$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/5515/tFHo6jTyByIQp8EMmimpMlyAp10.roa File: tFHo6jTyByIQp8EMmimpMlyAp10.roa (raw, json) Hash identifier: l5RGwl1O3y/IMOb2hNCTtOIwLtXDWVYDroZFW2YzlLs= Subject key identifier: B4:51:E8:EA:34:F2:07:22:10:A7:C1:0C:9A:29:A9:32:5C:80:A7:5D Certificate issuer: /CN=522EDDC4FC26DE2699771BB10731C8B0BC9C1790 Certificate serial: 2A Authority key identifier: 52:2E:DD:C4:FC:26:DE:26:99:77:1B:B1:07:31:C8:B0:BC:9C:17:90 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ui7dxPwm3iaZdxuxBzHIsLycF5A.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5515/tFHo6jTyByIQp8EMmimpMlyAp10.roa Signing time: Tue 01 Apr 2025 01:28:24 +0000 ROA not before: Tue 01 Apr 2025 01:28:24 +0000 ROA not after: Sun 15 Mar 2026 01:30:03 +0000 asID: 131948 IP address blocks: 103.177.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5515/Ui7dxPwm3iaZdxuxBzHIsLycF5A.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5515/Ui7dxPwm3iaZdxuxBzHIsLycF5A.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ui7dxPwm3iaZdxuxBzHIsLycF5A.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=522EDDC4FC26DE2699771BB10731C8B0BC9C1790 Validity Not Before: Apr 1 01:28:24 2025 GMT Not After : Mar 15 01:30:03 2026 GMT Subject: CN=B451E8EA34F2072210A7C10C9A29A9325C80A75D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:bc:da:e5:3b:4c:4c:e5:db:cc:be:68:f7:1e: f5:c5:b3:c4:86:63:5b:15:71:32:33:94:c9:63:ab: 9b:12:f3:28:1d:b2:da:f8:da:9d:02:40:f1:bb:ba: e9:58:d8:db:6c:53:78:bf:74:25:e9:8b:3b:87:78: 76:30:df:03:e5:19:f4:3a:0f:40:7d:aa:d9:85:b7: 61:cb:3a:27:f3:13:4f:23:a7:82:74:f3:8d:37:66: 23:9c:a7:dd:65:35:5a:ae:0c:f3:7a:0c:0e:b9:50: 4e:d8:df:f7:c0:0c:96:4a:c3:e3:59:c4:3b:88:8a: 78:c5:83:c3:ba:4d:63:ba:3e:a4:e9:97:74:f6:4a: c2:a8:7a:44:52:0c:82:7f:ac:f3:17:8e:7c:ba:5d: 43:a0:f0:63:b7:39:97:55:0f:fe:0c:b5:02:d8:a0: e0:5d:18:e6:dd:df:fb:d7:3a:08:5d:0b:45:1f:d1: 3d:6d:68:c4:74:28:30:92:e4:ba:9f:d2:85:51:7d: b9:0d:88:02:9a:22:d2:2a:da:ac:19:7e:2b:7b:f9: 94:c0:11:e0:e1:9f:1a:f5:22:85:b5:af:ed:14:97: 77:6e:79:9f:09:be:c5:a3:e8:d5:06:0f:b2:2e:75: 12:33:90:a2:79:7f:f9:37:c9:2f:8e:13:98:be:e6: 60:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:51:E8:EA:34:F2:07:22:10:A7:C1:0C:9A:29:A9:32:5C:80:A7:5D X509v3 Authority Key Identifier: keyid:52:2E:DD:C4:FC:26:DE:26:99:77:1B:B1:07:31:C8:B0:BC:9C:17:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5515/Ui7dxPwm3iaZdxuxBzHIsLycF5A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ui7dxPwm3iaZdxuxBzHIsLycF5A.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/5515/tFHo6jTyByIQp8EMmimpMlyAp10.