$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/675/eHstahQ7VsVLHQhcNzAJpTqCDoM.roa File: eHstahQ7VsVLHQhcNzAJpTqCDoM.roa (raw, json) Hash identifier: c5kKcQ5ZWWy+ZCCDzO0zWzsL7jty5FDl+f+narknvE8= Subject key identifier: 78:7B:2D:6A:14:3B:56:C5:4B:1D:08:5C:37:30:09:A5:3A:82:0E:83 Certificate issuer: /CN=041FC867F39C53644D0C5C50994B55111BD76CA3 Certificate serial: 04 Authority key identifier: 04:1F:C8:67:F3:9C:53:64:4D:0C:5C:50:99:4B:55:11:1B:D7:6C:A3 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BB_IZ_OcU2RNDFxQmUtVERvXbKM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/675/eHstahQ7VsVLHQhcNzAJpTqCDoM.roa Signing time: Mon 23 Dec 2024 02:56:03 +0000 ROA not before: Mon 23 Dec 2024 02:56:03 +0000 ROA not after: Fri 19 Dec 2025 12:41:20 +0000 asID: 16509 IP address blocks: 218.223.14.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/675/BB_IZ_OcU2RNDFxQmUtVERvXbKM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/675/BB_IZ_OcU2RNDFxQmUtVERvXbKM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BB_IZ_OcU2RNDFxQmUtVERvXbKM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 12:53:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=041FC867F39C53644D0C5C50994B55111BD76CA3 Validity Not Before: Dec 23 02:56:03 2024 GMT Not After : Dec 19 12:41:20 2025 GMT Subject: CN=787B2D6A143B56C54B1D085C373009A53A820E83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:10:eb:ff:0b:1e:7a:53:56:09:2f:1e:80:a5: 83:2c:76:d7:17:b3:52:71:6f:d9:81:fe:b5:47:9d: 22:c5:56:8f:63:4c:64:04:eb:55:1a:a9:fd:62:a6: 16:58:50:9e:97:73:93:9d:82:81:66:14:ce:38:ce: 59:75:04:13:ae:69:12:d6:ea:07:84:7d:c5:34:eb: bd:15:12:4e:7a:82:14:63:9d:3a:03:21:ea:67:33: 1f:a0:6b:20:45:c7:60:17:7d:f6:94:28:4b:3c:af: 74:5c:9a:9f:26:32:a8:5c:f0:73:4e:5c:36:bc:0c: 6c:13:4d:60:79:75:67:68:ec:02:8d:c8:9f:f7:b8: ff:98:a7:d3:07:d1:09:13:6b:75:65:ad:23:d5:da: 71:93:96:27:61:5f:02:6e:b4:92:36:0e:04:40:21: 03:96:86:b5:5d:0d:15:11:45:5b:8d:df:ee:34:2c: 46:0e:66:f5:c6:fb:d8:b0:73:04:64:2c:1d:a8:80: 5f:fe:1d:c6:4d:51:e6:8c:2d:32:dc:e2:ef:74:73: 96:23:cb:56:cb:9e:4e:12:68:ed:f2:31:72:79:8a: 77:29:88:f2:b8:f6:d6:46:0f:7e:7c:ae:bf:1b:24: 59:7a:ec:77:4f:52:85:2f:e5:d5:55:a1:b3:e5:32: 9a:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:7B:2D:6A:14:3B:56:C5:4B:1D:08:5C:37:30:09:A5:3A:82:0E:83 X509v3 Authority Key Identifier: keyid:04:1F:C8:67:F3:9C:53:64:4D:0C:5C:50:99:4B:55:11:1B:D7:6C:A3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/675/BB_IZ_OcU2RNDFxQmUtVERvXbKM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BB_IZ_OcU2RNDFxQmUtVERvXbKM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/675/eHstahQ7VsVLHQhcNzAJpTqCDoM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.223.14.