$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/751/XpJtsyKQIgCYW9DM1KRga1w6sKQ.roa File: XpJtsyKQIgCYW9DM1KRga1w6sKQ.roa (raw, json) Hash identifier: vdcCn3IFtZVjy0wD/BIo8l3mLc2/1Wk/7LiyrqP5nus= Subject key identifier: 5E:92:6D:B3:22:90:22:00:98:5B:D0:CC:D4:A4:60:6B:5C:3A:B0:A4 Certificate issuer: /CN=7B49A8775994827975AB37E6DF96064C924783F1 Certificate serial: 08 Authority key identifier: 7B:49:A8:77:59:94:82:79:75:AB:37:E6:DF:96:06:4C:92:47:83:F1 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/e0mod1mUgnl1qzfm35YGTJJHg_E.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/751/XpJtsyKQIgCYW9DM1KRga1w6sKQ.roa Signing time: Fri 12 Apr 2024 06:15:36 +0000 ROA not before: Fri 12 Apr 2024 06:15:36 +0000 ROA not after: Sat 12 Apr 2025 05:59:48 +0000 asID: 18129 IP address blocks: 202.70.224.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/751/e0mod1mUgnl1qzfm35YGTJJHg_E.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/751/e0mod1mUgnl1qzfm35YGTJJHg_E.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/e0mod1mUgnl1qzfm35YGTJJHg_E.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7B49A8775994827975AB37E6DF96064C924783F1 Validity Not Before: Apr 12 06:15:36 2024 GMT Not After : Apr 12 05:59:48 2025 GMT Subject: CN=5E926DB322902200985BD0CCD4A4606B5C3AB0A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:fc:f5:90:16:70:f7:98:85:6b:71:19:7b:5d: 25:5e:bb:af:cb:8e:8f:49:46:4d:b5:96:d0:89:68: 17:df:69:8b:de:5c:9a:8c:ce:10:72:78:7f:95:91: fe:df:5b:46:d3:1d:fc:ce:71:21:6c:26:48:ca:25: 91:55:16:0e:77:b9:c5:70:db:fb:60:af:27:68:59: eb:8c:7a:03:63:73:8f:cf:64:8e:41:eb:e6:f6:f7: 68:24:ac:5a:44:45:23:51:66:d5:f6:da:fa:2c:69: 45:44:da:8a:3a:e3:12:0f:f8:5c:74:92:7c:76:fe: 3c:ea:48:f7:f7:e2:2c:93:bb:8b:b3:06:1a:9b:2f: 33:95:b7:32:f0:a3:57:a5:a4:33:94:3b:cc:46:0c: 3a:79:7e:7f:fc:58:13:e4:b8:d6:ad:f5:df:34:42: 95:11:1b:50:0c:ce:14:ad:0a:94:f2:09:8a:4e:a4: c8:a5:4d:a8:ac:49:aa:7d:5d:69:af:6a:e1:a9:87: 17:d0:e9:31:d4:7a:25:8f:cb:e0:95:3d:04:45:38: 16:8a:e2:a0:01:4a:74:3d:cf:d4:15:72:c2:59:9a: 2c:04:f4:95:1d:8d:ab:e7:a2:a5:23:a0:7d:ea:2c: 91:75:2b:27:8c:09:a7:b1:86:85:60:ad:e2:01:93: 0e:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:92:6D:B3:22:90:22:00:98:5B:D0:CC:D4:A4:60:6B:5C:3A:B0:A4 X509v3 Authority Key Identifier: keyid:7B:49:A8:77:59:94:82:79:75:AB:37:E6:DF:96:06:4C:92:47:83:F1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/751/e0mod1mUgnl1qzfm35YGTJJHg_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/e0mod1mUgnl1qzfm35YGTJJHg_E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/751/XpJtsyKQIgCYW9DM1KRga1w6sKQ.