$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/883/KfmCPYfDvkJD17qxt067fQTXkD8.roa File: KfmCPYfDvkJD17qxt067fQTXkD8.roa (raw, json) Hash identifier: Ypz7E1gg28ZxFeqnGZ20SlCfg0mr3TGaSvcoyU1JNvg= Subject key identifier: 29:F9:82:3D:87:C3:BE:42:43:D7:BA:B1:B7:4E:BB:7D:04:D7:90:3F Certificate issuer: /CN=87EE394CC8B1651B758F388F73A88E68BD27222F Certificate serial: 4F Authority key identifier: 87:EE:39:4C:C8:B1:65:1B:75:8F:38:8F:73:A8:8E:68:BD:27:22:2F Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/h-45TMixZRt1jziPc6iOaL0nIi8.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/883/KfmCPYfDvkJD17qxt067fQTXkD8.roa Signing time: Sat 01 Mar 2025 01:30:49 +0000 ROA not before: Sat 01 Mar 2025 01:30:49 +0000 ROA not after: Sun 15 Feb 2026 01:30:03 +0000 asID: 23818 IP address blocks: 113.212.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/883/h-45TMixZRt1jziPc6iOaL0nIi8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/883/h-45TMixZRt1jziPc6iOaL0nIi8.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/h-45TMixZRt1jziPc6iOaL0nIi8.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 04:24:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87EE394CC8B1651B758F388F73A88E68BD27222F Validity Not Before: Mar 1 01:30:49 2025 GMT Not After : Feb 15 01:30:03 2026 GMT Subject: CN=29F9823D87C3BE4243D7BAB1B74EBB7D04D7903F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:e5:0f:1f:f8:ac:f9:ab:5b:6d:20:ce:74:d0: 1b:69:b9:f9:9b:9c:f5:fd:3e:2d:ea:39:42:b8:d3: e9:68:86:9c:98:15:ac:83:77:b8:68:62:94:36:51: 30:37:c4:5a:da:e5:53:c3:5f:ba:27:00:85:6c:f4: d3:76:b6:ff:dd:4f:ff:13:2e:6a:11:57:94:91:5d: da:e1:f6:17:5e:9f:8d:1a:9f:4f:dc:15:9a:a5:45: a9:61:5f:18:60:c7:79:44:8b:f1:b5:9b:3a:a2:d4: 96:06:60:3f:a7:a4:3c:e8:84:a9:31:71:7a:19:dd: 13:e0:a7:f6:44:94:7f:81:27:bc:38:8d:5c:08:86: 78:c7:a5:85:41:14:92:f2:8b:83:a0:ee:c4:45:95: 08:f4:8f:c2:7e:9f:2d:38:7d:2b:d4:2e:2f:ec:7f: 33:f1:06:3c:15:ae:04:8d:97:ae:59:07:45:4b:be: 7b:b4:2c:63:f3:10:8b:73:2d:98:31:af:60:4e:47: 25:63:9d:e7:f0:07:fc:cd:5d:27:e7:2a:0e:d8:4c: b7:eb:c5:f1:34:fa:cb:24:d3:c0:34:93:64:ae:1f: 52:04:58:6b:37:05:41:b5:7c:eb:15:ac:28:6f:0d: d7:85:ac:7d:01:e0:6b:9a:97:df:67:fa:19:a8:67: d2:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:F9:82:3D:87:C3:BE:42:43:D7:BA:B1:B7:4E:BB:7D:04:D7:90:3F X509v3 Authority Key Identifier: keyid:87:EE:39:4C:C8:B1:65:1B:75:8F:38:8F:73:A8:8E:68:BD:27:22:2F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/883/h-45TMixZRt1jziPc6iOaL0nIi8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/h-45TMixZRt1jziPc6iOaL0nIi8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/883/KfmCPYfDvkJD17qxt067fQTXkD8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.212.104.0/24 