$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10966/kgIorEfolpg4vUh-_OWDCYZPNHk.roa File: kgIorEfolpg4vUh-_OWDCYZPNHk.roa (raw, json) Hash identifier: pxYxaYHu7FwAOyTY/hVBGO31d6SPpef9hoMJLBUf3Pg= Subject key identifier: 92:02:28:AC:47:E8:96:98:38:BD:48:7E:FC:E5:83:09:86:4F:34:79 Certificate issuer: /CN=FB72FAA523BA6526855D99065E21B4B958C5F016 Certificate serial: 3D Authority key identifier: FB:72:FA:A5:23:BA:65:26:85:5D:99:06:5E:21:B4:B9:58:C5:F0:16 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-3L6pSO6ZSaFXZkGXiG0uVjF8BY.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10966/kgIorEfolpg4vUh-_OWDCYZPNHk.roa Signing time: Sat 31 Aug 2024 01:30:42 +0000 ROA not before: Sat 31 Aug 2024 01:30:42 +0000 ROA not after: Fri 15 Aug 2025 01:30:02 +0000 asID: 131921 IP address blocks: 157.120.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10966/-3L6pSO6ZSaFXZkGXiG0uVjF8BY.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10966/-3L6pSO6ZSaFXZkGXiG0uVjF8BY.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-3L6pSO6ZSaFXZkGXiG0uVjF8BY.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB72FAA523BA6526855D99065E21B4B958C5F016 Validity Not Before: Aug 31 01:30:42 2024 GMT Not After : Aug 15 01:30:02 2025 GMT Subject: CN=920228AC47E8969838BD487EFCE58309864F3479 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e6:ce:fb:16:a6:82:bb:e6:4b:87:e8:8b:97: 1b:55:56:5d:2d:66:e9:e9:2c:ff:99:7b:72:3c:03: ae:3d:8e:a7:48:b9:bf:d2:21:5d:b5:5c:cb:65:8c: 2f:60:bc:7b:17:82:65:6f:f5:ef:bd:b7:73:e9:d0: 7d:92:8b:bc:34:ec:70:3f:05:ca:fb:2a:4b:6e:1a: d1:ff:6c:47:4b:1d:b6:eb:5e:55:fe:7f:ae:b1:b2: 31:ba:a0:74:1c:cb:7f:e0:06:94:11:01:52:d9:fc: 97:42:ae:d4:c9:e6:cb:5a:13:30:54:bb:33:49:4a: ce:70:39:63:47:c2:31:fc:24:f4:34:13:27:fd:1b: eb:76:4f:45:03:c9:38:54:76:30:4c:66:2a:52:66: 00:ee:23:3d:9e:4f:c9:7f:78:49:89:6e:34:b9:07: 61:93:07:f7:6c:fe:63:49:82:4e:28:fc:ef:12:6f: 9b:45:2f:8a:84:34:0c:eb:a1:9f:55:76:7d:7a:eb: 36:80:df:95:a2:32:9e:7c:2c:ef:86:b3:31:bf:97: a5:34:74:46:66:0b:08:18:a7:16:7c:7c:f0:14:83: 0f:7e:14:19:f2:3c:4b:f8:43:19:aa:0e:ad:28:f3: ea:44:c3:82:ba:4e:45:6b:15:1c:53:52:eb:05:77: db:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:02:28:AC:47:E8:96:98:38:BD:48:7E:FC:E5:83:09:86:4F:34:79 X509v3 Authority Key Identifier: keyid:FB:72:FA:A5:23:BA:65:26:85:5D:99:06:5E:21:B4:B9:58:C5:F0:16 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10966/-3L6pSO6ZSaFXZkGXiG0uVjF8BY.