$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/603/pUHM2PA5cqpDzB3YUu6CU4djftA.roa File: pUHM2PA5cqpDzB3YUu6CU4djftA.roa (raw, json) Hash identifier: HOecQEsYUnFJQcD/26/g9ZxhKWheMsczwTbvMWeEJws= Subject key identifier: A5:41:CC:D8:F0:39:72:AA:43:CC:1D:D8:52:EE:82:53:87:63:7E:D0 Certificate issuer: /CN=98D124BF56B378D63EC8BD856F283E53E965ECA2 Certificate serial: 34 Authority key identifier: 98:D1:24:BF:56:B3:78:D6:3E:C8:BD:85:6F:28:3E:53:E9:65:EC:A2 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/mNEkv1azeNY-yL2Fbyg-U-ll7KI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/603/pUHM2PA5cqpDzB3YUu6CU4djftA.roa Signing time: Fri 31 Jan 2025 01:29:00 +0000 ROA not before: Fri 31 Jan 2025 01:29:00 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 17530 IP address blocks: 59.191.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/603/mNEkv1azeNY-yL2Fbyg-U-ll7KI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/603/mNEkv1azeNY-yL2Fbyg-U-ll7KI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/mNEkv1azeNY-yL2Fbyg-U-ll7KI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=98D124BF56B378D63EC8BD856F283E53E965ECA2 Validity Not Before: Jan 31 01:29:00 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=A541CCD8F03972AA43CC1DD852EE825387637ED0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:bc:89:62:a9:f0:c3:c6:29:28:ff:ec:8f:29: 2c:11:62:a1:ef:61:70:ad:82:d3:c3:ac:39:83:96: 57:87:1a:70:7c:a3:87:7e:dd:e2:35:12:14:3f:e5: 11:53:35:c3:6b:b7:41:68:ca:df:1d:bc:01:98:10: bf:ef:d7:31:7d:eb:84:66:ee:65:97:e8:ed:5b:05: 8b:d1:62:ee:af:7f:ed:8f:a2:16:df:50:1d:53:2b: 79:9a:09:bb:44:08:be:df:65:00:ce:58:83:f8:c9: eb:2c:99:42:17:26:bf:1a:e2:33:49:e2:23:67:aa: d2:ee:95:94:4e:e3:9c:db:7d:a7:e1:95:2b:c9:16: 46:57:47:4f:6e:73:3f:ee:8e:f3:d2:77:b5:1a:16: 60:c4:a2:19:57:9d:e1:36:62:0a:a1:ab:d2:a1:c5: f7:5e:cb:17:92:d3:70:c6:69:6b:9e:e2:d2:ab:48: 75:68:53:19:16:33:93:67:b0:ed:df:2d:e6:f8:03: 0f:69:f1:ad:0f:18:8b:8b:cd:ad:22:8c:21:b7:8b: de:d6:06:ca:99:bc:3b:90:06:ad:a3:33:e9:5e:c0: d3:b2:76:ca:c4:9b:5f:c9:cb:ae:46:b9:0f:0a:ff: 55:24:b4:b5:29:d6:46:c5:b6:35:90:7f:f2:99:63: 78:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:41:CC:D8:F0:39:72:AA:43:CC:1D:D8:52:EE:82:53:87:63:7E:D0 X509v3 Authority Key Identifier: keyid:98:D1:24:BF:56:B3:78:D6:3E:C8:BD:85:6F:28:3E:53:E9:65:EC:A2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/603/mNEkv1azeNY-yL2Fbyg-U-ll7KI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/mNEkv1azeNY-yL2Fbyg-U-ll7KI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/603/pUHM2PA5cqpDzB3YUu6CU4djftA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.191.128.0/18 