$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/882/2ri6EfIaV_3Z0clg7EtNc1aQxVM.roa File: 2ri6EfIaV_3Z0clg7EtNc1aQxVM.roa (raw, json) Hash identifier: F2n5LwBuRQG775xneXqSpj/fPvXiM2j5Fj8nisaps/A= Subject key identifier: DA:B8:BA:11:F2:1A:57:FD:D9:D1:C9:60:EC:4B:4D:73:56:90:C5:53 Certificate issuer: /CN=B3935EEBB426B5FF872B140016A4441CDE239F3F Certificate serial: 1A Authority key identifier: B3:93:5E:EB:B4:26:B5:FF:87:2B:14:00:16:A4:44:1C:DE:23:9F:3F Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/s5Ne67Qmtf-HKxQAFqREHN4jnz8.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/882/2ri6EfIaV_3Z0clg7EtNc1aQxVM.roa Signing time: Sun 31 Mar 2024 01:33:02 +0000 ROA not before: Sun 31 Mar 2024 01:33:02 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 59127 IP address blocks: 223.223.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/882/s5Ne67Qmtf-HKxQAFqREHN4jnz8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/882/s5Ne67Qmtf-HKxQAFqREHN4jnz8.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/s5Ne67Qmtf-HKxQAFqREHN4jnz8.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3935EEBB426B5FF872B140016A4441CDE239F3F Validity Not Before: Mar 31 01:33:02 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=DAB8BA11F21A57FDD9D1C960EC4B4D735690C553 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:65:94:12:59:d6:d4:5f:32:1a:12:6d:4d:4c: 17:f6:40:5f:0a:45:97:14:f0:b2:4a:71:cb:e6:bd: db:df:a7:c1:24:ba:de:b5:48:5d:6e:90:3f:62:ca: fa:87:5a:05:1a:aa:20:ee:77:6f:f4:20:5f:7f:52: ac:a3:04:df:18:7d:03:f9:0b:14:d0:b2:2d:7f:30: de:ac:23:34:42:39:db:30:fb:7e:89:da:19:68:40: 5c:44:1d:95:d8:33:ef:31:de:fb:b1:c9:ef:27:63: 94:2d:3f:8b:d4:74:e9:ad:f1:75:7b:4e:77:9b:6e: df:0d:93:43:d3:bb:99:ed:b7:4a:71:82:a0:2f:3a: ff:0f:7d:66:f9:70:e5:20:93:ff:df:a6:f3:be:be: cd:24:57:cf:1a:34:26:f3:f8:0c:a3:88:0a:b0:f1: 81:0a:b1:ae:a7:d9:51:e1:b8:0d:21:67:a0:1a:e6: db:1e:a8:c0:13:f2:fe:0a:a7:d3:e5:bb:1d:9b:ac: 56:e7:c1:07:ec:17:d4:26:85:f7:e7:14:fe:0c:3a: ab:8d:92:b1:0d:d0:e3:d0:59:ee:5c:aa:9f:f0:d0: f2:88:6c:f6:01:7b:d3:b3:1d:bb:78:b0:ae:38:d0: fa:11:94:a6:3b:17:7d:f9:1e:83:30:a7:e6:08:82: de:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:B8:BA:11:F2:1A:57:FD:D9:D1:C9:60:EC:4B:4D:73:56:90:C5:53 X509v3 Authority Key Identifier: keyid:B3:93:5E:EB:B4:26:B5:FF:87:2B:14:00:16:A4:44:1C:DE:23:9F:3F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/882/s5Ne67Qmtf-HKxQAFqREHN4jnz8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/s5Ne67Qmtf-HKxQAFqREHN4jnz8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/882/2ri6EfIaV_3Z0clg7EtNc1aQxVM.