$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20128/4i7PCdJyrO8wqeAyiFcOsecOmeA.roa File: 4i7PCdJyrO8wqeAyiFcOsecOmeA.roa (raw, json) Hash identifier: WoCslztQFf9GPc8goG7JgFHbDu2ddL4l50CIZp/6za4= Subject key identifier: E2:2E:CF:09:D2:72:AC:EF:30:A9:E0:32:88:57:0E:B1:E7:0E:99:E0 Certificate issuer: /CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Certificate serial: BF Authority key identifier: 8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/4i7PCdJyrO8wqeAyiFcOsecOmeA.roa Signing time: Thu 05 Dec 2024 16:47:13 +0000 ROA not before: Thu 05 Dec 2024 16:47:13 +0000 ROA not after: Sat 15 Nov 2025 01:30:03 +0000 asID: 132203 IP address blocks: 120.88.56.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 18:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 191 (0xbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Validity Not Before: Dec 5 16:47:13 2024 GMT Not After : Nov 15 01:30:03 2025 GMT Subject: CN=E22ECF09D272ACEF30A9E03288570EB1E70E99E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:5d:f5:24:78:bf:2b:ee:5a:e6:ad:45:05:9b: df:89:f3:db:57:da:a6:47:bf:2e:26:1d:0e:f9:cf: a1:a0:55:f0:ad:28:a3:dc:d4:9c:16:b6:b9:4c:76: 6f:72:5b:2b:cc:8d:2f:c8:6f:20:b8:20:33:24:fb: a7:11:b5:87:f6:2a:8b:9a:a8:96:80:9a:1b:43:e2: ba:61:7d:98:05:74:b1:fe:5c:16:16:95:98:da:48: 89:bf:f7:ef:03:c5:33:d0:bb:81:19:aa:60:38:22: 58:68:25:a3:86:c9:21:2c:c4:c0:2d:98:25:aa:9a: c2:39:93:6d:d1:bd:45:87:36:2f:8d:aa:6d:8d:b4: b5:a9:36:4f:9b:17:9a:cc:28:33:2b:62:99:b2:4f: 3c:d6:d6:45:47:de:4c:22:1b:9c:bf:d9:cc:ae:fe: 13:ed:77:ab:45:7a:b3:df:e8:4a:4b:8a:fc:1f:1f: 0f:6f:7e:37:11:3c:81:ff:3b:f7:44:73:6f:c3:46: 51:12:8f:83:99:1d:03:52:e1:82:29:ad:46:42:e3: f8:f9:3e:53:bb:7c:61:71:41:8d:6a:bf:09:b5:0b: c3:bc:d9:95:a4:b6:a6:f7:7d:43:0e:56:4f:84:f0: 1b:f7:72:b5:26:38:9c:f4:04:d2:c6:22:e1:a9:bb: 85:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:2E:CF:09:D2:72:AC:EF:30:A9:E0:32:88:57:0E:B1:E7:0E:99:E0 X509v3 Authority Key Identifier: keyid:8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/4i7PCdJyrO8wqeAyiFcOsecOmeA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.88.56.0/23 Signature Algorithm: sha256WithRSAEncryption 8c:7a:36:fb:86:ca:c1:d0:84:4e:ff:11:06:9f:a0:0d:15:c9: 9c:7e:a1:e2:3e:b6:45:b4:1c:78:40:66:83:46:78:aa:89:82: 73:1a:a3:07:c9:30:31:4f:52:15:d0:91:15:13:ce:2d:b4:26: 19:1b:b6:ac:b0:dd:b6:33:89:c5:e4:0e:2c:52:5b:c5:d0:d8: f4:0f:2d:fe:41:36:f5:29:8c:f4:9d:94:57:0b:99:69:43:4d: df:85:bc:e4:ef:f3:8e:1a:97:9d:f3:3a:39:1b:68:e6:8c:91: 15:36:6e:6b:ba:2b:2f:72:c8:d4:ee:83:be:f1:35:b5:fc:08: 5d:ac:03:a1:15:96:57:ac:71:8c:c6:02:48:ca:74:15:2b:09: b8:71:2b:08:95:82:d9:2b:5d:98:58:1f:07:79:af:a5:eb:55: 56:c9:84:a7:7a:50:55:71:80:c1:e4:3c:0e:4c:68:01:85:85: bf:dd:2f:b6:62:15:e6:95:50:e9:b1:9e:b7:17:54:c9:5a:87: c9:ce:bf:5e:11:04:94:dc:52:49:84:ee:d5:0b:cd:02:86:c9: e6:6f:6e:dd:b8:9d:7d:a4:ba:43:95:9b:b4:f0:66:a8:c5:8a: 01:40:11:e4:d3:2e:bd:6f:d4:98:6b:70:f2:61:34:da:77:76: f8:45:e0:14 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAL8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEQ0 NkRERjg4QTQ2RTRFQzJEOUE5QkFCNUZGMTMwNUZEMDU3RjEzODAeFw0yNDEyMDUx NjQ3MTNaFw0yNTExMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEUyMkVDRjA5RDI3MkFD RUYzMEE5RTAzMjg4NTcwRUIxRTcwRTk5RTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnXfUkeL8r7lrmrUUFm9+J89tX2qZHvy4mHQ75z6GgVfCtKKPc 1JwWtrlMdm9yWyvMjS/IbyC4IDMk+6cRtYf2KouaqJaAmhtD4rphfZgFdLH+XBYW lZjaSIm/9+8DxTPQu4EZqmA4IlhoJaOGySEsxMAtmCWqmsI5k23RvUWHNi+Nqm2N tLWpNk+bF5rMKDMrYpmyTzzW1kVH3kwiG5y/2cyu/hPtd6tFerPf6EpLivwfHw9v fjcRPIH/O/dEc2/DRlESj4OZHQNS4YIprUZC4/j5PlO7fGFxQY1qvwm1C8O82ZWk tqb3fUMOVk+E8Bv3crUmOJz0BNLGIuGpu4VTAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQU4i7PCdJyrO8wqeAyiFcOsecOmeAwHwYDVR0jBBgwFoAUjUbd+IpG5Owtmpur X/EwX9BX8TgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwMTI4L2pVYmQtSXBHNU93dG1wdXJYX0V3WDlCWDhUZy5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2pVYmQtSXBHNU93dG1wdXJYX0V3 WDlCWDhUZy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8yMDEyOC80aTdQQ2RKeXJPOHdxZUF5aUZjT3NlY09tZUEu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBeFg4MA0GCSqGSIb3DQEBCwUAA4IBAQCMejb7hsrB0IRO/xEGn6AN FcmcfqHiPrZFtBx4QGaDRniqiYJzGqMHyTAxT1IV0JEVE84ttCYZG7assN22M4nF 5A4sUlvF0Nj0Dy3+QTb1KYz0nZRXC5lpQ03fhbzk7/OOGped8zo5G2jmjJEVNm5r uisvcsjU7oO+8TW1/AhdrAOhFZZXrHGMxgJIynQVKwm4cSsIlYLZK12YWB8Hea+l 61VWyYSnelBVcYDB5DwOTGgBhYW/3S+2YhXmlVDpsZ63F1TJWofJzr9eEQSU3FJJ hO7VC80Chsnmb27duJ19pLpDlZu08GaoxYoBQBHk0y69b9SYa3DyYTTad3b4ReAU -----END CERTIFICATE-----Generated at Sat Apr 26 20:15:43 2025 by rpki-client