$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/906/b1SK1X5sVs_n2uudFa_lUgkg32Q.roa File: b1SK1X5sVs_n2uudFa_lUgkg32Q.roa (raw, json) Hash identifier: UkWOUTWrG3MoUa2bMHRHa3V+oZIfHUJDZg4e0Vv8Fcw= Subject key identifier: 6F:54:8A:D5:7E:6C:56:CF:E7:DA:EB:9D:15:AF:E5:52:09:20:DF:64 Certificate issuer: /CN=539BDF2FE18FF387FD03842C5081A145EEEB1CF7 Certificate serial: 24 Authority key identifier: 53:9B:DF:2F:E1:8F:F3:87:FD:03:84:2C:50:81:A1:45:EE:EB:1C:F7 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/U5vfL-GP84f9A4QsUIGhRe7rHPc.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/906/b1SK1X5sVs_n2uudFa_lUgkg32Q.roa Signing time: Thu 18 Jul 2024 01:47:20 +0000 ROA not before: Thu 18 Jul 2024 01:47:20 +0000 ROA not after: Tue 15 Jul 2025 01:30:02 +0000 asID: 24259 IP address blocks: 202.80.96.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/906/U5vfL-GP84f9A4QsUIGhRe7rHPc.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/906/U5vfL-GP84f9A4QsUIGhRe7rHPc.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/U5vfL-GP84f9A4QsUIGhRe7rHPc.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=539BDF2FE18FF387FD03842C5081A145EEEB1CF7 Validity Not Before: Jul 18 01:47:20 2024 GMT Not After : Jul 15 01:30:02 2025 GMT Subject: CN=6F548AD57E6C56CFE7DAEB9D15AFE5520920DF64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ab:d0:b6:1c:92:fa:a9:e5:da:5d:b1:eb:fa: 36:db:0c:30:24:6b:f8:85:65:bc:88:ef:0d:70:38: 1e:ef:24:4b:03:3b:50:45:4f:1a:cb:df:48:bb:73: 18:d0:89:4e:5c:fd:d3:66:d7:ee:0d:c8:83:f7:a1: 49:88:75:04:58:30:04:41:bf:ba:c0:14:ec:52:71: 0c:9a:52:4b:6e:d2:30:2f:6a:33:26:0a:8c:1f:4a: e7:e8:4a:b0:39:6c:d1:70:1d:eb:c4:df:8f:05:88: e4:97:28:7c:2f:ba:52:66:94:37:6d:29:72:4c:8c: 98:62:e7:06:a4:ca:00:fc:62:88:3f:03:95:ef:2b: f4:81:a1:26:7f:5f:b7:04:fa:80:ec:9e:86:d4:c1: 42:41:4d:72:62:06:60:de:e1:0a:be:32:df:66:b1: 8c:ff:e7:e0:73:21:bc:0a:fc:c6:ff:57:4c:49:2b: 40:ec:02:14:9b:ee:8b:46:79:fa:0a:02:a3:b8:8e: 61:e5:82:2a:3a:71:ac:6e:39:7f:20:90:8b:10:02: c7:5c:42:48:08:d8:88:6d:5d:9d:82:3c:e9:a0:c9: c3:a2:7d:da:43:bd:bc:ac:23:0e:86:25:4c:60:3b: df:26:f6:b5:9f:d3:a0:27:d4:67:90:74:8b:23:c7: a8:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:54:8A:D5:7E:6C:56:CF:E7:DA:EB:9D:15:AF:E5:52:09:20:DF:64 X509v3 Authority Key Identifier: keyid:53:9B:DF:2F:E1:8F:F3:87:FD:03:84:2C:50:81:A1:45:EE:EB:1C:F7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/906/U5vfL-GP84f9A4QsUIGhRe7rHPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/U5vfL-GP84f9A4QsUIGhRe7rHPc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/906/b1SK1X5sVs_n2uudFa_lUgkg32Q.