$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/964/UfQ66N3fD7i2XepzF_8pphVTLD0.roa File: UfQ66N3fD7i2XepzF_8pphVTLD0.roa (raw, json) Hash identifier: vcjUFg7m0s2i8d30i0w3swJ5UWG1KVPbe0d0cmvEVms= Subject key identifier: 51:F4:3A:E8:DD:DF:0F:B8:B6:5D:EA:73:17:FF:29:A6:15:53:2C:3D Certificate issuer: /CN=6676F69140635CF4AD2A3A9CF5EF25BADD2DC72D Certificate serial: 47 Authority key identifier: 66:76:F6:91:40:63:5C:F4:AD:2A:3A:9C:F5:EF:25:BA:DD:2D:C7:2D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Znb2kUBjXPStKjqc9e8lut0txy0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/964/UfQ66N3fD7i2XepzF_8pphVTLD0.roa Signing time: Fri 31 Jan 2025 01:32:36 +0000 ROA not before: Fri 31 Jan 2025 01:32:36 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 3491 IP address blocks: 203.170.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/964/Znb2kUBjXPStKjqc9e8lut0txy0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/964/Znb2kUBjXPStKjqc9e8lut0txy0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Znb2kUBjXPStKjqc9e8lut0txy0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 19:05:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6676F69140635CF4AD2A3A9CF5EF25BADD2DC72D Validity Not Before: Jan 31 01:32:36 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=51F43AE8DDDF0FB8B65DEA7317FF29A615532C3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9a:50:eb:53:74:77:fc:f8:73:7b:b0:d3:e8: e1:f2:a9:d6:5b:3d:b2:b8:50:58:fb:9f:02:94:57: 30:b9:0b:f8:c6:43:29:5d:b6:89:35:c5:56:27:75: 4b:5b:21:09:89:13:76:65:5b:29:6c:39:4e:0c:c1: b0:41:f5:17:ee:cb:ac:5e:ff:59:9a:b8:41:c5:80: 76:da:25:fd:a6:2a:35:86:05:11:4b:8a:db:bc:8f: 60:f0:c1:b7:73:7a:8f:1b:e3:b9:f3:76:0b:32:a2: 82:e5:f0:64:ab:86:cd:82:54:20:9d:fd:b2:64:56: 1b:38:10:1c:bc:8b:da:1d:02:f7:b8:f7:4f:c9:a4: 57:9c:66:9e:86:ae:aa:17:9e:4b:dc:c2:36:50:38: 00:c1:3a:c1:b6:ea:6f:dd:b5:1f:88:ae:3d:ca:97: 6b:90:21:f4:76:eb:df:b7:61:1c:3e:8b:37:7d:b6: 2b:c3:fb:48:3e:22:f5:2b:dc:92:8e:70:ac:47:12: ff:3c:12:be:64:9e:39:bd:7e:13:ac:09:9e:15:63: 16:45:bd:b9:14:98:00:7c:d8:37:f0:d1:33:81:59: cf:48:3b:7a:69:3c:de:b7:94:a1:f6:2b:89:a2:c0: 91:f9:65:bb:9f:a1:90:c9:fb:e5:a9:f1:4d:37:c8: e1:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:F4:3A:E8:DD:DF:0F:B8:B6:5D:EA:73:17:FF:29:A6:15:53:2C:3D X509v3 Authority Key Identifier: keyid:66:76:F6:91:40:63:5C:F4:AD:2A:3A:9C:F5:EF:25:BA:DD:2D:C7:2D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/964/Znb2kUBjXPStKjqc9e8lut0txy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Znb2kUBjXPStKjqc9e8lut0txy0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/964/UfQ66N3fD7i2XepzF_8pphVTLD0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.170.52.0/22 