$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/11247/DflsB2evMbJ7vtHy4zVxRPfT8vc.roa File: DflsB2evMbJ7vtHy4zVxRPfT8vc.roa (raw, json) Hash identifier: t1MZEF1aeqWzo52kovBiuNM2flQvn8sVYgE4UNIG3UI= Subject key identifier: 0D:F9:6C:07:67:AF:31:B2:7B:BE:D1:F2:E3:35:71:44:F7:D3:F2:F7 Certificate issuer: /CN=FBC46294A5D56437E19A11AEF9FB9B877690143E Certificate serial: 4E Authority key identifier: FB:C4:62:94:A5:D5:64:37:E1:9A:11:AE:F9:FB:9B:87:76:90:14:3E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-8RilKXVZDfhmhGu-fubh3aQFD4.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/DflsB2evMbJ7vtHy4zVxRPfT8vc.roa Signing time: Tue 30 Apr 2024 01:28:57 +0000 ROA not before: Tue 30 Apr 2024 01:28:57 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 7684 IP address blocks: 157.17.32.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/-8RilKXVZDfhmhGu-fubh3aQFD4.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/-8RilKXVZDfhmhGu-fubh3aQFD4.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-8RilKXVZDfhmhGu-fubh3aQFD4.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FBC46294A5D56437E19A11AEF9FB9B877690143E Validity Not Before: Apr 30 01:28:57 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=0DF96C0767AF31B27BBED1F2E3357144F7D3F2F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e1:3e:6f:c7:f1:ec:a1:52:11:3c:81:ce:da: 7a:04:75:07:9b:03:5f:98:cf:7b:6e:70:71:72:5b: 46:2d:e9:d9:66:4d:08:8c:62:4e:8e:9c:66:e0:e4: 38:a0:13:64:e2:35:5d:10:05:d6:39:4d:16:c5:e0: 63:4c:8a:e8:23:6e:88:6e:92:5f:37:1a:1c:5e:b2: a4:3a:36:15:a4:10:01:e2:70:58:fa:9e:39:43:6c: 5a:70:03:93:92:14:cc:32:1d:90:3c:f4:b1:57:bf: 42:1a:fe:c2:2b:cf:87:9a:c3:cb:cc:dd:a4:76:49: dd:1d:98:ab:b4:86:22:1a:2f:47:a3:54:a1:3a:7f: 38:b7:97:b6:70:84:bd:f4:17:4a:a5:01:57:7a:8f: 6e:09:8a:b0:6a:70:2c:eb:83:d6:ee:aa:df:91:8a: d0:21:1f:b9:fc:a9:17:7a:2e:8a:ce:d0:d7:63:50: a5:87:70:96:89:1e:15:21:79:db:1f:9b:30:ec:a3: e1:3a:6f:2f:c9:e0:a0:99:5d:ac:13:78:63:20:12: 85:e5:9e:0b:cb:aa:55:07:95:63:b1:0d:4b:6a:af: fa:57:61:ea:dc:c6:42:9b:c9:3a:48:58:d1:68:e7: 7f:f7:f3:a8:d2:ac:9e:68:0f:26:90:06:48:6e:a1: 39:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:F9:6C:07:67:AF:31:B2:7B:BE:D1:F2:E3:35:71:44:F7:D3:F2:F7 X509v3 Authority Key Identifier: keyid:FB:C4:62:94:A5:D5:64:37:E1:9A:11:AE:F9:FB:9B:87:76:90:14:3E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/-8RilKXVZDfhmhGu-fubh3aQFD4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-8RilKXVZDfhmhGu-fubh3aQFD4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/DflsB2evMbJ7vtHy4zVxRPfT8vc.