$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20128/otErR_vS8KBNQikyQG0SG8tKMM0.roa File: otErR_vS8KBNQikyQG0SG8tKMM0.roa (raw, json) Hash identifier: 4rQ4GIg+ydy0W4G2+1UM5akbeCXgUJg7MIRWaYdR3hU= Subject key identifier: A2:D1:2B:47:FB:D2:F0:A0:4D:42:29:32:40:6D:12:1B:CB:4A:30:CD Certificate issuer: /CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Certificate serial: 5E Authority key identifier: 8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/otErR_vS8KBNQikyQG0SG8tKMM0.roa Signing time: Fri 20 Sep 2024 16:15:59 +0000 ROA not before: Fri 20 Sep 2024 16:15:59 +0000 ROA not after: Mon 15 Sep 2025 01:30:03 +0000 asID: 131274 IP address blocks: 61.213.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D46DDF88A46E4EC2D9A9BAB5FF1305FD057F138 Validity Not Before: Sep 20 16:15:59 2024 GMT Not After : Sep 15 01:30:03 2025 GMT Subject: CN=A2D12B47FBD2F0A04D422932406D121BCB4A30CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:1f:7e:9a:7f:58:40:83:23:0b:53:0b:94:21: f8:56:d2:dd:60:39:ca:04:1c:2c:4d:60:95:b0:a1: 76:4d:da:8a:97:e4:3e:2f:8c:01:56:59:2d:f1:4b: fc:8f:3a:5d:c5:dc:c6:03:4c:d4:a1:53:d5:bb:b6: 96:24:98:71:23:be:6a:97:d6:c8:ee:74:f7:01:ee: 81:a1:6d:ce:69:f4:c9:83:8d:73:79:82:7a:89:bc: 8b:5b:ff:48:1c:c2:bb:c6:24:99:09:27:56:8f:b7: 13:69:88:1a:b5:61:27:49:24:dc:04:3a:4c:d6:c0: 6c:17:1a:f9:a7:69:2f:a7:0c:6b:74:10:c0:fe:b2: de:d7:3b:3c:ca:8f:91:81:2a:8b:7d:d5:d3:87:af: d6:7e:42:c1:45:d4:d0:22:a4:29:a8:9e:fc:8d:29: 92:4e:17:af:de:c8:db:3e:c1:5d:eb:15:96:f5:5d: 2a:41:11:21:a5:8b:55:5b:72:2a:87:3b:2d:96:81: fd:5c:e4:2c:70:09:2f:19:9a:ee:1d:24:29:98:d0: a4:22:75:fb:44:a3:34:4a:5b:b0:4b:ee:ff:ac:10: 3d:c0:42:46:51:e7:04:44:04:1d:87:e9:57:e9:59: 58:3c:4b:9a:4d:67:49:81:1d:bc:9b:b0:fd:b3:cd: 38:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:D1:2B:47:FB:D2:F0:A0:4D:42:29:32:40:6D:12:1B:CB:4A:30:CD X509v3 Authority Key Identifier: keyid:8D:46:DD:F8:8A:46:E4:EC:2D:9A:9B:AB:5F:F1:30:5F:D0:57:F1:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/jUbd-IpG5OwtmpurX_EwX9BX8Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jUbd-IpG5OwtmpurX_EwX9BX8Tg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20128/otErR_vS8KBNQikyQG0SG8tKMM0.