$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10247/OR4XOZ-IqX3_o1_RL-gxilOTgps.roa File: OR4XOZ-IqX3_o1_RL-gxilOTgps.roa (raw, json) Hash identifier: HnqpcEdGeRW6GAmgstX5c77a+jI2cW89wV9IBpK1d4w= Subject key identifier: 39:1E:17:39:9F:88:A9:7D:FF:A3:5F:D1:2F:E8:31:8A:53:93:82:9B Certificate issuer: /CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A Certificate serial: 0224 Authority key identifier: 20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/OR4XOZ-IqX3_o1_RL-gxilOTgps.roa Signing time: Mon 30 Sep 2024 01:33:44 +0000 ROA not before: Mon 30 Sep 2024 01:33:44 +0000 ROA not after: Mon 15 Sep 2025 01:30:03 +0000 asID: 9371 IP address blocks: 49.212.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 548 (0x224) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A Validity Not Before: Sep 30 01:33:44 2024 GMT Not After : Sep 15 01:30:03 2025 GMT Subject: CN=391E17399F88A97DFFA35FD12FE8318A5393829B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:74:78:0e:4f:3e:b4:9c:7e:8b:2d:1d:49:ef: c4:8d:42:52:7f:ad:8b:af:2b:87:ed:aa:db:b4:4c: 16:99:41:28:58:53:ac:b7:cb:9e:29:6e:9f:78:e6: 23:60:c6:30:a8:6a:4e:0e:2e:21:d5:87:cc:af:c5: d5:6d:2c:fe:6d:96:91:21:ed:87:99:6b:59:2b:eb: f9:39:80:92:6e:52:45:d3:68:41:b8:43:95:7f:ea: d1:76:1b:fd:c2:58:55:0c:86:3b:2d:56:6c:3e:93: 6b:fa:1f:d7:e0:cf:d2:f5:f0:fa:12:ba:88:6a:c1: 5d:bd:67:91:8e:f1:f3:78:da:df:2c:a6:44:0f:c1: f1:a6:52:be:2e:69:1b:ff:78:1c:e8:54:3d:6c:3f: e2:4f:07:d7:2b:a1:2a:65:a4:cc:df:88:50:9d:89: 7d:5d:aa:61:cb:e0:74:82:b1:03:98:60:26:d0:eb: 50:e6:bc:35:06:cd:52:d9:8f:39:61:d0:79:c8:99: 44:07:9d:e4:d6:38:5c:25:a0:b4:95:77:f3:2f:fb: 26:b1:cf:53:a2:61:b1:7c:6d:9b:73:df:94:66:d1: 21:ce:2b:56:86:f4:8e:d3:ef:e1:5c:01:c8:1c:75: db:46:73:4a:67:a5:3d:ee:46:a7:24:95:15:1f:98: c8:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:1E:17:39:9F:88:A9:7D:FF:A3:5F:D1:2F:E8:31:8A:53:93:82:9B X509v3 Authority Key Identifier: keyid:20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/OR4XOZ-IqX3_o1_RL-gxilOTgps.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.212.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9c:e4:2d:bd:16:d9:ec:c4:38:2f:34:f6:f1:a0:07:ba:73:a4: 26:19:01:e7:b6:c3:0f:15:85:ca:c0:4d:52:c5:8a:4b:7d:33: e6:c7:e0:2b:e5:60:09:e7:03:ef:bd:25:df:f0:fe:18:bb:7a: 38:7a:00:96:9f:71:c7:9a:a2:8d:68:6e:2c:38:b1:00:04:20: ee:c6:a1:f9:37:dc:7b:39:38:a5:26:c0:f8:59:1e:63:cb:18: 46:b5:03:66:93:34:d4:b0:23:5f:78:56:d5:75:ae:ce:c4:3f: ac:c2:8a:e4:a3:21:49:e1:7c:89:09:a7:1b:79:02:35:5c:51: cc:f8:bf:6c:82:20:03:c9:9c:5f:a0:ee:ec:67:91:cc:74:16: 0c:16:72:bb:e6:ab:0b:1e:6b:13:87:8f:cb:9a:44:86:3f:03: fe:62:1f:d1:13:b3:03:76:de:6d:da:b0:89:27:1f:c3:01:c9: 64:08:86:0c:a6:e4:a6:37:8e:64:59:55:28:c6:ca:31:a9:f4: 81:bf:a6:1e:dd:70:d9:db:0d:84:38:bd:4b:8d:84:4e:db:17: 0c:7f:ef:c8:6c:8c:02:80:08:b5:41:72:0f:98:ee:f5:42:f5: 0f:cd:c3:ab:45:46:80:54:50:d8:f5:e6:ae:d2:41:4e:a5:4d: 87:a4:1d:6e -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgICAiQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjAz MjBGNkQwOURCMThDMEY3MEIzNTRBM0Q4NzQ1MEY3MEU2RDcxQTAeFw0yNDA5MzAw MTMzNDRaFw0yNTA5MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDM5MUUxNzM5OUY4OEE5 N0RGRkEzNUZEMTJGRTgzMThBNTM5MzgyOUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1dHgOTz60nH6LLR1J78SNQlJ/rYuvK4ftqtu0TBaZQShYU6y3 y54pbp945iNgxjCoak4OLiHVh8yvxdVtLP5tlpEh7YeZa1kr6/k5gJJuUkXTaEG4 Q5V/6tF2G/3CWFUMhjstVmw+k2v6H9fgz9L18PoSuohqwV29Z5GO8fN42t8spkQP wfGmUr4uaRv/eBzoVD1sP+JPB9croSplpMzfiFCdiX1dqmHL4HSCsQOYYCbQ61Dm vDUGzVLZjzlh0HnImUQHneTWOFwloLSVd/Mv+yaxz1OiYbF8bZtz35Rm0SHOK1aG 9I7T7+FcAcgcddtGc0pnpT3uRqcklRUfmMjJAgMBAAGjggInMIICIzAdBgNVHQ4E FgQUOR4XOZ+IqX3/o1/RL+gxilOTgpswHwYDVR0jBBgwFoAUIDIPbQnbGMD3CzVK PYdFD3Dm1xowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEwMjQ3L0lESVBiUW5iR01EM0N6VktQWWRGRDNEbTF4by5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0lESVBiUW5iR01EM0N6VktQWWRG RDNEbTF4by5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8xMDI0Ny9PUjRYT1otSXFYM19vMV9STC1neGlsT1RncHMu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMAMdQwDQYJKoZIhvcNAQELBQADggEBAJzkLb0W2ezEOC809vGgB7pz pCYZAee2ww8VhcrATVLFikt9M+bH4CvlYAnnA++9Jd/w/hi7ejh6AJafcceaoo1o biw4sQAEIO7Gofk33Hs5OKUmwPhZHmPLGEa1A2aTNNSwI194VtV1rs7EP6zCiuSj IUnhfIkJpxt5AjVcUcz4v2yCIAPJnF+g7uxnkcx0FgwWcrvmqwseaxOHj8uaRIY/ A/5iH9ETswN23m3asIknH8MByWQIhgym5KY3jmRZVSjGyjGp9IG/ph7dcNnbDYQ4 vUuNhE7bFwx/78hsjAKACLVBcg+Y7vVC9Q/Nw6tFRoBUUNj15q7SQU6lTYekHW4= -----END CERTIFICATE-----Generated at Sun Feb 16 22:34:40 2025 by rpki-client