$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/820/9MgDheqfNDv7sAGqSc0kG33ZATI.roa File: 9MgDheqfNDv7sAGqSc0kG33ZATI.roa (raw, json) Hash identifier: ToWk+PxHpRYelIVypFhjm6xJTDIflFDgLYUTiiMSvys= Subject key identifier: F4:C8:03:85:EA:9F:34:3B:FB:B0:01:AA:49:CD:24:1B:7D:D9:01:32 Certificate issuer: /CN=9FEB105C67E5FD5C9E1AFD06A343C841F05A7F15 Certificate serial: 2F Authority key identifier: 9F:EB:10:5C:67:E5:FD:5C:9E:1A:FD:06:A3:43:C8:41:F0:5A:7F:15 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/n-sQXGfl_VyeGv0Go0PIQfBafxU.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/820/9MgDheqfNDv7sAGqSc0kG33ZATI.roa Signing time: Tue 31 Dec 2024 01:31:28 +0000 ROA not before: Tue 31 Dec 2024 01:31:28 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 23614 IP address blocks: 210.158.184.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/820/n-sQXGfl_VyeGv0Go0PIQfBafxU.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/820/n-sQXGfl_VyeGv0Go0PIQfBafxU.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/n-sQXGfl_VyeGv0Go0PIQfBafxU.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FEB105C67E5FD5C9E1AFD06A343C841F05A7F15 Validity Not Before: Dec 31 01:31:28 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=F4C80385EA9F343BFBB001AA49CD241B7DD90132 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:de:da:72:61:28:c0:b7:2c:2d:b6:bb:4f:7a: 4e:4c:07:3e:27:65:57:24:ac:db:55:37:3a:91:b8: 9f:50:83:68:82:4d:6b:d8:21:b2:6a:a5:68:5c:4c: 43:97:f9:8d:7b:3a:08:32:54:ee:fd:7e:d3:f9:51: 45:fb:ff:f1:5a:1e:95:f5:63:8b:0a:d8:25:1f:a3: 29:7b:a9:bd:87:54:b1:a0:ae:79:5e:a5:f7:ad:69: c9:02:ae:30:97:21:0d:59:d5:d2:91:02:41:8e:dc: 65:17:37:ae:65:0e:d9:fa:e2:8a:f2:2c:1e:42:62: 16:b6:4f:e7:50:72:3a:b9:65:8a:58:ae:2f:17:06: 8b:34:60:5d:76:d1:f7:4d:c5:30:4b:40:af:97:10: 99:51:f7:c4:74:f2:98:74:7b:a3:2c:dd:4f:8b:54: 16:ac:ab:24:5a:5f:53:10:87:65:45:eb:37:b0:a4: 97:d0:52:76:4f:15:fa:47:e1:d4:df:38:a2:cf:7e: af:22:c8:30:85:05:11:4f:78:c4:75:75:99:57:e9: ea:75:7a:7a:d9:dc:f6:55:13:1d:b4:ed:f7:a1:a7: 75:e6:15:55:67:57:34:ab:2a:9d:81:d6:d4:52:e2: 3c:36:89:29:88:a7:80:5e:7f:9e:9e:9d:d9:6a:32: 02:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:C8:03:85:EA:9F:34:3B:FB:B0:01:AA:49:CD:24:1B:7D:D9:01:32 X509v3 Authority Key Identifier: keyid:9F:EB:10:5C:67:E5:FD:5C:9E:1A:FD:06:A3:43:C8:41:F0:5A:7F:15 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/820/n-sQXGfl_VyeGv0Go0PIQfBafxU.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/n-sQXGfl_VyeGv0Go0PIQfBafxU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/820/9MgDheqfNDv7sAGqSc0kG33ZATI.