$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/939/yiAPMfd9OYKcHZSWBa1qY4pxdYk.roa File: yiAPMfd9OYKcHZSWBa1qY4pxdYk.roa (raw, json) Hash identifier: 9sL8HcE8Kh9ckMk0vw4Ebkkgxxxb0d3loF+lHaamBro= Subject key identifier: CA:20:0F:31:F7:7D:39:82:9C:1D:94:96:05:AD:6A:63:8A:71:75:89 Certificate issuer: /CN=7C60295C85FF37E2DCF75AF014D44AD3BF8C33A4 Certificate serial: AA Authority key identifier: 7C:60:29:5C:85:FF:37:E2:DC:F7:5A:F0:14:D4:4A:D3:BF:8C:33:A4 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/fGApXIX_N-Lc91rwFNRK07-MM6Q.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/939/yiAPMfd9OYKcHZSWBa1qY4pxdYk.roa Signing time: Fri 31 May 2024 01:31:50 +0000 ROA not before: Fri 31 May 2024 01:31:50 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 2518 IP address blocks: 125.192.0.0/13 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/939/fGApXIX_N-Lc91rwFNRK07-MM6Q.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/939/fGApXIX_N-Lc91rwFNRK07-MM6Q.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/fGApXIX_N-Lc91rwFNRK07-MM6Q.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7C60295C85FF37E2DCF75AF014D44AD3BF8C33A4 Validity Not Before: May 31 01:31:50 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=CA200F31F77D39829C1D949605AD6A638A717589 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b5:bd:61:9a:62:f8:fe:c8:4f:37:59:1c:a9: 36:bb:0e:ca:20:68:78:28:86:c7:60:34:23:cd:d9: e1:c8:6c:cb:d6:d5:22:f0:d4:f8:28:0f:32:d5:e7: 94:10:24:3d:6a:dd:c0:4c:98:97:41:8a:73:b1:11: 1f:64:98:d4:87:66:64:0c:a2:e2:30:51:73:56:6b: ae:a8:dd:14:dd:e5:a7:e4:ee:95:49:05:ee:ff:42: 57:d7:55:f5:3c:54:e9:5c:5c:7f:05:f3:6f:1a:9a: 7e:12:bc:8f:84:6d:34:65:d9:4d:cc:2c:ab:0e:c3: cb:7a:ba:f7:67:f6:e8:e6:06:0b:cf:ec:0f:a4:60: 14:03:37:65:0a:7a:ea:c7:77:0a:9a:18:6d:77:21: 06:9c:e0:b3:52:b1:52:42:6e:18:39:7e:30:af:76: 2d:d1:82:61:78:08:2a:38:8e:ce:ae:b4:3a:67:62: aa:0f:14:a2:4a:08:8d:91:24:6e:b4:95:c1:d2:44: b4:c3:ff:5c:14:e4:ed:95:32:b5:2d:f6:d0:09:d1: 1e:84:8f:d4:79:8d:ba:f6:83:91:eb:a9:4a:1d:7b: 9b:84:b0:d6:dd:81:19:fd:21:62:5d:4e:c6:43:c6: 51:1a:ef:84:2d:57:d2:72:2c:62:41:99:c6:be:4c: 11:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:20:0F:31:F7:7D:39:82:9C:1D:94:96:05:AD:6A:63:8A:71:75:89 X509v3 Authority Key Identifier: keyid:7C:60:29:5C:85:FF:37:E2:DC:F7:5A:F0:14:D4:4A:D3:BF:8C:33:A4 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/939/fGApXIX_N-Lc91rwFNRK07-MM6Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/fGApXIX_N-Lc91rwFNRK07-MM6Q.