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:6d:47:39:fd:c4:6f:46:91:c1:71:60:04:ca:da:e7:fb:95: b2:bb:63:10:45:c7:1e:13:16:df:8a:82:ca:b6:ff:0a:5d:fe: be:77:9f:0f:a8:98:9a:24:2a:e4:ef:7c:74:ea:4c:fd:b8:88: 5f:76:73:0e:9e:29:df:0b:21:73:d4:1b:b1:1b:23:5c:7d:66: 4a:c6:70:e8:45:8e:08:ad:ee:45:9b:a8:56:47:5a:80:2b:b8: 71:3e:74:a1:b7:74:3d:02:04:62:8a:16:fc:85:79:d2:b8:d7: ee:6a:f6:7a:c8:11:34:e2:22:99:92:7f:25:f8:d6:5e:51:a2: 3c:1f:94:9b:31:b4:73:02:27:a9:c0:99:17:fa:61:24:7a:4e: 88:47:7f:a5:57:26:39:87:09:53:38:8e:b9:52:b9:70:94:69: 65:a2:67:a7:82:d1:b2:d3:97:95:17:6c:34:6d:4f:12:58:a2: e3:cd:78:73:c9:bd:20:c5:9b:38:d9:a3:e6:c7:83:ea:7f:a0: 1c:7d:bc:d4:7f:2e:19:66:c5:64:bc:39:c6:c3:cb:8d:15:aa: c2:b7:ca:98:de:0d:d7:2b:20:38:2a:db:79:86:1b:06:d2:9b: 8f:27:13:02:67:02:55:8b:d0:b7:e8:75:cd:45:4e:74:9f:24: fd:cd:c6:97 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBBDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwNDFG Qzg2N0YzOUM1MzY0NEQwQzVDNTA5OTRCNTUxMTFCRDc2Q0EzMB4XDTI0MTIyMzAy NTYwM1oXDTI1MTIxOTEyNDEyMFowMzExMC8GA1UEAxMoNzg3QjJENkExNDNCNTZD NTRCMUQwODVDMzczMDA5QTUzQTgyMEU4MzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALgQ6/8LHnpTVgkvHoClgyx21xezUnFv2YH+tUedIsVWj2NMZATr VRqp/WKmFlhQnpdzk52CgWYUzjjOWXUEE65pEtbqB4R9xTTrvRUSTnqCFGOdOgMh 6mczH6BrIEXHYBd99pQoSzyvdFyanyYyqFzwc05cNrwMbBNNYHl1Z2jsAo3In/e4 /5in0wfRCRNrdWWtI9XacZOWJ2FfAm60kjYOBEAhA5aGtV0NFRFFW43f7jQsRg5m 9cb72LBzBGQsHaiAX/4dxk1R5owtMtzi73RzliPLVsueThJo7fIxcnmKdymI8rj2 1kYPfnyuvxskWXrsd09ShS/l1VWhs+UymmsCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBR4ey1qFDtWxUsdCFw3MAmlOoIOgzAfBgNVHSMEGDAWgBQEH8hn85xTZE0MXFCZ S1URG9dsozAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjc1L0JCX0laX09jVTJSTkRGeFFtVXRWRVJ2WGJLTS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0JCX0laX09jVTJSTkRGeFFtVXRWRVJ2 WGJLTS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC82NzUvZUhzdGFoUTdWc1ZMSFFoY056QUpwVHFDRG9NLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEANrfDjANBgkqhkiG9w0BAQsFAAOCAQEAXG1HOf3Eb0aRwXFgBMra5/uVsrtj EEXHHhMW34qCyrb/Cl3+vnefD6iYmiQq5O98dOpM/biIX3ZzDp4p3wshc9QbsRsj XH1mSsZw6EWOCK3uRZuoVkdagCu4cT50obd0PQIEYooW/IV50rjX7mr2esgRNOIi mZJ/JfjWXlGiPB+UmzG0cwInqcCZF/phJHpOiEd/pVcmOYcJUziOuVK5cJRpZaJn p4LRstOXlRdsNG1PElii4814c8m9IMWbONmj5seD6n+gHH281H8uGWbFZLw5xsPL jRWqwrfKmN4N1ysgOCrbeYYbBtKbjycTAmcCVYvQt+h1zUVOdJ8k/c3Glw== -----END CERTIFICATE-----Generated at Wed Feb 5 14:54:23 2025 by rpki-client