$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/675/uKXEWWkNwqUp7QGtWTqNO9h81uA.roa File: uKXEWWkNwqUp7QGtWTqNO9h81uA.roa (raw, json) Hash identifier: HwkFqd2Oyo6Hv44RfIIrzvXYtgPxUEFBm04C6jPlB9A= Subject key identifier: B8:A5:C4:59:69:0D:C2:A5:29:ED:01:AD:59:3A:8D:3B:D8:7C:D6:E0 Certificate issuer: /CN=041FC867F39C53644D0C5C50994B55111BD76CA3 Certificate serial: 06 Authority key identifier: 04:1F:C8:67:F3:9C:53:64:4D:0C:5C:50:99:4B:55:11:1B:D7:6C:A3 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BB_IZ_OcU2RNDFxQmUtVERvXbKM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/675/uKXEWWkNwqUp7QGtWTqNO9h81uA.roa Signing time: Mon 23 Dec 2024 02:56:03 +0000 ROA not before: Mon 23 Dec 2024 02:56:03 +0000 ROA not after: Fri 19 Dec 2025 12:41:20 +0000 asID: 16509 IP address blocks: 218.223.15.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/675/BB_IZ_OcU2RNDFxQmUtVERvXbKM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/675/BB_IZ_OcU2RNDFxQmUtVERvXbKM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BB_IZ_OcU2RNDFxQmUtVERvXbKM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 12:53:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=041FC867F39C53644D0C5C50994B55111BD76CA3 Validity Not Before: Dec 23 02:56:03 2024 GMT Not After : Dec 19 12:41:20 2025 GMT Subject: CN=B8A5C459690DC2A529ED01AD593A8D3BD87CD6E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:97:0a:e1:e0:6b:25:af:31:da:ce:04:8a:c2: 3e:31:03:66:3c:bd:28:5d:e5:d6:00:a4:9c:b3:3f: 44:3a:80:6d:ef:b6:70:aa:83:a4:d5:b9:87:55:e2: 81:27:76:85:02:bb:1a:2b:59:14:12:ad:af:f7:b5: 2a:15:d9:97:1a:60:6b:35:64:69:3f:8d:55:38:36: 83:1a:5a:e8:c4:de:72:b3:46:06:de:22:b8:21:ce: f5:b8:6d:22:3a:b6:6a:f0:92:de:0a:a6:28:bc:24: db:4b:a9:84:05:24:3b:3b:05:44:5b:cd:10:5c:be: 04:9c:5b:83:3e:70:97:eb:69:8d:91:b1:d4:6c:d6: 96:a2:d2:01:f9:d8:fd:8e:52:5e:71:46:60:b2:1a: 8e:b7:fa:52:ec:82:dd:f9:d0:ad:11:66:e6:03:05: 7b:f3:88:4e:9d:3c:c5:5d:a5:8a:26:10:5b:3a:8e: 59:c9:4b:4b:53:fa:a1:f1:99:a2:55:f6:95:d2:d1: 74:58:c2:4f:f8:60:a0:08:e3:35:7e:93:d1:a2:ce: 1e:83:7a:fa:ba:93:e9:42:f5:ba:55:ad:d6:91:09: 31:0d:e3:42:9a:7f:f0:de:0a:23:3a:16:26:19:d3: c1:ae:03:46:46:d1:63:45:d0:02:37:01:61:cc:bd: 4e:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:A5:C4:59:69:0D:C2:A5:29:ED:01:AD:59:3A:8D:3B:D8:7C:D6:E0 X509v3 Authority Key Identifier: keyid:04:1F:C8:67:F3:9C:53:64:4D:0C:5C:50:99:4B:55:11:1B:D7:6C:A3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/675/BB_IZ_OcU2RNDFxQmUtVERvXbKM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BB_IZ_OcU2RNDFxQmUtVERvXbKM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/675/uKXEWWkNwqUp7QGtWTqNO9h81uA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.223.15.0/24 