$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/990/KSiWDS4riFiFXTPBAR3BpW-7NEY.roa File: KSiWDS4riFiFXTPBAR3BpW-7NEY.roa (raw, json) Hash identifier: tg8VvzPEHX6fMqK8lhHpMw4+cL3HPE3kvJwUZ1d9xng= Subject key identifier: 29:28:96:0D:2E:2B:88:58:85:5D:33:C1:01:1D:C1:A5:6F:BB:34:46 Certificate issuer: /CN=42E32457C16BA874216A8F5DBB0D335BD148CB31 Certificate serial: 2E Authority key identifier: 42:E3:24:57:C1:6B:A8:74:21:6A:8F:5D:BB:0D:33:5B:D1:48:CB:31 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QuMkV8FrqHQhao9duw0zW9FIyzE.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/990/KSiWDS4riFiFXTPBAR3BpW-7NEY.roa Signing time: Sat 01 Jun 2024 06:45:18 +0000 ROA not before: Sat 01 Jun 2024 06:45:18 +0000 ROA not after: Thu 15 May 2025 01:30:03 +0000 asID: 131965 IP address blocks: 202.226.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/990/QuMkV8FrqHQhao9duw0zW9FIyzE.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/990/QuMkV8FrqHQhao9duw0zW9FIyzE.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QuMkV8FrqHQhao9duw0zW9FIyzE.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42E32457C16BA874216A8F5DBB0D335BD148CB31 Validity Not Before: Jun 1 06:45:18 2024 GMT Not After : May 15 01:30:03 2025 GMT Subject: CN=2928960D2E2B8858855D33C1011DC1A56FBB3446 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:05:73:e4:0f:f6:b4:04:1b:27:04:c3:fa:66: 20:5f:c0:7f:3d:e3:29:58:bd:f9:9d:b0:e4:67:0d: 08:43:f7:44:e1:44:b5:1c:99:41:d0:46:54:c8:32: 82:16:8e:51:f3:5d:e2:ad:42:c6:ab:0b:e6:b8:50: 59:3e:c8:71:63:c3:89:8b:02:58:f1:b8:a4:d6:13: a2:f1:86:8a:e7:3f:66:e9:f5:2b:57:b1:67:12:47: fc:9f:52:51:96:0f:06:25:4b:65:5c:17:00:a4:db: d2:1d:b8:06:81:78:58:77:99:c5:24:92:4f:98:55: 3c:24:9c:89:db:d1:c3:15:83:1c:e4:94:1f:50:7e: 29:e0:ca:65:12:18:57:5c:4c:35:d7:ca:12:42:9a: 43:40:f8:c9:0f:4f:28:58:cd:f6:c6:8d:1a:ee:17: f6:88:ec:c5:19:fb:d4:cb:b5:e5:ad:78:47:0f:e9: 48:48:62:72:93:a7:62:43:33:b1:ae:ff:42:5f:b7: e3:bf:d8:3c:ef:d2:54:8d:eb:a2:fa:20:17:be:f9: bd:5a:a6:7e:0e:6d:6d:e4:88:20:c8:cb:cb:df:41: 5c:8b:12:36:4b:9c:dd:9b:eb:37:fb:a7:52:ca:84: 31:b5:4b:50:34:a6:bc:b5:27:2a:fe:e8:58:35:78: 75:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:28:96:0D:2E:2B:88:58:85:5D:33:C1:01:1D:C1:A5:6F:BB:34:46 X509v3 Authority Key Identifier: keyid:42:E3:24:57:C1:6B:A8:74:21:6A:8F:5D:BB:0D:33:5B:D1:48:CB:31 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/990/QuMkV8FrqHQhao9duw0zW9FIyzE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QuMkV8FrqHQhao9duw0zW9FIyzE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/990/KSiWDS4riFiFXTPBAR3BpW-7NEY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.226.36.0/22 