$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/800/LcPquGdxVVSaJWBmP4pjMU2pbO4.roa File: LcPquGdxVVSaJWBmP4pjMU2pbO4.roa (raw, json) Hash identifier: CbUt1/a1W6yvzhhdS8ZhE98o4cjcYnL8mPhkk4X7Lgw= Subject key identifier: 2D:C3:EA:B8:67:71:55:54:9A:25:60:66:3F:8A:63:31:4D:A9:6C:EE Certificate issuer: /CN=084F88D837A2A2132EA8F6F8F2DB82C1C1E90A8B Certificate serial: 21 Authority key identifier: 08:4F:88:D8:37:A2:A2:13:2E:A8:F6:F8:F2:DB:82:C1:C1:E9:0A:8B Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CE-I2DeiohMuqPb48tuCwcHpCos.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/800/LcPquGdxVVSaJWBmP4pjMU2pbO4.roa Signing time: Thu 31 Oct 2024 01:32:08 +0000 ROA not before: Thu 31 Oct 2024 01:32:08 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 18278 IP address blocks: 219.100.108.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/800/CE-I2DeiohMuqPb48tuCwcHpCos.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/800/CE-I2DeiohMuqPb48tuCwcHpCos.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CE-I2DeiohMuqPb48tuCwcHpCos.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=084F88D837A2A2132EA8F6F8F2DB82C1C1E90A8B Validity Not Before: Oct 31 01:32:08 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=2DC3EAB8677155549A2560663F8A63314DA96CEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:db:71:7f:c5:78:92:8a:99:a8:94:0f:0f:86: b0:5d:28:53:ae:59:01:70:8a:c7:5d:2c:18:71:9e: b6:23:73:ca:70:e8:e3:68:ef:1b:3c:07:20:55:b7: 80:a8:4e:fd:08:23:f2:b7:21:0f:23:25:8c:96:49: 8d:aa:13:c1:35:90:73:6a:39:37:1c:4b:fe:bb:7b: dd:d5:df:e7:14:44:21:1f:0b:54:18:59:83:e0:99: ac:a2:55:32:5d:96:c5:3a:a9:58:9c:18:e9:5d:41: 36:76:b7:77:e5:d5:0f:50:00:41:98:9c:55:d0:f9: 60:73:ef:67:73:ab:9c:6a:7f:cb:56:2e:4f:e8:bd: 00:b2:2d:20:7f:cc:4f:ae:b8:18:ff:cf:d9:82:13: a0:11:5c:45:fa:8c:0f:97:f3:2e:ed:14:ce:d9:f3: 67:30:ed:17:d0:60:aa:0c:84:3d:fd:16:a9:f3:02: 25:4f:6b:38:cc:65:50:48:2e:a6:ce:a0:d7:85:db: f4:74:a4:21:db:5b:76:5e:84:a7:57:13:80:50:8d: 50:7e:88:70:e6:c5:4a:a5:ab:f6:5c:e5:b9:2b:8f: f3:62:c8:e9:98:6f:3a:f8:ae:be:d6:81:ef:96:d9: 53:d9:1d:03:43:40:f2:aa:3d:63:4a:c7:3f:e0:cd: ee:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:C3:EA:B8:67:71:55:54:9A:25:60:66:3F:8A:63:31:4D:A9:6C:EE X509v3 Authority Key Identifier: keyid:08:4F:88:D8:37:A2:A2:13:2E:A8:F6:F8:F2:DB:82:C1:C1:E9:0A:8B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/800/CE-I2DeiohMuqPb48tuCwcHpCos.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CE-I2DeiohMuqPb48tuCwcHpCos.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/800/LcPquGdxVVSaJWBmP4pjMU2pbO4.