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.80.96.0/21 Signature Algorithm: sha256WithRSAEncryption 3f:ad:12:d5:68:a7:4c:ff:07:5e:03:7c:8f:69:f0:4a:2f:c3: b9:75:78:e0:c0:0f:c6:fd:ca:26:94:ae:c2:d2:8d:3c:4e:ab: 9d:a4:a0:8c:a6:b1:69:f8:86:83:42:07:66:65:ce:45:45:cc: e7:2e:fb:de:2b:e4:79:fe:38:ab:de:dc:f4:f5:f6:f8:fe:e5: e2:4a:13:6c:dd:fa:e2:af:bb:7e:a7:98:bc:85:f9:a8:e2:7b: 14:46:00:30:ac:0d:9a:16:6b:af:1f:fc:88:87:69:61:a8:34: 08:8e:c2:ed:17:9e:e3:ce:8c:1f:54:3c:28:bf:7c:ee:78:ff: 65:54:bb:c9:f0:4f:d4:df:74:f5:08:24:db:bc:0c:38:7b:37: 61:b9:4b:22:00:d4:f3:2e:43:00:7d:17:ae:6f:50:dd:0f:ce: 51:b7:a6:d2:3f:63:2e:4b:b2:1d:cd:d2:fa:05:da:97:96:c6: 16:eb:da:f1:d5:50:a2:d8:fa:bc:1a:08:d1:37:5b:f3:10:52: 5c:e3:24:ae:89:f7:52:36:20:aa:3d:bf:75:45:32:52:34:97: 80:5c:06:ad:58:83:f6:f2:53:58:0d:fd:2d:c8:0a:47:e2:1e: c6:13:28:6d:a6:36:86:2a:ab:c2:de:21:91:5c:a9:81:34:9c: 32:1c:8c:09 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBJDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1MzlC REYyRkUxOEZGMzg3RkQwMzg0MkM1MDgxQTE0NUVFRUIxQ0Y3MB4XDTI0MDcxODAx NDcyMFoXDTI1MDcxNTAxMzAwMlowMzExMC8GA1UEAxMoNkY1NDhBRDU3RTZDNTZD RkU3REFFQjlEMTVBRkU1NTIwOTIwREY2NDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALyr0LYckvqp5dpdsev6NtsMMCRr+IVlvIjvDXA4Hu8kSwM7UEVP GsvfSLtzGNCJTlz902bX7g3Ig/ehSYh1BFgwBEG/usAU7FJxDJpSS27SMC9qMyYK jB9K5+hKsDls0XAd68TfjwWI5JcofC+6UmaUN20pckyMmGLnBqTKAPxiiD8Dle8r 9IGhJn9ftwT6gOyehtTBQkFNcmIGYN7hCr4y32axjP/n4HMhvAr8xv9XTEkrQOwC FJvui0Z5+goCo7iOYeWCKjpxrG45fyCQixACx1xCSAjYiG1dnYI86aDJw6J92kO9 vKwjDoYlTGA73yb2tZ/ToCfUZ5B0iyPHqPMCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRvVIrVfmxWz+fa650Vr+VSCSDfZDAfBgNVHSMEGDAWgBRTm98v4Y/zh/0DhCxQ gaFF7usc9zAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTA2L1U1dmZMLUdQODRmOUE0UXNVSUdoUmU3ckhQYy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1U1dmZMLUdQODRmOUE0UXNVSUdoUmU3 ckhQYy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85MDYvYjFTSzFYNXNWc19uMnV1ZEZhX2xVZ2tnMzJRLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA8pQYDANBgkqhkiG9w0BAQsFAAOCAQEAP60S1WinTP8HXgN8j2nwSi/DuXV4 4MAPxv3KJpSuwtKNPE6rnaSgjKaxafiGg0IHZmXORUXM5y773ivkef44q97c9PX2 +P7l4koTbN364q+7fqeYvIX5qOJ7FEYAMKwNmhZrrx/8iIdpYag0CI7C7Ree486M H1Q8KL987nj/ZVS7yfBP1N909Qgk27wMOHs3YblLIgDU8y5DAH0Xrm9Q3Q/OUbem 0j9jLkuyHc3S+gXal5bGFuva8dVQotj6vBoI0Tdb8xBSXOMkron3UjYgqj2/dUUy UjSXgFwGrViD9vJTWA39LcgKR+IexhMobaY2hiqrwt4hkVypgTScMhyMCQ== -----END CERTIFICATE-----Generated at Sun Feb 16 22:22:09 2025 by rpki-client