$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/539/rKM_H3aiZB5bD1rssicoB7AoXz4.roa File: rKM_H3aiZB5bD1rssicoB7AoXz4.roa (raw, json) Hash identifier: 3Ywj7vxAgc0XFcA+Y4piKQDB1x5TaWEa4FLrIRpEam0= Subject key identifier: AC:A3:3F:1F:76:A2:64:1E:5B:0F:5A:EC:B2:27:28:07:B0:28:5F:3E Certificate issuer: /CN=5B0D72F9F430B7D4003375F10D5025B9E5C00437 Certificate serial: 71 Authority key identifier: 5B:0D:72:F9:F4:30:B7:D4:00:33:75:F1:0D:50:25:B9:E5:C0:04:37 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/rKM_H3aiZB5bD1rssicoB7AoXz4.roa Signing time: Wed 31 Jul 2024 01:28:03 +0000 ROA not before: Wed 31 Jul 2024 01:28:03 +0000 ROA not after: Tue 15 Jul 2025 01:30:02 +0000 asID: 55900 IP address blocks: 202.12.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Ww1y-fQwt9QAM3XxDVAlueXABDc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Ww1y-fQwt9QAM3XxDVAlueXABDc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5B0D72F9F430B7D4003375F10D5025B9E5C00437 Validity Not Before: Jul 31 01:28:03 2024 GMT Not After : Jul 15 01:30:02 2025 GMT Subject: CN=ACA33F1F76A2641E5B0F5AECB2272807B0285F3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b1:70:30:55:f3:30:2c:20:64:b1:ac:92:98: 1d:65:53:94:0e:52:47:4a:c0:fe:7e:c7:20:4b:52: 4e:42:4f:1f:fc:2a:ca:b7:bd:64:1a:15:32:77:ee: bb:ac:2a:9b:d0:b7:61:d5:49:7c:fa:1a:0e:6c:ab: 5e:2c:67:86:3a:8d:3e:ad:da:80:5a:98:6b:8c:d3: f4:db:e5:c9:f1:73:80:5b:b0:8e:e4:ea:24:87:03: 63:8f:81:57:1f:3d:cd:52:bb:64:0e:1f:7c:63:67: 33:c1:d9:a2:d1:f0:af:d0:c6:60:a1:8f:41:5d:9a: be:ea:9f:c5:31:4e:e8:80:ff:c9:c3:a4:cc:b3:6a: 80:5c:12:14:02:f8:5d:eb:4d:cd:68:fd:54:eb:26: b7:3a:df:b5:95:22:0c:9c:79:29:13:8f:4d:65:55: af:bd:86:46:46:c9:9f:43:5d:01:dd:1c:af:6d:8b: 4e:3c:7d:00:f9:af:37:e5:e1:17:ba:85:70:96:f8: 1a:ab:09:d2:a8:6b:e3:7b:21:be:7c:6b:0f:c2:6c: 13:7a:72:01:e4:1f:c6:71:26:47:46:2e:10:ce:ec: 73:3b:da:20:12:5e:f6:4b:e5:64:86:06:1b:fa:2d: e6:b0:68:53:03:d5:58:8f:35:94:f5:a5:3e:c2:ec: 4d:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:A3:3F:1F:76:A2:64:1E:5B:0F:5A:EC:B2:27:28:07:B0:28:5F:3E X509v3 Authority Key Identifier: keyid:5B:0D:72:F9:F4:30:B7:D4:00:33:75:F1:0D:50:25:B9:E5:C0:04:37 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Ww1y-fQwt9QAM3XxDVAlueXABDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/rKM_H3aiZB5bD1rssicoB7AoXz4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.12.244.0/22 Signature Algorithm: sha256WithRSAEncryption e3:87:b6:69:88:83:3d:2d:e4:4d:45:3d:a7:67:53:99:7d:01: bc:78:83:99:0d:6f:fd:49:87:ed:59:ac:d8:ce:27:b4:fa:83: 18:2b:98:e0:68:5b:af:3d:ef:5d:2a:53:bf:33:a5:64:79:47: cf:ca:6d:f9:08:3f:6f:81:40:1d:34:eb:00:62:eb:3a:fc:47: 05:48:68:8a:2c:f1:8e:9b:18:83:81:cf:9d:43:b2:10:04:9c: 7f:98:54:af:98:69:da:1d:7a:5d:62:39:02:0c:07:77:aa:62: fd:66:43:16:76:b0:85:cc:65:72:ae:35:b1:40:e1:4a:75:93: 8f:a7:96:bc:31:4e:e7:e7:38:6a:11:bc:32:ba:85:08:61:ed: d2:70:74:c2:54:5c:21:92:06:7a:4e:8c:f4:2f:66:06:b7:78: 05:a8:9f:9f:58:63:82:00:ab:71:47:5c:68:e3:d3:7a:e5:0f: 77:d8:82:8a:41:5c:c3:87:0c:43:5c:0e:a4:e0:d0:b7:5c:d2: 20:29:0c:71:d1:98:96:31:07:1c:a8:88:ff:b6:ea:4f:01:ab: eb:da:ab:c4:63:55:ec:a3:a0:0b:1d:56:da:12:62:3d:8a:86: be:69:f8:2b:13:14:c6:ba:05:e1:06:e3:62:e2:e8:02:c9:97: b8:30:50:79 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBcTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1QjBE NzJGOUY0MzBCN0Q0MDAzMzc1RjEwRDUwMjVCOUU1QzAwNDM3MB4XDTI0MDczMTAx MjgwM1oXDTI1MDcxNTAxMzAwMlowMzExMC8GA1UEAxMoQUNBMzNGMUY3NkEyNjQx RTVCMEY1QUVDQjIyNzI4MDdCMDI4NUYzRTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANCxcDBV8zAsIGSxrJKYHWVTlA5SR0rA/n7HIEtSTkJPH/wqyre9 ZBoVMnfuu6wqm9C3YdVJfPoaDmyrXixnhjqNPq3agFqYa4zT9NvlyfFzgFuwjuTq JIcDY4+BVx89zVK7ZA4ffGNnM8HZotHwr9DGYKGPQV2avuqfxTFO6ID/ycOkzLNq gFwSFAL4XetNzWj9VOsmtzrftZUiDJx5KROPTWVVr72GRkbJn0NdAd0cr22LTjx9 APmvN+XhF7qFcJb4GqsJ0qhr43shvnxrD8JsE3pyAeQfxnEmR0YuEM7sczvaIBJe 9kvlZIYGG/ot5rBoUwPVWI81lPWlPsLsTTcCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSsoz8fdqJkHlsPWuyyJygHsChfPjAfBgNVHSMEGDAWgBRbDXL59DC31AAzdfEN UCW55cAENzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTM5L1d3MXktZlF3dDlRQU0zWHhEVkFsdWVYQUJEYy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1d3MXktZlF3dDlRQU0zWHhEVkFsdWVY QUJEYy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81MzkvcktNX0gzYWlaQjViRDFyc3NpY29CN0FvWHo0LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAsoM9DANBgkqhkiG9w0BAQsFAAOCAQEA44e2aYiDPS3kTUU9p2dTmX0BvHiD mQ1v/UmH7Vms2M4ntPqDGCuY4Ghbrz3vXSpTvzOlZHlHz8pt+Qg/b4FAHTTrAGLr OvxHBUhoiizxjpsYg4HPnUOyEAScf5hUr5hp2h16XWI5AgwHd6pi/WZDFnawhcxl cq41sUDhSnWTj6eWvDFO5+c4ahG8MrqFCGHt0nB0wlRcIZIGek6M9C9mBrd4Baif n1hjggCrcUdcaOPTeuUPd9iCikFcw4cMQ1wOpODQt1zSICkMcdGYljEHHKiI/7bq TwGr69qrxGNV7KOgCx1W2hJiPYqGvmn4KxMUxroF4QbjYuLoAsmXuDBQeQ== -----END CERTIFICATE-----Generated at Sun Feb 16 22:24:58 2025 by rpki-client