$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/954/kLJZhKP0H4gVtV5JtNGDYg1JvAY.roa File: kLJZhKP0H4gVtV5JtNGDYg1JvAY.roa (raw, json) Hash identifier: U5pk1Kifwlh+2m1zjTPaGP17TbI852FwG1fg48VVg+E= Subject key identifier: 90:B2:59:84:A3:F4:1F:88:15:B5:5E:49:B4:D1:83:62:0D:49:BC:06 Certificate issuer: /CN=1678DD6B61CB673BA4423C81BF63A61DD724E840 Certificate serial: 26 Authority key identifier: 16:78:DD:6B:61:CB:67:3B:A4:42:3C:81:BF:63:A6:1D:D7:24:E8:40 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fnjda2HLZzukQjyBv2OmHdck6EA.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/954/kLJZhKP0H4gVtV5JtNGDYg1JvAY.roa Signing time: Sun 31 Mar 2024 01:32:29 +0000 ROA not before: Sun 31 Mar 2024 01:32:29 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 131954 IP address blocks: 121.58.128.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/954/Fnjda2HLZzukQjyBv2OmHdck6EA.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/954/Fnjda2HLZzukQjyBv2OmHdck6EA.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fnjda2HLZzukQjyBv2OmHdck6EA.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38 (0x26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1678DD6B61CB673BA4423C81BF63A61DD724E840 Validity Not Before: Mar 31 01:32:29 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=90B25984A3F41F8815B55E49B4D183620D49BC06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:38:ff:bc:ec:9b:7d:b3:c0:df:19:9d:55:b4: 6f:3b:44:24:f2:f2:3f:8e:fe:76:3f:27:81:5c:38: 55:64:a9:3d:67:3b:73:a5:b7:67:95:0e:9b:02:2d: a2:d8:a2:c8:4a:9a:d3:0b:e1:23:ff:f0:bf:13:9a: 0f:19:92:ce:66:ce:8a:a7:81:62:37:3f:b8:29:b5: 6e:2c:4a:a1:ef:70:2f:eb:f7:0e:34:ed:af:01:ce: 84:07:89:a7:1c:3d:47:ff:20:90:fd:1b:e8:96:88: 08:ef:bf:87:c3:07:82:e0:1e:ab:1b:f3:e0:28:68: b1:ed:64:12:f8:d0:5d:60:6b:21:d5:fa:c0:ad:88: d3:43:81:af:2d:68:4e:68:84:6a:b0:a3:68:79:f3: 33:22:8f:38:17:a0:c0:b1:cb:1c:7f:73:7e:93:fc: 8a:e6:07:46:df:e4:f9:bd:af:5a:d3:56:97:9c:b4: 18:d0:8d:e8:da:b1:22:b9:71:d5:76:35:a7:0e:10: c2:93:a4:c9:44:de:af:b7:05:dd:e3:16:c5:96:d2: a2:54:e2:d9:f6:aa:1f:af:2d:ed:fd:15:ae:26:4b: 02:a1:4d:29:71:6c:e7:c1:49:29:2b:1a:54:95:9f: 84:70:ea:e3:a9:dd:30:1e:dc:1a:99:42:46:19:a4: 72:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:B2:59:84:A3:F4:1F:88:15:B5:5E:49:B4:D1:83:62:0D:49:BC:06 X509v3 Authority Key Identifier: keyid:16:78:DD:6B:61:CB:67:3B:A4:42:3C:81:BF:63:A6:1D:D7:24:E8:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/954/Fnjda2HLZzukQjyBv2OmHdck6EA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fnjda2HLZzukQjyBv2OmHdck6EA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/954/kLJZhKP0H4gVtV5JtNGDYg1JvAY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 