$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20116/qBxp8nJ444z3k2SbE1E0775-280.roa File: qBxp8nJ444z3k2SbE1E0775-280.roa (raw, json) Hash identifier: 4G8hDaVxJxM0AjrNkXhxRfIdK6EZktFqalCkT/YeGsg= Subject key identifier: A8:1C:69:F2:72:78:E3:8C:F7:93:64:9B:13:51:34:EF:BE:7E:DB:CD Certificate issuer: /CN=C49E64FB7C8C7C6B5CD7C7701882E8597C42838E Certificate serial: 6A Authority key identifier: C4:9E:64:FB:7C:8C:7C:6B:5C:D7:C7:70:18:82:E8:59:7C:42:83:8E Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xJ5k-3yMfGtc18dwGILoWXxCg44.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/qBxp8nJ444z3k2SbE1E0775-280.roa Signing time: Tue 23 Jul 2024 05:40:48 +0000 ROA not before: Tue 23 Jul 2024 05:40:48 +0000 ROA not after: Tue 15 Jul 2025 01:30:02 +0000 asID: 23816 IP address blocks: 211.14.12.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/xJ5k-3yMfGtc18dwGILoWXxCg44.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/xJ5k-3yMfGtc18dwGILoWXxCg44.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xJ5k-3yMfGtc18dwGILoWXxCg44.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 106 (0x6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E64FB7C8C7C6B5CD7C7701882E8597C42838E Validity Not Before: Jul 23 05:40:48 2024 GMT Not After : Jul 15 01:30:02 2025 GMT Subject: CN=A81C69F27278E38CF793649B135134EFBE7EDBCD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:00:87:cd:df:9e:c5:84:04:22:2c:fd:92:b3: 49:86:6f:52:0c:f6:92:fb:af:91:27:3b:b7:60:05: 72:5a:a2:4e:db:fc:c3:fb:ab:f7:3c:b1:3f:10:e5: 9d:74:46:77:f9:ef:57:df:a4:ce:ac:33:0c:06:53: 7f:ae:eb:e0:a6:56:04:82:8c:4f:95:8e:62:e5:63: 2b:da:59:6f:e1:94:aa:5a:53:18:97:66:2a:00:3a: b4:3b:b3:ab:70:70:dd:3d:62:98:5e:c4:63:75:4d: d7:f3:15:57:1b:9c:4c:37:a4:94:54:93:cc:93:d6: 5c:e1:52:94:4e:25:bc:5b:c6:a1:ac:0f:78:ad:b1: 51:61:bf:8e:02:8d:98:c8:ab:bc:63:77:01:ad:19: 08:40:84:37:69:88:52:78:59:ab:47:87:35:a0:c0: 23:52:8c:2e:20:e6:3c:62:f0:9a:31:ad:22:78:56: 95:9a:bc:4a:e2:90:39:c1:94:75:e4:7b:03:d7:3a: 1c:4b:92:7b:17:a0:e6:85:d3:f2:48:f3:f0:b5:3a: 21:78:15:56:e2:f8:f3:2f:5e:bc:02:f2:1c:34:4b: 6b:df:59:ca:c5:26:2f:c1:c8:44:20:74:d9:5c:89: 83:82:66:88:8a:5d:cf:14:7a:87:e7:6e:f6:2d:6f: ae:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:1C:69:F2:72:78:E3:8C:F7:93:64:9B:13:51:34:EF:BE:7E:DB:CD X509v3 Authority Key Identifier: keyid:C4:9E:64:FB:7C:8C:7C:6B:5C:D7:C7:70:18:82:E8:59:7C:42:83:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/xJ5k-3yMfGtc18dwGILoWXxCg44.