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 223.223.240.0/20 Signature Algorithm: sha256WithRSAEncryption 1d:c3:54:80:99:6e:b8:a3:1b:6e:fc:4a:4b:4b:91:14:44:a7: a0:fc:0f:a1:be:24:f6:82:36:00:48:f3:e3:43:4d:c3:68:e2: 7d:05:a3:8e:07:47:e6:70:e8:5d:00:72:74:0d:84:e8:07:f1: 85:36:a5:ad:95:85:3a:73:d0:6e:a6:fa:f9:e5:d6:c0:9b:2f: 0e:fd:4c:12:1f:93:16:f6:ac:44:6a:a7:a2:68:13:ed:16:f5: 58:28:9e:cc:72:ac:3e:1d:d8:dc:56:66:07:c3:92:f3:36:c4: 55:8b:b5:12:f9:89:6c:ce:e2:4a:b6:73:8e:2c:07:90:99:32: 21:9b:0a:00:e5:03:a3:86:ac:58:28:ba:be:26:b2:62:b7:52: 48:40:d1:6a:bd:99:14:06:88:d4:d4:a8:f9:d3:13:a8:08:3d: 72:2e:cc:22:6b:02:c2:2a:fc:bd:48:1b:b7:f4:07:02:9a:9f: f6:ea:4b:2e:b4:74:d2:5d:16:1d:63:19:f9:ac:ca:33:90:58: 8d:a6:05:5e:6b:43:58:4b:19:25:7b:ea:c6:5a:32:56:0f:ff: eb:12:64:5e:16:0f:46:a0:fa:67:33:5e:25:88:29:8c:d7:7c: 2e:f5:73:e2:bd:b2:c3:84:ef:ab:39:40:6a:23:03:63:0b:d4: 93:2a:c3:47 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBGjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCMzkz NUVFQkI0MjZCNUZGODcyQjE0MDAxNkE0NDQxQ0RFMjM5RjNGMB4XDTI0MDMzMTAx MzMwMloXDTI1MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoREFCOEJBMTFGMjFBNTdG REQ5RDFDOTYwRUM0QjRENzM1NjkwQzU1MzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKFllBJZ1tRfMhoSbU1MF/ZAXwpFlxTwskpxy+a929+nwSS63rVI XW6QP2LK+odaBRqqIO53b/QgX39SrKME3xh9A/kLFNCyLX8w3qwjNEI52zD7fona GWhAXEQdldgz7zHe+7HJ7ydjlC0/i9R06a3xdXtOd5tu3w2TQ9O7me23SnGCoC86 /w99Zvlw5SCT/9+m876+zSRXzxo0JvP4DKOICrDxgQqxrqfZUeG4DSFnoBrm2x6o wBPy/gqn0+W7HZusVufBB+wX1CaF9+cU/gw6q42SsQ3Q49BZ7lyqn/DQ8ohs9gF7 07Mdu3iwrjjQ+hGUpjsXffkegzCn5giC3isCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTauLoR8hpX/dnRyWDsS01zVpDFUzAfBgNVHSMEGDAWgBSzk17rtCa1/4crFAAW pEQc3iOfPzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODgyL3M1TmU2N1FtdGYtSEt4UUFGcVJFSE40am56OC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3M1TmU2N1FtdGYtSEt4UUFGcVJFSE40 am56OC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84ODIvMnJpNkVmSWFWXzNaMGNsZzdFdE5jMWFReFZNLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBN/f8DANBgkqhkiG9w0BAQsFAAOCAQEAHcNUgJluuKMbbvxKS0uRFESnoPwP ob4k9oI2AEjz40NNw2jifQWjjgdH5nDoXQBydA2E6AfxhTalrZWFOnPQbqb6+eXW wJsvDv1MEh+TFvasRGqnomgT7Rb1WCiezHKsPh3Y3FZmB8OS8zbEVYu1EvmJbM7i SrZzjiwHkJkyIZsKAOUDo4asWCi6viayYrdSSEDRar2ZFAaI1NSo+dMTqAg9ci7M ImsCwir8vUgbt/QHApqf9upLLrR00l0WHWMZ+azKM5BYjaYFXmtDWEsZJXvqxloy Vg//6xJkXhYPRqD6ZzNeJYgpjNd8LvVz4r2yw4TvqzlAaiMDYwvUkyrDRw== -----END CERTIFICATE-----Generated at Sun Feb 16 22:13:09 2025 by rpki-client