$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/900/NMoBbWIpWz0uxWMC1R5Dksn4qN8.roa File: NMoBbWIpWz0uxWMC1R5Dksn4qN8.roa (raw, json) Hash identifier: P3bKsbHJXTKKe339XSI83Hiw/BHJTSYLF2T9JrBZ+/I= Subject key identifier: 34:CA:01:6D:62:29:5B:3D:2E:C5:63:02:D5:1E:43:92:C9:F8:A8:DF Certificate issuer: /CN=5A79FC72D56CF387050F65AC6FF315EA92D5D651 Certificate serial: 02 Authority key identifier: 5A:79:FC:72:D5:6C:F3:87:05:0F:65:AC:6F:F3:15:EA:92:D5:D6:51 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Wnn8ctVs84cFD2Wsb_MV6pLV1lE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/900/NMoBbWIpWz0uxWMC1R5Dksn4qN8.roa Signing time: Tue 19 Mar 2024 05:00:15 +0000 ROA not before: Tue 19 Mar 2024 05:00:15 +0000 ROA not after: Wed 19 Mar 2025 04:49:00 +0000 asID: 24249 IP address blocks: 202.223.44.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/900/Wnn8ctVs84cFD2Wsb_MV6pLV1lE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/900/Wnn8ctVs84cFD2Wsb_MV6pLV1lE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Wnn8ctVs84cFD2Wsb_MV6pLV1lE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5A79FC72D56CF387050F65AC6FF315EA92D5D651 Validity Not Before: Mar 19 05:00:15 2024 GMT Not After : Mar 19 04:49:00 2025 GMT Subject: CN=34CA016D62295B3D2EC56302D51E4392C9F8A8DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:f7:d0:4a:3c:78:16:46:24:40:b8:22:0b:bc: a4:22:15:1d:35:d2:22:60:5b:33:e5:59:d6:6c:cf: 07:f3:71:00:ba:de:5d:40:00:c4:58:a0:b3:2d:cd: 29:4a:e5:43:10:be:e5:44:d8:e4:5a:9f:e1:b4:c5: 55:62:dd:dd:52:8f:9a:75:63:70:cf:ac:0a:7c:82: b9:c2:f7:2d:de:bb:b4:cc:95:7b:3a:aa:e2:ac:89: 4a:cf:f2:c5:9c:97:95:56:35:59:79:6a:29:61:19: 35:6f:f1:50:58:89:b8:e1:31:eb:a8:3f:32:11:b5: 9b:ce:6a:3e:3b:1a:00:b9:23:39:1a:d3:7d:2b:70: 82:5d:d6:4e:be:0d:08:f2:41:4c:89:c7:e8:00:56: b3:c7:fa:86:2c:fd:17:a2:0c:d6:07:9e:57:83:42: 56:e3:ee:8a:03:4d:fb:d5:3b:20:c0:3d:ce:a9:39: c4:5b:6c:1f:d3:ca:dd:37:9b:56:19:43:e5:f2:09: 3e:4f:79:f5:04:a9:dc:1e:d3:df:8a:e1:fd:19:75: 83:25:da:74:de:9d:4a:80:99:d3:fa:78:93:7e:d2: 68:e3:92:9c:b7:f8:d6:52:e9:02:31:ee:08:38:26: 0e:62:e8:0c:e6:e8:4a:a4:15:f8:01:73:01:ac:48: 3a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:CA:01:6D:62:29:5B:3D:2E:C5:63:02:D5:1E:43:92:C9:F8:A8:DF X509v3 Authority Key Identifier: keyid:5A:79:FC:72:D5:6C:F3:87:05:0F:65:AC:6F:F3:15:EA:92:D5:D6:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/900/Wnn8ctVs84cFD2Wsb_MV6pLV1lE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Wnn8ctVs84cFD2Wsb_MV6pLV1lE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/900/NMoBbWIpWz0uxWMC1R5Dksn4qN8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.223.44.0/22 