$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/834/6mRKaqUSbi2M19p7G8Ij8Bnj_W8.roa File: 6mRKaqUSbi2M19p7G8Ij8Bnj_W8.roa (raw, json) Hash identifier: LbftLwgIchwfG6IQFlkN6UK4hCInGTOgdcJ/MfVUIE0= Subject key identifier: EA:64:4A:6A:A5:12:6E:2D:8C:D7:DA:7B:1B:C2:23:F0:19:E3:FD:6F Certificate issuer: /CN=DFBEE141DC34E893640343A7F312A702EF91A698 Certificate serial: 16 Authority key identifier: DF:BE:E1:41:DC:34:E8:93:64:03:43:A7:F3:12:A7:02:EF:91:A6:98 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/377hQdw06JNkA0On8xKnAu-Rppg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/834/6mRKaqUSbi2M19p7G8Ij8Bnj_W8.roa Signing time: Thu 30 Jan 2025 03:30:21 +0000 ROA not before: Thu 30 Jan 2025 03:30:21 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 23630 IP address blocks: 133.32.112.0/20 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/834/377hQdw06JNkA0On8xKnAu-Rppg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/834/377hQdw06JNkA0On8xKnAu-Rppg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/377hQdw06JNkA0On8xKnAu-Rppg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 28 Feb 2025 09:32:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFBEE141DC34E893640343A7F312A702EF91A698 Validity Not Before: Jan 30 03:30:21 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=EA644A6AA5126E2D8CD7DA7B1BC223F019E3FD6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:1b:9f:b0:87:62:2c:3c:60:66:50:b2:aa:a5: 6a:7f:df:0d:a4:c7:df:f7:ed:40:fd:45:54:1b:10: 39:8f:75:02:70:59:8e:d7:60:f3:b1:3c:be:f5:f5: ca:07:0b:35:89:0b:c9:d3:ac:df:45:3a:89:74:b7: 68:27:82:6a:66:d1:78:2e:3a:50:19:d2:12:c9:10: 7b:fe:39:04:0d:e5:a5:00:27:9b:f7:ad:b3:cc:58: 77:55:da:8e:40:c2:d2:3a:19:30:72:c1:19:25:2a: ca:37:f5:7a:ec:47:8e:8d:f3:ac:e3:fd:59:31:a7: 80:71:d5:0e:9b:d9:c7:03:1c:40:e4:93:5e:4c:a0: 2e:23:e7:eb:38:39:14:30:60:6f:91:d8:46:bb:19: 83:2d:de:ea:f1:a2:51:35:d0:72:f1:73:a3:ce:1d: 5f:6f:80:08:23:8c:d8:55:1a:2f:71:8e:ea:e5:de: 2b:b2:04:d0:16:e9:44:47:87:08:92:1b:bd:c9:f5: c7:0f:48:f5:42:4d:4c:b5:b9:d4:18:e7:9e:d8:a1: 07:a0:ea:4d:54:67:bb:4f:7a:71:e8:c9:aa:96:d2: 95:a8:98:9d:96:1f:77:2f:96:45:c9:92:d1:59:6b: 86:8c:bb:f1:7c:b4:0c:57:9d:5e:a4:1d:c4:02:88: be:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:64:4A:6A:A5:12:6E:2D:8C:D7:DA:7B:1B:C2:23:F0:19:E3:FD:6F X509v3 Authority Key Identifier: keyid:DF:BE:E1:41:DC:34:E8:93:64:03:43:A7:F3:12:A7:02:EF:91:A6:98 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/834/377hQdw06JNkA0On8xKnAu-Rppg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/377hQdw06JNkA0On8xKnAu-Rppg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/834/6mRKaqUSbi2M19p7G8Ij8Bnj_W8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 