$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/877/FmckM6DoBXobTN3OoWAJJOfkyWU.roa File: FmckM6DoBXobTN3OoWAJJOfkyWU.roa (raw, json) Hash identifier: nUjeCuk8KZAoWx6Ezg2koczx4OuNtm3ulLO0PP/GBWY= Subject key identifier: 16:67:24:33:A0:E8:05:7A:1B:4C:DD:CE:A1:60:09:24:E7:E4:C9:65 Certificate issuer: /CN=1933DE3EF96450CA120C77A5EA826434DD149549 Certificate serial: 40 Authority key identifier: 19:33:DE:3E:F9:64:50:CA:12:0C:77:A5:EA:82:64:34:DD:14:95:49 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GTPePvlkUMoSDHel6oJkNN0UlUk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/877/FmckM6DoBXobTN3OoWAJJOfkyWU.roa Signing time: Tue 31 Dec 2024 01:30:53 +0000 ROA not before: Tue 31 Dec 2024 01:30:53 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 17683 IP address blocks: 202.227.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/877/GTPePvlkUMoSDHel6oJkNN0UlUk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/877/GTPePvlkUMoSDHel6oJkNN0UlUk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GTPePvlkUMoSDHel6oJkNN0UlUk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1933DE3EF96450CA120C77A5EA826434DD149549 Validity Not Before: Dec 31 01:30:53 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=16672433A0E8057A1B4CDDCEA1600924E7E4C965 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:85:5a:88:8c:d2:47:07:1a:0e:24:29:31:d9: 52:d9:f4:aa:3e:c7:dc:56:8b:cc:39:fe:23:e5:27: f2:80:22:36:e6:df:79:a0:79:64:cc:11:35:f4:ba: 4e:9d:4e:ee:9d:84:d4:8b:f6:39:ef:81:51:e8:5a: 9e:64:dd:87:49:c4:e9:43:19:4c:22:c2:b6:59:4b: ed:c4:22:bf:ae:da:58:ca:69:ed:c8:30:ef:c5:41: 57:d1:c2:42:5a:5d:f5:75:3a:88:7f:57:ad:6c:fa: 8b:95:85:02:dd:cc:b3:47:3b:b5:9c:f0:ca:73:d9: 8d:7f:d7:8d:a1:fb:b6:33:b3:ea:b0:df:74:c8:45: b8:e7:46:33:38:43:fd:02:43:55:1a:24:bb:f3:75: 8e:dc:23:e0:33:a1:cc:ea:62:09:68:e5:97:db:53: 52:a2:ca:b4:99:cb:cb:af:d0:e5:18:6d:23:3e:3d: c4:26:f4:f1:a9:7e:97:d9:ec:56:e9:77:6e:11:c3: 15:25:9a:4a:bd:52:e6:a0:26:17:d6:df:7b:57:07: 3a:60:cb:cd:0a:3a:37:86:f6:17:d4:13:c7:6e:fd: bd:1e:a6:74:04:78:42:be:f3:d9:75:b3:c1:b1:24: 68:0d:8a:27:60:e5:ce:39:fe:f5:57:df:10:a4:58: 86:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:67:24:33:A0:E8:05:7A:1B:4C:DD:CE:A1:60:09:24:E7:E4:C9:65 X509v3 Authority Key Identifier: keyid:19:33:DE:3E:F9:64:50:CA:12:0C:77:A5:EA:82:64:34:DD:14:95:49 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/877/GTPePvlkUMoSDHel6oJkNN0UlUk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GTPePvlkUMoSDHel6oJkNN0UlUk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/877/FmckM6DoBXobTN3OoWAJJOfkyWU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.227.64.0/19 