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.158.184.0/21 Signature Algorithm: sha256WithRSAEncryption d6:d2:cc:58:07:5b:34:76:2e:e8:9f:eb:a2:39:11:31:5d:fa: 26:0e:8f:5c:5f:fc:aa:6a:18:78:5b:1c:9e:79:34:59:d4:ce: 5d:a3:35:fd:47:d2:52:e7:75:7f:f8:e6:5e:16:b1:26:2f:aa: d0:13:d4:c7:f5:96:29:c4:74:c0:55:0b:cc:7d:16:2a:b3:76: 68:55:9a:78:fa:96:61:f0:1c:6e:93:e8:16:c6:9e:fc:37:eb: 04:80:05:45:70:2f:95:96:b0:bb:f2:9a:cb:8e:40:4b:cc:db: ff:66:08:1f:ba:63:48:fa:b4:d0:62:58:9c:2b:f3:13:81:47: 61:0d:f9:5f:6c:7d:73:cd:19:47:0f:91:77:60:1c:68:9d:82: ba:7d:97:3b:6a:b7:cf:17:69:4a:c6:33:ee:80:36:d6:0c:31: 34:7f:d4:36:01:70:2e:58:5f:29:19:2d:db:eb:85:c0:4a:a8: fb:ee:4f:2d:1b:05:62:48:85:a8:b4:98:ce:af:0c:87:6e:5b: e5:22:60:82:f7:96:27:50:ef:13:e0:b8:bb:ce:6f:03:92:97: 3b:08:03:3e:82:b4:86:a0:1a:6d:78:37:55:24:02:bf:af:a2: d7:2a:b8:b8:14:e0:30:92:08:01:e4:06:f6:a0:79:fc:c6:bd: 50:d5:2a:7c -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBLzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5RkVC MTA1QzY3RTVGRDVDOUUxQUZEMDZBMzQzQzg0MUYwNUE3RjE1MB4XDTI0MTIzMTAx MzEyOFoXDTI1MTIxNTAxMzAwM1owMzExMC8GA1UEAxMoRjRDODAzODVFQTlGMzQz QkZCQjAwMUFBNDlDRDI0MUI3REQ5MDEzMjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMXe2nJhKMC3LC22u096TkwHPidlVySs21U3OpG4n1CDaIJNa9gh smqlaFxMQ5f5jXs6CDJU7v1+0/lRRfv/8VoelfVjiwrYJR+jKXupvYdUsaCueV6l 961pyQKuMJchDVnV0pECQY7cZRc3rmUO2friivIsHkJiFrZP51ByOrlliliuLxcG izRgXXbR903FMEtAr5cQmVH3xHTymHR7oyzdT4tUFqyrJFpfUxCHZUXrN7Ckl9BS dk8V+kfh1N84os9+ryLIMIUFEU94xHV1mVfp6nV6etnc9lUTHbTt96GndeYVVWdX NKsqnYHW1FLiPDaJKYingF5/np6d2WoyAn0CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBT0yAOF6p80O/uwAapJzSQbfdkBMjAfBgNVHSMEGDAWgBSf6xBcZ+X9XJ4a/Qaj Q8hB8Fp/FTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODIwL24tc1FYR2ZsX1Z5ZUd2MEdvMFBJUWZCYWZ4VS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL24tc1FYR2ZsX1Z5ZUd2MEdvMFBJUWZC YWZ4VS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84MjAvOU1nRGhlcWZORHY3c0FHcVNjMGtHMzNaQVRJLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA9KeuDANBgkqhkiG9w0BAQsFAAOCAQEA1tLMWAdbNHYu6J/rojkRMV36Jg6P XF/8qmoYeFscnnk0WdTOXaM1/UfSUud1f/jmXhaxJi+q0BPUx/WWKcR0wFULzH0W KrN2aFWaePqWYfAcbpPoFsae/DfrBIAFRXAvlZawu/Kay45AS8zb/2YIH7pjSPq0 0GJYnCvzE4FHYQ35X2x9c80ZRw+Rd2AcaJ2Cun2XO2q3zxdpSsYz7oA21gwxNH/U NgFwLlhfKRkt2+uFwEqo++5PLRsFYkiFqLSYzq8Mh25b5SJggveWJ1DvE+C4u85v A5KXOwgDPoK0hqAabXg3VSQCv6+i1yq4uBTgMJIIAeQG9qB5/Ma9UNUqfA== -----END CERTIFICATE-----Generated at Wed Feb 19 22:45:58 2025 by rpki-client