$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/877/fAcV3D9zZ9PPRvU-KFggdk11vlY.roa File: fAcV3D9zZ9PPRvU-KFggdk11vlY.roa (raw, json) Hash identifier: ks+hObg801++pSg/HvfkelEmU9gvXmMGQgzPhmxWbIQ= Subject key identifier: 7C:07:15:DC:3F:73:67:D3:CF:46:F5:3E:28:58:20:76:4D:75:BE:56 Certificate issuer: /CN=1933DE3EF96450CA120C77A5EA826434DD149549 Certificate serial: 3E Authority key identifier: 19:33:DE:3E:F9:64:50:CA:12:0C:77:A5:EA:82:64:34:DD:14:95:49 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GTPePvlkUMoSDHel6oJkNN0UlUk.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/877/fAcV3D9zZ9PPRvU-KFggdk11vlY.roa Signing time: Tue 31 Dec 2024 01:30:52 +0000 ROA not before: Tue 31 Dec 2024 01:30:52 +0000 ROA not after: Mon 15 Dec 2025 01:30:03 +0000 asID: 55385 IP address blocks: 202.174.56.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/877/GTPePvlkUMoSDHel6oJkNN0UlUk.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/877/GTPePvlkUMoSDHel6oJkNN0UlUk.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GTPePvlkUMoSDHel6oJkNN0UlUk.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 19:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1933DE3EF96450CA120C77A5EA826434DD149549 Validity Not Before: Dec 31 01:30:52 2024 GMT Not After : Dec 15 01:30:03 2025 GMT Subject: CN=7C0715DC3F7367D3CF46F53E285820764D75BE56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:3c:e7:ee:a1:35:01:e6:80:38:a0:fb:08:1f: a0:a6:3d:77:25:3d:df:cf:21:c9:d7:d3:6b:55:5b: 9e:e2:d2:8a:9f:7a:84:3e:58:ab:f6:6d:56:3a:d8: cf:d9:f2:b7:dd:25:08:48:d0:72:36:00:60:47:5b: 9c:0f:db:4b:dc:ef:0c:d1:9b:c0:96:9e:78:c6:3a: 24:e3:1b:0e:99:6f:54:46:34:bd:f4:d7:a9:4a:80: 2e:e1:58:27:b8:38:bd:ea:32:69:04:f1:d7:4c:ca: 71:ee:c3:00:e8:d0:5b:41:e0:c5:41:bd:13:81:3f: 5d:8f:f3:10:9e:5c:64:97:83:64:e4:49:10:dd:f0: 63:c3:68:22:aa:0a:b3:d6:92:76:18:10:e4:c3:08: 71:a8:a2:31:60:60:61:a0:b3:5e:d4:29:3e:d6:e3: 24:f8:ab:b3:93:6c:fd:34:56:23:63:ab:51:90:1c: 3a:46:d8:83:8c:e2:68:76:54:bf:95:df:48:02:d3: 4d:00:ef:34:9e:f2:a3:a4:d4:9f:7d:f9:37:05:cc: 16:a6:f1:17:f6:46:d2:a8:81:93:fe:ae:36:c7:4e: e0:04:7e:3d:28:99:e5:4b:4a:fe:84:e9:1e:41:1a: 4c:ff:da:eb:04:76:a6:d7:3c:b2:08:a2:99:00:88: b9:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:07:15:DC:3F:73:67:D3:CF:46:F5:3E:28:58:20:76:4D:75:BE:56 X509v3 Authority Key Identifier: keyid:19:33:DE:3E:F9:64:50:CA:12:0C:77:A5:EA:82:64:34:DD:14:95:49 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/877/GTPePvlkUMoSDHel6oJkNN0UlUk.