Signature Algorithm: sha256WithRSAEncryption 18:52:d5:1d:1d:14:81:fe:71:39:55:b6:e7:ee:fa:27:02:5f: 11:73:f0:27:b5:d2:d4:d4:dc:a6:cd:5c:d9:cd:c7:94:0e:23: 6e:4f:ac:b7:fa:4b:3b:d3:c9:f3:7f:13:a7:31:ba:16:e1:2b: 05:d2:23:cb:5a:73:8e:79:7c:d7:c0:67:ce:c4:4a:9e:e1:bf: 0d:d1:9f:0a:af:a2:b3:c1:f2:fe:72:1a:da:ca:03:e0:1e:ab: 57:c1:66:74:ad:4b:4e:d3:04:16:18:a1:dd:22:cf:7a:9c:c5: 7e:48:09:8a:62:e7:88:5d:ef:f3:8b:18:5d:26:4d:45:f8:69: 19:c9:76:f9:42:4d:3b:b4:ce:df:75:65:46:0b:8b:34:86:24: a8:fc:d0:6c:e9:df:43:25:f1:6f:8f:d5:cc:eb:ec:0a:13:ce: 3f:52:80:db:f7:fb:4b:50:bf:31:c9:b3:29:d6:5e:48:ac:2a: 12:dd:b0:27:1d:99:d0:7a:72:bb:c0:8f:1e:1c:22:e2:50:55: 3d:11:7a:e3:90:b3:44:0f:d5:10:45:4d:15:19:f0:59:52:93: c7:19:1e:33:7f:4a:16:47:99:25:03:01:6d:1b:14:fe:33:ec: c7:63:74:0e:57:fe:2e:60:0a:a2:59:b3:65:ea:72:82:55:34: f4:40:ef:32 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBBjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwNDFG Qzg2N0YzOUM1MzY0NEQwQzVDNTA5OTRCNTUxMTFCRDc2Q0EzMB4XDTI0MTIyMzAy NTYwM1oXDTI1MTIxOTEyNDEyMFowMzExMC8GA1UEAxMoQjhBNUM0NTk2OTBEQzJB NTI5RUQwMUFENTkzQThEM0JEODdDRDZFMDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANSXCuHgayWvMdrOBIrCPjEDZjy9KF3l1gCknLM/RDqAbe+2cKqD pNW5h1XigSd2hQK7GitZFBKtr/e1KhXZlxpgazVkaT+NVTg2gxpa6MTecrNGBt4i uCHO9bhtIjq2avCS3gqmKLwk20uphAUkOzsFRFvNEFy+BJxbgz5wl+tpjZGx1GzW lqLSAfnY/Y5SXnFGYLIajrf6UuyC3fnQrRFm5gMFe/OITp08xV2liiYQWzqOWclL S1P6ofGZolX2ldLRdFjCT/hgoAjjNX6T0aLOHoN6+rqT6UL1ulWt1pEJMQ3jQpp/ 8N4KIzoWJhnTwa4DRkbRY0XQAjcBYcy9Tp8CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBS4pcRZaQ3CpSntAa1ZOo072HzW4DAfBgNVHSMEGDAWgBQEH8hn85xTZE0MXFCZ S1URG9dsozAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjc1L0JCX0laX09jVTJSTkRGeFFtVXRWRVJ2WGJLTS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0JCX0laX09jVTJSTkRGeFFtVXRWRVJ2 WGJLTS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC82NzUvdUtYRVdXa053cVVwN1FHdFdUcU5POWg4MXVBLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEANrfDzANBgkqhkiG9w0BAQsFAAOCAQEAGFLVHR0Ugf5xOVW25+76JwJfEXPw J7XS1NTcps1c2c3HlA4jbk+st/pLO9PJ838TpzG6FuErBdIjy1pzjnl818BnzsRK nuG/DdGfCq+is8Hy/nIa2soD4B6rV8FmdK1LTtMEFhih3SLPepzFfkgJimLniF3v 84sYXSZNRfhpGcl2+UJNO7TO33VlRguLNIYkqPzQbOnfQyXxb4/VzOvsChPOP1KA 2/f7S1C/McmzKdZeSKwqEt2wJx2Z0Hpyu8CPHhwi4lBVPRF645CzRA/VEEVNFRnw WVKTxxkeM39KFkeZJQMBbRsU/jPsx2N0Dlf+LmAKolmzZepyglU09EDvMg== -----END CERTIFICATE-----Generated at Wed Feb 5 14:49:19 2025 by rpki-client