$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/942/311JYLseTP18ExswXtWUjecQPU8.roa File: 311JYLseTP18ExswXtWUjecQPU8.roa (raw, json) Hash identifier: RE07SNlmT3rVPD5JRY6u7SAZ1MrbnRXExJkz0Rhe64g= Subject key identifier: DF:5D:49:60:BB:1E:4C:FD:7C:13:1B:30:5E:D5:94:8D:E7:10:3D:4F Certificate issuer: /CN=8A1E725176BFD9ABDA5CCB7B21A10B8F8DB7D578 Certificate serial: 3F Authority key identifier: 8A:1E:72:51:76:BF:D9:AB:DA:5C:CB:7B:21:A1:0B:8F:8D:B7:D5:78 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ih5yUXa_2avaXMt7IaELj4231Xg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/942/311JYLseTP18ExswXtWUjecQPU8.roa Signing time: Fri 31 Jan 2025 01:29:13 +0000 ROA not before: Fri 31 Jan 2025 01:29:13 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 37908 IP address blocks: 118.103.128.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/942/ih5yUXa_2avaXMt7IaELj4231Xg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/942/ih5yUXa_2avaXMt7IaELj4231Xg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ih5yUXa_2avaXMt7IaELj4231Xg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8A1E725176BFD9ABDA5CCB7B21A10B8F8DB7D578 Validity Not Before: Jan 31 01:29:13 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=DF5D4960BB1E4CFD7C131B305ED5948DE7103D4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c6:38:8c:c3:f2:e4:1a:67:cc:36:3d:8e:20: bf:6e:2f:5b:76:5a:43:34:73:a6:4e:07:76:dd:77: d0:46:e0:90:c6:39:be:65:1b:58:2f:20:b1:88:c0: 15:f8:76:04:e7:f6:62:a6:99:31:44:90:34:29:bd: 30:c4:c7:e8:41:f5:84:16:73:85:ac:79:ca:b2:5b: 33:f0:d6:ea:77:c8:50:0b:de:09:2e:6d:4b:d7:d4: 64:ff:4f:78:c8:88:bb:af:56:04:9e:a2:07:23:19: 75:06:4d:44:f8:7f:82:21:a1:8e:1b:3e:37:72:cc: a5:48:78:17:b1:1a:bd:08:5e:db:8f:d4:5d:53:e2: 59:57:57:9c:d1:01:50:43:8d:0d:1a:41:f4:f0:87: 1c:07:9c:af:f3:8f:f8:57:e6:8c:53:df:7e:fe:ea: c8:9c:95:ee:e2:bd:81:74:d1:8f:36:2d:ad:8a:7d: 3b:16:a1:14:eb:d2:a8:3c:0b:f8:e0:af:de:51:3a: 9e:a8:31:0a:68:be:8c:f4:59:15:4d:b1:89:b5:36: 8c:32:38:44:09:86:9b:4b:6e:1a:a6:45:1c:13:0c: a2:40:0f:86:8f:aa:19:5b:0d:ca:6a:ae:49:b7:2d: bd:e3:62:fc:05:21:ee:b7:45:2d:37:40:28:c5:e2: 71:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:5D:49:60:BB:1E:4C:FD:7C:13:1B:30:5E:D5:94:8D:E7:10:3D:4F X509v3 Authority Key Identifier: keyid:8A:1E:72:51:76:BF:D9:AB:DA:5C:CB:7B:21:A1:0B:8F:8D:B7:D5:78 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/942/ih5yUXa_2avaXMt7IaELj4231Xg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ih5yUXa_2avaXMt7IaELj4231Xg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/942/311JYLseTP18ExswXtWUjecQPU8.