133.32.112.0/20 Signature Algorithm: sha256WithRSAEncryption 9a:11:bf:88:c3:32:7d:80:5e:21:93:18:c9:b8:75:e1:7e:6e: ff:2c:32:fa:50:42:cb:9c:7b:48:bb:35:4b:17:86:bd:dc:6a: 70:0a:eb:ca:e5:0d:29:21:51:84:69:f2:ab:bf:7c:71:91:ac: 0a:65:09:3b:4e:c9:e9:86:7e:db:ca:36:cc:5b:dc:27:62:7c: ed:14:f0:29:bd:28:98:b8:9d:67:da:3d:d6:4b:a5:e9:b9:17: 23:3d:7d:cc:13:57:52:88:b6:23:f1:c8:e3:e6:97:49:0c:fd: b5:04:5f:80:36:76:28:c3:be:3f:6e:60:32:04:c9:3c:75:55: ad:90:f6:4d:bf:f3:79:b2:1c:91:f0:bc:89:58:fb:c3:1d:56: d3:33:cb:b5:d2:f4:2d:5a:9b:c5:b8:54:ce:ec:23:7b:8b:21: 52:d9:e5:56:2c:a2:23:0a:cb:e2:f7:3d:38:ad:5a:3c:d5:31: 09:e9:71:56:59:79:11:90:96:3b:af:4c:6e:eb:82:ed:7b:a4: 6e:02:b3:60:22:42:0b:43:9e:fe:96:f1:b5:76:7a:de:58:d4: 89:29:4b:a1:49:59:c3:9e:58:35:77:6a:64:af:11:c8:3d:8e: 18:37:38:91:05:c7:21:ba:25:2d:08:84:62:79:8c:c4:cc:12: 37:43:a1:d2 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBFjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhERkJF RTE0MURDMzRFODkzNjQwMzQzQTdGMzEyQTcwMkVGOTFBNjk4MB4XDTI1MDEzMDAz MzAyMVoXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoRUE2NDRBNkFBNTEyNkUy RDhDRDdEQTdCMUJDMjIzRjAxOUUzRkQ2RjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALIbn7CHYiw8YGZQsqqlan/fDaTH3/ftQP1FVBsQOY91AnBZjtdg 87E8vvX1ygcLNYkLydOs30U6iXS3aCeCambReC46UBnSEskQe/45BA3lpQAnm/et s8xYd1XajkDC0joZMHLBGSUqyjf1euxHjo3zrOP9WTGngHHVDpvZxwMcQOSTXkyg LiPn6zg5FDBgb5HYRrsZgy3e6vGiUTXQcvFzo84dX2+ACCOM2FUaL3GO6uXeK7IE 0BbpREeHCJIbvcn1xw9I9UJNTLW51BjnntihB6DqTVRnu096cejJqpbSlaiYnZYf dy+WRcmS0Vlrhoy78Xy0DFedXqQdxAKIvkcCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTqZEpqpRJuLYzX2nsbwiPwGeP9bzAfBgNVHSMEGDAWgBTfvuFB3DTok2QDQ6fz EqcC75GmmDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODM0LzM3N2hRZHcwNkpOa0EwT244eEtuQXUtUnBwZy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzM3N2hRZHcwNkpOa0EwT244eEtuQXUt UnBwZy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84MzQvNm1SS2FxVVNiaTJNMTlwN0c4SWo4Qm5qX1c4LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBIUgcDANBgkqhkiG9w0BAQsFAAOCAQEAmhG/iMMyfYBeIZMYybh14X5u/ywy +lBCy5x7SLs1SxeGvdxqcArryuUNKSFRhGnyq798cZGsCmUJO07J6YZ+28o2zFvc J2J87RTwKb0omLidZ9o91kul6bkXIz19zBNXUoi2I/HI4+aXSQz9tQRfgDZ2KMO+ P25gMgTJPHVVrZD2Tb/zebIckfC8iVj7wx1W0zPLtdL0LVqbxbhUzuwje4shUtnl ViyiIwrL4vc9OK1aPNUxCelxVll5EZCWO69MbuuC7XukbgKzYCJCC0Oe/pbxtXZ6 3ljUiSlLoUlZw55YNXdqZK8RyD2OGDc4kQXHIbolLQiEYnmMxMwSN0Oh0g== -----END CERTIFICATE-----Generated at Fri Feb 21 11:10:22 2025 by rpki-client