Signature Algorithm: sha256WithRSAEncryption 08:e3:7f:21:b4:a5:ef:ff:e9:7a:b2:8b:c2:a3:31:ef:e0:32: 87:1d:cd:a0:3c:24:4a:19:a7:97:a5:4b:50:18:d6:0a:1c:56: ac:06:f4:7a:31:ee:6a:df:f1:00:51:24:32:44:9b:dc:52:96: 7d:90:2a:66:3a:b8:1e:89:fc:7c:96:a0:f3:dd:73:69:9f:54: a9:08:7c:73:c4:a2:60:1f:ef:a2:2e:d8:5e:e1:bc:40:f8:45: f7:72:be:e9:18:fb:43:b0:62:c7:38:22:1f:88:be:1a:c3:ec: 11:15:42:21:23:63:b3:e0:ba:26:fa:86:63:ec:62:5e:0b:87: 14:c3:d7:e9:90:be:a2:0c:cc:a2:eb:36:d6:71:eb:1e:82:27: b7:2d:b2:26:75:24:71:5b:7b:4d:f3:b7:88:d9:35:c6:39:af: 75:ac:9f:0a:35:2e:46:e6:71:81:27:ed:e5:4e:41:0f:ab:c7: 34:ee:75:73:a5:c0:f2:49:bc:4e:0d:f5:bc:5c:c6:3d:d9:85: c9:4b:1d:19:3b:96:f4:d7:af:de:ac:b0:ee:1c:f0:4c:c1:16: 9e:4a:9c:82:93:b9:10:fb:c9:32:53:09:14:85:b4:c5:13:cb: 6b:80:1b:ad:ae:97:95:ea:54:26:72:d6:0a:02:60:c8:a8:80: 70:18:9a:81 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBQDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxOTMz REUzRUY5NjQ1MENBMTIwQzc3QTVFQTgyNjQzNEREMTQ5NTQ5MB4XDTI0MTIzMTAx MzA1M1oXDTI1MTIxNTAxMzAwM1owMzExMC8GA1UEAxMoMTY2NzI0MzNBMEU4MDU3 QTFCNENERENFQTE2MDA5MjRFN0U0Qzk2NTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMOFWoiM0kcHGg4kKTHZUtn0qj7H3FaLzDn+I+Un8oAiNubfeaB5 ZMwRNfS6Tp1O7p2E1Iv2Oe+BUehanmTdh0nE6UMZTCLCtllL7cQiv67aWMpp7cgw 78VBV9HCQlpd9XU6iH9XrWz6i5WFAt3Ms0c7tZzwynPZjX/XjaH7tjOz6rDfdMhF uOdGMzhD/QJDVRoku/N1jtwj4DOhzOpiCWjll9tTUqLKtJnLy6/Q5RhtIz49xCb0 8al+l9nsVul3bhHDFSWaSr1S5qAmF9bfe1cHOmDLzQo6N4b2F9QTx279vR6mdAR4 Qr7z2XWzwbEkaA2KJ2Dlzjn+9VffEKRYhvECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQWZyQzoOgFehtM3c6hYAkk5+TJZTAfBgNVHSMEGDAWgBQZM94++WRQyhIMd6Xq gmQ03RSVSTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODc3L0dUUGVQdmxrVU1vU0RIZWw2b0prTk4wVWxVay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0dUUGVQdmxrVU1vU0RIZWw2b0prTk4w VWxVay5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84NzcvRm1ja002RG9CWG9iVE4zT29XQUpKT2ZreVdVLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBcrjQDANBgkqhkiG9w0BAQsFAAOCAQEACON/IbSl7//perKLwqMx7+Ayhx3N oDwkShmnl6VLUBjWChxWrAb0ejHuat/xAFEkMkSb3FKWfZAqZjq4Hon8fJag891z aZ9UqQh8c8SiYB/voi7YXuG8QPhF93K+6Rj7Q7BixzgiH4i+GsPsERVCISNjs+C6 JvqGY+xiXguHFMPX6ZC+ogzMous21nHrHoInty2yJnUkcVt7TfO3iNk1xjmvdayf CjUuRuZxgSft5U5BD6vHNO51c6XA8km8Tg31vFzGPdmFyUsdGTuW9Nev3qyw7hzw TMEWnkqcgpO5EPvJMlMJFIW0xRPLa4Abra6XlepUJnLWCgJgyKiAcBiagQ== -----END CERTIFICATE-----Generated at Wed Feb 19 22:40:41 2025 by rpki-client