$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/942/hJLcLmCOc7xqcsNo1oxEssIcxMc.roa File: hJLcLmCOc7xqcsNo1oxEssIcxMc.roa (raw, json) Hash identifier: sm7LOYm09zr7Lab0c2bt1sptjhP6+NGPuEXDJFoM0Ws= Subject key identifier: 84:92:DC:2E:60:8E:73:BC:6A:72:C3:68:D6:8C:44:B2:C2:1C:C4:C7 Certificate issuer: /CN=8A1E725176BFD9ABDA5CCB7B21A10B8F8DB7D578 Certificate serial: 3C Authority key identifier: 8A:1E:72:51:76:BF:D9:AB:DA:5C:CB:7B:21:A1:0B:8F:8D:B7:D5:78 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ih5yUXa_2avaXMt7IaELj4231Xg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/942/hJLcLmCOc7xqcsNo1oxEssIcxMc.roa Signing time: Fri 31 Jan 2025 01:29:11 +0000 ROA not before: Fri 31 Jan 2025 01:29:11 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 37908 IP address blocks: 202.254.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/942/ih5yUXa_2avaXMt7IaELj4231Xg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/942/ih5yUXa_2avaXMt7IaELj4231Xg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ih5yUXa_2avaXMt7IaELj4231Xg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8A1E725176BFD9ABDA5CCB7B21A10B8F8DB7D578 Validity Not Before: Jan 31 01:29:11 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=8492DC2E608E73BC6A72C368D68C44B2C21CC4C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:65:2c:59:02:f6:e8:0f:1f:77:93:1d:97:ea: be:32:bc:20:71:af:01:f7:c4:6c:88:5b:c6:3b:e4: af:a3:b5:39:ba:9b:28:4b:f5:7e:5d:7f:12:33:45: 1e:37:4b:8f:0c:57:f8:84:be:17:b0:78:f6:e5:27: db:f6:b6:aa:ce:2e:fa:79:b2:52:18:48:a9:c7:8e: 90:c9:1c:3f:4c:3a:a8:4b:76:31:fe:49:5b:80:82: c1:3c:78:b9:86:04:a1:03:aa:01:a1:04:d7:b3:a4: 03:a9:4b:f5:6c:a8:83:92:40:9d:df:bd:f9:93:55: e6:ff:99:43:7e:61:80:35:bc:3d:2f:ad:a3:64:a9: 59:3c:a4:a8:81:01:cc:93:91:f1:8f:5a:be:cc:06: f4:da:9b:13:b3:a0:30:92:ec:31:cd:dd:66:93:ce: b1:5e:ab:1c:da:d5:29:93:38:fa:25:16:46:fd:be: 86:c4:eb:1f:df:bf:10:2b:82:87:f3:f5:a9:62:3f: f3:14:e9:26:e5:96:e7:19:0b:fa:d8:a5:52:86:36: 21:86:13:bb:c6:ce:a1:45:c5:37:05:01:aa:3b:e5: bb:d6:ce:23:c4:12:c8:2b:52:c5:91:a4:e6:29:69: ab:33:cb:03:ee:04:ee:3c:53:c5:3e:6b:6c:b8:d7: fa:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:92:DC:2E:60:8E:73:BC:6A:72:C3:68:D6:8C:44:B2:C2:1C:C4:C7 X509v3 Authority Key Identifier: keyid:8A:1E:72:51:76:BF:D9:AB:DA:5C:CB:7B:21:A1:0B:8F:8D:B7:D5:78 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/942/ih5yUXa_2avaXMt7IaELj4231Xg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ih5yUXa_2avaXMt7IaELj4231Xg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/942/hJLcLmCOc7xqcsNo1oxEssIcxMc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.254.111.