$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/573/8Xm0Jp2w2Ajpb7-CYtMkbKoQAGw.roa File: 8Xm0Jp2w2Ajpb7-CYtMkbKoQAGw.roa (raw, json) Hash identifier: zkAR/GLI6h8h63GVwbnKc90Ms7k0IC7g6WRp6F1AKnc= Subject key identifier: F1:79:B4:26:9D:B0:D8:08:E9:6F:BF:82:62:D3:24:6C:AA:10:00:6C Certificate issuer: /CN=C814D85BD48360A65D9D4144EC6D20752C1EDC7D Certificate serial: 60 Authority key identifier: C8:14:D8:5B:D4:83:60:A6:5D:9D:41:44:EC:6D:20:75:2C:1E:DC:7D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/yBTYW9SDYKZdnUFE7G0gdSwe3H0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/573/8Xm0Jp2w2Ajpb7-CYtMkbKoQAGw.roa Signing time: Wed 31 Jul 2024 01:28:34 +0000 ROA not before: Wed 31 Jul 2024 01:28:34 +0000 ROA not after: Tue 15 Jul 2025 01:30:02 +0000 asID: 131896 IP address blocks: 103.239.16.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/573/yBTYW9SDYKZdnUFE7G0gdSwe3H0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/573/yBTYW9SDYKZdnUFE7G0gdSwe3H0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/yBTYW9SDYKZdnUFE7G0gdSwe3H0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C814D85BD48360A65D9D4144EC6D20752C1EDC7D Validity Not Before: Jul 31 01:28:34 2024 GMT Not After : Jul 15 01:30:02 2025 GMT Subject: CN=F179B4269DB0D808E96FBF8262D3246CAA10006C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:fb:c0:4d:bd:0a:dd:8a:a4:fb:c9:21:53:db: d5:6c:b8:2b:d6:2e:55:f0:9f:48:62:02:a7:16:67: 36:ff:74:d4:8b:c7:e0:b2:03:8a:59:99:62:f6:45: 61:b8:29:90:63:34:09:c7:3b:3d:ff:0b:87:a3:0e: 43:59:c6:07:de:9d:14:fc:93:21:92:da:2b:8c:b5: 6c:2c:7c:31:a4:54:f3:ac:03:e3:cb:5a:81:0b:b7: 9a:8e:4e:ad:4f:11:e5:f5:be:fe:68:7b:48:7f:a2: ab:79:ac:c7:c7:3c:e0:35:43:7e:85:1a:42:78:32: af:70:c6:55:9d:52:20:3e:88:1e:5c:db:9a:1a:3f: 37:88:e4:68:20:69:63:7e:16:8e:c2:88:2a:6e:bb: 94:0f:0e:37:7f:55:62:69:4e:44:87:d6:ef:42:c4: d6:7b:35:fd:4f:6a:5b:a6:34:34:6a:c4:f0:4a:a1: 67:b8:9d:14:03:70:85:6f:86:00:22:51:2e:3b:1c: bf:61:c5:46:17:71:00:7a:55:46:14:01:03:c8:82: 00:84:59:d5:33:1d:0a:c5:63:77:cf:51:af:f9:3c: 0c:13:14:6a:09:fc:a3:da:6c:4a:05:63:f4:31:55: bb:ae:15:8b:00:aa:97:ef:10:54:66:04:da:66:70: 86:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:79:B4:26:9D:B0:D8:08:E9:6F:BF:82:62:D3:24:6C:AA:10:00:6C X509v3 Authority Key Identifier: keyid:C8:14:D8:5B:D4:83:60:A6:5D:9D:41:44:EC:6D:20:75:2C:1E:DC:7D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/573/yBTYW9SDYKZdnUFE7G0gdSwe3H0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/yBTYW9SDYKZdnUFE7G0gdSwe3H0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/573/8Xm0Jp2w2Ajpb7-CYtMkbKoQAGw.