$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/920/9YciR_x5zm7h_lQkIR_lczus6WY.roa File: 9YciR_x5zm7h_lQkIR_lczus6WY.roa (raw, json) Hash identifier: BP56NqlqiM26c5VwzqUDDGnADZ1yJBctFYRdxkIjw2U= Subject key identifier: F5:87:22:47:FC:79:CE:6E:E1:FE:54:24:21:1F:E5:73:3B:AC:E9:66 Certificate issuer: /CN=C8930155500B58FF73A8A0882185C66AC6A0D3A0 Certificate serial: 04 Authority key identifier: C8:93:01:55:50:0B:58:FF:73:A8:A0:88:21:85:C6:6A:C6:A0:D3:A0 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/yJMBVVALWP9zqKCIIYXGasag06A.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/920/9YciR_x5zm7h_lQkIR_lczus6WY.roa Signing time: Wed 08 May 2024 07:33:35 +0000 ROA not before: Wed 08 May 2024 07:33:35 +0000 ROA not after: Thu 08 May 2025 07:05:01 +0000 asID: 24279 IP address blocks: 114.31.216.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/920/yJMBVVALWP9zqKCIIYXGasag06A.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/920/yJMBVVALWP9zqKCIIYXGasag06A.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/yJMBVVALWP9zqKCIIYXGasag06A.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8930155500B58FF73A8A0882185C66AC6A0D3A0 Validity Not Before: May 8 07:33:35 2024 GMT Not After : May 8 07:05:01 2025 GMT Subject: CN=F5872247FC79CE6EE1FE5424211FE5733BACE966 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:56:e1:6c:f7:5e:80:73:77:6f:83:25:43:66: fb:3a:b7:8d:ef:11:4e:5d:2d:32:66:64:50:d7:b1: ad:27:85:c5:14:8b:94:a9:d3:89:09:19:37:df:b9: cc:44:20:a7:64:cb:76:2a:89:8b:c6:bc:68:c7:ff: c6:00:6e:a9:35:c9:c1:53:f5:96:3f:99:3d:cb:e1: aa:5e:63:77:1f:e5:b3:ac:96:57:d4:88:e7:35:77: 9b:81:ca:7b:e9:56:82:cf:7b:83:44:8b:b9:48:86: 31:bd:ab:51:30:cf:78:d2:f0:80:24:bd:ae:fc:72: 94:f4:44:03:8d:be:51:44:6e:c8:7f:d0:fd:af:c8: c6:70:36:69:9a:7f:e0:92:92:4a:7d:c4:c4:4d:81: 8f:0f:7f:8c:f0:5d:f9:46:19:2b:5b:a9:3a:e1:17: 36:95:9d:d8:66:68:c2:d3:da:cb:11:06:f7:bb:d6: 4d:46:6a:11:71:88:3a:11:c4:e4:21:b4:65:df:8c: 25:0e:e0:bb:54:6a:ea:bd:68:e0:22:06:ca:55:51: 01:5f:72:9b:b6:74:5d:9f:ba:0a:3d:c8:20:ac:6f: eb:e2:bb:18:a0:67:45:ff:7e:09:36:e7:27:5a:2e: ad:24:53:bd:d2:c8:11:1d:07:80:d2:58:8f:2d:03: d5:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:87:22:47:FC:79:CE:6E:E1:FE:54:24:21:1F:E5:73:3B:AC:E9:66 X509v3 Authority Key Identifier: keyid:C8:93:01:55:50:0B:58:FF:73:A8:A0:88:21:85:C6:6A:C6:A0:D3:A0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/920/yJMBVVALWP9zqKCIIYXGasag06A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/yJMBVVALWP9zqKCIIYXGasag06A.