$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/539/yE51blxwtJwnW-Beq8FARPkIefs.roa File: yE51blxwtJwnW-Beq8FARPkIefs.roa (raw, json) Hash identifier: DyU2ZcjS8HWP5e8UFJMK5aGV0Uy5eCNCpCLbWQrAEX4= Subject key identifier: C8:4E:75:6E:5C:70:B4:9C:27:5B:E0:5E:AB:C1:40:44:F9:08:79:FB Certificate issuer: /CN=B8DD1D6D77FF33931BF748BA9BF0EBF4939D8031 Certificate serial: 3C Authority key identifier: B8:DD:1D:6D:77:FF:33:93:1B:F7:48:BA:9B:F0:EB:F4:93:9D:80:31 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uN0dbXf_M5Mb90i6m_Dr9JOdgDE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/yE51blxwtJwnW-Beq8FARPkIefs.roa Signing time: Fri 31 May 2024 01:28:09 +0000 ROA not before: Fri 31 May 2024 01:28:09 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 55900 IP address blocks: 109.236.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/uN0dbXf_M5Mb90i6m_Dr9JOdgDE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/uN0dbXf_M5Mb90i6m_Dr9JOdgDE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uN0dbXf_M5Mb90i6m_Dr9JOdgDE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0ZV-xYwI81uqa_535FqXQLpHH54.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0ZV-xYwI81uqa_535FqXQLpHH54.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0ZV-xYwI81uqa_535FqXQLpHH54.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8DD1D6D77FF33931BF748BA9BF0EBF4939D8031 Validity Not Before: May 31 01:28:09 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=C84E756E5C70B49C275BE05EABC14044F90879FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:87:29:a2:a9:df:13:b6:34:d1:b1:80:24:7c: d1:29:d9:2a:37:11:15:b1:45:9a:9f:37:30:35:6c: 02:5a:98:6d:5a:1a:ce:95:9e:8a:aa:27:51:29:f6: 21:20:4a:4e:49:d1:9b:86:f9:8b:61:7c:41:82:d3: 8b:cf:48:be:bd:2d:93:9b:69:e5:87:4d:56:80:e3: 86:6b:52:72:a4:01:05:ca:4b:5c:32:14:04:37:69: 88:d8:7b:3f:d1:0e:8d:5d:53:26:ca:3b:ea:ad:b2: 02:e1:3c:e2:46:ac:89:78:8d:4c:81:f1:23:95:28: 9b:b4:b3:f8:f8:e3:cd:a9:ac:ca:65:57:1b:5e:39: 7f:b8:b3:32:c7:e4:1d:9a:e3:3a:0e:16:d5:27:52: cc:fc:8f:92:53:6a:6f:99:f6:48:f6:4f:4e:f9:e0: 56:0a:1a:d3:7e:3a:b2:3c:c9:b1:75:86:83:2f:63: ba:63:76:98:4a:3d:2c:6f:8c:c8:48:dd:10:e0:65: 82:62:6d:08:f1:07:7b:a5:ed:76:9c:90:ad:ba:1d: fe:0d:6d:86:44:63:9a:af:19:36:aa:f5:ee:40:ec: f3:2f:e4:11:51:5e:68:0d:8b:df:da:d0:94:0f:1b: 81:48:58:f3:60:4e:08:47:c6:b2:5b:e4:65:8c:a5: c0:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:4E:75:6E:5C:70:B4:9C:27:5B:E0:5E:AB:C1:40:44:F9:08:79:FB X509v3 Authority Key Identifier: keyid:B8:DD:1D:6D:77:FF:33:93:1B:F7:48:BA:9B:F0:EB:F4:93:9D:80:31 