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/939/yiAPMfd9OYKcHZSWBa1qY4pxdYk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.192.0.0/13 Signature Algorithm: sha256WithRSAEncryption 21:6c:6d:50:75:a5:76:b3:6f:b3:49:1b:7a:0d:c2:03:2a:b9: fb:b6:13:00:32:93:70:e1:0f:93:93:d4:78:34:c5:29:40:a2: 47:c5:38:79:67:9e:e1:de:7d:86:d3:3e:b2:bd:ca:32:0d:da: 60:eb:ba:b1:2f:3a:d2:e4:cf:4c:02:34:22:74:0f:79:ca:4c: 20:2f:63:c5:f8:4d:9b:e8:88:08:d0:c0:7e:c6:3d:50:83:eb: 45:ff:3f:fc:bd:de:97:32:6e:b0:b6:3f:9c:34:db:b1:bc:ca: 7c:61:4d:24:77:97:46:ec:e0:b8:44:3a:42:80:62:0b:77:56: 77:4e:da:b2:5f:0d:a6:de:77:d7:c1:4d:4c:b9:6d:17:a7:ae: 22:65:70:4f:e6:8d:0d:be:6d:fe:4c:19:0d:62:c2:01:2a:0c: 70:dc:d4:4e:aa:19:90:60:72:cf:28:7a:f9:07:7d:78:d7:95: 47:b9:22:20:14:df:6e:04:30:3e:fb:74:a0:d2:8f:af:0a:2d: 89:e2:f8:ed:f8:71:9c:b8:e0:78:05:4c:a1:4e:67:7c:02:fb: be:92:5e:cb:f6:84:a3:7a:df:c2:0f:b6:32:5a:7d:5f:0a:66: 38:b9:39:8f:34:d9:63:19:e6:b2:31:02:7a:3c:30:71:dd:22: 2a:d7:8e:78 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgICAKowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0M2 MDI5NUM4NUZGMzdFMkRDRjc1QUYwMTRENDRBRDNCRjhDMzNBNDAeFw0yNDA1MzEw MTMxNTBaFw0yNTA1MTUwMTMwMDNaMDMxMTAvBgNVBAMTKENBMjAwRjMxRjc3RDM5 ODI5QzFEOTQ5NjA1QUQ2QTYzOEE3MTc1ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDItb1hmmL4/shPN1kcqTa7DsogaHgohsdgNCPN2eHIbMvW1SLw 1PgoDzLV55QQJD1q3cBMmJdBinOxER9kmNSHZmQMouIwUXNWa66o3RTd5afk7pVJ Be7/QlfXVfU8VOlcXH8F828amn4SvI+EbTRl2U3MLKsOw8t6uvdn9ujmBgvP7A+k YBQDN2UKeurHdwqaGG13IQac4LNSsVJCbhg5fjCvdi3RgmF4CCo4js6utDpnYqoP FKJKCI2RJG60lcHSRLTD/1wU5O2VMrUt9tAJ0R6Ej9R5jbr2g5HrqUode5uEsNbd gRn9IWJdTsZDxlEa74QtV9JyLGJBmca+TBEZAgMBAAGjggIjMIICHzAdBgNVHQ4E FgQUyiAPMfd9OYKcHZSWBa1qY4pxdYkwHwYDVR0jBBgwFoAUfGApXIX/N+Lc91rw FNRK07+MM6QwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzkzOS9mR0FwWElYX04tTGM5MXJ3Rk5SSzA3LU1NNlEuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9mR0FwWElYX04tTGM5MXJ3Rk5SSzA3 LU1NNlEuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvOTM5L3lpQVBNZmQ5T1lLY0haU1dCYTFxWTRweGRZay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwN9wDANBgkqhkiG9w0BAQsFAAOCAQEAIWxtUHWldrNvs0kbeg3CAyq5+7YT ADKTcOEPk5PUeDTFKUCiR8U4eWee4d59htM+sr3KMg3aYOu6sS860uTPTAI0InQP ecpMIC9jxfhNm+iICNDAfsY9UIPrRf8//L3elzJusLY/nDTbsbzKfGFNJHeXRuzg uEQ6QoBiC3dWd07asl8Npt5318FNTLltF6euImVwT+aNDb5t/kwZDWLCASoMcNzU TqoZkGByzyh6+Qd9eNeVR7kiIBTfbgQwPvt0oNKPrwotieL47fhxnLjgeAVMoU5n fAL7vpJey/aEo3rfwg+2Mlp9XwpmOLk5jzTZYxnmsjECejwwcd0iKteOeA== -----END CERTIFICATE-----Generated at Sun Feb 16 22:05:11 2025 by rpki-client