$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/354/_2vVWVtlxiNX5IdifzTsGlLnWX0.roa File: _2vVWVtlxiNX5IdifzTsGlLnWX0.roa (raw, json) Hash identifier: p+uVz1VSXvLPtweai3CUwuWHCZq8CIc9maBVSE11k6w= Subject key identifier: FF:6B:D5:59:5B:65:C6:23:57:E4:87:62:7F:34:EC:1A:52:E7:59:7D Certificate issuer: /CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC Certificate serial: 011E Authority key identifier: 0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/_2vVWVtlxiNX5IdifzTsGlLnWX0.roa Signing time: Fri 31 Jan 2025 01:31:12 +0000 ROA not before: Fri 31 Jan 2025 01:31:12 +0000 ROA not after: Thu 15 Jan 2026 01:30:03 +0000 asID: 9607 IP address blocks: 124.147.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 15:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 286 (0x11e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC Validity Not Before: Jan 31 01:31:12 2025 GMT Not After : Jan 15 01:30:03 2026 GMT Subject: CN=FF6BD5595B65C62357E487627F34EC1A52E7597D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:c0:a7:d2:c2:35:7e:8c:98:a0:8a:26:18:ff: f3:22:94:3b:94:56:d9:e0:55:6f:18:1c:6f:8c:e7: 46:a0:6a:59:52:57:db:af:fd:99:4e:0f:a4:ee:4c: a3:a9:cf:1d:9b:51:64:4c:94:8c:f6:3e:e5:a1:2d: e5:d1:f8:b2:e0:33:d3:2e:3f:4d:10:09:98:8b:93: dc:92:17:28:cf:33:20:bc:b8:32:fc:30:7f:57:15: 9c:97:4d:13:48:81:52:d6:aa:45:c7:01:d7:c0:f0: cd:0d:34:32:28:a3:cc:31:0d:fd:0c:82:90:3a:bb: 40:da:c5:e3:43:ec:75:58:91:ba:85:86:71:89:c5: 35:fd:b1:ae:2a:ad:40:e4:d9:89:bd:f4:86:45:25: bd:1c:81:b4:de:6d:78:b6:81:d6:d8:a7:f6:e0:61: 00:62:75:d8:95:38:ae:e3:88:bb:4a:be:81:9e:d4: 4a:66:8b:9b:9e:96:18:b3:8f:65:9f:c0:b8:ec:6a: d9:2d:c8:46:66:24:2f:a9:d4:0c:0c:38:69:08:c2: 3e:f1:49:02:93:7e:21:ef:1f:22:b1:55:f0:d5:fb: be:a8:8d:69:d9:5d:50:9e:a1:a7:4e:e0:45:07:56: 27:82:52:fd:ca:f9:24:8a:2d:3e:27:eb:7f:c1:18: e6:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:6B:D5:59:5B:65:C6:23:57:E4:87:62:7F:34:EC:1A:52:E7:59:7D X509v3 Authority Key Identifier: keyid:0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/_2vVWVtlxiNX5IdifzTsGlLnWX0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.147.0.0/19 Signature Algorithm: sha256WithRSAEncryption 25:d1:a3:8e:6d:bd:9e:c9:96:a5:81:e6:14:a6:88:58:e7:cf: 24:28:6b:70:55:62:78:1e:ac:4c:1d:0a:e6:92:39:d9:8f:f0: 87:8f:60:3b:80:cf:f6:bc:55:e8:2a:02:c9:34:21:ea:6f:a7: e0:9c:a7:03:ca:2d:ff:d0:66:96:02:8c:44:8a:bd:c0:d8:d2: b2:1a:f7:f0:6f:ac:1b:c4:56:bc:c1:61:76:65:ea:b1:fa:74: 58:a7:9d:0f:5b:f7:31:a6:09:92:fc:59:26:6b:8c:7f:cd:f1: 9c:95:1f:99:e5:1b:e9:5f:77:9c:c4:7e:b1:4c:cd:26:64:a3: cf:61:20:15:0a:37:c3:bf:fe:70:5c:3b:7e:99:eb:28:19:2c: 6d:88:8d:5b:3c:84:95:45:c1:fb:d6:b1:a6:11:10:5c:26:77: 46:89:24:b8:a3:ee:1b:d8:73:a0:44:56:18:2c:e2:e6:9e:15: 39:b5:40:b8:b2:aa:40:7e:cd:07:cf:a6:34:5a:f6:90:fc:23: 91:72:f1:cb:5e:d0:d1:49:5c:d5:3c:fe:67:25:26:a4:b4:4a: 98:a9:ca:02:2d:b6:2e:79:24:6a:1d:dd:f8:a4:2f:f4:91:d6: 1d:e8:d9:0b:80:cc:ad:c1:02:70:8f:49:55:52:02:12:90:68: f4:d1:27:9d -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAR4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEE1 QUNBQzI5OTBCRDhGODY1NUMwQzcyMUJBQ0ZGMDMwQTU5RDFGQzAeFw0yNTAxMzEw MTMxMTJaFw0yNjAxMTUwMTMwMDNaMDMxMTAvBgNVBAMTKEZGNkJENTU5NUI2NUM2 MjM1N0U0ODc2MjdGMzRFQzFBNTJFNzU5N0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnwKfSwjV+jJigiiYY//MilDuUVtngVW8YHG+M50agallSV9uv /ZlOD6TuTKOpzx2bUWRMlIz2PuWhLeXR+LLgM9MuP00QCZiLk9ySFyjPMyC8uDL8 MH9XFZyXTRNIgVLWqkXHAdfA8M0NNDIoo8wxDf0MgpA6u0DaxeND7HVYkbqFhnGJ xTX9sa4qrUDk2Ym99IZFJb0cgbTebXi2gdbYp/bgYQBiddiVOK7jiLtKvoGe1Epm i5uelhizj2WfwLjsatktyEZmJC+p1AwMOGkIwj7xSQKTfiHvHyKxVfDV+76ojWnZ XVCeoadO4EUHVieCUv3K+SSKLT4n63/BGOYdAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQU/2vVWVtlxiNX5IdifzTsGlLnWX0wHwYDVR0jBBgwFoAUClrKwpkL2PhlXAxy G6z/AwpZ0fwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzM1NC9DbHJLd3BrTDJQaGxYQXh5RzZ6X0F3cFowZncuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9DbHJLd3BrTDJQaGxYQXh5RzZ6X0F3 cFowZncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzU0L18ydlZXVnRseGlOWDVJZGlmelRzR2xMbldYMC5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAV8kwAwDQYJKoZIhvcNAQELBQADggEBACXRo45tvZ7JlqWB5hSmiFjnzyQo a3BVYngerEwdCuaSOdmP8IePYDuAz/a8VegqAsk0Iepvp+CcpwPKLf/QZpYCjESK vcDY0rIa9/BvrBvEVrzBYXZl6rH6dFinnQ9b9zGmCZL8WSZrjH/N8ZyVH5nlG+lf d5zEfrFMzSZko89hIBUKN8O//nBcO36Z6ygZLG2IjVs8hJVFwfvWsaYREFwmd0aJ JLij7hvYc6BEVhgs4uaeFTm1QLiyqkB+zQfPpjRa9pD8I5Fy8cte0NFJXNU8/mcl JqS0SpipygItti55JGod3fikL/SR1h3o2QuAzK3BAnCPSVVSAhKQaPTRJ50= -----END CERTIFICATE-----Generated at Sat Apr 26 17:30:37 2025 by rpki-client