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.177.117.0/24 Signature Algorithm: sha256WithRSAEncryption 62:1e:35:9c:54:ae:e1:f7:e2:95:ab:e6:1f:b2:1b:7d:30:d8: 34:5f:7d:0a:f1:9c:00:87:8b:e3:4d:ef:39:87:88:e7:1d:30: 6e:c5:1f:52:ed:b0:fb:f4:f3:57:39:c0:4b:35:39:72:e6:e0: d3:eb:5b:df:77:02:09:25:13:4d:e8:8d:a0:a3:67:f8:09:2e: 00:ce:90:37:6f:d6:d8:f3:d8:71:ac:99:10:80:3b:61:01:0d: 5a:be:a1:5c:21:86:48:52:b7:fd:a3:74:cf:52:e1:2b:fd:b0: 0f:65:56:b2:50:16:2e:ca:44:02:94:6f:33:57:d1:b6:2d:5b: 1a:74:34:cf:9b:e9:de:02:4c:ef:7e:98:c2:b0:62:04:7e:d2: 32:8b:4a:bc:9e:b0:b2:4f:90:6f:03:87:9c:64:85:96:23:05: cb:35:4f:3b:2f:d3:64:da:92:91:ef:41:cb:ce:8a:56:ec:6d: 92:46:95:82:8f:e7:34:ee:a6:1c:53:1a:fe:73:42:ca:31:14: 73:fe:90:8b:fd:20:99:ee:07:14:09:2f:4a:57:6b:39:4b:89: 81:fe:9b:85:2a:77:9c:d6:d6:d9:94:d6:3b:a5:70:56:ad:88: 83:80:97:7f:ae:10:a4:17:71:9b:89:84:95:11:61:8b:55:78: 0e:60:8e:6d -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBKjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1MjJF RERDNEZDMjZERTI2OTk3NzFCQjEwNzMxQzhCMEJDOUMxNzkwMB4XDTI1MDQwMTAx MjgyNFoXDTI2MDMxNTAxMzAwM1owMzExMC8GA1UEAxMoQjQ1MUU4RUEzNEYyMDcy MjEwQTdDMTBDOUEyOUE5MzI1QzgwQTc1RDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMu82uU7TEzl28y+aPce9cWzxIZjWxVxMjOUyWOrmxLzKB2y2vja nQJA8bu66VjY22xTeL90JemLO4d4djDfA+UZ9DoPQH2q2YW3Ycs6J/MTTyOngnTz jTdmI5yn3WU1Wq4M83oMDrlQTtjf98AMlkrD41nEO4iKeMWDw7pNY7o+pOmXdPZK wqh6RFIMgn+s8xeOfLpdQ6DwY7c5l1UP/gy1Atig4F0Y5t3f+9c6CF0LRR/RPW1o xHQoMJLkup/ShVF9uQ2IApoi0irarBl+K3v5lMAR4OGfGvUihbWv7RSXd255nwm+ xaPo1QYPsi51EjOQonl/+TfJL44TmL7mYMMCAwEAAaOCAiYwggIiMB0GA1UdDgQW BBS0UejqNPIHIhCnwQyaKakyXICnXTAfBgNVHSMEGDAWgBRSLt3E/CbeJpl3G7EH MciwvJwXkDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvNTUxNS9VaTdkeFB3bTNpYVpkeHV4QnpISXNMeWNGNUEuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9VaTdkeFB3bTNpYVpkeHV4QnpISXNM eWNGNUEuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvNTUxNS90RkhvNmpUeUJ5SVFwOEVNbWltcE1seUFwMTAucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAZ7F1MA0GCSqGSIb3DQEBCwUAA4IBAQBiHjWcVK7h9+KVq+Yfsht9MNg0 X30K8ZwAh4vjTe85h4jnHTBuxR9S7bD79PNXOcBLNTly5uDT61vfdwIJJRNN6I2g o2f4CS4AzpA3b9bY89hxrJkQgDthAQ1avqFcIYZIUrf9o3TPUuEr/bAPZVayUBYu ykQClG8zV9G2LVsadDTPm+neAkzvfpjCsGIEftIyi0q8nrCyT5BvA4ecZIWWIwXL NU87L9Nk2pKR70HLzopW7G2SRpWCj+c07qYcUxr+c0LKMRRz/pCL/SCZ7gcUCS9K V2s5S4mB/puFKnec1tbZlNY7pXBWrYiDgJd/rhCkF3GbiYSVEWGLVXgOYI5t -----END CERTIFICATE-----Generated at Mon Apr 28 22:52:46 2025 by rpki-client on console.sobornost.net