$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/713/oK_3JVUGpsWuETxMumO1Up2Mqg4.roa File: oK_3JVUGpsWuETxMumO1Up2Mqg4.roa (raw, json) Hash identifier: w3+yMxoz7YzzH/eZvr0QYz9bC4a6PlNm3UoqPh4dC0g= Subject key identifier: A0:AF:F7:25:55:06:A6:C5:AE:11:3C:4C:BA:63:B5:52:9D:8C:AA:0E Certificate issuer: /CN=1F288A2285024E148A27E45FE5AC90D28B303D4B Certificate serial: 1F Authority key identifier: 1F:28:8A:22:85:02:4E:14:8A:27:E4:5F:E5:AC:90:D2:8B:30:3D:4B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/HyiKIoUCThSKJ-Rf5ayQ0oswPUs.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/713/oK_3JVUGpsWuETxMumO1Up2Mqg4.roa Signing time: Fri 16 Aug 2024 02:53:18 +0000 ROA not before: Fri 16 Aug 2024 02:53:18 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 18121 IP address blocks: 202.88.48.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/713/HyiKIoUCThSKJ-Rf5ayQ0oswPUs.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/713/HyiKIoUCThSKJ-Rf5ayQ0oswPUs.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/HyiKIoUCThSKJ-Rf5ayQ0oswPUs.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F288A2285024E148A27E45FE5AC90D28B303D4B Validity Not Before: Aug 16 02:53:18 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=A0AFF7255506A6C5AE113C4CBA63B5529D8CAA0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:73:97:af:83:bf:9e:a4:ff:41:22:00:f4:a0: 5f:51:7c:50:e4:af:97:42:07:f0:66:12:08:00:75: 01:09:8c:d3:82:6c:d9:b2:80:ec:45:04:2d:0b:35: 63:83:6f:54:0f:2a:fd:ba:35:4e:6f:a9:c7:ac:3b: f8:08:2d:e9:b9:b9:b3:7f:70:8c:ba:d7:31:b9:b2: 79:77:36:c6:aa:ca:58:86:89:35:90:f5:b6:fa:04: a4:06:e5:f4:93:fd:c8:64:c2:9c:64:a7:c3:9d:18: dc:44:e9:c7:fc:db:7a:3e:9c:01:28:05:02:5a:ec: 7a:73:5a:55:a1:25:6d:b3:2d:c3:19:be:cc:46:35: 43:e2:91:92:31:b6:0b:0e:bb:87:a3:8e:9b:23:c0: c4:39:4d:18:87:8f:da:cb:79:4b:a7:38:97:72:de: ea:44:45:e8:d6:79:fe:e9:09:0a:2f:05:19:ce:18: b8:03:6f:f6:a9:24:50:b1:f4:86:6c:b4:12:0c:1e: 1a:ef:5c:9e:45:36:c7:58:bb:1b:81:9a:0e:e3:af: f7:00:da:75:30:9d:8c:44:91:4e:fa:d9:73:03:9d: 6f:2d:50:f8:98:41:63:c1:38:12:c7:34:fb:fe:9b: 82:e7:49:2a:df:8f:38:7e:e7:3a:43:c9:86:2a:5e: d8:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:AF:F7:25:55:06:A6:C5:AE:11:3C:4C:BA:63:B5:52:9D:8C:AA:0E X509v3 Authority Key Identifier: keyid:1F:28:8A:22:85:02:4E:14:8A:27:E4:5F:E5:AC:90:D2:8B:30:3D:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/713/HyiKIoUCThSKJ-Rf5ayQ0oswPUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/HyiKIoUCThSKJ-Rf5ayQ0oswPUs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/713/oK_3JVUGpsWuETxMumO1Up2Mqg4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.88.48.0/20 