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-3L6pSO6ZSaFXZkGXiG0uVjF8BY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10966/kgIorEfolpg4vUh-_OWDCYZPNHk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.120.115.0/24 Signature Algorithm: sha256WithRSAEncryption 61:54:dc:97:94:cb:3f:9f:77:eb:ea:20:2f:09:44:28:db:df: 04:39:01:83:df:85:e9:df:cc:ef:49:0a:32:19:38:ed:3d:bf: 25:d0:f2:98:4c:b1:76:5a:13:d3:8c:ff:7a:17:34:79:c6:9c: 4f:9c:2b:6f:67:66:b3:46:6e:6c:e6:13:c7:ca:67:80:d4:88: 3d:ff:0c:c4:8a:e7:fb:88:fc:98:70:c5:d9:7d:d2:3e:bc:3a: 3f:62:c6:e7:0b:de:df:33:05:ec:28:b1:06:56:12:41:95:14: 70:a8:9a:d9:50:39:8c:f8:90:6e:fd:50:94:22:c0:d5:b0:9e: 63:ce:43:b4:08:6e:2d:65:18:16:e8:f7:87:37:c1:f2:4a:54: c3:32:4b:b8:70:99:36:0e:f4:15:72:48:db:6a:d6:83:78:dc: e6:f6:54:d8:b6:bb:a0:0d:6b:5a:8c:49:f7:ca:f6:55:d8:60: d6:7e:dd:cc:be:64:56:f9:3f:70:eb:2d:87:16:01:ef:7a:f7: c9:1a:78:29:4b:0a:73:f3:46:dd:92:55:9a:5b:34:47:09:37: da:88:d9:01:b8:e5:20:9c:36:d2:7f:02:8b:eb:67:25:47:49: e3:46:fc:d8:9a:6d:7f:2a:d8:e1:af:c4:ab:26:c6:59:e4:84: fc:af:09:0a -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBPTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGQjcy RkFBNTIzQkE2NTI2ODU1RDk5MDY1RTIxQjRCOTU4QzVGMDE2MB4XDTI0MDgzMTAx MzA0MloXDTI1MDgxNTAxMzAwMlowMzExMC8GA1UEAxMoOTIwMjI4QUM0N0U4OTY5 ODM4QkQ0ODdFRkNFNTgzMDk4NjRGMzQ3OTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALTmzvsWpoK75kuH6IuXG1VWXS1m6eks/5l7cjwDrj2Op0i5v9Ih XbVcy2WML2C8exeCZW/17723c+nQfZKLvDTscD8FyvsqS24a0f9sR0sdtuteVf5/ rrGyMbqgdBzLf+AGlBEBUtn8l0Ku1Mnmy1oTMFS7M0lKznA5Y0fCMfwk9DQTJ/0b 63ZPRQPJOFR2MExmKlJmAO4jPZ5PyX94SYluNLkHYZMH92z+Y0mCTij87xJvm0Uv ioQ0DOuhn1V2fXrrNoDflaIynnws74azMb+XpTR0RmYLCBinFnx88BSDD34UGfI8 S/hDGaoOrSjz6kTDgrpORWsVHFNS6wV32/ECAwEAAaOCAigwggIkMB0GA1UdDgQW BBSSAiisR+iWmDi9SH785YMJhk80eTAfBgNVHSMEGDAWgBT7cvqlI7plJoVdmQZe IbS5WMXwFjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTA5NjYvLTNMNnBTTzZaU2FGWFprR1hpRzB1VmpGOEJZLmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvLTNMNnBTTzZaU2FGWFprR1hpRzB1 VmpGOEJZLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzEwOTY2L2tnSW9yRWZvbHBnNHZVaC1fT1dEQ1laUE5Iay5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBACdeHMwDQYJKoZIhvcNAQELBQADggEBAGFU3JeUyz+fd+vqIC8JRCjb 3wQ5AYPfhenfzO9JCjIZOO09vyXQ8phMsXZaE9OM/3oXNHnGnE+cK29nZrNGbmzm E8fKZ4DUiD3/DMSK5/uI/Jhwxdl90j68Oj9ixucL3t8zBewosQZWEkGVFHComtlQ OYz4kG79UJQiwNWwnmPOQ7QIbi1lGBbo94c3wfJKVMMyS7hwmTYO9BVySNtq1oN4 3Ob2VNi2u6ANa1qMSffK9lXYYNZ+3cy+ZFb5P3DrLYcWAe9698kaeClLCnPzRt2S VZpbNEcJN9qI2QG45SCcNtJ/AovrZyVHSeNG/NiabX8q2OGvxKsmxlnkhPyvCQo= -----END CERTIFICATE-----Generated at Sun Feb 16 22:26:13 2025 by rpki-client