Signature Algorithm: sha256WithRSAEncryption 90:a9:5e:86:85:9a:0c:32:6d:ac:fd:16:e5:32:f1:79:1b:98: d8:8f:73:25:db:d9:7d:5d:a0:92:7a:93:df:22:3c:17:66:d8: 94:dd:95:4b:96:03:2d:64:3e:8b:61:1c:7d:53:dc:48:71:da: 6c:97:83:d3:c4:76:55:81:0f:c9:2a:91:db:c7:08:2a:08:9e: e2:ce:25:24:d3:c9:fd:b3:f2:f1:b0:0a:44:ff:fa:61:e0:c0: 4f:d5:c3:20:43:16:ee:a8:07:d2:aa:c7:cf:eb:83:f5:80:d5: 1a:1b:69:9a:21:73:b0:0d:40:c9:a9:b7:45:52:3f:7d:b3:1c: 02:fd:1f:9b:36:c9:9d:ba:6a:2f:43:4e:ed:35:53:e2:ff:94: cb:2a:88:68:2c:1a:c7:78:20:b9:c5:bf:28:a3:5a:33:89:cf: 45:89:79:f8:05:89:23:d9:50:6b:40:da:cd:56:f3:e8:4d:fd: 19:f1:d7:a5:84:67:7e:a3:47:52:c0:a9:1c:11:20:3a:bc:0f: 8e:3a:44:40:7c:d3:62:51:e1:31:0c:f6:30:34:17:17:af:32: 87:3d:0c:e7:96:de:7b:32:ce:94:9f:77:15:fd:4c:77:80:e4: 24:5e:48:e5:3c:0f:93:6e:3e:1a:7a:8d:eb:61:37:e1:55:79: 48:ab:db:4f -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBNDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5OEQx MjRCRjU2QjM3OEQ2M0VDOEJEODU2RjI4M0U1M0U5NjVFQ0EyMB4XDTI1MDEzMTAx MjkwMFoXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoQTU0MUNDRDhGMDM5NzJB QTQzQ0MxREQ4NTJFRTgyNTM4NzYzN0VEMDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALm8iWKp8MPGKSj/7I8pLBFioe9hcK2C08OsOYOWV4cacHyjh37d 4jUSFD/lEVM1w2u3QWjK3x28AZgQv+/XMX3rhGbuZZfo7VsFi9Fi7q9/7Y+iFt9Q HVMreZoJu0QIvt9lAM5Yg/jJ6yyZQhcmvxriM0niI2eq0u6VlE7jnNt9p+GVK8kW RldHT25zP+6O89J3tRoWYMSiGVed4TZiCqGr0qHF917LF5LTcMZpa57i0qtIdWhT GRYzk2ew7d8t5vgDD2nxrQ8Yi4vNrSKMIbeL3tYGypm8O5AGraMz6V7A07J2ysSb X8nLrka5Dwr/VSS0tSnWRsW2NZB/8pljeFsCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSlQczY8DlyqkPMHdhS7oJTh2N+0DAfBgNVHSMEGDAWgBSY0SS/VrN41j7IvYVv KD5T6WXsojAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjAzL21ORWt2MWF6ZU5ZLXlMMkZieWctVS1sbDdLSS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL21ORWt2MWF6ZU5ZLXlMMkZieWctVS1s bDdLSS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC82MDMvcFVITTJQQTVjcXBEekIzWVV1NkNVNGRqZnRBLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBju/gDANBgkqhkiG9w0BAQsFAAOCAQEAkKlehoWaDDJtrP0W5TLxeRuY2I9z JdvZfV2gknqT3yI8F2bYlN2VS5YDLWQ+i2EcfVPcSHHabJeD08R2VYEPySqR28cI Kgie4s4lJNPJ/bPy8bAKRP/6YeDAT9XDIEMW7qgH0qrHz+uD9YDVGhtpmiFzsA1A yam3RVI/fbMcAv0fmzbJnbpqL0NO7TVT4v+UyyqIaCwax3ggucW/KKNaM4nPRYl5 +AWJI9lQa0DazVbz6E39GfHXpYRnfqNHUsCpHBEgOrwPjjpEQHzTYlHhMQz2MDQX F68yhz0M55beezLOlJ93Ff1Md4DkJF5I5TwPk24+GnqN62E34VV5SKvbTw== -----END CERTIFICATE-----Generated at Wed Feb 19 22:32:14 2025 by rpki-client