$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/840/SN7eX0Vz5TWZksUqy3rG8JfI_es.roa File: SN7eX0Vz5TWZksUqy3rG8JfI_es.roa (raw, json) Hash identifier: DnLGx/hrRfuJVexVMngXhO5zs+szRyDR5YMK0Uv3L34= Subject key identifier: 48:DE:DE:5F:45:73:E5:35:99:92:C5:2A:CB:7A:C6:F0:97:C8:FD:EB Certificate issuer: /CN=D79B3890C2DA3795148976B954C2024056797554 Certificate serial: 43 Authority key identifier: D7:9B:38:90:C2:DA:37:95:14:89:76:B9:54:C2:02:40:56:79:75:54 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/15s4kMLaN5UUiXa5VMICQFZ5dVQ.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/SN7eX0Vz5TWZksUqy3rG8JfI_es.roa Signing time: Fri 31 Jan 2025 01:28:56 +0000 ROA not before: Fri 31 Jan 2025 01:28:56 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 131934 IP address blocks: 27.147.112.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/15s4kMLaN5UUiXa5VMICQFZ5dVQ.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/15s4kMLaN5UUiXa5VMICQFZ5dVQ.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/15s4kMLaN5UUiXa5VMICQFZ5dVQ.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D79B3890C2DA3795148976B954C2024056797554 Validity Not Before: Jan 31 01:28:56 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=48DEDE5F4573E5359992C52ACB7AC6F097C8FDEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:82:b1:d4:25:ee:29:b6:ee:18:29:b0:0a:73: 9c:47:3b:a7:39:30:57:90:b6:9f:ab:4d:42:c3:73: 63:f3:84:3f:b1:d0:41:9f:e5:a6:57:df:81:8b:91: 1f:98:67:8f:2b:0f:2d:85:bb:7b:08:67:ce:48:ae: ca:7e:47:12:18:79:b6:60:02:82:d8:5e:07:ea:3c: 22:af:df:f1:de:6f:08:57:90:2a:13:b2:6b:95:f4: bc:9a:40:61:7f:5a:50:3d:de:5a:97:8d:62:00:df: 38:a8:1e:5d:69:b8:ec:65:e3:e1:fd:3e:25:d7:80: cb:a4:0d:6c:a4:3f:0e:14:6a:75:3b:2a:d5:d4:f5: d7:e6:34:65:00:c8:fc:12:25:28:8b:b0:bc:7c:ba: 95:fa:d0:64:77:09:c3:10:63:6b:c7:d8:b6:3f:ad: 4f:09:da:7c:67:e5:10:56:2f:0f:77:68:21:40:d1: 53:c2:6e:5f:aa:9e:e2:d0:8c:68:cb:ae:2d:29:d8: 03:0d:35:85:02:49:e6:8b:0e:a5:3a:4c:c0:79:3e: fa:2c:2a:69:8d:72:b7:4a:23:87:37:5d:d7:03:be: 54:dd:72:6f:64:1a:72:f0:3f:15:52:52:e7:c8:5e: 01:d7:85:cc:76:93:97:c6:d7:b1:97:df:77:cd:b7: dd:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:DE:DE:5F:45:73:E5:35:99:92:C5:2A:CB:7A:C6:F0:97:C8:FD:EB X509v3 Authority Key Identifier: keyid:D7:9B:38:90:C2:DA:37:95:14:89:76:B9:54:C2:02:40:56:79:75:54 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/15s4kMLaN5UUiXa5VMICQFZ5dVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/15s4kMLaN5UUiXa5VMICQFZ5dVQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/SN7eX0Vz5TWZksUqy3rG8JfI_es.