$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/972/y1VR-TDWBJaSWUzOTYpI6dbd18E.roa File: y1VR-TDWBJaSWUzOTYpI6dbd18E.roa (raw, json) Hash identifier: zfR7ZvTsrrwS9JxcbMqMbN1rhFBKT4i4FSvuj2Tq5AA= Subject key identifier: CB:55:51:F9:30:D6:04:96:92:59:4C:CE:4D:8A:48:E9:D6:DD:D7:C1 Certificate issuer: /CN=5F3E33AA6F92A837FA8944AB83627D3B44E0CF4A Certificate serial: 40 Authority key identifier: 5F:3E:33:AA:6F:92:A8:37:FA:89:44:AB:83:62:7D:3B:44:E0:CF:4A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Xz4zqm-SqDf6iUSrg2J9O0Tgz0o.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/972/y1VR-TDWBJaSWUzOTYpI6dbd18E.roa Signing time: Wed 31 Jul 2024 01:28:30 +0000 ROA not before: Wed 31 Jul 2024 01:28:30 +0000 ROA not after: Tue 15 Jul 2025 01:30:02 +0000 asID: 38651 IP address blocks: 103.109.240.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/972/Xz4zqm-SqDf6iUSrg2J9O0Tgz0o.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/972/Xz4zqm-SqDf6iUSrg2J9O0Tgz0o.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Xz4zqm-SqDf6iUSrg2J9O0Tgz0o.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5F3E33AA6F92A837FA8944AB83627D3B44E0CF4A Validity Not Before: Jul 31 01:28:30 2024 GMT Not After : Jul 15 01:30:02 2025 GMT Subject: CN=CB5551F930D6049692594CCE4D8A48E9D6DDD7C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:0a:44:c6:87:cb:d4:a6:fe:1b:6d:6f:0e:8b: 13:29:2b:ff:71:d1:a6:de:b3:61:23:ec:56:09:5d: 05:1f:77:bc:d4:32:84:d0:4c:17:50:2a:24:80:3b: 97:f4:c8:64:2c:9f:2e:29:f2:29:31:d8:ae:ab:08: 52:d5:6d:a4:c9:80:d6:a7:ec:fb:2b:36:82:90:2a: 2d:78:3b:76:32:26:58:be:ca:42:89:6e:41:a0:cd: 4e:ec:4f:c8:d7:5e:ae:2b:3a:a2:13:73:cb:7b:9c: d8:a5:f4:d2:b2:0b:74:fe:43:61:ef:93:a4:dd:8b: de:fa:c3:45:e3:14:de:3d:13:73:59:43:8d:bd:55: 32:0d:b8:89:ba:4f:33:f5:58:bc:f2:c2:61:f6:9d: b8:aa:c3:b6:63:4d:1e:04:74:df:c6:95:2c:04:d5: ee:f8:e1:81:56:9f:f4:fe:61:4b:10:8d:98:cd:97: 8a:5c:b4:0c:6c:6b:10:14:90:65:d2:07:e6:b3:2b: 4f:13:9a:0d:36:53:b0:2b:df:49:57:a7:bb:cc:59: a5:ba:93:09:07:c9:cc:4c:5a:34:9a:8a:be:bb:ba: b1:a8:dd:82:6e:b5:4a:3e:6b:6a:dc:59:de:6f:eb: f9:08:16:97:84:bf:b0:27:c1:57:aa:8d:fd:cf:3c: ed:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:55:51:F9:30:D6:04:96:92:59:4C:CE:4D:8A:48:E9:D6:DD:D7:C1 X509v3 Authority Key Identifier: keyid:5F:3E:33:AA:6F:92:A8:37:FA:89:44:AB:83:62:7D:3B:44:E0:CF:4A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/972/Xz4zqm-SqDf6iUSrg2J9O0Tgz0o.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Xz4zqm-SqDf6iUSrg2J9O0Tgz0o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/972/y1VR-TDWBJaSWUzOTYpI6dbd18E.