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/uN0dbXf_M5Mb90i6m_Dr9JOdgDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/uN0dbXf_M5Mb90i6m_Dr9JOdgDE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/yE51blxwtJwnW-Beq8FARPkIefs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 109.236.0.0/20 Signature Algorithm: sha256WithRSAEncryption 94:fb:0a:11:08:2d:6f:e2:d7:76:9c:bf:d2:29:63:44:ed:d0: 87:fc:6c:67:4b:fb:54:60:01:c7:dc:a8:20:58:a9:0d:98:16: 87:24:50:fe:f5:e9:ad:43:db:62:93:be:23:e5:b0:08:fd:e5: 17:92:7c:48:40:3d:10:65:ce:8b:d7:03:32:bb:9a:7e:36:96: df:a9:d7:8f:03:16:6e:41:74:7e:11:07:36:bc:a7:8e:7b:fd: eb:3f:68:f1:ee:ac:01:a4:1b:fa:09:3a:20:83:aa:63:fa:94: 0d:14:f0:cd:ae:40:a8:7c:c2:4a:38:43:64:9d:ac:92:aa:2c: 8b:a0:46:a5:55:36:db:0d:74:02:95:54:50:09:b0:d8:4b:cc: 59:47:a3:f5:9d:69:14:38:56:36:41:79:b5:de:9b:ab:ad:35: ea:30:13:01:96:20:36:f5:b1:f5:70:84:36:53:05:41:8c:de: 73:c1:63:dd:38:19:3b:34:8f:72:0e:38:cc:64:a6:f6:bf:b5: d8:89:aa:99:bb:eb:97:7d:45:3b:99:a6:ff:b1:60:9a:b9:41: 99:04:98:0d:3e:b0:b9:ac:29:d0:ca:ad:ac:ef:11:af:8a:d0: 93:7f:2e:82:9e:2c:f8:d9:fc:a0:c4:03:1e:7a:ec:c3:f5:42: 46:90:32:24 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBPDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCOERE MUQ2RDc3RkYzMzkzMUJGNzQ4QkE5QkYwRUJGNDkzOUQ4MDMxMB4XDTI0MDUzMTAx MjgwOVoXDTI1MDUxNTAxMzAwM1owMzExMC8GA1UEAxMoQzg0RTc1NkU1QzcwQjQ5 QzI3NUJFMDVFQUJDMTQwNDRGOTA4NzlGQjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKCHKaKp3xO2NNGxgCR80SnZKjcRFbFFmp83MDVsAlqYbVoazpWe iqonUSn2ISBKTknRm4b5i2F8QYLTi89Ivr0tk5tp5YdNVoDjhmtScqQBBcpLXDIU BDdpiNh7P9EOjV1TJso76q2yAuE84kasiXiNTIHxI5Uom7Sz+PjjzamsymVXG145 f7izMsfkHZrjOg4W1SdSzPyPklNqb5n2SPZPTvngVgoa0346sjzJsXWGgy9jumN2 mEo9LG+MyEjdEOBlgmJtCPEHe6XtdpyQrbod/g1thkRjmq8ZNqr17kDs8y/kEVFe aA2L39rQlA8bgUhY82BOCEfGslvkZYylwC0CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTITnVuXHC0nCdb4F6rwUBE+Qh5+zAfBgNVHSMEGDAWgBS43R1td/8zkxv3SLqb 8Ov0k52AMTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTM5L3VOMGRiWGZfTTVNYjkwaTZtX0RyOUpPZGdERS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3VOMGRiWGZfTTVNYjkwaTZtX0RyOUpP ZGdERS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81MzkveUU1MWJseHd0SnduVy1CZXE4RkFSUGtJZWZzLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBG3sADANBgkqhkiG9w0BAQsFAAOCAQEAlPsKEQgtb+LXdpy/0iljRO3Qh/xs Z0v7VGABx9yoIFipDZgWhyRQ/vXprUPbYpO+I+WwCP3lF5J8SEA9EGXOi9cDMrua fjaW36nXjwMWbkF0fhEHNrynjnv96z9o8e6sAaQb+gk6IIOqY/qUDRTwza5AqHzC SjhDZJ2skqosi6BGpVU22w10ApVUUAmw2EvMWUej9Z1pFDhWNkF5td6bq6016jAT AZYgNvWx9XCENlMFQYzec8Fj3TgZOzSPcg44zGSm9r+12Imqmbvrl31FO5mm/7Fg mrlBmQSYDT6wuawp0MqtrO8Rr4rQk38ugp4s+Nn8oMQDHnrsw/VCRpAyJA== -----END CERTIFICATE-----Generated at Sun Feb 16 22:30:10 2025 by rpki-client