$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/469/X173ZpgFQGG_doS_LjZopzlW3jU.roa File: X173ZpgFQGG_doS_LjZopzlW3jU.roa (raw, json) Hash identifier: JEGHu4sX39aILuZUR4v8x3kp03o9LJ5LZTRg+J373mE= Subject key identifier: 5F:5E:F7:66:98:05:40:61:BF:76:84:BF:2E:36:68:A7:39:56:DE:35 Certificate issuer: /CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Certificate serial: 012D Authority key identifier: 40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/X173ZpgFQGG_doS_LjZopzlW3jU.roa Signing time: Thu 31 Oct 2024 01:30:27 +0000 ROA not before: Thu 31 Oct 2024 01:30:27 +0000 ROA not after: Wed 15 Oct 2025 01:30:02 +0000 asID: 10021 IP address blocks: 114.31.88.0/21 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 301 (0x12d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40610DA68E93ED538A48A46C5214024ED54D07F6 Validity Not Before: Oct 31 01:30:27 2024 GMT Not After : Oct 15 01:30:02 2025 GMT Subject: CN=5F5EF76698054061BF7684BF2E3668A73956DE35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a0:fe:c6:12:f6:26:ba:ea:a0:65:40:ac:92: e1:aa:35:da:1e:60:b1:10:94:c5:00:8b:e9:42:8d: 5d:63:07:a3:7b:72:c7:fa:b1:6c:b7:ba:5e:82:00: 2b:4c:c2:58:2f:66:88:0f:5a:47:3a:ba:1a:a0:d7: 42:22:ae:35:84:d2:6d:0b:f6:b3:06:d5:1e:21:59: c5:e0:d2:2b:71:aa:a4:b6:d5:b1:d0:43:72:87:12: a2:c4:c0:8c:5b:5d:ff:78:8a:02:4e:a8:bf:71:69: 5d:6b:47:83:40:c8:6f:62:f4:aa:6f:e8:4b:d0:f9: 95:72:5e:5a:9d:79:b6:fe:b4:67:94:2e:64:32:87: bc:48:e5:62:21:63:64:97:76:e1:f4:43:c4:6d:c1: fa:f6:34:60:c2:e0:b2:4d:5a:0a:0c:1b:e6:35:b9: b1:fb:1d:37:f2:0f:da:dc:ce:15:6a:ad:c2:f7:ac: aa:c5:db:02:90:f4:4f:ed:8d:18:ae:82:32:24:ce: 8a:3c:68:6c:b7:ca:03:c8:c0:8d:11:cb:6d:cb:92: 6a:59:5b:c5:38:5e:e5:2b:ee:f3:05:cf:29:e8:96: 33:62:d6:7c:ab:b8:32:1f:e3:ea:ba:81:86:71:c2: 9e:4d:e4:45:cf:20:48:d8:f0:7b:e7:4d:62:da:f1: 0a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:5E:F7:66:98:05:40:61:BF:76:84:BF:2E:36:68:A7:39:56:DE:35 X509v3 Authority Key Identifier: keyid:40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/X173ZpgFQGG_doS_LjZopzlW3jU.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.31.88.0/21 Signature Algorithm: sha256WithRSAEncryption b6:a8:e0:7b:d0:83:fc:d4:15:00:24:48:bb:a1:5c:84:76:c8: f5:87:31:dd:21:d6:13:33:eb:f0:7b:2d:a5:b1:eb:58:89:c6: 93:d5:38:05:b6:9f:7a:83:e6:8f:1c:95:57:67:98:a7:fe:ea: 73:68:5a:69:6f:b7:57:73:6d:56:5b:dd:09:b8:16:29:de:1b: 2f:c0:e8:cb:0d:c5:9a:30:4d:35:12:0a:67:20:53:6f:1c:c9: 7b:d6:81:1f:03:10:ad:44:54:d1:97:5e:50:48:6b:ae:87:4b: 41:e9:55:b4:f6:89:d7:93:97:73:5c:f6:56:ae:c0:42:54:33: a6:31:a6:2c:94:f2:b5:d4:7f:91:d0:c3:73:45:02:ed:f1:b3: af:5e:c3:09:2a:85:c3:de:1b:c0:a2:a7:82:81:b1:08:ac:6d: 2e:fa:60:b2:8f:62:e5:b9:96:08:98:d2:92:b1:03:51:2f:ba: 2c:51:3e:be:77:07:af:09:5a:a8:89:48:0b:06:a3:2a:35:6a: e1:48:33:fb:8f:65:41:86:2e:15:6e:ed:7c:95:a5:38:70:2a: 55:f4:da:8e:12:0c:da:c0:65:e7:cc:91:e6:53:e4:bd:10:85: 5b:bd:e4:26:42:75:c1:e4:df:27:a7:81:1e:64:76:6c:b4:41: f5:f4:65:24 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAS0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDA2 MTBEQTY4RTkzRUQ1MzhBNDhBNDZDNTIxNDAyNEVENTREMDdGNjAeFw0yNDEwMzEw MTMwMjdaFw0yNTEwMTUwMTMwMDJaMDMxMTAvBgNVBAMTKDVGNUVGNzY2OTgwNTQw NjFCRjc2ODRCRjJFMzY2OEE3Mzk1NkRFMzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyoP7GEvYmuuqgZUCskuGqNdoeYLEQlMUAi+lCjV1jB6N7csf6 sWy3ul6CACtMwlgvZogPWkc6uhqg10IirjWE0m0L9rMG1R4hWcXg0itxqqS21bHQ Q3KHEqLEwIxbXf94igJOqL9xaV1rR4NAyG9i9Kpv6EvQ+ZVyXlqdebb+tGeULmQy h7xI5WIhY2SXduH0Q8Rtwfr2NGDC4LJNWgoMG+Y1ubH7HTfyD9rczhVqrcL3rKrF 2wKQ9E/tjRiugjIkzoo8aGy3ygPIwI0Ry23LkmpZW8U4XuUr7vMFzynoljNi1nyr uDIf4+q6gYZxwp5N5EXPIEjY8HvnTWLa8QopAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUX173ZpgFQGG/doS/LjZopzlW3jUwHwYDVR0jBBgwFoAUQGENpo6T7VOKSKRs UhQCTtVNB/YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzQ2OS9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0Vk5CX1kuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0 Vk5CX1kuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNDY5L1gxNzNacGdGUUdHX2RvU19MalpvcHpsVzNqVS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANyH1gwDQYJKoZIhvcNAQELBQADggEBALao4HvQg/zUFQAkSLuhXIR2yPWH Md0h1hMz6/B7LaWx61iJxpPVOAW2n3qD5o8clVdnmKf+6nNoWmlvt1dzbVZb3Qm4 FineGy/A6MsNxZowTTUSCmcgU28cyXvWgR8DEK1EVNGXXlBIa66HS0HpVbT2ideT l3Nc9lauwEJUM6YxpiyU8rXUf5HQw3NFAu3xs69ewwkqhcPeG8Cip4KBsQisbS76 YLKPYuW5lgiY0pKxA1EvuixRPr53B68JWqiJSAsGoyo1auFIM/uPZUGGLhVu7XyV pThwKlX02o4SDNrAZefMkeZT5L0QhVu95CZCdcHk3yengR5kdmy0QfX0ZSQ= -----END CERTIFICATE-----Generated at Sat Apr 26 14:37:01 2025 by rpki-client