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 219.100.108.0/22 Signature Algorithm: sha256WithRSAEncryption 6c:3c:d6:93:f0:e9:7a:08:09:de:66:a1:3e:93:f1:fd:b6:f1: d1:49:d6:35:f9:aa:76:51:74:56:5f:c0:7e:0a:f4:73:3e:74: 93:ee:f6:c9:3d:2d:37:fc:d7:50:1c:20:aa:34:a7:a7:28:37: 57:ce:4d:6e:86:0c:ef:42:fd:bc:05:5c:65:19:c5:24:6f:f2: dd:e0:a6:fd:29:8c:55:3c:29:16:68:b9:5a:a8:55:84:fe:79: ea:94:ae:a9:b3:ee:98:96:19:bd:e3:1a:89:2d:98:b8:e1:86: 73:47:e9:37:7e:43:02:82:0f:63:da:48:da:f0:87:89:f0:b1: 6a:1f:70:2a:26:15:86:39:ee:04:d0:d9:5c:c6:6f:92:dc:a5: c7:7b:c6:b4:12:df:63:25:ca:e8:79:3b:6f:f7:5d:b5:a6:b2: 81:8f:78:5d:ac:53:ad:84:18:c8:52:a0:d9:17:4f:3b:4d:a2: 9c:d6:0e:b0:00:11:ba:8e:92:cf:64:77:e0:2c:6b:c1:db:82: 68:1e:ab:a1:c9:a2:93:c9:4a:20:6f:9e:4d:23:22:b4:b8:91: 25:ca:5e:b2:e6:db:10:3c:e0:7e:f7:bb:4e:da:d9:c3:9f:65: 4f:36:d1:d6:ae:10:60:3f:e3:b4:e5:51:64:3d:c8:2b:04:7e: c7:b4:c5:0b -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBITANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwODRG ODhEODM3QTJBMjEzMkVBOEY2RjhGMkRCODJDMUMxRTkwQThCMB4XDTI0MTAzMTAx MzIwOFoXDTI1MTAxNTAxMzAwMlowMzExMC8GA1UEAxMoMkRDM0VBQjg2NzcxNTU1 NDlBMjU2MDY2M0Y4QTYzMzE0REE5NkNFRTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAODbcX/FeJKKmaiUDw+GsF0oU65ZAXCKx10sGHGetiNzynDo42jv GzwHIFW3gKhO/Qgj8rchDyMljJZJjaoTwTWQc2o5NxxL/rt73dXf5xREIR8LVBhZ g+CZrKJVMl2WxTqpWJwY6V1BNna3d+XVD1AAQZicVdD5YHPvZ3OrnGp/y1YuT+i9 ALItIH/MT664GP/P2YIToBFcRfqMD5fzLu0UztnzZzDtF9BgqgyEPf0WqfMCJU9r OMxlUEgups6g14Xb9HSkIdtbdl6Ep1cTgFCNUH6IcObFSqWr9lzluSuP82LI6Zhv OviuvtaB75bZU9kdA0NA8qo9Y0rHP+DN7qcCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQtw+q4Z3FVVJolYGY/imMxTals7jAfBgNVHSMEGDAWgBQIT4jYN6KiEy6o9vjy 24LBwekKizAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODAwL0NFLUkyRGVpb2hNdXFQYjQ4dHVDd2NIcENvcy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0NFLUkyRGVpb2hNdXFQYjQ4dHVDd2NI cENvcy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84MDAvTGNQcXVHZHhWVlNhSldCbVA0cGpNVTJwYk80LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAttkbDANBgkqhkiG9w0BAQsFAAOCAQEAbDzWk/DpeggJ3mahPpPx/bbx0UnW NfmqdlF0Vl/Afgr0cz50k+72yT0tN/zXUBwgqjSnpyg3V85NboYM70L9vAVcZRnF JG/y3eCm/SmMVTwpFmi5WqhVhP556pSuqbPumJYZveMaiS2YuOGGc0fpN35DAoIP Y9pI2vCHifCxah9wKiYVhjnuBNDZXMZvktylx3vGtBLfYyXK6Hk7b/ddtaaygY94 XaxTrYQYyFKg2RdPO02inNYOsAARuo6Sz2R34CxrwduCaB6rocmik8lKIG+eTSMi tLiRJcpesubbEDzgfve7TtrZw59lTzbR1q4QYD/jtOVRZD3IKwR+x7TFCw== -----END CERTIFICATE-----Generated at Sun Feb 16 22:19:05 2025 by rpki-client