsw/qbe+PHuUt5h7ppuaGIsCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRB/1eugu2JQ5vZ1nIBPnrTDVBhxTAfBgNVHSMEGDAWgBRbDXL59DC31AAzdfEN UCW55cAENzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTM5L1d3MXktZlF3dDlRQU0zWHhEVkFsdWVYQUJEYy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1d3MXktZlF3dDlRQU0zWHhEVkFsdWVY QUJEYy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81MzkvUWY5WHJvTHRpVU9iMmRaeUFUNTYwdzFRWWNVLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAntkiDANBgkqhkiG9w0BAQsFAAOCAQEA5smsi+1OgzQsEh6CMo3NwU9rFjyG dKCTK0UHn7igLQfE4Iup0Ruic2D1XgU15a8wphTT+0goVtdDoArdKjHvhdKM2ruh E+3tNyutm8IFJYUr/SnltPhl4nNy5cw9gOOok3YrcuN/IqPZ1qqSNN0ZUIYasEbn nVqIR1yo9nUmkdKVgwVKB+uFnVyWF/PLTWvqUnPJGtYmfVf3MP95W2m5rQYbEbjm 4HfMY4z+8mhFO97MmUQKUMHh1eBp2LbEyE2QZjv6eCfHezp6Rr6A++5vOJ+CvAqH GJp0spgYeFDisef7ZKJ3gKs6bG7oTRzeMrdReNCWRWPm9yAbO2J39mLc8Q== -----END CERTIFICATE-----Generated at Sun Feb 16 22:33:49 2025 by rpki-client