$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1203/tjS7HcxgcNLO3-zYKYyNL5mMaSs.roa File: tjS7HcxgcNLO3-zYKYyNL5mMaSs.roa (raw, json) Hash identifier: HRIGQqtngeIH1ecf5w8mvxqdiL8TLrGw2pzam5+IQT0= Subject key identifier: B6:34:BB:1D:CC:60:70:D2:CE:DF:EC:D8:29:8C:8D:2F:99:8C:69:2B Certificate issuer: /CN=A34005B8EDE6636C61911B6BA981E49D9E1216CF Certificate serial: 02 Authority key identifier: A3:40:05:B8:ED:E6:63:6C:61:91:1B:6B:A9:81:E4:9D:9E:12:16:CF Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/o0AFuO3mY2xhkRtrqYHknZ4SFs8.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1203/tjS7HcxgcNLO3-zYKYyNL5mMaSs.roa Signing time: Tue 29 Oct 2024 02:58:23 +0000 ROA not before: Tue 29 Oct 2024 02:58:23 +0000 ROA not after: Wed 29 Oct 2025 02:46:37 +0000 asID: 4694 IP address blocks: 158.205.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1203/o0AFuO3mY2xhkRtrqYHknZ4SFs8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1203/o0AFuO3mY2xhkRtrqYHknZ4SFs8.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/o0AFuO3mY2xhkRtrqYHknZ4SFs8.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A34005B8EDE6636C61911B6BA981E49D9E1216CF Validity Not Before: Oct 29 02:58:23 2024 GMT Not After : Oct 29 02:46:37 2025 GMT Subject: CN=B634BB1DCC6070D2CEDFECD8298C8D2F998C692B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b9:0a:6c:0b:b5:ee:88:ef:a6:72:18:23:f7: 4b:eb:c9:2c:b6:ff:de:44:bf:e6:58:c8:34:66:47: 9e:81:b3:83:3c:e3:1f:ca:e3:c3:59:b4:f8:78:92: 8a:30:1f:4d:61:96:22:77:dc:98:c1:e5:16:1b:a4: 41:e2:6d:9e:a0:3c:a0:7e:15:f6:b8:4a:86:37:7d: 6b:5e:52:8e:ec:9e:e2:61:92:7b:ea:33:f2:7f:25: e9:77:a1:fe:86:28:e2:d0:2c:95:43:6d:1c:a9:a8: 26:5c:84:a3:a2:b2:65:d1:49:61:a0:69:af:b2:4c: 58:a3:40:42:2f:13:92:41:da:f7:c9:f5:74:95:18: 1c:53:e2:d6:78:23:e5:06:33:71:72:2f:96:f3:fc: 9e:ab:54:0d:93:ab:c3:ed:45:10:17:09:22:c6:4f: 49:84:54:54:94:97:eb:2c:a2:99:ad:74:23:95:f8: e7:29:ff:d8:a7:69:24:33:6b:bd:21:63:96:90:f7: 44:89:ec:f6:29:47:f1:b9:62:cf:c3:10:99:52:9b: f8:67:c9:92:d4:1e:e2:23:74:b9:bc:f5:9b:d9:10: 59:1b:9b:2e:03:a3:5a:bf:ac:0b:e7:24:52:f8:fb: f1:de:96:3f:7a:28:69:a7:d8:28:d7:2d:4c:0e:97: f5:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:34:BB:1D:CC:60:70:D2:CE:DF:EC:D8:29:8C:8D:2F:99:8C:69:2B X509v3 Authority Key Identifier: keyid:A3:40:05:B8:ED:E6:63:6C:61:91:1B:6B:A9:81:E4:9D:9E:12:16:CF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1203/o0AFuO3mY2xhkRtrqYHknZ4SFs8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/o0AFuO3mY2xhkRtrqYHknZ4SFs8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1203/tjS7HcxgcNLO3-zYKYyNL5mMaSs.