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.17.32.0/20 Signature Algorithm: sha256WithRSAEncryption 0d:a9:c9:cd:9d:cd:7d:16:cc:de:f2:d0:77:44:a2:67:ec:e9: de:71:54:c0:11:33:63:cd:87:1a:0f:4d:a5:dc:39:16:51:51: f6:04:08:ec:49:28:ea:9a:77:79:55:7c:e9:7a:e8:03:58:46: e8:26:24:e4:08:e8:97:64:08:b1:54:a8:c0:a1:b6:30:3b:4a: 09:c5:01:0c:0b:01:9d:01:3c:b2:47:b4:15:13:8c:f4:ac:f7: 07:a3:ae:30:96:48:34:02:a2:94:5d:91:1e:7a:31:ae:9e:a5: ff:89:ce:48:d3:2f:85:a3:dc:fa:cd:e1:20:e7:6f:44:a1:bc: ad:08:e8:ff:cc:08:d6:03:ab:de:52:7f:d0:dd:5e:44:ba:fe: 6d:8b:4a:ed:dc:b0:0c:0f:f5:80:74:6b:43:6f:a4:fb:33:01: eb:d0:c7:04:21:4f:90:30:79:5b:7b:bd:29:5e:fe:5d:83:e6: b8:36:21:80:c6:1d:5d:a0:a5:e4:78:58:bf:03:39:ae:4d:8d: 65:38:2e:3f:39:b5:ac:6a:0f:f4:50:66:1b:e2:0f:32:31:49: 2d:d7:9f:67:7b:ac:26:22:aa:fe:5e:f9:70:79:a4:f9:f7:66: 70:fe:05:fb:2c:4a:f7:d1:71:48:61:b9:cd:2c:e7:d8:e1:fe: 82:48:eb:e9 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBTjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGQkM0 NjI5NEE1RDU2NDM3RTE5QTExQUVGOUZCOUI4Nzc2OTAxNDNFMB4XDTI0MDQzMDAx Mjg1N1oXDTI1MDQxNTAxMzAwMlowMzExMC8GA1UEAxMoMERGOTZDMDc2N0FGMzFC MjdCQkVEMUYyRTMzNTcxNDRGN0QzRjJGNzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMHhPm/H8eyhUhE8gc7aegR1B5sDX5jPe25wcXJbRi3p2WZNCIxi To6cZuDkOKATZOI1XRAF1jlNFsXgY0yK6CNuiG6SXzcaHF6ypDo2FaQQAeJwWPqe OUNsWnADk5IUzDIdkDz0sVe/Qhr+wivPh5rDy8zdpHZJ3R2Yq7SGIhovR6NUoTp/ OLeXtnCEvfQXSqUBV3qPbgmKsGpwLOuD1u6q35GK0CEfufypF3ouis7Q12NQpYdw lokeFSF52x+bMOyj4TpvL8ngoJldrBN4YyASheWeC8uqVQeVY7ENS2qv+ldh6tzG QpvJOkhY0Wjnf/fzqNKsnmgPJpAGSG6hORkCAwEAAaOCAigwggIkMB0GA1UdDgQW BBQN+WwHZ68xsnu+0fLjNXFE99Py9zAfBgNVHSMEGDAWgBT7xGKUpdVkN+GaEa75 +5uHdpAUPjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTEyNDcvLThSaWxLWFZaRGZobWhHdS1mdWJoM2FRRkQ0LmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvLThSaWxLWFZaRGZobWhHdS1mdWJo M2FRRkQ0LmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzExMjQ3L0RmbHNCMmV2TWJKN3Z0SHk0elZ4UlBmVDh2Yy5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBASdESAwDQYJKoZIhvcNAQELBQADggEBAA2pyc2dzX0WzN7y0HdEomfs 6d5xVMARM2PNhxoPTaXcORZRUfYECOxJKOqad3lVfOl66ANYRugmJOQI6JdkCLFU qMChtjA7SgnFAQwLAZ0BPLJHtBUTjPSs9wejrjCWSDQCopRdkR56Ma6epf+JzkjT L4Wj3PrN4SDnb0ShvK0I6P/MCNYDq95Sf9DdXkS6/m2LSu3csAwP9YB0a0NvpPsz AevQxwQhT5AweVt7vSle/l2D5rg2IYDGHV2gpeR4WL8DOa5NjWU4Lj85taxqD/RQ ZhviDzIxSS3Xn2d7rCYiqv5e+XB5pPn3ZnD+BfssSvfRcUhhuc0s59jh/oJI6+k= -----END CERTIFICATE-----Generated at Sun Feb 16 20:37:19 2025 by rpki-client