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.239.16.0/22 Signature Algorithm: sha256WithRSAEncryption 46:00:f2:e7:e1:3b:91:7c:c9:c5:6e:e8:9e:56:26:3c:33:91: 6d:08:9e:15:1a:36:54:22:ef:0e:23:4a:e6:ca:93:76:95:fc: d9:6d:e1:49:53:03:da:1c:fc:c8:34:56:bd:70:33:6f:b7:0c: dd:69:28:a6:b8:7b:b3:6c:c5:10:90:00:5d:34:c6:b9:d5:64: 2a:35:af:46:8a:00:65:65:af:35:cd:7b:36:62:9e:94:09:9f: 25:f6:62:9e:b0:26:6c:47:d2:45:4e:67:e0:1a:85:20:13:db: 37:37:4c:9b:dc:70:9f:19:a8:a0:76:12:e5:4d:b8:7d:fb:23: f8:7c:01:de:ee:37:35:2f:fd:6f:09:2b:16:4b:21:f9:99:87: f6:a0:dd:b7:2a:70:c0:a7:36:61:b4:63:31:4a:9c:a5:50:f2: 4d:fc:59:4b:ba:1c:2b:01:d5:d1:15:6d:ad:e3:5a:30:6e:23: a2:f6:10:6e:32:2e:45:1e:8d:56:7d:3d:15:b4:54:08:72:ee: 93:6a:6d:56:ed:be:b3:fe:3c:cf:b9:ea:ed:ab:13:24:88:42: 71:ff:e6:e6:cb:06:87:e9:3f:49:1a:c2:3d:54:da:23:5a:d8: e8:41:88:d2:c4:27:eb:32:ed:93:78:3d:41:72:f6:7e:32:02: c7:21:f0:e7 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBYDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDODE0 RDg1QkQ0ODM2MEE2NUQ5RDQxNDRFQzZEMjA3NTJDMUVEQzdEMB4XDTI0MDczMTAx MjgzNFoXDTI1MDcxNTAxMzAwMlowMzExMC8GA1UEAxMoRjE3OUI0MjY5REIwRDgw OEU5NkZCRjgyNjJEMzI0NkNBQTEwMDA2QzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALP7wE29Ct2KpPvJIVPb1Wy4K9YuVfCfSGICpxZnNv901IvH4LID ilmZYvZFYbgpkGM0Ccc7Pf8Lh6MOQ1nGB96dFPyTIZLaK4y1bCx8MaRU86wD48ta gQu3mo5OrU8R5fW+/mh7SH+iq3msx8c84DVDfoUaQngyr3DGVZ1SID6IHlzbmho/ N4jkaCBpY34WjsKIKm67lA8ON39VYmlORIfW70LE1ns1/U9qW6Y0NGrE8EqhZ7id FANwhW+GACJRLjscv2HFRhdxAHpVRhQBA8iCAIRZ1TMdCsVjd89Rr/k8DBMUagn8 o9psSgVj9DFVu64ViwCql+8QVGYE2mZwhjkCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTxebQmnbDYCOlvv4Ji0yRsqhAAbDAfBgNVHSMEGDAWgBTIFNhb1INgpl2dQUTs bSB1LB7cfTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTczL3lCVFlXOVNEWUtaZG5VRkU3RzBnZFN3ZTNIMC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3lCVFlXOVNEWUtaZG5VRkU3RzBnZFN3 ZTNIMC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC81NzMvOFhtMEpwMncyQWpwYjctQ1l0TWtiS29RQUd3LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmfvEDANBgkqhkiG9w0BAQsFAAOCAQEARgDy5+E7kXzJxW7onlYmPDORbQie FRo2VCLvDiNK5sqTdpX82W3hSVMD2hz8yDRWvXAzb7cM3Wkoprh7s2zFEJAAXTTG udVkKjWvRooAZWWvNc17NmKelAmfJfZinrAmbEfSRU5n4BqFIBPbNzdMm9xwnxmo oHYS5U24ffsj+HwB3u43NS/9bwkrFksh+ZmH9qDdtypwwKc2YbRjMUqcpVDyTfxZ S7ocKwHV0RVtreNaMG4jovYQbjIuRR6NVn09FbRUCHLuk2ptVu2+s/48z7nq7asT JIhCcf/m5ssGh+k/SRrCPVTaI1rY6EGI0sQn6zLtk3g9QXL2fjICxyHw5w== -----END CERTIFICATE-----Generated at Sun Feb 16 22:24:42 2025 by rpki-client