$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10247/lkcXMK_0YODmhJR_nx3SqcGwCzs.roa File: lkcXMK_0YODmhJR_nx3SqcGwCzs.roa (raw, json) Hash identifier: TbDvucKdPxDNZjiTooTWRRpCCEyvO6Q6gFZ7wuVLKiE= Subject key identifier: 96:47:17:30:AF:F4:60:E0:E6:84:94:7F:9F:1D:D2:A9:C1:B0:0B:3B Certificate issuer: /CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A Certificate serial: 022D Authority key identifier: 20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/lkcXMK_0YODmhJR_nx3SqcGwCzs.roa Signing time: Mon 30 Sep 2024 01:33:48 +0000 ROA not before: Mon 30 Sep 2024 01:33:48 +0000 ROA not after: Mon 15 Sep 2025 01:30:03 +0000 asID: 7684 IP address blocks: 49.212.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 557 (0x22d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A Validity Not Before: Sep 30 01:33:48 2024 GMT Not After : Sep 15 01:30:03 2025 GMT Subject: CN=96471730AFF460E0E684947F9F1DD2A9C1B00B3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:23:fe:e3:c1:5a:45:c2:b8:2b:34:08:95:a5: fd:56:b7:54:f1:ab:03:22:94:10:67:d3:15:1c:4e: 5f:6e:9d:69:fc:bb:d2:3f:86:1a:11:5b:44:70:74: e3:0e:4c:18:8c:4d:5d:32:ee:d5:2e:80:54:8d:b1: 1b:f6:64:40:bf:5e:49:17:ef:a0:8f:fd:1f:83:ca: c4:a0:90:4e:8a:48:7c:36:c1:18:1c:07:83:65:34: d1:d8:80:12:2a:f6:b9:78:e4:ff:20:40:8d:7d:ed: d1:cb:13:99:29:e3:d9:b0:a6:dd:2a:c1:17:73:c9: 2d:bc:51:37:8c:15:8f:7f:49:de:0f:77:cb:e5:72: 69:f5:2e:d5:36:d4:a3:01:68:76:2f:23:26:66:6f: c6:65:4b:30:62:04:75:77:65:d8:b6:23:92:20:d0: df:93:60:2f:d9:24:6f:7a:80:bf:01:d2:e1:53:65: 62:48:c0:f7:ee:cd:19:6e:0d:9b:f2:55:90:af:96: 70:03:fc:ab:75:73:03:00:41:53:e5:22:54:83:1d: c7:bb:24:a3:f7:b6:64:29:18:93:a1:fa:39:ab:9f: 7b:03:8b:e8:89:73:13:a0:41:1a:2f:f5:33:4a:21: 50:79:97:8f:ff:79:de:b4:ee:75:f8:43:73:37:be: a7:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:47:17:30:AF:F4:60:E0:E6:84:94:7F:9F:1D:D2:A9:C1:B0:0B:3B X509v3 Authority Key Identifier: keyid:20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/lkcXMK_0YODmhJR_nx3SqcGwCzs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.212.246.0/24 Signature Algorithm: sha256WithRSAEncryption 34:5c:3b:e3:9c:b1:7b:7a:3f:43:61:0e:43:fe:7a:ce:83:a4: 27:c1:bf:49:4c:df:89:47:89:00:ac:92:f8:7c:1a:87:f1:57: ce:6c:6d:8f:6d:93:86:56:df:d2:a6:bc:6a:95:fa:59:b8:50: 6d:26:67:4d:61:ef:77:7f:ea:54:41:26:c9:94:70:89:d2:1c: 6a:7f:49:70:68:a4:07:03:b0:8e:39:0d:df:c4:c5:e0:34:de: 