$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/840/oVQTNs0iJWGjv6xrJ-RZK1EcPtg.roa File: oVQTNs0iJWGjv6xrJ-RZK1EcPtg.roa (raw, json) Hash identifier: 7oDgDxtP4QJznnr73bIgI9kDwxhpwiAnIZBos1kYfNw= Subject key identifier: A1:54:13:36:CD:22:25:61:A3:BF:AC:6B:27:E4:59:2B:51:1C:3E:D8 Certificate issuer: /CN=D79B3890C2DA3795148976B954C2024056797554 Certificate serial: 42 Authority key identifier: D7:9B:38:90:C2:DA:37:95:14:89:76:B9:54:C2:02:40:56:79:75:54 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/15s4kMLaN5UUiXa5VMICQFZ5dVQ.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/oVQTNs0iJWGjv6xrJ-RZK1EcPtg.roa Signing time: Fri 31 Jan 2025 01:28:56 +0000 ROA not before: Fri 31 Jan 2025 01:28:56 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 131934 IP address blocks: 14.192.96.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/15s4kMLaN5UUiXa5VMICQFZ5dVQ.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/15s4kMLaN5UUiXa5VMICQFZ5dVQ.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/15s4kMLaN5UUiXa5VMICQFZ5dVQ.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D79B3890C2DA3795148976B954C2024056797554 Validity Not Before: Jan 31 01:28:56 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=A1541336CD222561A3BFAC6B27E4592B511C3ED8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:8e:df:9f:df:d6:39:9f:94:37:15:6e:2b:70: 15:26:7e:6c:87:86:71:78:fd:c6:7f:6f:c1:20:84: ac:c3:84:e4:ed:90:78:1c:77:bd:6f:69:d7:00:2f: 43:32:a9:2f:1b:59:ff:4e:46:40:7d:61:20:de:5c: 2e:f9:db:a2:de:26:7c:be:6b:bb:c1:2f:b3:47:cb: 0d:46:35:91:9b:33:c8:91:b7:22:9e:45:e8:5e:a4: bc:26:5b:d3:ca:7b:24:88:b0:ee:37:1b:da:e5:f4: eb:9a:27:9e:2a:31:c3:5f:50:c1:ff:6e:48:f6:e3: ca:7a:12:eb:27:85:b5:2e:5c:6a:ab:3e:cd:48:35: 0a:96:d3:b2:bb:a1:26:74:a1:4e:31:39:19:71:a7: b5:2b:81:7b:d5:ba:30:cd:1c:93:6d:02:08:77:1e: ac:b2:7f:43:6e:8c:6f:17:b5:02:31:57:11:38:ad: 35:30:63:ea:27:31:e7:6d:bc:49:cf:04:f5:37:42: 2f:28:f3:e5:57:1d:18:c6:69:62:20:03:e8:2e:d9: 72:ae:40:64:32:ce:1f:9e:b5:bf:80:b5:6c:7c:ab: 9e:1e:e2:7d:bd:ad:b3:62:d0:e1:bb:f9:6c:f8:d5: 95:50:d8:a7:3f:08:5f:8c:09:50:5d:fe:50:de:47: c0:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:54:13:36:CD:22:25:61:A3:BF:AC:6B:27:E4:59:2B:51:1C:3E:D8 X509v3 Authority Key Identifier: keyid:D7:9B:38:90:C2:DA:37:95:14:89:76:B9:54:C2:02:40:56:79:75:54 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/15s4kMLaN5UUiXa5VMICQFZ5dVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/15s4kMLaN5UUiXa5VMICQFZ5dVQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/oVQTNs0iJWGjv6xrJ-RZK1EcPtg.