Signature Algorithm: sha256WithRSAEncryption 03:95:7f:bc:d2:17:72:55:4e:ba:c5:a1:fb:f2:dc:09:d8:74: 5c:87:9e:12:14:79:bc:db:8f:6a:56:75:48:bb:43:93:08:7d: c4:88:ed:52:32:9f:89:36:cc:c3:30:24:52:b3:c1:95:72:43: 9a:18:19:2e:62:b1:88:0c:2d:7f:d9:d7:97:0e:1e:11:fb:ad: ed:73:37:b0:c7:98:31:67:ee:31:6d:a6:eb:82:e2:73:92:08: aa:10:b6:45:e4:74:64:88:8e:5f:8b:95:f0:0e:50:33:3d:db: b8:b7:91:91:d3:87:29:99:9c:e6:c7:65:3f:38:f4:d5:56:b0: fd:a4:55:1b:63:21:f4:c3:84:af:9d:bb:75:08:d2:0d:1f:8e: d3:5c:f9:a1:14:4d:67:03:91:6e:a6:b4:30:2e:7a:b1:03:e6: 67:e0:c0:25:32:85:77:d6:a1:97:99:4d:fc:87:94:f9:74:53: bb:d7:59:ef:24:e1:93:5f:b1:d6:d2:65:8f:08:b4:b8:fb:ef: c1:20:79:9d:35:eb:c5:b3:81:e6:df:50:26:93:e3:db:b4:ea: 36:d3:1f:d2:4c:92:c7:32:f1:36:a1:91:f2:82:0a:06:99:29: 5a:a8:21:8b:f9:94:00:d1:b5:ac:65:2e:46:86:ef:92:09:3a: 70:23:f7:03 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBAjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1QTc5 RkM3MkQ1NkNGMzg3MDUwRjY1QUM2RkYzMTVFQTkyRDVENjUxMB4XDTI0MDMxOTA1 MDAxNVoXDTI1MDMxOTA0NDkwMFowMzExMC8GA1UEAxMoMzRDQTAxNkQ2MjI5NUIz RDJFQzU2MzAyRDUxRTQzOTJDOUY4QThERjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOP30Eo8eBZGJEC4Igu8pCIVHTXSImBbM+VZ1mzPB/NxALreXUAA xFigsy3NKUrlQxC+5UTY5Fqf4bTFVWLd3VKPmnVjcM+sCnyCucL3Ld67tMyVezqq 4qyJSs/yxZyXlVY1WXlqKWEZNW/xUFiJuOEx66g/MhG1m85qPjsaALkjORrTfStw gl3WTr4NCPJBTInH6ABWs8f6hiz9F6IM1geeV4NCVuPuigNN+9U7IMA9zqk5xFts H9PK3TebVhlD5fIJPk959QSp3B7T34rh/Rl1gyXadN6dSoCZ0/p4k37SaOOSnLf4 1lLpAjHuCDgmDmLoDOboSqQV+AFzAaxIOr0CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQ0ygFtYilbPS7FYwLVHkOSyfio3zAfBgNVHSMEGDAWgBRaefxy1WzzhwUPZaxv 8xXqktXWUTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTAwL1dubjhjdFZzODRjRkQyV3NiX01WNnBMVjFsRS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1dubjhjdFZzODRjRkQyV3NiX01WNnBM VjFsRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85MDAvTk1vQmJXSXBXejB1eFdNQzFSNURrc240cU44LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAsrfLDANBgkqhkiG9w0BAQsFAAOCAQEAA5V/vNIXclVOusWh+/LcCdh0XIee EhR5vNuPalZ1SLtDkwh9xIjtUjKfiTbMwzAkUrPBlXJDmhgZLmKxiAwtf9nXlw4e Efut7XM3sMeYMWfuMW2m64Lic5IIqhC2ReR0ZIiOX4uV8A5QMz3buLeRkdOHKZmc 5sdlPzj01Vaw/aRVG2Mh9MOEr527dQjSDR+O01z5oRRNZwORbqa0MC56sQPmZ+DA JTKFd9ahl5lN/IeU+XRTu9dZ7yThk1+x1tJljwi0uPvvwSB5nTXrxbOB5t9QJpPj 27TqNtMf0kySxzLxNqGR8oIKBpkpWqghi/mUANG1rGUuRobvkgk6cCP3Aw== -----END CERTIFICATE-----Generated at Sun Feb 16 22:09:13 2025 by rpki-client