$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/955/5_9RGPWz8EJ7gfTdJ3VweUu_gxk.roa File: 5_9RGPWz8EJ7gfTdJ3VweUu_gxk.roa (raw, json) Hash identifier: SJsb2ZL/IR/TLdl3lFxrxyvTNDUJZFi9QG2O7kiKh8M= Subject key identifier: E7:FF:51:18:F5:B3:F0:42:7B:81:F4:DD:27:75:70:79:4B:BF:83:19 Certificate issuer: /CN=0BBCA90DCB80D622B18884EA1E0B3B7D40C61C52 Certificate serial: 36 Authority key identifier: 0B:BC:A9:0D:CB:80:D6:22:B1:88:84:EA:1E:0B:3B:7D:40:C6:1C:52 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/C7ypDcuA1iKxiITqHgs7fUDGHFI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/955/5_9RGPWz8EJ7gfTdJ3VweUu_gxk.roa Signing time: Fri 31 Jan 2025 01:28:53 +0000 ROA not before: Fri 31 Jan 2025 01:28:53 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 55385 IP address blocks: 119.47.0.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/955/C7ypDcuA1iKxiITqHgs7fUDGHFI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/955/C7ypDcuA1iKxiITqHgs7fUDGHFI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/C7ypDcuA1iKxiITqHgs7fUDGHFI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 19:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54 (0x36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BBCA90DCB80D622B18884EA1E0B3B7D40C61C52 Validity Not Before: Jan 31 01:28:53 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=E7FF5118F5B3F0427B81F4DD277570794BBF8319 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:37:76:f2:b3:dd:21:2f:22:b7:de:71:9b:39: 48:ee:d1:41:86:98:03:ae:0d:20:48:69:78:a3:d6: d3:6d:7d:4c:d3:5f:2f:2c:d1:56:15:2c:54:08:9a: d9:63:a8:43:7b:0d:7e:5a:e1:28:7b:1b:0a:07:df: d2:1f:b7:68:48:83:3f:6e:70:43:5d:bb:66:e1:c4: 3d:75:6b:73:fa:3f:b8:5b:c9:39:bd:ae:3b:09:d2: 60:d8:3c:1a:76:ba:0d:2b:51:b4:12:74:f4:a6:33: 23:a7:26:70:8c:1f:fa:eb:85:e5:2d:8e:c6:0b:7b: 6f:a8:c0:9b:44:4e:74:6f:08:f4:1e:ec:af:0f:bd: 52:ce:d6:52:63:e9:23:e8:03:17:cf:2c:12:ed:b1: 88:10:3c:ab:ce:8a:a7:06:73:21:cf:b3:da:ce:92: 02:9d:b0:af:4d:bd:f9:b1:0d:e3:6b:95:bb:28:b2: 34:0e:23:a2:6e:3d:3c:8f:1b:4d:c2:eb:2d:7f:e9: 4b:10:f1:a3:ae:dc:4d:06:56:4f:cd:14:d1:3f:17: e8:1f:d5:c4:05:05:95:fb:eb:a2:9d:d2:82:a0:0f: a6:0d:61:44:85:46:4e:8e:6f:30:11:fb:0c:e8:dd: 4d:c4:08:97:f0:c3:e9:b5:15:1b:0f:77:62:d2:c9: d4:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:FF:51:18:F5:B3:F0:42:7B:81:F4:DD:27:75:70:79:4B:BF:83:19 X509v3 Authority Key Identifier: keyid:0B:BC:A9:0D:CB:80:D6:22:B1:88:84:EA:1E:0B:3B:7D:40:C6:1C:52 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/955/C7ypDcuA1iKxiITqHgs7fUDGHFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/C7ypDcuA1iKxiITqHgs7fUDGHFI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/955/5_9RGPWz8EJ7gfTdJ3VweUu_gxk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.47.0.0/20 