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 158.205.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0d:27:26:82:c9:d9:f8:cb:d7:8f:6c:a6:c2:ba:5f:93:1e:2b: b0:6c:bc:8b:43:3e:16:c6:3c:d6:4a:d4:b5:0a:65:45:61:a7: de:ce:e5:e9:cc:51:24:18:bc:67:76:6c:66:13:30:38:2e:f2: 24:05:b6:6e:11:fb:e7:b2:02:3e:12:3f:0a:76:7c:fd:4c:57: 72:01:1a:c3:8e:d7:d9:44:e0:f9:f6:53:fa:74:60:62:d9:44: 12:8a:48:2a:92:72:74:9e:c6:c2:75:71:23:c1:51:c7:3c:1e: 6c:5c:8f:43:b6:9f:1a:57:8b:28:96:78:e8:4b:9d:55:dd:1e: 55:90:d0:bf:98:a9:ee:a4:78:3e:30:60:bc:94:93:08:3e:4b: c0:c6:d7:ba:a3:83:57:99:f1:31:30:06:07:b2:6f:ba:96:ed: be:0a:4e:50:ef:64:ef:aa:a5:62:9f:c3:0d:4e:d6:a4:f6:94: fc:55:8b:65:5b:31:50:e5:70:3f:03:c4:b0:6c:2e:f2:92:0a: d4:f9:85:3d:1c:cf:09:b5:25:63:b3:a5:d4:6d:3d:0b:04:8d: dc:d2:84:bb:a1:1a:d4:c1:92:ec:2f:2c:a1:57:1c:7f:b0:c0: 27:29:dc:f5:65:ae:98:a9:8a:f2:61:4d:44:a7:ca:10:72:8e: aa:18:a5:d6 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgIBAjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBMzQw MDVCOEVERTY2MzZDNjE5MTFCNkJBOTgxRTQ5RDlFMTIxNkNGMB4XDTI0MTAyOTAy NTgyM1oXDTI1MTAyOTAyNDYzN1owMzExMC8GA1UEAxMoQjYzNEJCMURDQzYwNzBE MkNFREZFQ0Q4Mjk4QzhEMkY5OThDNjkyQjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMK5CmwLte6I76ZyGCP3S+vJLLb/3kS/5ljINGZHnoGzgzzjH8rj w1m0+HiSijAfTWGWInfcmMHlFhukQeJtnqA8oH4V9rhKhjd9a15Sjuye4mGSe+oz 8n8l6Xeh/oYo4tAslUNtHKmoJlyEo6KyZdFJYaBpr7JMWKNAQi8TkkHa98n1dJUY HFPi1ngj5QYzcXIvlvP8nqtUDZOrw+1FEBcJIsZPSYRUVJSX6yyima10I5X45yn/ 2KdpJDNrvSFjlpD3RIns9ilH8bliz8MQmVKb+GfJktQe4iN0ubz1m9kQWRubLgOj Wr+sC+ckUvj78d6WP3ooaafYKNctTA6X9XMCAwEAAaOCAiUwggIhMB0GA1UdDgQW BBS2NLsdzGBw0s7f7NgpjI0vmYxpKzAfBgNVHSMEGDAWgBSjQAW47eZjbGGRG2up geSdnhIWzzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTIwMy9vMEFGdU8zbVkyeGhrUnRycVlIa25aNFNGczguY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9vMEFGdU8zbVkyeGhrUnRycVlIa25a NFNGczguY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTIwMy90alM3SGN4Z2NOTE8zLXpZS1l5Tkw1bU1hU3Mucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIA ATAFAwMAns0wDQYJKoZIhvcNAQELBQADggEBAA0nJoLJ2fjL149spsK6X5MeK7Bs vItDPhbGPNZK1LUKZUVhp97O5enMUSQYvGd2bGYTMDgu8iQFtm4R++eyAj4SPwp2 fP1MV3IBGsOO19lE4Pn2U/p0YGLZRBKKSCqScnSexsJ1cSPBUcc8Hmxcj0O2nxpX iyiWeOhLnVXdHlWQ0L+Yqe6keD4wYLyUkwg+S8DG17qjg1eZ8TEwBgeyb7qW7b4K TlDvZO+qpWKfww1O1qT2lPxVi2VbMVDlcD8DxLBsLvKSCtT5hT0czwm1JWOzpdRt PQsEjdzShLuhGtTBkuwvLKFXHH+wwCcp3PVlrpipivJhTUSnyhByjqoYpdY= -----END CERTIFICATE-----Generated at Sun Feb 16 22:12:59 2025 by rpki-client