8f:ed:59:a6:f3:79:a4:a4:50:3c:a0:b5:16:92:39:b2:45:a0: f8:c3:96:4b:f8:cd:b1:e9:08:18:9a:42:b9:a0:e6:dc:07:6e: e5:d8:90:e1:93:da:ed:f8:6a:7c:3a:3c:fc:5f:9e:11:f5:49: 31:48:a3:d1:d3:f2:66:f4:2c:cf:84:a6:ff:a2:82:4f:1d:e3: 92:89:b7:98:f6:2a:2a:1c:14:3f:43:68:ca:96:3c:2f:f1:77: 17:eb:1c:3a:3b:12:e6:17:15:8f:55:2c:9d:8a:fa:59:7d:6f: 8d:4d:21:b4:5f:61:b9:c0:38:3f:ec:b1:91:b9:13:6f:23:0b: f6:d0:25:6c:01:b5:e4:91:71:b4:7d:6e:7d:1a:d5:4a:8d:70: 2e:e3:6d:0e:fa:9f:98:a5:cf:be:43:73:9a:79:15:31:ae:09: 81:10:72:d2 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgICAi0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjAz MjBGNkQwOURCMThDMEY3MEIzNTRBM0Q4NzQ1MEY3MEU2RDcxQTAeFw0yNDA5MzAw MTMzNDhaFw0yNTA5MTUwMTMwMDNaMDMxMTAvBgNVBAMTKDk2NDcxNzMwQUZGNDYw RTBFNjg0OTQ3RjlGMUREMkE5QzFCMDBCM0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDeI/7jwVpFwrgrNAiVpf1Wt1TxqwMilBBn0xUcTl9unWn8u9I/ hhoRW0RwdOMOTBiMTV0y7tUugFSNsRv2ZEC/XkkX76CP/R+DysSgkE6KSHw2wRgc B4NlNNHYgBIq9rl45P8gQI197dHLE5kp49mwpt0qwRdzyS28UTeMFY9/Sd4Pd8vl cmn1LtU21KMBaHYvIyZmb8ZlSzBiBHV3Zdi2I5Ig0N+TYC/ZJG96gL8B0uFTZWJI wPfuzRluDZvyVZCvlnAD/Kt1cwMAQVPlIlSDHce7JKP3tmQpGJOh+jmrn3sDi+iJ cxOgQRov9TNKIVB5l4//ed607nX4Q3M3vqdLAgMBAAGjggIoMIICJDAdBgNVHQ4E FgQUlkcXMK/0YODmhJR/nx3SqcGwCzswHwYDVR0jBBgwFoAUIDIPbQnbGMD3CzVK PYdFD3Dm1xowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBoBgNVHR8EYTBfMF2g W6BZhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzEwMjQ3L0lESVBiUW5iR01EM0N6VktQWWRGRDNEbTF4by5jcmwwbQYI KwYBBQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9y eS5uaWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0lESVBiUW5iR01EM0N6VktQWWRG RDNEbTF4by5jZXIwDgYDVR0PAQH/BAQDAgeAMIG9BggrBgEFBQcBCwSBsDCBrTBj BggrBgEFBQcwC4ZXcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2Fw L0E5MUE3MzgxMDAwMC8xMDI0Ny9sa2NYTUtfMFlPRG1oSlJfbngzU3FjR3dDenMu cm9hMEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQu anAvcnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAMdT2MA0GCSqGSIb3DQEBCwUAA4IBAQA0XDvjnLF7ej9DYQ5D/nrO g6Qnwb9JTN+JR4kArJL4fBqH8VfObG2PbZOGVt/SprxqlfpZuFBtJmdNYe93f+pU QSbJlHCJ0hxqf0lwaKQHA7COOQ3fxMXgNN6P7Vmm83mkpFA8oLUWkjmyRaD4w5ZL +M2x6QgYmkK5oObcB27l2JDhk9rt+Gp8Ojz8X54R9UkxSKPR0/Jm9CzPhKb/ooJP HeOSibeY9ioqHBQ/Q2jKljwv8XcX6xw6OxLmFxWPVSydivpZfW+NTSG0X2G5wDg/ 7LGRuRNvIwv20CVsAbXkkXG0fW59GtVKjXAu420O+p+Ypc++Q3OaeRUxrgmBEHLS -----END CERTIFICATE-----Generated at Sun Feb 16 22:24:37 2025 by rpki-client