Signature Algorithm: sha256WithRSAEncryption 52:a7:92:2b:b4:08:a9:0d:e0:c8:b2:1d:e3:52:e7:d3:a6:3e: e4:58:2d:88:bf:38:a8:d4:16:f9:a6:b0:12:bb:87:22:c7:19: b4:44:99:77:76:7c:f7:43:f1:93:54:ea:36:49:11:42:f7:53: e3:7a:5d:88:e7:51:d5:87:1f:04:a6:29:5e:8d:06:ef:83:45: 8b:55:d6:3a:c6:d7:06:e0:04:6e:2c:2b:bc:59:69:46:16:ce: 01:db:f5:57:c1:b2:15:c6:88:17:9c:ad:29:1a:f2:a9:fa:13: 7d:2d:c2:b9:18:28:00:a4:49:3f:ff:44:35:f2:e0:0b:9b:7c: 6b:fc:30:39:9c:4f:68:7d:cd:fd:94:86:34:52:dd:7f:8a:5b: 28:fa:e6:af:a8:10:0d:12:c6:9c:42:af:80:c7:e8:32:92:9b: 7c:8d:fe:fe:81:c7:a3:49:90:48:6c:b4:40:87:ef:23:4e:61: 65:55:e9:3b:02:58:6e:7d:7b:7b:1b:74:23:15:5d:4b:a1:b0: c9:df:ad:ed:f9:69:b6:e2:14:9c:c9:34:f4:a5:62:f7:28:1b: e6:06:e3:f6:55:b8:8a:dd:bb:90:0a:82:09:c3:c2:29:b1:be: 04:cd:6d:bd:55:17:30:fa:e9:ba:19:f1:b9:25:ba:1c:d5:fc: 7b:4e:89:94 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBRzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2Njc2 RjY5MTQwNjM1Q0Y0QUQyQTNBOUNGNUVGMjVCQUREMkRDNzJEMB4XDTI1MDEzMTAx MzIzNloXDTI2MDExNTAxMzAwM1owMzExMC8GA1UEAxMoNTFGNDNBRThERERGMEZC OEI2NURFQTczMTdGRjI5QTYxNTUzMkMzRDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMuaUOtTdHf8+HN7sNPo4fKp1ls9srhQWPufApRXMLkL+MZDKV22 iTXFVid1S1shCYkTdmVbKWw5TgzBsEH1F+7LrF7/WZq4QcWAdtol/aYqNYYFEUuK 27yPYPDBt3N6jxvjufN2CzKiguXwZKuGzYJUIJ39smRWGzgQHLyL2h0C97j3T8mk V5xmnoauqheeS9zCNlA4AME6wbbqb921H4iuPcqXa5Ah9Hbr37dhHD6LN322K8P7 SD4i9Svcko5wrEcS/zwSvmSeOb1+E6wJnhVjFkW9uRSYAHzYN/DRM4FZz0g7emk8 3reUofYriaLAkfllu5+hkMn75anxTTfI4Q8CAwEAAaOCAiQwggIgMB0GA1UdDgQW BBRR9Dro3d8PuLZd6nMX/ymmFVMsPTAfBgNVHSMEGDAWgBRmdvaRQGNc9K0qOpz1 7yW63S3HLTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTY0L1puYjJrVUJqWFBTdEtqcWM5ZThsdXQwdHh5MC5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1puYjJrVUJqWFBTdEtqcWM5ZThsdXQw dHh5MC5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85NjQvVWZRNjZOM2ZEN2kyWGVwekZfOHBwaFZUTEQwLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAsuqNDANBgkqhkiG9w0BAQsFAAOCAQEAUqeSK7QIqQ3gyLId41Ln06Y+5Fgt iL84qNQW+aawEruHIscZtESZd3Z890Pxk1TqNkkRQvdT43pdiOdR1YcfBKYpXo0G 74NFi1XWOsbXBuAEbiwrvFlpRhbOAdv1V8GyFcaIF5ytKRryqfoTfS3CuRgoAKRJ P/9ENfLgC5t8a/wwOZxPaH3N/ZSGNFLdf4pbKPrmr6gQDRLGnEKvgMfoMpKbfI3+ /oHHo0mQSGy0QIfvI05hZVXpOwJYbn17ext0IxVdS6Gwyd+t7flptuIUnMk09KVi 9ygb5gbj9lW4it27kAqCCcPCKbG+BM1tvVUXMPrpuhnxuSW6HNX8e06JlA== -----END CERTIFICATE-----Generated at Wed Feb 19 20:54:08 2025 by rpki-client