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:51:bc:56:9a:69:b3:e1:bc:c3:d4:5e:37:95:40:77:39:b9: e5:e7:31:97:6e:0a:5f:90:32:6c:cf:74:5d:92:c6:ca:17:cf: 9e:9f:94:bd:d1:70:01:0d:c1:25:8d:12:61:bf:c8:f0:09:62: 6f:4a:3f:55:da:23:e8:7e:0b:e3:dd:6f:31:50:f1:35:ab:54: ec:f7:42:a8:6e:6b:91:ca:b4:44:d6:87:9d:5c:46:0a:e0:c6: 77:3e:5d:79:69:d9:8d:c3:f0:4e:d1:ee:b8:0f:11:15:cd:8b: 90:90:24:65:46:de:c7:5f:84:16:4e:73:5c:e5:18:89:0f:d5: 7d:ef:40:47:32:ce:8e:66:45:1f:a6:d6:24:24:d6:a0:8d:22: 7b:9d:63:0e:25:f3:2a:8e:c3:71:da:07:95:25:df:98:e8:92: 49:ea:c1:e1:2d:37:c3:12:7e:b3:a1:6a:a1:90:d5:97:04:2b: f5:26:fa:78:fa:30:03:d4:6c:04:db:48:96:22:2c:f7:fc:80: ac:0a:59:d2:4f:52:dc:66:e7:bd:a0:ff:dd:aa:9e:c9:b1:c5: c7:96:a6:ab:8b:0c:b1:f3:92:49:a9:98:88:0c:5b:35:64:f6: d7:03:6e:24:a5:73:06:9a:9a:7e:c5:7b:f7:1c:c6:3c:cd:5e: 0d:7d:fa:15 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBPDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4QTFF NzI1MTc2QkZEOUFCREE1Q0NCN0IyMUExMEI4RjhEQjdENTc4MB4XDTI1MDEzMTAx MjkxMVoXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoODQ5MkRDMkU2MDhFNzNC QzZBNzJDMzY4RDY4QzQ0QjJDMjFDQzRDNzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALtlLFkC9ugPH3eTHZfqvjK8IHGvAffEbIhbxjvkr6O1ObqbKEv1 fl1/EjNFHjdLjwxX+IS+F7B49uUn2/a2qs4u+nmyUhhIqceOkMkcP0w6qEt2Mf5J W4CCwTx4uYYEoQOqAaEE17OkA6lL9Wyog5JAnd+9+ZNV5v+ZQ35hgDW8PS+to2Sp WTykqIEBzJOR8Y9avswG9NqbE7OgMJLsMc3dZpPOsV6rHNrVKZM4+iUWRv2+hsTr H9+/ECuCh/P1qWI/8xTpJuWW5xkL+tilUoY2IYYTu8bOoUXFNwUBqjvlu9bOI8QS yCtSxZGk5ilpqzPLA+4E7jxTxT5rbLjX+hECAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSEktwuYI5zvGpyw2jWjESywhzExzAfBgNVHSMEGDAWgBSKHnJRdr/Zq9pcy3sh oQuPjbfVeDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTQyL2loNXlVWGFfMmF2YVhNdDdJYUVMajQyMzFYZy5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2loNXlVWGFfMmF2YVhNdDdJYUVMajQy MzFYZy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85NDIvaEpMY0xtQ09jN3hxY3NObzFveEVzc0ljeE1jLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAMr+bzANBgkqhkiG9w0BAQsFAAOCAQEALlG8Vppps+G8w9ReN5VAdzm55ecx l24KX5AybM90XZLGyhfPnp+UvdFwAQ3BJY0SYb/I8Alib0o/Vdoj6H4L491vMVDx NatU7PdCqG5rkcq0RNaHnVxGCuDGdz5deWnZjcPwTtHuuA8RFc2LkJAkZUbex1+E Fk5zXOUYiQ/Vfe9ARzLOjmZFH6bWJCTWoI0ie51jDiXzKo7DcdoHlSXfmOiSSerB 4S03wxJ+s6FqoZDVlwQr9Sb6ePowA9RsBNtIliIs9/yArApZ0k9S3GbnvaD/3aqe ybHFx5amq4sMsfOSSamYiAxbNWT21wNuJKVzBpqafsV79xzGPM1eDX36FQ== -----END CERTIFICATE-----Generated at Wed Feb 19 22:38:08 2025 by rpki-client