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.103.128.0/21 Signature Algorithm: sha256WithRSAEncryption 3f:fc:1b:a9:c6:df:76:8b:ed:80:94:02:52:77:a2:18:8e:e6: 9c:1b:69:dc:ec:52:28:02:0d:9a:64:32:69:8b:51:01:46:16: 8c:62:50:70:77:ba:43:45:1f:a6:9b:da:bf:a0:b8:0e:29:54: 40:fe:54:4b:d4:fb:c2:82:7d:1a:ee:ac:74:a9:52:25:57:f3: ed:2b:76:0b:31:42:a6:90:e6:00:5e:57:04:9c:2e:40:95:58: 32:db:8c:ff:83:69:7f:43:8a:30:48:20:91:66:ea:87:50:34: 1c:96:6b:12:bd:a9:2d:9f:36:3b:9d:39:12:2f:45:c8:0e:84: 46:84:55:9d:bf:8b:f5:f9:41:61:87:6d:e0:d7:4a:df:1b:e4: 71:a0:a7:7e:0e:59:af:53:f2:36:1d:eb:68:5c:de:f9:03:a3: b7:22:1a:d9:99:17:06:3a:80:b8:0d:4f:60:88:c2:af:2c:8c: b1:c0:79:5e:80:f0:3d:a8:3e:3b:94:89:8a:88:45:f6:7a:bb: be:05:4d:a2:5a:04:94:b6:77:9d:ad:80:b2:e1:ca:72:fc:42: 31:20:53:93:05:d6:e7:f2:21:63:51:ef:36:ad:71:c3:3f:1b: 96:7a:96:e2:31:fe:d1:ec:3f:76:94:a9:b3:58:aa:48:52:5a: a8:ad:9f:4c -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBPzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4QTFF NzI1MTc2QkZEOUFCREE1Q0NCN0IyMUExMEI4RjhEQjdENTc4MB4XDTI1MDEzMTAx MjkxM1oXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoREY1RDQ5NjBCQjFFNENG RDdDMTMxQjMwNUVENTk0OERFNzEwM0Q0RjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKvGOIzD8uQaZ8w2PY4gv24vW3ZaQzRzpk4Hdt130EbgkMY5vmUb WC8gsYjAFfh2BOf2YqaZMUSQNCm9MMTH6EH1hBZzhax5yrJbM/DW6nfIUAveCS5t S9fUZP9PeMiIu69WBJ6iByMZdQZNRPh/giGhjhs+N3LMpUh4F7EavQhe24/UXVPi WVdXnNEBUEONDRpB9PCHHAecr/OP+FfmjFPffv7qyJyV7uK9gXTRjzYtrYp9Oxah FOvSqDwL+OCv3lE6nqgxCmi+jPRZFU2xibU2jDI4RAmGm0tuGqZFHBMMokAPho+q GVsNymquSbctveNi/AUh7rdFLTdAKMXicWsCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTfXUlgux5M/XwTGzBe1ZSN5xA9TzAfBgNVHSMEGDAWgBSKHnJRdr/Zq9pcy3sh oQuPjbfVeDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTQyL2loNXlVWGFfMmF2YVhNdDdJYUVMajQyMzFYZy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2loNXlVWGFfMmF2YVhNdDdJYUVMajQy MzFYZy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85NDIvMzExSllMc2VUUDE4RXhzd1h0V1VqZWNRUFU4LnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA3ZngDANBgkqhkiG9w0BAQsFAAOCAQEAP/wbqcbfdovtgJQCUneiGI7mnBtp 3OxSKAINmmQyaYtRAUYWjGJQcHe6Q0Ufppvav6C4DilUQP5US9T7woJ9Gu6sdKlS JVfz7St2CzFCppDmAF5XBJwuQJVYMtuM/4Npf0OKMEggkWbqh1A0HJZrEr2pLZ82 O505Ei9FyA6ERoRVnb+L9flBYYdt4NdK3xvkcaCnfg5Zr1PyNh3raFze+QOjtyIa 2ZkXBjqAuA1PYIjCryyMscB5XoDwPag+O5SJiohF9nq7vgVNoloElLZ3na2AsuHK cvxCMSBTkwXW5/IhY1HvNq1xwz8blnqW4jH+0ew/dpSps1iqSFJaqK2fTA== -----END CERTIFICATE-----Generated at Wed Feb 19 22:41:30 2025 by rpki-client