$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/834/7pJnaZWaDWdtYgbHhvHsReUHgws.roa File: 7pJnaZWaDWdtYgbHhvHsReUHgws.roa (raw, json) Hash identifier: 0BX39Gzbgjj6PCHtysuvKNOHc3uhgX+brvjqXMixqNw= Subject key identifier: EE:92:67:69:95:9A:0D:67:6D:62:06:C7:86:F1:EC:45:E5:07:83:0B Certificate issuer: /CN=DFBEE141DC34E893640343A7F312A702EF91A698 Certificate serial: 15 Authority key identifier: DF:BE:E1:41:DC:34:E8:93:64:03:43:A7:F3:12:A7:02:EF:91:A6:98 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/377hQdw06JNkA0On8xKnAu-Rppg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/834/7pJnaZWaDWdtYgbHhvHsReUHgws.roa Signing time: Thu 30 Jan 2025 03:30:21 +0000 ROA not before: Thu 30 Jan 2025 03:30:21 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 23630 IP address blocks: 210.156.112.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/834/377hQdw06JNkA0On8xKnAu-Rppg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/834/377hQdw06JNkA0On8xKnAu-Rppg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/377hQdw06JNkA0On8xKnAu-Rppg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 28 Feb 2025 09:32:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFBEE141DC34E893640343A7F312A702EF91A698 Validity Not Before: Jan 30 03:30:21 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=EE926769959A0D676D6206C786F1EC45E507830B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:00:c6:9f:82:db:3f:6e:95:93:58:d1:57:9b: 59:b9:65:1b:07:34:0d:e9:5d:6c:c8:87:ef:a3:2b: 45:dd:ae:55:57:10:d7:ce:a4:11:43:7f:b7:78:ab: 45:d0:2d:1d:cb:18:06:4c:fc:02:0b:a7:44:0d:52: db:3f:a8:09:37:44:a8:04:fa:e6:76:57:d2:b1:2e: 6a:32:6a:44:24:29:ab:e6:76:59:e0:76:4f:e0:14: b7:89:b0:df:40:a4:4c:f3:25:dd:30:f4:d8:ee:88: 5d:f6:28:c7:bb:47:60:4a:a1:f1:9d:e2:75:9f:f8: df:f7:74:fa:fa:05:01:7f:26:09:01:60:9c:8d:56: 7f:f2:ae:70:2b:e8:58:25:6d:68:1c:bb:c7:ad:eb: 6c:c4:24:3c:1c:cf:e2:ad:fa:79:1e:4f:2a:a2:37: 91:8e:e5:c8:ce:69:d6:f5:51:eb:49:36:f8:30:cc: 56:c1:a1:63:e4:93:1b:db:89:7f:13:4e:bf:66:8d: 1b:85:8d:e7:db:23:27:bd:78:ef:80:8c:11:c1:55: 47:c0:5f:d8:5e:64:73:29:97:0a:f5:15:e0:8f:58: 4b:6f:b2:58:05:d1:ce:24:11:62:81:52:5f:88:5d: 99:fa:c0:e4:13:86:f2:81:f9:a8:dd:0d:08:13:83: a9:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:92:67:69:95:9A:0D:67:6D:62:06:C7:86:F1:EC:45:E5:07:83:0B X509v3 Authority Key Identifier: keyid:DF:BE:E1:41:DC:34:E8:93:64:03:43:A7:F3:12:A7:02:EF:91:A6:98 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/834/377hQdw06JNkA0On8xKnAu-Rppg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/377hQdw06JNkA0On8xKnAu-Rppg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/834/7pJnaZWaDWdtYgbHhvHsReUHgws.