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.213.166.0/24 Signature Algorithm: sha256WithRSAEncryption 40:45:15:e5:ed:2c:40:da:c7:dc:74:73:0e:86:30:71:43:b6: fb:ee:e4:d2:a6:73:f7:7d:e4:76:6b:8c:9f:86:25:f4:98:06: fd:e2:33:f7:d6:a3:9f:9a:dc:b9:20:ed:1a:48:4f:94:da:f3: 3b:b4:8a:96:ca:b8:9d:3a:ac:a1:ca:0a:b0:86:29:8a:35:ae: 5b:5a:2b:31:6c:d6:a0:ef:8d:b2:ff:a8:5f:b2:f8:0c:64:1a: 99:cc:b6:8f:f0:65:55:e1:0b:f0:df:a8:ff:6c:83:77:f9:4b: 22:f2:f8:91:ac:0f:f3:0e:0d:5d:04:8f:4c:6a:41:65:2e:0a: 63:20:50:7d:16:8f:a9:97:4a:6c:37:aa:98:c3:0e:9f:98:27: 43:9e:2d:4b:d3:be:eb:50:d9:94:08:dd:41:a9:09:1d:7d:72: b8:1e:ab:0e:a2:77:3c:c0:e3:73:dc:25:63:99:30:84:9e:df: 53:54:28:ba:e3:b8:88:0a:da:9c:2b:27:cc:b5:95:7e:ac:3e: 37:aa:81:80:30:94:90:88:9c:b7:cb:3a:76:db:42:1f:a2:3a: a0:08:5f:ae:5c:06:a9:56:7b:71:a3:d7:94:fc:fb:05:46:0a: 63:ec:1d:a2:6c:a4:6d:af:0a:72:7d:d5:cc:48:7b:2f:c2:c8: 1b:97:52:cd -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBXjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4RDQ2 RERGODhBNDZFNEVDMkQ5QTlCQUI1RkYxMzA1RkQwNTdGMTM4MB4XDTI0MDkyMDE2 MTU1OVoXDTI1MDkxNTAxMzAwM1owMzExMC8GA1UEAxMoQTJEMTJCNDdGQkQyRjBB MDRENDIyOTMyNDA2RDEyMUJDQjRBMzBDRDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALgffpp/WECDIwtTC5Qh+FbS3WA5ygQcLE1glbChdk3aipfkPi+M AVZZLfFL/I86XcXcxgNM1KFT1bu2liSYcSO+apfWyO509wHugaFtzmn0yYONc3mC eom8i1v/SBzCu8YkmQknVo+3E2mIGrVhJ0kk3AQ6TNbAbBca+adpL6cMa3QQwP6y 3tc7PMqPkYEqi33V04ev1n5CwUXU0CKkKaie/I0pkk4Xr97I2z7BXesVlvVdKkER IaWLVVtyKoc7LZaB/VzkLHAJLxma7h0kKZjQpCJ1+0SjNEpbsEvu/6wQPcBCRlHn BEQEHYfpV+lZWDxLmk1nSYEdvJuw/bPNOJsCAwEAAaOCAigwggIkMB0GA1UdDgQW BBSi0StH+9LwoE1CKTJAbRIby0owzTAfBgNVHSMEGDAWgBSNRt34ikbk7C2am6tf 8TBf0FfxODAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAxMjgvalViZC1JcEc1T3d0bXB1clhfRXdYOUJYOFRnLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvalViZC1JcEc1T3d0bXB1clhfRXdY OUJYOFRnLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMTI4L290RXJSX3ZTOEtCTlFpa3lRRzBTRzh0S01NMC5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAA91aYwDQYJKoZIhvcNAQELBQADggEBAEBFFeXtLEDax9x0cw6GMHFD tvvu5NKmc/d95HZrjJ+GJfSYBv3iM/fWo5+a3Lkg7RpIT5Ta8zu0ipbKuJ06rKHK CrCGKYo1rltaKzFs1qDvjbL/qF+y+AxkGpnMto/wZVXhC/DfqP9sg3f5SyLy+JGs D/MODV0Ej0xqQWUuCmMgUH0Wj6mXSmw3qpjDDp+YJ0OeLUvTvutQ2ZQI3UGpCR19 crgeqw6idzzA43PcJWOZMISe31NUKLrjuIgK2pwrJ8y1lX6sPjeqgYAwlJCInLfL OnbbQh+iOqAIX65cBqlWe3Gj15T8+wVGCmPsHaJspG2vCnJ91cxIey/CyBuXUs0= -----END CERTIFICATE-----Generated at Sun Feb 16 21:00:30 2025 by rpki-client