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.109.240.0/22 Signature Algorithm: sha256WithRSAEncryption aa:b4:d8:d5:32:8c:1b:fe:d6:1a:85:1b:6b:5d:eb:60:60:75: 31:66:fa:32:f1:a6:6a:1d:e9:f2:45:13:a3:8c:4b:06:19:6a: fd:5e:c5:d1:e9:3b:1b:26:2c:9e:55:55:5d:37:fe:a4:64:f2: c6:ce:ed:ae:b1:fb:a9:6e:79:ee:d4:56:aa:aa:6c:d6:e6:65: 8e:c2:5e:6b:10:ec:df:37:55:0c:c5:ef:d2:1e:4e:7f:ea:0f: 59:0c:ad:ad:12:a0:83:ce:3c:3c:5a:70:d1:ba:33:3a:14:69: 7f:fa:71:f2:fc:71:cb:1d:96:fe:7e:9e:74:28:2a:8c:e8:e1: b8:87:97:09:32:b4:d6:93:e1:4c:77:df:ad:ba:48:72:87:ab: ac:2f:59:00:7e:36:95:bb:e1:59:26:1e:de:38:0e:d5:52:3f: be:82:d0:28:d0:66:8e:1a:90:d7:f1:12:a2:4f:5a:ce:58:fc: a7:45:7c:33:ca:eb:7d:d9:19:dd:c3:4d:c3:5c:66:31:8b:32: 7e:c8:96:d3:56:ff:db:f0:24:c7:1d:fe:b7:b5:45:0b:a8:19: 3e:20:00:d0:fe:a9:9a:69:a8:9c:a7:80:e4:4f:45:8b:f1:8d: 68:ac:da:77:53:0d:d8:c8:31:b5:82:77:54:f9:db:8a:38:f1: 9b:a7:8c:de -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBQDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1RjNF MzNBQTZGOTJBODM3RkE4OTQ0QUI4MzYyN0QzQjQ0RTBDRjRBMB4XDTI0MDczMTAx MjgzMFoXDTI1MDcxNTAxMzAwMlowMzExMC8GA1UEAxMoQ0I1NTUxRjkzMEQ2MDQ5 NjkyNTk0Q0NFNEQ4QTQ4RTlENkRERDdDMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOYKRMaHy9Sm/httbw6LEykr/3HRpt6zYSPsVgldBR93vNQyhNBM F1AqJIA7l/TIZCyfLinyKTHYrqsIUtVtpMmA1qfs+ys2gpAqLXg7djImWL7KQolu QaDNTuxPyNderis6ohNzy3uc2KX00rILdP5DYe+TpN2L3vrDReMU3j0Tc1lDjb1V Mg24ibpPM/VYvPLCYfaduKrDtmNNHgR038aVLATV7vjhgVaf9P5hSxCNmM2Xily0 DGxrEBSQZdIH5rMrTxOaDTZTsCvfSVenu8xZpbqTCQfJzExaNJqKvru6sajdgm61 Sj5ratxZ3m/r+QgWl4S/sCfBV6qN/c887WkCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBTLVVH5MNYElpJZTM5Nikjp1t3XwTAfBgNVHSMEGDAWgBRfPjOqb5KoN/qJRKuD Yn07RODPSjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTcyL1h6NHpxbS1TcURmNmlVU3JnMko5TzBUZ3owby5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1h6NHpxbS1TcURmNmlVU3JnMko5TzBU Z3owby5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85NzIveTFWUi1URFdCSmFTV1V6T1RZcEk2ZGJkMThFLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmdt8DANBgkqhkiG9w0BAQsFAAOCAQEAqrTY1TKMG/7WGoUba13rYGB1MWb6 MvGmah3p8kUTo4xLBhlq/V7F0ek7GyYsnlVVXTf+pGTyxs7trrH7qW557tRWqqps 1uZljsJeaxDs3zdVDMXv0h5Of+oPWQytrRKgg848PFpw0bozOhRpf/px8vxxyx2W /n6edCgqjOjhuIeXCTK01pPhTHffrbpIcoerrC9ZAH42lbvhWSYe3jgO1VI/voLQ KNBmjhqQ1/ESok9azlj8p0V8M8rrfdkZ3cNNw1xmMYsyfsiW01b/2/Akxx3+t7VF C6gZPiAA0P6pmmmonKeA5E9Fi/GNaKzad1MN2MgxtYJ3VPnbijjxm6eM3g== -----END CERTIFICATE-----Generated at Sun Feb 16 22:09:10 2025 by rpki-client