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.156.112.0/20 Signature Algorithm: sha256WithRSAEncryption 84:0e:bb:d6:ad:a8:13:52:99:fa:af:d4:d1:9d:9a:17:53:f5: c4:3b:87:46:b3:49:97:86:8f:ed:a9:c6:2b:11:bc:97:81:bc: 42:4e:67:97:51:0a:b0:bf:97:19:39:45:cb:1c:27:2e:53:ae: 96:3d:0c:2e:a0:da:59:56:ef:c0:12:23:f8:cf:48:95:9d:9b: 45:41:c7:d1:2f:65:e8:2b:2c:2a:0f:c8:c1:ad:09:88:d5:d9: 45:cd:ea:65:bd:d4:91:3f:2b:a2:93:90:0e:f9:ed:3f:84:e5: 10:d2:a4:fa:5f:bd:b8:b8:98:ee:c6:52:c9:7a:43:b4:02:b5: 5c:cf:0a:34:b5:6e:c7:55:8d:48:3d:d2:a1:06:b0:fc:c0:9d: ad:48:f2:ff:95:55:d8:33:c8:27:bb:4b:3c:ef:40:01:55:df: cf:08:e2:b5:47:a4:5f:44:b3:ab:e5:96:91:de:0c:bf:a0:08: a5:7d:89:58:17:f3:db:7e:0c:b8:92:79:83:17:0c:15:0c:42: ce:8e:54:04:60:81:ca:d2:02:a4:f4:b9:6d:2c:6e:a5:9f:00: 7b:c6:5a:53:fb:be:4e:ce:d9:90:b8:70:a0:8d:f8:4b:49:84: 9c:cb:a5:57:4f:9b:06:56:c2:e5:b7:b7:27:18:9b:11:2b:d9: a1:e8:55:41 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBFTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhERkJF RTE0MURDMzRFODkzNjQwMzQzQTdGMzEyQTcwMkVGOTFBNjk4MB4XDTI1MDEzMDAz MzAyMVoXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoRUU5MjY3Njk5NTlBMEQ2 NzZENjIwNkM3ODZGMUVDNDVFNTA3ODMwQjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMkAxp+C2z9ulZNY0VebWbllGwc0DeldbMiH76MrRd2uVVcQ186k EUN/t3irRdAtHcsYBkz8AgunRA1S2z+oCTdEqAT65nZX0rEuajJqRCQpq+Z2WeB2 T+AUt4mw30CkTPMl3TD02O6IXfYox7tHYEqh8Z3idZ/43/d0+voFAX8mCQFgnI1W f/KucCvoWCVtaBy7x63rbMQkPBzP4q36eR5PKqI3kY7lyM5p1vVR60k2+DDMVsGh Y+STG9uJfxNOv2aNG4WN59sjJ71474CMEcFVR8Bf2F5kcymXCvUV4I9YS2+yWAXR ziQRYoFSX4hdmfrA5BOG8oH5qN0NCBODqbECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTukmdplZoNZ21iBseG8exF5QeDCzAfBgNVHSMEGDAWgBTfvuFB3DTok2QDQ6fz EqcC75GmmDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODM0LzM3N2hRZHcwNkpOa0EwT244eEtuQXUtUnBwZy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzM3N2hRZHcwNkpOa0EwT244eEtuQXUt UnBwZy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84MzQvN3BKbmFaV2FEV2R0WWdiSGh2SHNSZVVIZ3dzLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNKccDANBgkqhkiG9w0BAQsFAAOCAQEAhA671q2oE1KZ+q/U0Z2aF1P1xDuH RrNJl4aP7anGKxG8l4G8Qk5nl1EKsL+XGTlFyxwnLlOulj0MLqDaWVbvwBIj+M9I lZ2bRUHH0S9l6CssKg/Iwa0JiNXZRc3qZb3UkT8ropOQDvntP4TlENKk+l+9uLiY 7sZSyXpDtAK1XM8KNLVux1WNSD3SoQaw/MCdrUjy/5VV2DPIJ7tLPO9AAVXfzwji tUekX0Szq+WWkd4Mv6AIpX2JWBfz234MuJJ5gxcMFQxCzo5UBGCBytICpPS5bSxu pZ8Ae8ZaU/u+Ts7ZkLhwoI34S0mEnMulV0+bBlbC5be3JxibESvZoehVQQ== -----END CERTIFICATE-----Generated at Fri Feb 21 11:21:07 2025 by rpki-client