$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/68/p5CRism3DdS1J_zA_-LeF-_gFXc.roa File: p5CRism3DdS1J_zA_-LeF-_gFXc.roa (raw, json) Hash identifier: HOLNGKjyqHuZYHxzl2DNgVgTXsjv0gYsWcACeV/m+sI= Subject key identifier: A7:90:91:8A:C9:B7:0D:D4:B5:27:FC:C0:FF:E2:DE:17:EF:E0:15:77 Certificate issuer: /CN=65DE52E64BE43E328AA69F3AB2D347F8833EC637 Certificate serial: 4F Authority key identifier: 65:DE:52:E6:4B:E4:3E:32:8A:A6:9F:3A:B2:D3:47:F8:83:3E:C6:37 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/p5CRism3DdS1J_zA_-LeF-_gFXc.roa Signing time: Sat 31 Aug 2024 01:31:47 +0000 ROA not before: Sat 31 Aug 2024 01:31:47 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 9374 IP address blocks: 124.108.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/Zd5S5kvkPjKKpp86stNH-IM-xjc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/Zd5S5kvkPjKKpp86stNH-IM-xjc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65DE52E64BE43E328AA69F3AB2D347F8833EC637 Validity Not Before: Aug 31 01:31:47 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=A790918AC9B70DD4B527FCC0FFE2DE17EFE01577 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:d3:ac:9f:a8:ec:ad:c5:1b:99:f8:f2:17:7d: 95:9b:f8:38:85:e8:0e:5c:73:8e:88:a0:05:ae:43: 3a:be:95:c5:03:13:f8:fb:c7:e7:b5:7b:af:0e:84: f7:32:8b:02:44:06:48:10:bd:2e:88:0a:4b:2d:87: 2c:be:01:6c:34:fc:fe:d3:4b:b5:87:a3:20:28:b3: ff:61:bc:c4:87:0a:23:ec:2e:5d:02:8c:31:43:f4: 70:df:10:76:09:09:1a:40:17:6b:fd:cb:d8:23:d4: fe:56:eb:74:f0:70:9a:e9:1b:0c:aa:00:c9:b6:cd: c8:32:0f:06:20:8f:41:2d:45:6c:af:2a:f9:01:33: 57:d9:12:c6:9e:d0:f1:b5:81:9e:1b:65:f9:ed:28: 30:13:b2:64:82:83:a2:6f:b8:fb:ee:05:50:d9:55: 10:45:cc:80:d5:51:e0:84:44:6c:75:20:9f:69:1b: ca:ec:c4:d7:54:72:0e:e5:b0:f9:3f:f3:bd:78:6b: ba:73:d5:ae:a0:86:7f:cd:a2:da:35:b7:bf:6f:a3: 1f:0b:71:f1:2b:19:cc:c6:e2:34:d1:02:17:2e:54: 22:45:0d:34:dd:24:17:2d:f0:f4:ec:f6:6e:79:4d: 08:79:53:3a:a3:25:73:db:82:b4:62:68:14:d8:aa: 09:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:90:91:8A:C9:B7:0D:D4:B5:27:FC:C0:FF:E2:DE:17:EF:E0:15:77 X509v3 Authority Key Identifier: keyid:65:DE:52:E6:4B:E4:3E:32:8A:A6:9F:3A:B2:D3:47:F8:83:3E:C6:37 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/Zd5S5kvkPjKKpp86stNH-IM-xjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/p5CRism3DdS1J_zA_-LeF-_gFXc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.108.192.0/18 Signature Algorithm: sha256WithRSAEncryption 25:68:b7:d7:cd:78:1f:7d:f6:0c:c8:aa:4d:0e:dc:12:17:80: ec:a5:c0:cc:cc:99:cf:0d:30:5a:d9:c9:79:cb:71:93:41:68: 