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.70.224.0/19 Signature Algorithm: sha256WithRSAEncryption 73:de:07:89:75:cd:1f:62:a0:51:8c:00:d0:6f:48:1d:6f:78: e9:80:5f:42:09:c5:b3:93:bf:72:5a:d8:77:fa:54:05:25:0c: 35:cd:01:a5:4f:4c:6f:5d:b1:86:0f:ac:64:2c:d3:7c:6c:38: 22:50:c4:9e:d3:d0:f1:4e:0c:f3:72:54:12:89:c1:68:be:70: f1:90:28:f6:7c:c4:d8:69:41:36:d4:db:f2:32:2e:9b:ca:4d: 40:c2:02:7c:30:49:65:84:74:d3:81:1c:e2:c9:23:bf:4f:c6: b8:85:e7:06:48:4e:46:73:e6:62:e3:d7:fa:c5:8f:29:17:29: d7:21:74:b1:0e:96:4d:30:00:59:9f:dd:74:29:40:c1:1d:cd: c9:01:1b:ce:9b:d3:fc:f8:28:2e:01:f6:e7:82:b8:ee:7d:9e: 4f:03:cc:71:f6:19:0f:10:71:66:99:71:2c:f6:26:06:25:c5: a1:6c:b0:a3:e6:f9:12:f3:13:90:02:b5:2d:12:9c:9e:66:53: 35:76:7e:3b:a2:e4:54:0e:94:5f:47:9a:fc:c9:e1:a5:24:58: c8:4b:a2:d2:28:67:03:fd:a9:bf:74:aa:25:78:e6:d3:79:bb: c0:bf:63:4e:a6:e4:37:89:9e:18:d0:51:75:c0:07:0e:4b:1f: 22:b2:0a:73 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBCDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3QjQ5 QTg3NzU5OTQ4Mjc5NzVBQjM3RTZERjk2MDY0QzkyNDc4M0YxMB4XDTI0MDQxMjA2 MTUzNloXDTI1MDQxMjA1NTk0OFowMzExMC8GA1UEAxMoNUU5MjZEQjMyMjkwMjIw MDk4NUJEMENDRDRBNDYwNkI1QzNBQjBBNDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMT89ZAWcPeYhWtxGXtdJV67r8uOj0lGTbWW0IloF99pi95cmozO EHJ4f5WR/t9bRtMd/M5xIWwmSMolkVUWDne5xXDb+2CvJ2hZ64x6A2Nzj89kjkHr 5vb3aCSsWkRFI1Fm1fba+ixpRUTaijrjEg/4XHSSfHb+POpI9/fiLJO7i7MGGpsv M5W3MvCjV6WkM5Q7zEYMOnl+f/xYE+S41q313zRClREbUAzOFK0KlPIJik6kyKVN qKxJqn1daa9q4amHF9DpMdR6JY/L4JU9BEU4ForioAFKdD3P1BVywlmaLAT0lR2N q+eipSOgfeoskXUrJ4wJp7GGhWCt4gGTDosCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRekm2zIpAiAJhb0MzUpGBrXDqwpDAfBgNVHSMEGDAWgBR7Sah3WZSCeXWrN+bf lgZMkkeD8TAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNzUxL2UwbW9kMW1VZ25sMXF6Zm0zNVlHVEpKSGdfRS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2UwbW9kMW1VZ25sMXF6Zm0zNVlHVEpK SGdfRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC83NTEvWHBKdHN5S1FJZ0NZVzlETTFLUmdhMXc2c0tRLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBcpG4DANBgkqhkiG9w0BAQsFAAOCAQEAc94HiXXNH2KgUYwA0G9IHW946YBf QgnFs5O/clrYd/pUBSUMNc0BpU9Mb12xhg+sZCzTfGw4IlDEntPQ8U4M83JUEonB aL5w8ZAo9nzE2GlBNtTb8jIum8pNQMICfDBJZYR004Ec4skjv0/GuIXnBkhORnPm YuPX+sWPKRcp1yF0sQ6WTTAAWZ/ddClAwR3NyQEbzpvT/PgoLgH254K47n2eTwPM cfYZDxBxZplxLPYmBiXFoWywo+b5EvMTkAK1LRKcnmZTNXZ+O6LkVA6UX0ea/Mnh pSRYyEui0ihnA/2pv3SqJXjm03m7wL9jTqbkN4meGNBRdcAHDksfIrIKcw== -----END CERTIFICATE-----Generated at Sun Feb 16 22:31:19 2025 by rpki-client