121.58.128.0/21 Signature Algorithm: sha256WithRSAEncryption 4d:c4:67:91:03:a7:a5:62:4f:ab:bb:82:e3:a3:34:44:74:03: 52:af:49:b7:27:ab:b8:a4:fa:c0:e4:ed:93:5f:8c:ed:28:b3: 4a:e9:06:d9:ab:cf:e0:fe:95:cc:2b:45:06:0c:0b:de:80:21: 5e:76:6e:db:77:31:28:10:1e:a5:87:a1:ad:fb:c5:35:71:2c: c4:92:21:8d:0b:6b:5e:85:3a:dc:b5:a6:83:7d:58:2b:bb:46: 87:ca:c5:55:d4:30:7d:7d:13:b6:4c:23:40:20:7e:86:dd:d5: 00:76:b3:1c:a0:17:20:e0:ea:7d:a0:ec:44:e6:f3:6a:7c:da: 15:b1:a0:ed:d2:5d:05:9d:fa:36:2c:06:ef:58:6d:90:14:6e: 39:09:7c:f3:c5:19:c0:fb:bd:f4:9e:f8:36:a4:a5:cc:ce:7e: 35:86:d1:82:72:60:49:65:53:f1:9d:fc:f2:63:5f:64:7d:74: e9:43:ae:21:51:74:bd:79:74:d8:69:cb:6b:b9:b8:ea:01:86: e5:34:58:0a:5d:3b:09:84:ea:f0:b7:87:ab:e9:02:a9:e5:0f: e7:28:5a:dc:83:2f:46:c3:05:db:f2:4c:48:ff:e4:52:4f:8b: dd:34:43:7b:9f:e4:53:2d:4a:05:24:53:4e:27:6a:c5:0c:3d: fd:c7:ff:15 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBJjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxNjc4 REQ2QjYxQ0I2NzNCQTQ0MjNDODFCRjYzQTYxREQ3MjRFODQwMB4XDTI0MDMzMTAx MzIyOVoXDTI1MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoOTBCMjU5ODRBM0Y0MUY4 ODE1QjU1RTQ5QjREMTgzNjIwRDQ5QkMwNjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOA4/7zsm32zwN8ZnVW0bztEJPLyP47+dj8ngVw4VWSpPWc7c6W3 Z5UOmwItotiiyEqa0wvhI//wvxOaDxmSzmbOiqeBYjc/uCm1bixKoe9wL+v3DjTt rwHOhAeJpxw9R/8gkP0b6JaICO+/h8MHguAeqxvz4Chose1kEvjQXWBrIdX6wK2I 00OBry1oTmiEarCjaHnzMyKPOBegwLHLHH9zfpP8iuYHRt/k+b2vWtNWl5y0GNCN 6NqxIrlx1XY1pw4QwpOkyUTer7cF3eMWxZbSolTi2faqH68t7f0VriZLAqFNKXFs 58FJKSsaVJWfhHDq46ndMB7cGplCRhmkco0CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBSQslmEo/QfiBW1Xkm00YNiDUm8BjAfBgNVHSMEGDAWgBQWeN1rYctnO6RCPIG/ Y6Yd1yToQDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTU0L0ZuamRhMkhMWnp1a1FqeUJ2Mk9tSGRjazZFQS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0ZuamRhMkhMWnp1a1FqeUJ2Mk9tSGRj azZFQS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85NTQva0xKWmhLUDBINGdWdFY1SnROR0RZZzFKdkFZLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA3k6gDANBgkqhkiG9w0BAQsFAAOCAQEATcRnkQOnpWJPq7uC46M0RHQDUq9J tyeruKT6wOTtk1+M7SizSukG2avP4P6VzCtFBgwL3oAhXnZu23cxKBAepYehrfvF NXEsxJIhjQtrXoU63LWmg31YK7tGh8rFVdQwfX0TtkwjQCB+ht3VAHazHKAXIODq faDsRObzanzaFbGg7dJdBZ36NiwG71htkBRuOQl888UZwPu99J74NqSlzM5+NYbR gnJgSWVT8Z388mNfZH106UOuIVF0vXl02GnLa7m46gGG5TRYCl07CYTq8LeHq+kC qeUP5yha3IMvRsMF2/JMSP/kUk+L3TRDe5/kUy1KBSRTTidqxQw9/cf/FQ== -----END CERTIFICATE-----Generated at Sun Feb 16 22:32:37 2025 by rpki-client