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.192.96.0/19 Signature Algorithm: sha256WithRSAEncryption 9c:c8:99:2b:2c:47:1d:52:05:d9:c5:b3:1b:98:7c:9a:ca:f8: 65:03:c0:ef:55:20:15:46:b8:35:9d:d2:68:1e:07:7f:42:62: e5:fb:09:f6:de:a0:18:9d:00:27:63:3e:2d:2b:bc:4c:8c:d0: ac:90:47:f8:c1:1c:49:b4:3b:39:79:52:1b:c7:d9:af:c1:7e: 53:c5:fa:d8:4d:4f:93:cf:b1:bf:8d:ae:11:33:25:15:74:d1: 81:1f:56:ca:67:ae:ec:d8:9a:98:04:af:e9:00:32:67:d2:2f: 5e:fe:cf:40:70:cc:db:e8:2f:d4:68:3b:92:4e:45:0a:b3:44: 45:db:69:bb:79:f4:f8:1a:12:2c:76:cf:3e:4c:b3:28:5a:38: ce:8b:a7:2f:2c:38:28:73:d7:8b:75:e6:72:17:2b:14:5c:bf: 98:f0:35:12:0b:91:41:bd:e8:2e:73:21:11:5d:a4:2d:9d:4c: 35:c2:33:cb:a1:c9:c9:84:8a:60:98:15:ea:8c:6d:6a:a2:26: 42:d4:dd:c4:08:6a:6f:d4:2d:db:57:d7:67:32:42:aa:34:01: c7:c7:4f:94:7b:f9:77:b6:f7:da:43:dc:0d:f6:18:e4:5a:26: 96:ae:9c:f4:03:56:61:98:a8:dc:c7:fb:19:bc:8a:29:87:8f: 9b:18:2c:54 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBQjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhENzlC Mzg5MEMyREEzNzk1MTQ4OTc2Qjk1NEMyMDI0MDU2Nzk3NTU0MB4XDTI1MDEzMTAx Mjg1NloXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoQTE1NDEzMzZDRDIyMjU2 MUEzQkZBQzZCMjdFNDU5MkI1MTFDM0VEODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMmO35/f1jmflDcVbitwFSZ+bIeGcXj9xn9vwSCErMOE5O2QeBx3 vW9p1wAvQzKpLxtZ/05GQH1hIN5cLvnbot4mfL5ru8Evs0fLDUY1kZszyJG3Ip5F 6F6kvCZb08p7JIiw7jcb2uX065onnioxw19Qwf9uSPbjynoS6yeFtS5caqs+zUg1 CpbTsruhJnShTjE5GXGntSuBe9W6MM0ck20CCHcerLJ/Q26Mbxe1AjFXETitNTBj 6icx5228Sc8E9TdCLyjz5VcdGMZpYiAD6C7Zcq5AZDLOH561v4C1bHyrnh7ifb2t s2LQ4bv5bPjVlVDYpz8IX4wJUF3+UN5HwCUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBShVBM2zSIlYaO/rGsn5FkrURw+2DAfBgNVHSMEGDAWgBTXmziQwto3lRSJdrlU wgJAVnl1VDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODQwLzE1czRrTUxhTjVVVWlYYTVWTUlDUUZaNWRWUS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzE1czRrTUxhTjVVVWlYYTVWTUlDUUZa NWRWUS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84NDAvb1ZRVE5zMGlKV0dqdjZ4ckotUlpLMUVjUHRnLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBQ7AYDANBgkqhkiG9w0BAQsFAAOCAQEAnMiZKyxHHVIF2cWzG5h8msr4ZQPA 71UgFUa4NZ3SaB4Hf0Ji5fsJ9t6gGJ0AJ2M+LSu8TIzQrJBH+MEcSbQ7OXlSG8fZ r8F+U8X62E1Pk8+xv42uETMlFXTRgR9Wymeu7NiamASv6QAyZ9IvXv7PQHDM2+gv 1Gg7kk5FCrNERdtpu3n0+BoSLHbPPkyzKFo4zounLyw4KHPXi3XmchcrFFy/mPA1 EguRQb3oLnMhEV2kLZ1MNcIzy6HJyYSKYJgV6oxtaqImQtTdxAhqb9Qt21fXZzJC qjQBx8dPlHv5d7b32kPcDfYY5Fomlq6c9ANWYZio3Mf7GbyKKYePmxgsVA== -----END CERTIFICATE-----Generated at Wed Feb 19 22:42:43 2025 by rpki-client