Signature Algorithm: sha256WithRSAEncryption 5b:85:9e:a8:02:84:b2:ea:8b:91:6e:64:c7:c7:32:07:0e:c5: 19:0b:b1:54:da:b7:39:a0:82:20:05:7f:60:5f:6c:8d:0d:6c: 43:10:1d:7f:ee:36:7f:c9:a5:d4:55:08:f2:db:4c:8d:e4:ed: a4:05:00:6f:ef:df:c5:9e:9e:60:cc:42:bf:d3:64:f6:c0:9c: 2b:07:12:57:0c:b4:fc:da:c0:80:01:6a:14:47:af:1f:c6:fb: be:fb:00:16:cf:06:fa:18:a9:ba:cf:c1:02:3b:5c:12:a3:e8: 9a:59:17:75:aa:27:b7:7d:41:0c:ec:75:d2:7c:2a:24:12:f8: d9:31:47:73:8e:2f:29:ae:b1:b8:49:52:f0:e0:3b:7f:51:bc: a6:cb:15:2c:b9:08:d9:89:18:b7:38:5d:a8:bc:d9:87:06:dc: 17:63:08:af:d3:b6:79:e8:04:c0:b8:1e:87:1a:49:cf:2c:18: ca:31:e4:79:4b:17:b1:2c:64:1c:62:30:65:66:39:84:50:02: f5:a8:05:f9:38:94:28:e7:06:90:70:92:c1:0b:28:2e:18:46: 67:39:f0:13:58:55:31:4e:96:c2:5d:13:57:15:12:77:42:48: f9:d2:92:14:43:11:94:8a:4d:bb:9a:6e:12:37:da:d8:56:cf: d0:42:09:a6 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIBLjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0MkUz MjQ1N0MxNkJBODc0MjE2QThGNURCQjBEMzM1QkQxNDhDQjMxMB4XDTI0MDYwMTA2 NDUxOFoXDTI1MDUxNTAxMzAwM1owMzExMC8GA1UEAxMoMjkyODk2MEQyRTJCODg1 ODg1NUQzM0MxMDExREMxQTU2RkJCMzQ0NjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKwFc+QP9rQEGycEw/pmIF/Afz3jKVi9+Z2w5GcNCEP3ROFEtRyZ QdBGVMgyghaOUfNd4q1CxqsL5rhQWT7IcWPDiYsCWPG4pNYTovGGiuc/Zun1K1ex ZxJH/J9SUZYPBiVLZVwXAKTb0h24BoF4WHeZxSSST5hVPCScidvRwxWDHOSUH1B+ KeDKZRIYV1xMNdfKEkKaQ0D4yQ9PKFjN9saNGu4X9ojsxRn71Mu15a14Rw/pSEhi cpOnYkMzsa7/Ql+347/YPO/SVI3rovogF775vVqmfg5tbeSIIMjLy99BXIsSNkuc 3ZvrN/unUsqEMbVLUDSmvLUnKv7oWDV4dXUCAwEAAaOCAiQwggIgMB0GA1UdDgQW BBQpKJYNLiuIWIVdM8EBHcGlb7s0RjAfBgNVHSMEGDAWgBRC4yRXwWuodCFqj127 DTNb0UjLMTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvOTkwL1F1TWtWOEZycUhRaGFvOWR1dzB6VzlGSXl6RS5jcmwwbQYIKwYB BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1F1TWtWOEZycUhRaGFvOWR1dzB6VzlG SXl6RS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5 MUE3MzgxMDAwMC85OTAvS1NpV0RTNHJpRmlGWFRQQkFSM0JwVy03TkVZLnJvYTBG BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAsriJDANBgkqhkiG9w0BAQsFAAOCAQEAW4WeqAKEsuqLkW5kx8cyBw7FGQux VNq3OaCCIAV/YF9sjQ1sQxAdf+42f8ml1FUI8ttMjeTtpAUAb+/fxZ6eYMxCv9Nk 9sCcKwcSVwy0/NrAgAFqFEevH8b7vvsAFs8G+hipus/BAjtcEqPomlkXdaont31B DOx10nwqJBL42TFHc44vKa6xuElS8OA7f1G8pssVLLkI2YkYtzhdqLzZhwbcF2MI r9O2eegEwLgehxpJzywYyjHkeUsXsSxkHGIwZWY5hFAC9agF+TiUKOcGkHCSwQso LhhGZznwE1hVMU6Wwl0TVxUSd0JI+dKSFEMRlIpNu5puEjfa2FbP0EIJpg== -----END CERTIFICATE-----Generated at Sun Feb 16 22:15:40 2025 by rpki-client