$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/818/nOrUbkQiqReTsu77MaWnAmiuSXs.roa File: nOrUbkQiqReTsu77MaWnAmiuSXs.roa (raw, json) Hash identifier: ENbcuyFxksIHHuY3wRufIYISUx7DsYUq4srhNCfOTk4= Subject key identifier: 9C:EA:D4:6E:44:22:A9:17:93:B2:EE:FB:31:A5:A7:02:68:AE:49:7B Certificate issuer: /CN=1B2E7E62DA8F12F3BB33E0B5E3CE002FDA28CF25 Certificate serial: 05 Authority key identifier: 1B:2E:7E:62:DA:8F:12:F3:BB:33:E0:B5:E3:CE:00:2F:DA:28:CF:25 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Gy5-YtqPEvO7M-C1484AL9oozyU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/818/nOrUbkQiqReTsu77MaWnAmiuSXs.roa Signing time: Sat 20 Apr 2024 00:13:33 +0000 ROA not before: Sat 20 Apr 2024 00:13:33 +0000 ROA not after: Sat 19 Apr 2025 01:21:05 +0000 asID: 131931 IP address blocks: 210.171.144.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/818/Gy5-YtqPEvO7M-C1484AL9oozyU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/818/Gy5-YtqPEvO7M-C1484AL9oozyU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Gy5-YtqPEvO7M-C1484AL9oozyU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1B2E7E62DA8F12F3BB33E0B5E3CE002FDA28CF25 Validity Not Before: Apr 20 00:13:33 2024 GMT Not After : Apr 19 01:21:05 2025 GMT Subject: CN=9CEAD46E4422A91793B2EEFB31A5A70268AE497B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:95:a7:80:d4:bd:75:da:fc:63:b9:17:30:04: 78:43:d0:3c:bb:6a:68:17:a9:f3:d4:75:1d:e3:50: 15:ae:92:7a:6a:52:4a:b6:e8:a7:49:4d:14:83:63: 22:f1:b9:47:1d:fd:95:4c:bb:e7:18:3c:f0:12:16: 7a:ad:47:96:16:39:35:d2:45:d1:bf:4c:71:70:a4: e2:08:f0:7b:bd:1b:ce:c7:de:55:b2:8f:4c:e2:53: 2e:2d:5b:e7:3f:6c:e0:50:92:7f:53:13:b2:a6:1d: 12:df:2b:07:d5:f2:02:91:74:89:56:cc:82:17:54: 44:dc:79:e3:d7:eb:0a:7c:0b:b6:0d:26:f6:ef:57: d3:e8:e4:b4:57:35:17:35:06:8b:cd:a1:d6:d2:56: d3:c8:b3:af:84:e3:d9:82:3f:dc:7c:bf:3c:99:b1: 33:c8:b0:1c:85:80:64:c1:be:46:86:5d:e2:f3:72: 4b:56:bc:fd:43:f4:84:5d:17:2f:b4:67:60:5b:0c: 97:46:8b:b9:f3:7b:86:28:4c:8d:04:9f:39:71:0e: 77:f7:ba:36:f5:40:40:51:68:62:0e:5d:52:5f:52: 30:8b:60:ee:5d:d9:91:43:b2:fc:89:36:fa:58:17: 6e:0b:0a:8f:e9:6f:9d:6a:7f:20:ae:66:b7:b3:6b: 6d:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:EA:D4:6E:44:22:A9:17:93:B2:EE:FB:31:A5:A7:02:68:AE:49:7B X509v3 Authority Key Identifier: keyid:1B:2E:7E:62:DA:8F:12:F3:BB:33:E0:B5:E3:CE:00:2F:DA:28:CF:25 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/818/Gy5-YtqPEvO7M-C1484AL9oozyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Gy5-YtqPEvO7M-C1484AL9oozyU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/818/nOrUbkQiqReTsu77MaWnAmiuSXs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.171.144.0/20 