Signature Algorithm: sha256WithRSAEncryption 13:b5:91:f2:c9:24:ab:6e:b7:95:3d:bf:04:61:91:0b:3a:3f: 98:47:eb:e8:e1:4f:c1:2e:b8:4d:f8:0e:77:97:eb:3f:20:b0: aa:57:f5:e0:20:fe:75:fb:54:a9:31:4b:ab:62:a8:d5:1f:72: fc:7d:ef:29:9e:d3:79:de:30:41:5d:a7:08:fd:fc:03:5e:8e: 02:f5:64:c2:46:a1:af:fc:1c:85:bb:9f:93:93:50:cb:43:45: 73:6d:31:a8:15:fc:da:9e:d6:ae:65:d4:1b:4e:74:c7:64:1d: 11:ae:4f:0d:aa:7a:71:6a:48:83:75:09:f5:f9:4c:37:e5:76: fd:47:a6:86:12:1a:cd:89:c8:bd:a3:22:5f:9d:ff:2e:39:e4: 3b:73:db:9f:e6:53:c6:3e:c8:9a:2b:e1:c8:38:b8:b5:21:ad: d1:c6:42:88:e9:62:e3:28:51:96:84:2c:09:90:b2:65:62:e4: 30:28:9b:3d:0c:25:c0:79:22:c3:92:2c:71:81:cf:c8:11:ff: bc:3d:8c:83:13:66:91:96:f9:a9:15:c9:bd:21:e6:41:81:08: 96:73:51:4a:02:d9:4f:ae:08:a9:71:6c:d3:d3:18:cd:d8:e7: 28:54:b4:dd:c8:1b:51:63:72:d0:e8:ab:cb:30:27:92:d5:5c: fa:43:ea:36 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBHzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxRjI4 OEEyMjg1MDI0RTE0OEEyN0U0NUZFNUFDOTBEMjhCMzAzRDRCMB4XDTI0MDgxNjAy NTMxOFoXDTI1MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoQTBBRkY3MjU1NTA2QTZD NUFFMTEzQzRDQkE2M0I1NTI5RDhDQUEwRTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANxzl6+Dv56k/0EiAPSgX1F8UOSvl0IH8GYSCAB1AQmM04Js2bKA 7EUELQs1Y4NvVA8q/bo1Tm+px6w7+Agt6bm5s39wjLrXMbmyeXc2xqrKWIaJNZD1 tvoEpAbl9JP9yGTCnGSnw50Y3ETpx/zbej6cASgFAlrsenNaVaElbbMtwxm+zEY1 Q+KRkjG2Cw67h6OOmyPAxDlNGIeP2st5S6c4l3Le6kRF6NZ5/ukJCi8FGc4YuANv 9qkkULH0hmy0EgweGu9cnkU2x1i7G4GaDuOv9wDadTCdjESRTvrZcwOdby1Q+JhB Y8E4Esc0+/6bgudJKt+POH7nOkPJhipe2AUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSgr/clVQamxa4RPEy6Y7VSnYyqDjAfBgNVHSMEGDAWgBQfKIoihQJOFIon5F/l rJDSizA9SzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNzEzL0h5aUtJb1VDVGhTS0otUmY1YXlRMG9zd1BVcy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0h5aUtJb1VDVGhTS0otUmY1YXlRMG9z d1BVcy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC83MTMvb0tfM0pWVUdwc1d1RVR4TXVtTzFVcDJNcWc0LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBMpYMDANBgkqhkiG9w0BAQsFAAOCAQEAE7WR8skkq263lT2/BGGRCzo/mEfr 6OFPwS64TfgOd5frPyCwqlf14CD+dftUqTFLq2Ko1R9y/H3vKZ7Ted4wQV2nCP38 A16OAvVkwkahr/wchbufk5NQy0NFc20xqBX82p7WrmXUG050x2QdEa5PDap6cWpI g3UJ9flMN+V2/UemhhIazYnIvaMiX53/LjnkO3Pbn+ZTxj7ImivhyDi4tSGt0cZC iOli4yhRloQsCZCyZWLkMCibPQwlwHkiw5IscYHPyBH/vD2MgxNmkZb5qRXJvSHm QYEIlnNRSgLZT64IqXFs09MYzdjnKFS03cgbUWNy0OiryzAnktVc+kPqNg== -----END CERTIFICATE-----Generated at Sun Feb 16 22:21:54 2025 by rpki-client