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/GTPePvlkUMoSDHel6oJkNN0UlUk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/877/fAcV3D9zZ9PPRvU-KFggdk11vlY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.174.56.0/23 Signature Algorithm: sha256WithRSAEncryption 72:ea:c2:36:c8:e3:9c:9d:88:d7:35:6e:f2:49:5b:9c:08:c4: ea:7a:ee:09:ee:bf:e8:3b:31:19:6c:ae:2c:c1:54:47:5f:bd: af:80:d0:90:52:e6:17:49:03:29:38:50:32:dd:52:79:43:13: 8c:a2:c0:85:a1:4f:4c:ce:45:3c:c3:04:26:93:cf:f9:08:c6: 3f:b6:cb:fb:28:a4:91:7d:44:e5:86:49:f5:63:90:a4:36:5a: 46:59:9d:e3:1a:d4:04:9a:1f:ac:56:b3:6c:fc:28:26:a9:7e: ef:c3:8b:2c:e7:24:ff:72:de:7a:d9:99:17:dc:7e:20:56:dc: 0f:5a:6b:b4:c1:83:c0:ac:d5:69:88:f1:60:1c:25:ef:0b:70: ba:4a:40:2c:00:8c:ff:2f:c2:26:1e:df:c4:15:84:19:55:6e: b9:37:9d:1c:46:7c:93:ca:6d:9d:84:2c:cd:bf:1d:1c:16:f8: fb:0d:17:e3:27:2e:b4:ff:09:63:d1:a5:94:df:ce:dd:e9:34: 8a:98:7d:87:ab:5c:e1:56:bb:22:93:87:52:b2:b3:5e:b4:47: 7a:75:a7:11:f1:35:00:c7:64:93:bd:2e:2f:12:7a:e7:00:6b: b0:fe:fb:28:5f:6e:a3:d0:36:03:2d:b4:f2:95:d5:bd:4e:1f: 75:ae:0b:26 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBPjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxOTMz REUzRUY5NjQ1MENBMTIwQzc3QTVFQTgyNjQzNEREMTQ5NTQ5MB4XDTI0MTIzMTAx MzA1MloXDTI1MTIxNTAxMzAwM1owMzExMC8GA1UEAxMoN0MwNzE1REMzRjczNjdE M0NGNDZGNTNFMjg1ODIwNzY0RDc1QkU1NjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANA85+6hNQHmgDig+wgfoKY9dyU9388hydfTa1VbnuLSip96hD5Y q/ZtVjrYz9nyt90lCEjQcjYAYEdbnA/bS9zvDNGbwJaeeMY6JOMbDplvVEY0vfTX qUqALuFYJ7g4veoyaQTx10zKce7DAOjQW0HgxUG9E4E/XY/zEJ5cZJeDZORJEN3w Y8NoIqoKs9aSdhgQ5MMIcaiiMWBgYaCzXtQpPtbjJPirs5Ns/TRWI2OrUZAcOkbY g4ziaHZUv5XfSALTTQDvNJ7yo6TUn335NwXMFqbxF/ZG0qiBk/6uNsdO4AR+PSiZ 5UtK/oTpHkEaTP/a6wR2ptc8sgiimQCIudkCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBR8BxXcP3Nn089G9T4oWCB2TXW+VjAfBgNVHSMEGDAWgBQZM94++WRQyhIMd6Xq gmQ03RSVSTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODc3L0dUUGVQdmxrVU1vU0RIZWw2b0prTk4wVWxVay5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0dUUGVQdmxrVU1vU0RIZWw2b0prTk4w VWxVay5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84NzcvZkFjVjNEOXpaOVBQUnZVLUtGZ2dkazExdmxZLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAcquODANBgkqhkiG9w0BAQsFAAOCAQEAcurCNsjjnJ2I1zVu8klbnAjE6nru Ce6/6DsxGWyuLMFUR1+9r4DQkFLmF0kDKThQMt1SeUMTjKLAhaFPTM5FPMMEJpPP +QjGP7bL+yikkX1E5YZJ9WOQpDZaRlmd4xrUBJofrFazbPwoJql+78OLLOck/3Le etmZF9x+IFbcD1prtMGDwKzVaYjxYBwl7wtwukpALACM/y/CJh7fxBWEGVVuuTed HEZ8k8ptnYQszb8dHBb4+w0X4ycutP8JY9GllN/O3ek0iph9h6tc4Va7IpOHUrKz XrRHenWnEfE1AMdkk70uLxJ65wBrsP77KF9uo9A2Ay208pXVvU4fda4LJg== -----END CERTIFICATE-----Generated at Wed Feb 19 22:12:54 2025 by rpki-client