$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/653/5-YHDW1xbKbcZbs05ej2YmOfq2U.roa File: 5-YHDW1xbKbcZbs05ej2YmOfq2U.roa (raw, json) Hash identifier: Ru8/CVFgaN545VwSgUAwHSjhvfF8DBG7j9Heq9U9Wno= Subject key identifier: E7:E6:07:0D:6D:71:6C:A6:DC:65:BB:34:E5:E8:F6:62:63:9F:AB:65 Certificate issuer: /CN=EE5C4F77377D7F5075C64BA4B57998BC79326C5E Certificate serial: 05 Authority key identifier: EE:5C:4F:77:37:7D:7F:50:75:C6:4B:A4:B5:79:98:BC:79:32:6C:5E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/7lxPdzd9f1B1xkuktXmYvHkybF4.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/653/5-YHDW1xbKbcZbs05ej2YmOfq2U.roa Signing time: Tue 16 Apr 2024 05:01:46 +0000 ROA not before: Tue 16 Apr 2024 05:01:46 +0000 ROA not after: Wed 16 Apr 2025 04:54:04 +0000 asID: 17931 IP address blocks: 203.191.136.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/653/7lxPdzd9f1B1xkuktXmYvHkybF4.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/653/7lxPdzd9f1B1xkuktXmYvHkybF4.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/7lxPdzd9f1B1xkuktXmYvHkybF4.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EE5C4F77377D7F5075C64BA4B57998BC79326C5E Validity Not Before: Apr 16 05:01:46 2024 GMT Not After : Apr 16 04:54:04 2025 GMT Subject: CN=E7E6070D6D716CA6DC65BB34E5E8F662639FAB65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:35:86:17:ce:d6:4c:1c:c2:fc:b7:6b:13:50: d9:90:43:13:3d:3d:b9:8c:a7:46:40:3c:32:99:16: 04:37:8c:b1:68:4d:7a:70:bd:a3:d6:72:c2:18:8e: a7:56:e6:90:cb:30:7b:cf:1b:5f:d1:56:96:3a:2c: 11:4a:3e:30:88:ab:66:ad:e1:f8:c6:a8:11:31:13: 78:ef:68:04:1f:d5:b7:14:54:6a:40:4a:6e:62:f1: b0:0c:64:de:0e:64:16:1a:7a:42:98:25:9b:32:6c: ef:88:e3:ca:f9:46:b6:7a:af:a5:2d:fc:71:d5:93: da:f7:40:ea:f1:a6:6d:4c:10:09:72:b9:71:7b:04: 0c:12:9d:85:72:42:fb:da:d7:78:1d:b9:53:74:cc: 50:8a:2d:7f:69:01:a0:9e:f9:b4:9c:4e:66:78:70: 07:56:7c:be:8e:3f:ca:39:d3:d4:5e:9e:7c:52:58: 7e:d3:a1:be:20:55:f9:87:7e:8b:78:ee:b2:d7:7c: 97:8c:6b:c6:e3:8d:e2:95:10:1a:9b:42:ae:30:f0: f8:ea:d5:38:08:2e:93:5d:45:4e:e5:01:09:ed:03: 92:8b:28:ed:56:e5:f8:45:f2:ae:0f:e8:88:2d:e3: 69:1b:1a:6a:52:83:5f:7d:b6:b0:34:4c:18:b3:48: 07:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:E6:07:0D:6D:71:6C:A6:DC:65:BB:34:E5:E8:F6:62:63:9F:AB:65 X509v3 Authority Key Identifier: keyid:EE:5C:4F:77:37:7D:7F:50:75:C6:4B:A4:B5:79:98:BC:79:32:6C:5E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/653/7lxPdzd9f1B1xkuktXmYvHkybF4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/7lxPdzd9f1B1xkuktXmYvHkybF4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/653/5-YHDW1xbKbcZbs05ej2YmOfq2U.