Signature Algorithm: sha256WithRSAEncryption c0:c1:38:27:af:4b:d7:89:d6:8e:f3:5e:93:06:37:23:14:6f: 25:6e:11:4a:2e:1a:04:44:69:2b:aa:e7:9b:b1:06:03:70:21: c7:5c:64:30:52:23:07:74:ce:70:36:b4:dc:fb:f0:10:f8:0c: d9:0d:f1:6c:c5:50:d0:ff:b1:ac:e1:22:c4:85:9e:b3:bb:dc: 71:b3:1e:82:b1:b0:81:9d:0b:17:0d:3d:13:57:0f:87:65:36: df:6d:80:36:80:93:60:e3:0d:51:37:fe:88:96:2c:9a:5e:80: fa:7b:ed:0f:ae:b5:f1:5d:14:a6:93:8a:10:1a:37:e2:89:af: 19:c1:41:87:d8:cc:e6:8f:00:69:8b:5a:80:04:4d:ab:4d:f9: 57:4c:65:3d:98:89:af:ee:29:f0:cd:62:df:68:e5:ab:3a:bf: 28:ba:27:57:01:0a:4e:84:1b:17:2e:3d:29:5d:54:dd:d8:ba: 75:97:a9:cf:f0:f4:94:60:74:89:12:ed:de:3e:bd:60:62:9a: 2a:56:b4:ca:14:10:59:66:f6:3a:db:69:97:00:80:bd:ea:eb: 9a:73:5c:56:17:ea:8b:13:c8:8b:fe:e1:22:59:38:36:f3:85: e3:5c:6d:aa:75:6c:a2:dc:08:84:01:1d:96:4e:6c:19:14:90: a0:0c:36:40 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBBTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxQjJF N0U2MkRBOEYxMkYzQkIzM0UwQjVFM0NFMDAyRkRBMjhDRjI1MB4XDTI0MDQyMDAw MTMzM1oXDTI1MDQxOTAxMjEwNVowMzExMC8GA1UEAxMoOUNFQUQ0NkU0NDIyQTkx NzkzQjJFRUZCMzFBNUE3MDI2OEFFNDk3QjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMeVp4DUvXXa/GO5FzAEeEPQPLtqaBep89R1HeNQFa6SempSSrbo p0lNFINjIvG5Rx39lUy75xg88BIWeq1HlhY5NdJF0b9McXCk4gjwe70bzsfeVbKP TOJTLi1b5z9s4FCSf1MTsqYdEt8rB9XyApF0iVbMghdURNx549frCnwLtg0m9u9X 0+jktFc1FzUGi82h1tJW08izr4Tj2YI/3Hy/PJmxM8iwHIWAZMG+RoZd4vNyS1a8 /UP0hF0XL7RnYFsMl0aLufN7hihMjQSfOXEOd/e6NvVAQFFoYg5dUl9SMItg7l3Z kUOy/Ik2+lgXbgsKj+lvnWp/IK5mt7NrbfUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSc6tRuRCKpF5Oy7vsxpacCaK5JezAfBgNVHSMEGDAWgBQbLn5i2o8S87sz4LXj zgAv2ijPJTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODE4L0d5NS1ZdHFQRXZPN00tQzE0ODRBTDlvb3p5VS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0d5NS1ZdHFQRXZPN00tQzE0ODRBTDlv b3p5VS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84MTgvbk9yVWJrUWlxUmVUc3U3N01hV25BbWl1U1hzLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNKrkDANBgkqhkiG9w0BAQsFAAOCAQEAwME4J69L14nWjvNekwY3IxRvJW4R Si4aBERpK6rnm7EGA3Ahx1xkMFIjB3TOcDa03PvwEPgM2Q3xbMVQ0P+xrOEixIWe s7vccbMegrGwgZ0LFw09E1cPh2U2322ANoCTYOMNUTf+iJYsml6A+nvtD6618V0U ppOKEBo34omvGcFBh9jM5o8AaYtagARNq035V0xlPZiJr+4p8M1i32jlqzq/KLon VwEKToQbFy49KV1U3di6dZepz/D0lGB0iRLt3j69YGKaKla0yhQQWWb2OttplwCA verrmnNcVhfqixPIi/7hIlk4NvOF41xtqnVsotwIhAEdlk5sGRSQoAw2QA== -----END CERTIFICATE-----Generated at Sun Feb 16 22:30:47 2025 by rpki-client