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/920/9YciR_x5zm7h_lQkIR_lczus6WY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.31.216.0/21 Signature Algorithm: sha256WithRSAEncryption 4a:5a:4a:32:f4:47:f9:5e:be:45:02:d6:c0:e8:63:ba:e5:0c: bb:67:e5:91:80:58:a1:0c:ba:fc:f8:b4:c9:d9:b5:2d:1a:41: 38:5a:24:23:78:40:7a:e4:32:f7:ed:62:46:6b:65:5e:1d:67: 63:e7:af:ea:72:18:9c:18:38:20:f1:ea:fd:9b:f7:e7:80:87: 77:6d:d2:83:4c:ac:43:f9:e4:62:38:10:89:8a:4d:be:08:e8: fc:97:15:f3:45:af:a9:ca:5a:90:32:c3:41:66:87:f2:b5:99: 1e:7c:aa:88:69:af:9a:c9:dd:d3:d4:b9:a9:70:16:b0:40:0a: 44:8b:5b:21:55:1a:53:63:03:ca:49:15:a2:b3:15:49:47:ce: 3c:e3:8f:ec:b8:92:cd:b9:4e:d7:18:80:34:9b:25:90:73:c7: b6:8d:12:11:fa:78:98:49:b8:c2:54:5b:60:61:3c:35:bc:2f: 2e:7d:a5:75:0f:66:49:0b:34:27:71:5e:a5:cc:46:4f:11:f1: 95:cb:ad:af:f5:9f:73:07:d1:73:a6:06:2a:db:e6:b6:b0:8f: 9d:45:0b:fe:36:d9:1c:30:3e:5a:41:0d:76:b4:37:50:5e:3d: bc:56:f1:27:8e:2b:10:30:b7:ca:9e:a8:c9:24:5e:b4:05:24: f3:86:44:19 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBBDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDODkz MDE1NTUwMEI1OEZGNzNBOEEwODgyMTg1QzY2QUM2QTBEM0EwMB4XDTI0MDUwODA3 MzMzNVoXDTI1MDUwODA3MDUwMVowMzExMC8GA1UEAxMoRjU4NzIyNDdGQzc5Q0U2 RUUxRkU1NDI0MjExRkU1NzMzQkFDRTk2NjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALRW4Wz3XoBzd2+DJUNm+zq3je8RTl0tMmZkUNexrSeFxRSLlKnT iQkZN9+5zEQgp2TLdiqJi8a8aMf/xgBuqTXJwVP1lj+ZPcvhql5jdx/ls6yWV9SI 5zV3m4HKe+lWgs97g0SLuUiGMb2rUTDPeNLwgCS9rvxylPREA42+UURuyH/Q/a/I xnA2aZp/4JKSSn3ExE2Bjw9/jPBd+UYZK1upOuEXNpWd2GZowtPayxEG97vWTUZq EXGIOhHE5CG0Zd+MJQ7gu1Rq6r1o4CIGylVRAV9ym7Z0XZ+6Cj3IIKxv6+K7GKBn Rf9+CTbnJ1ourSRTvdLIER0HgNJYjy0D1QkCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBT1hyJH/HnObuH+VCQhH+VzO6zpZjAfBgNVHSMEGDAWgBTIkwFVUAtY/3OooIgh hcZqxqDToDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTIwL3lKTUJWVkFMV1A5enFLQ0lJWVhHYXNhZzA2QS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3lKTUJWVkFMV1A5enFLQ0lJWVhHYXNh ZzA2QS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85MjAvOVljaVJfeDV6bTdoX2xRa0lSX2xjenVzNldZLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA3If2DANBgkqhkiG9w0BAQsFAAOCAQEASlpKMvRH+V6+RQLWwOhjuuUMu2fl kYBYoQy6/Pi0ydm1LRpBOFokI3hAeuQy9+1iRmtlXh1nY+ev6nIYnBg4IPHq/Zv3 54CHd23Sg0ysQ/nkYjgQiYpNvgjo/JcV80WvqcpakDLDQWaH8rWZHnyqiGmvmsnd 09S5qXAWsEAKRItbIVUaU2MDykkVorMVSUfOPOOP7LiSzblO1xiANJslkHPHto0S Efp4mEm4wlRbYGE8NbwvLn2ldQ9mSQs0J3FepcxGTxHxlcutr/WfcwfRc6YGKtvm trCPnUUL/jbZHDA+WkENdrQ3UF49vFbxJ44rEDC3yp6oySRetAUk84ZEGQ== -----END CERTIFICATE-----Generated at Sun Feb 16 22:30:04 2025 by rpki-client