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.191.136.0/21 Signature Algorithm: sha256WithRSAEncryption d5:d5:7f:5b:62:62:68:29:09:9c:a8:68:fe:2f:1f:0d:3d:3b: 91:92:b0:e5:fb:a6:27:07:23:44:7f:d4:b9:c9:07:86:45:24: 5c:8c:1c:76:b9:29:d2:33:a6:27:2c:0d:68:bf:60:f2:17:21: 1e:1d:71:aa:65:5c:37:62:e5:11:41:9f:99:be:26:79:89:b1: 4b:a8:a0:ea:9f:22:2c:42:48:8e:f4:03:35:cd:cd:75:a6:fa: ea:55:a2:19:46:ec:40:e4:53:b9:14:6b:73:b8:54:ca:2a:db: 20:ff:1d:6d:ee:30:8f:67:f7:b5:29:4a:ae:3b:37:73:5c:05: 43:dd:97:cd:46:d7:72:b0:2c:5b:21:0f:b1:59:08:d3:51:58: 8b:cf:b4:33:dc:db:e3:5c:13:07:43:26:68:c6:60:cc:3a:25: a2:07:9c:1e:40:36:8a:1e:7d:12:47:78:79:0c:a2:7f:58:92: bf:b4:fb:84:ba:9f:10:f9:f2:01:b3:9f:c0:df:14:e8:2a:7a: fd:1d:7a:3c:75:88:87:07:75:5b:3d:31:9a:fc:7f:87:c9:95: 3a:34:c2:7e:14:83:1d:c7:89:34:65:f1:27:d7:e0:1e:58:64: 73:d4:6c:86:ea:d2:c9:77:aa:b3:e5:2d:0e:64:66:c3:26:43: 9a:4d:26:b3 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBBTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhFRTVD NEY3NzM3N0Q3RjUwNzVDNjRCQTRCNTc5OThCQzc5MzI2QzVFMB4XDTI0MDQxNjA1 MDE0NloXDTI1MDQxNjA0NTQwNFowMzExMC8GA1UEAxMoRTdFNjA3MEQ2RDcxNkNB NkRDNjVCQjM0RTVFOEY2NjI2MzlGQUI2NTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALc1hhfO1kwcwvy3axNQ2ZBDEz09uYynRkA8MpkWBDeMsWhNenC9 o9ZywhiOp1bmkMswe88bX9FWljosEUo+MIirZq3h+MaoETETeO9oBB/VtxRUakBK bmLxsAxk3g5kFhp6QpglmzJs74jjyvlGtnqvpS38cdWT2vdA6vGmbUwQCXK5cXsE DBKdhXJC+9rXeB25U3TMUIotf2kBoJ75tJxOZnhwB1Z8vo4/yjnT1F6efFJYftOh viBV+Yd+i3justd8l4xrxuON4pUQGptCrjDw+OrVOAguk11FTuUBCe0Dkoso7Vbl +EXyrg/oiC3jaRsaalKDX322sDRMGLNIB28CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTn5gcNbXFsptxluzTl6PZiY5+rZTAfBgNVHSMEGDAWgBTuXE93N31/UHXGS6S1 eZi8eTJsXjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjUzLzdseFBkemQ5ZjFCMXhrdWt0WG1ZdkhreWJGNC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzdseFBkemQ5ZjFCMXhrdWt0WG1Zdkhr eWJGNC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC82NTMvNS1ZSERXMXhiS2JjWmJzMDVlajJZbU9mcTJVLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA8u/iDANBgkqhkiG9w0BAQsFAAOCAQEA1dV/W2JiaCkJnKho/i8fDT07kZKw 5fumJwcjRH/UuckHhkUkXIwcdrkp0jOmJywNaL9g8hchHh1xqmVcN2LlEUGfmb4m eYmxS6ig6p8iLEJIjvQDNc3Ndab66lWiGUbsQORTuRRrc7hUyirbIP8dbe4wj2f3 tSlKrjs3c1wFQ92XzUbXcrAsWyEPsVkI01FYi8+0M9zb41wTB0MmaMZgzDologec HkA2ih59Ekd4eQyif1iSv7T7hLqfEPnyAbOfwN8U6Cp6/R16PHWIhwd1Wz0xmvx/ h8mVOjTCfhSDHceJNGXxJ9fgHlhkc9RshurSyXeqs+UtDmRmwyZDmk0msw== -----END CERTIFICATE-----Generated at Sun Feb 16 22:06:25 2025 by rpki-client