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.147.112.0/20 Signature Algorithm: sha256WithRSAEncryption 81:5b:c2:2e:15:87:23:2a:a0:95:6a:7a:11:06:4f:78:d0:be: b7:41:06:ef:43:9d:ae:e3:e0:fd:72:66:99:7a:8b:68:00:40: 2c:9c:78:85:53:9d:82:4d:4d:9e:3a:fa:71:46:37:6c:a3:2e: 10:7a:3f:fe:5c:5d:87:6e:4c:05:8b:49:95:4d:f2:e9:27:77: 8a:69:62:49:65:02:a8:ac:ac:50:fb:e5:dc:4c:56:28:e4:06: 93:26:ca:cc:be:b8:76:df:9f:96:6e:c1:46:7a:4f:d0:23:16: 69:4d:57:b6:d3:a6:46:56:34:78:8f:80:e7:55:32:af:96:09: 09:fb:55:98:f3:b7:6a:5d:62:f9:34:7f:70:70:8b:2c:02:a5: 3e:68:6b:62:5a:a0:8b:8d:1c:6f:59:1a:7d:e8:cd:25:ad:f6: f7:c8:0e:fc:56:62:15:36:f8:4a:d0:32:6e:0c:31:50:6a:e5: b6:37:3b:4d:df:ed:16:ff:8b:46:5c:99:16:8f:74:ca:37:1f: f4:db:1b:ac:09:a6:b9:cc:45:b3:7d:05:a7:7c:97:63:3b:c3: 89:f2:da:1c:1d:5a:e4:87:9e:f4:10:4b:31:aa:57:9e:c8:b2: d9:79:74:53:51:15:45:2c:53:9b:23:39:77:45:41:dc:2d:94: 34:12:59:a7 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBQzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhENzlC Mzg5MEMyREEzNzk1MTQ4OTc2Qjk1NEMyMDI0MDU2Nzk3NTU0MB4XDTI1MDEzMTAx Mjg1NloXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoNDhERURFNUY0NTczRTUz NTk5OTJDNTJBQ0I3QUM2RjA5N0M4RkRFQjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOaCsdQl7im27hgpsApznEc7pzkwV5C2n6tNQsNzY/OEP7HQQZ/l plffgYuRH5hnjysPLYW7ewhnzkiuyn5HEhh5tmACgtheB+o8Iq/f8d5vCFeQKhOy a5X0vJpAYX9aUD3eWpeNYgDfOKgeXWm47GXj4f0+JdeAy6QNbKQ/DhRqdTsq1dT1 1+Y0ZQDI/BIlKIuwvHy6lfrQZHcJwxBja8fYtj+tTwnafGflEFYvD3doIUDRU8Ju X6qe4tCMaMuuLSnYAw01hQJJ5osOpTpMwHk++iwqaY1yt0ojhzdd1wO+VN1yb2Qa cvA/FVJS58heAdeFzHaTl8bXsZffd8233aECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRI3t5fRXPlNZmSxSrLesbwl8j96zAfBgNVHSMEGDAWgBTXmziQwto3lRSJdrlU wgJAVnl1VDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODQwLzE1czRrTUxhTjVVVWlYYTVWTUlDUUZaNWRWUS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzE1czRrTUxhTjVVVWlYYTVWTUlDUUZa NWRWUS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84NDAvU043ZVgwVno1VFdaa3NVcXkzckc4SmZJX2VzLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBBuTcDANBgkqhkiG9w0BAQsFAAOCAQEAgVvCLhWHIyqglWp6EQZPeNC+t0EG 70OdruPg/XJmmXqLaABALJx4hVOdgk1Nnjr6cUY3bKMuEHo//lxdh25MBYtJlU3y 6Sd3imliSWUCqKysUPvl3ExWKOQGkybKzL64dt+flm7BRnpP0CMWaU1XttOmRlY0 eI+A51Uyr5YJCftVmPO3al1i+TR/cHCLLAKlPmhrYlqgi40cb1kafejNJa3298gO /FZiFTb4StAybgwxUGrltjc7Td/tFv+LRlyZFo90yjcf9NsbrAmmucxFs30Fp3yX YzvDifLaHB1a5Iee9BBLMapXnsiy2Xl0U1EVRSxTmyM5d0VB3C2UNBJZpw== -----END CERTIFICATE-----Generated at Wed Feb 19 22:39:25 2025 by rpki-client