Signature Algorithm: sha256WithRSAEncryption 44:19:0f:4b:03:d3:28:40:38:a1:bc:eb:0c:17:7e:4d:50:5a: cb:ae:2a:93:55:36:e4:61:93:ff:69:37:8f:75:6e:19:80:50: 6d:81:28:20:c2:7b:46:49:cf:19:77:e7:9a:bb:94:f1:7d:1d: 53:c8:9e:e0:bb:b5:5b:d9:ba:71:e7:29:a8:82:8d:0a:d6:c9: d1:84:85:84:4b:bc:bc:cd:0c:99:a3:7a:3e:45:76:42:35:77: c8:73:4d:1a:9f:e7:7a:4a:c8:ec:e1:54:ca:59:b7:1e:cf:7c: 59:95:00:ab:38:ed:9d:55:f8:f7:49:54:63:84:2f:81:2d:b3: 06:5d:59:7d:cc:fe:54:16:1e:52:28:67:93:52:f0:e3:dd:5d: e7:64:d6:e2:f3:81:44:36:bf:a3:8c:84:a8:32:c8:4e:8b:24: 61:23:c3:1d:e3:c1:ab:31:f4:31:58:da:fd:cd:e4:f7:76:e5: eb:10:9e:e2:7b:4f:19:d2:90:4a:c8:48:cd:b6:32:16:c7:61: fa:b2:b3:02:e0:a1:7a:f0:16:08:fb:6e:ed:1f:51:c9:a4:26: 5f:b4:30:3c:77:4d:10:a3:01:42:b2:f5:2b:08:92:47:ee:53: 97:19:7c:76:8e:7e:1a:c8:5c:3d:13:83:b6:e4:3c:d5:c5:e2: 0e:fa:5f:d0 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBTzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4N0VF Mzk0Q0M4QjE2NTFCNzU4RjM4OEY3M0E4OEU2OEJEMjcyMjJGMB4XDTI1MDMwMTAx MzA0OVoXDTI2MDIxNTAxMzAwM1owMzExMC8GA1UEAxMoMjlGOTgyM0Q4N0MzQkU0 MjQzRDdCQUIxQjc0RUJCN0QwNEQ3OTAzRjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOHlDx/4rPmrW20gznTQG2m5+Zuc9f0+Leo5QrjT6WiGnJgVrIN3 uGhilDZRMDfEWtrlU8NfuicAhWz003a2/91P/xMuahFXlJFd2uH2F16fjRqfT9wV mqVFqWFfGGDHeUSL8bWbOqLUlgZgP6ekPOiEqTFxehndE+Cn9kSUf4EnvDiNXAiG eMelhUEUkvKLg6DuxEWVCPSPwn6fLTh9K9QuL+x/M/EGPBWuBI2XrlkHRUu+e7Qs Y/MQi3MtmDGvYE5HJWOd5/AH/M1dJ+cqDthMt+vF8TT6yyTTwDSTZK4fUgRYazcF QbV86xWsKG8N14WsfQHga5qX32f6Gahn0kkCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQp+YI9h8O+QkPXurG3Trt9BNeQPzAfBgNVHSMEGDAWgBSH7jlMyLFlG3WPOI9z qI5ovSciLzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvODgzL2gtNDVUTWl4WlJ0MWp6aVBjNmlPYUwwbklpOC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2gtNDVUTWl4WlJ0MWp6aVBjNmlPYUww bklpOC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC84ODMvS2ZtQ1BZZkR2a0pEMTdxeHQwNjdmUVRYa0Q4LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAHHUaDANBgkqhkiG9w0BAQsFAAOCAQEARBkPSwPTKEA4obzrDBd+TVBay64q k1U25GGT/2k3j3VuGYBQbYEoIMJ7RknPGXfnmruU8X0dU8ie4Lu1W9m6cecpqIKN CtbJ0YSFhEu8vM0MmaN6PkV2QjV3yHNNGp/nekrI7OFUylm3Hs98WZUAqzjtnVX4 90lUY4QvgS2zBl1Zfcz+VBYeUihnk1Lw491d52TW4vOBRDa/o4yEqDLIToskYSPD HePBqzH0MVja/c3k93bl6xCe4ntPGdKQSshIzbYyFsdh+rKzAuChevAWCPtu7R9R yaQmX7QwPHdNEKMBQrL1KwiSR+5Tlxl8do5+GshcPRODtuQ81cXiDvpf0A== -----END CERTIFICATE-----Generated at Thu Mar 13 06:32:38 2025 by rpki-client