Signature Algorithm: sha256WithRSAEncryption 00:45:b8:dc:e2:d2:75:0f:6c:74:63:53:db:1d:69:d5:f6:c0: ed:ef:d2:cd:3b:e5:d3:1f:74:a4:3b:65:61:22:09:02:b1:de: 43:03:2b:b6:42:00:5d:8c:06:fa:04:81:34:6d:dc:55:b1:15: 08:1a:19:00:e6:1a:ed:a4:73:d8:9e:b8:70:c1:02:3f:ac:ee: 49:e1:f8:c4:f8:80:9e:58:34:a3:1e:68:0b:33:ad:18:ad:91: bf:4b:6a:8b:cc:ce:8c:59:a8:5c:48:77:99:69:c7:25:76:09: ea:18:1c:ad:ba:13:8c:f5:94:be:dc:8b:fb:f0:cb:63:d4:ff: 73:2f:6a:c2:1e:5a:1d:e8:51:f1:cb:15:25:5e:56:fd:77:4e: 86:5f:68:0d:f1:60:fc:aa:4e:61:60:a4:f1:67:19:2c:08:09: 25:3c:fa:15:fb:2e:98:4a:97:38:ac:b2:27:2c:27:26:95:d0: cc:5e:95:c5:fe:43:8c:80:29:82:f7:aa:4b:a6:75:0e:2c:7a: af:c5:64:8b:ad:a9:f7:df:c4:11:f6:2d:c9:fe:be:2e:63:60: 98:f2:6e:51:a5:5c:2d:bc:ad:6c:78:62:04:9e:db:07:39:c4: 5a:68:24:eb:2e:97:90:4e:de:a9:4f:39:aa:72:25:aa:97:08: 28:5f:ef:12 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBNjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwQkJD QTkwRENCODBENjIyQjE4ODg0RUExRTBCM0I3RDQwQzYxQzUyMB4XDTI1MDEzMTAx Mjg1M1oXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoRTdGRjUxMThGNUIzRjA0 MjdCODFGNEREMjc3NTcwNzk0QkJGODMxOTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJw3dvKz3SEvIrfecZs5SO7RQYaYA64NIEhpeKPW0219TNNfLyzR VhUsVAia2WOoQ3sNflrhKHsbCgff0h+3aEiDP25wQ127ZuHEPXVrc/o/uFvJOb2u OwnSYNg8Gna6DStRtBJ09KYzI6cmcIwf+uuF5S2Oxgt7b6jAm0ROdG8I9B7srw+9 Us7WUmPpI+gDF88sEu2xiBA8q86KpwZzIc+z2s6SAp2wr029+bEN42uVuyiyNA4j om49PI8bTcLrLX/pSxDxo67cTQZWT80U0T8X6B/VxAUFlfvrop3SgqAPpg1hRIVG To5vMBH7DOjdTcQIl/DD6bUVGw93YtLJ1F0CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTn/1EY9bPwQnuB9N0ndXB5S7+DGTAfBgNVHSMEGDAWgBQLvKkNy4DWIrGIhOoe Czt9QMYcUjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTU1L0M3eXBEY3VBMWlLeGlJVHFIZ3M3ZlVER0hGSS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0M3eXBEY3VBMWlLeGlJVHFIZ3M3ZlVE R0hGSS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85NTUvNV85UkdQV3o4RUo3Z2ZUZEozVndlVXVfZ3hrLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBHcvADANBgkqhkiG9w0BAQsFAAOCAQEAAEW43OLSdQ9sdGNT2x1p1fbA7e/S zTvl0x90pDtlYSIJArHeQwMrtkIAXYwG+gSBNG3cVbEVCBoZAOYa7aRz2J64cMEC P6zuSeH4xPiAnlg0ox5oCzOtGK2Rv0tqi8zOjFmoXEh3mWnHJXYJ6hgcrboTjPWU vtyL+/DLY9T/cy9qwh5aHehR8csVJV5W/XdOhl9oDfFg/KpOYWCk8WcZLAgJJTz6 FfsumEqXOKyyJywnJpXQzF6Vxf5DjIApgveqS6Z1Dix6r8Vki62p99/EEfYtyf6+ LmNgmPJuUaVcLbytbHhiBJ7bBznEWmgk6y6XkE7eqU85qnIlqpcIKF/vEg== -----END CERTIFICATE-----Generated at Wed Feb 19 22:25:42 2025 by rpki-client