60:41:87:20:b4:fe:fb:21:55:51:e6:65:3a:86:8c:d9:eb:0e: 75:60:e1:06:51:3c:17:9e:b4:1c:ac:50:12:0c:2e:d9:9c:1b: 8e:17:88:2b:b1:22:3b:c6:16:1c:bd:de:41:4f:f8:e9:20:83: 5d:fe:64:6f:00:6a:24:20:e4:74:80:79:dc:f3:cf:41:da:32: 12:fb:9c:b3:00:31:4d:99:aa:9a:c0:5b:68:ec:83:ee:9a:e5: a3:9d:21:0c:40:f5:33:64:2d:0c:0d:e1:77:ef:55:1f:4d:59: 2c:9f:2c:54:af:d0:84:0a:c1:6e:26:ca:a6:17:bf:22:21:ca: 79:d1:18:3d:dc:28:98:42:34:6e:91:c3:fe:d1:82:9f:20:de: fc:05:2b:51:41:4f:ea:3d:54:0e:31:60:66:8a:70:f6:0b:a6: a0:3e:45:4d:ef:cb:43:db:e5:c1:e3:bf:ab:4f:9d:9c:b1:73: 2b:de:29:48:0f:18:e6:ec:a8:57:8c:e4:0d:4a:17:29:99:56: 81:af:6a:bd:75:25:13:d1:fe:88:83:89:78:7a:ef:48:91:be: 3a:c5:90:81 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgIBTzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2NURF NTJFNjRCRTQzRTMyOEFBNjlGM0FCMkQzNDdGODgzM0VDNjM3MB4XDTI0MDgzMTAx MzE0N1oXDTI1MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoQTc5MDkxOEFDOUI3MERE NEI1MjdGQ0MwRkZFMkRFMTdFRkUwMTU3NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOXTrJ+o7K3FG5n48hd9lZv4OIXoDlxzjoigBa5DOr6VxQMT+PvH 57V7rw6E9zKLAkQGSBC9LogKSy2HLL4BbDT8/tNLtYejICiz/2G8xIcKI+wuXQKM MUP0cN8QdgkJGkAXa/3L2CPU/lbrdPBwmukbDKoAybbNyDIPBiCPQS1FbK8q+QEz V9kSxp7Q8bWBnhtl+e0oMBOyZIKDom+4++4FUNlVEEXMgNVR4IREbHUgn2kbyuzE 11RyDuWw+T/zvXhrunPVrqCGf82i2jW3v2+jHwtx8SsZzMbiNNECFy5UIkUNNN0k Fy3w9Oz2bnlNCHlTOqMlc9uCtGJoFNiqCTMCAwEAAaOCAiIwggIeMB0GA1UdDgQW BBSnkJGKybcN1LUn/MD/4t4X7+AVdzAfBgNVHSMEGDAWgBRl3lLmS+Q+Moqmnzqy 00f4gz7GNzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGUGA1UdHwReMFwwWqBY oFaGVHJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNjgvWmQ1UzVrdmtQaktLcHA4NnN0TkgtSU0teGpjLmNybDBtBggrBgEF BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvWmQ1UzVrdmtQaktLcHA4NnN0TkgtSU0t eGpjLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgboGCCsGAQUFBwELBIGtMIGqMGAGCCsG AQUFBzALhlRyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx QTczODEwMDAwLzY4L3A1Q1Jpc20zRGRTMUpfekFfLUxlRi1fZ0ZYYy5yb2EwRgYI KwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9ycmRw L2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAZ8bMAwDQYJKoZIhvcNAQELBQADggEBACVot9fNeB999gzIqk0O3BIXgOylwMzM mc8NMFrZyXnLcZNBaGBBhyC0/vshVVHmZTqGjNnrDnVg4QZRPBeetBysUBIMLtmc G44XiCuxIjvGFhy93kFP+Okgg13+ZG8AaiQg5HSAedzzz0HaMhL7nLMAMU2ZqprA W2jsg+6a5aOdIQxA9TNkLQwN4XfvVR9NWSyfLFSv0IQKwW4myqYXvyIhynnRGD3c KJhCNG6Rw/7Rgp8g3vwFK1FBT+o9VA4xYGaKcPYLpqA+RU3vy0Pb5cHjv6tPnZyx cyveKUgPGObsqFeM5A1KFymZVoGvar11JRPR/oiDiXh670iRvjrFkIE= -----END CERTIFICATE-----Generated at Sun Feb 16 22:05:24 2025 by rpki-client