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xJ5k-3yMfGtc18dwGILoWXxCg44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20116/qBxp8nJ444z3k2SbE1E0775-280.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 211.14.12.0/22 Signature Algorithm: sha256WithRSAEncryption 60:32:ab:f7:2a:04:ae:e9:d6:1a:e7:32:16:8e:9e:bd:6d:5d: 35:4d:8e:d9:a4:c7:f7:10:3d:f4:64:d7:d3:fc:6a:d7:7e:48: c9:d5:d3:0b:c2:c2:4d:f3:1a:3f:e3:89:7d:ff:a0:0a:7a:c3: 10:ac:37:55:c0:95:41:93:45:e4:e5:a5:44:4c:f0:f6:ac:67: d1:ec:c2:ee:a0:69:40:eb:8d:7e:ac:11:ce:97:24:01:11:ac: 24:af:57:ff:f2:2b:99:5d:e7:cd:1f:b0:25:f6:4f:b4:b8:3a: d5:86:7f:08:d7:db:4e:9b:0f:67:37:bd:12:15:a7:5d:ef:f1: a5:54:ce:62:d2:04:9b:20:1f:94:fe:03:30:86:82:5e:9f:ca: 49:71:0d:e6:83:39:ad:0f:1c:c2:fc:10:dd:2b:55:2d:a1:8b: 38:b6:9d:e8:ed:0c:6a:36:84:42:27:fc:ad:e6:cd:38:53:54: 5e:5d:30:25:2f:e7:18:53:1d:fe:15:a8:6f:7f:62:b0:8b:ca: 1a:0e:af:cf:bb:68:17:07:51:b3:4e:13:84:3e:d2:01:3d:02: 8d:1f:4d:45:35:5a:91:ca:87:e7:6b:4b:5a:e2:6b:1a:2a:9e: d9:11:48:fc:ba:82:89:59:c3:45:28:8b:6d:4f:19:8c:dd:99: 16:84:e4:24 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgIBajANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhDNDlF NjRGQjdDOEM3QzZCNUNEN0M3NzAxODgyRTg1OTdDNDI4MzhFMB4XDTI0MDcyMzA1 NDA0OFoXDTI1MDcxNTAxMzAwMlowMzExMC8GA1UEAxMoQTgxQzY5RjI3Mjc4RTM4 Q0Y3OTM2NDlCMTM1MTM0RUZCRTdFREJDRDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJYAh83fnsWEBCIs/ZKzSYZvUgz2kvuvkSc7t2AFclqiTtv8w/ur 9zyxPxDlnXRGd/nvV9+kzqwzDAZTf67r4KZWBIKMT5WOYuVjK9pZb+GUqlpTGJdm KgA6tDuzq3Bw3T1imF7EY3VN1/MVVxucTDeklFSTzJPWXOFSlE4lvFvGoawPeK2x UWG/jgKNmMirvGN3Aa0ZCECEN2mIUnhZq0eHNaDAI1KMLiDmPGLwmjGtInhWlZq8 SuKQOcGUdeR7A9c6HEuSexeg5oXT8kjz8LU6IXgVVuL48y9evALyHDRLa99ZysUm L8HIRCB02VyJg4JmiIpdzxR6h+du9i1vru0CAwEAAaOCAigwggIkMB0GA1UdDgQW BBSoHGnycnjjjPeTZJsTUTTvvn7bzTAfBgNVHSMEGDAWgBTEnmT7fIx8a1zXx3AY guhZfEKDjjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjAxMTYveEo1ay0zeU1mR3RjMThkd0dJTG9XWHhDZzQ0LmNybDBtBggr BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5 Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAveEo1ay0zeU1mR3RjMThkd0dJTG9X WHhDZzQ0LmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv QTkxQTczODEwMDAwLzIwMTE2L3FCeHA4bko0NDR6M2syU2JFMUUwNzc1LTI4MC5y b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBALTDgwwDQYJKoZIhvcNAQELBQADggEBAGAyq/cqBK7p1hrnMhaOnr1t XTVNjtmkx/cQPfRk19P8atd+SMnV0wvCwk3zGj/jiX3/oAp6wxCsN1XAlUGTReTl pURM8PasZ9Hswu6gaUDrjX6sEc6XJAERrCSvV//yK5ld580fsCX2T7S4OtWGfwjX 206bD2c3vRIVp13v8aVUzmLSBJsgH5T+AzCGgl6fyklxDeaDOa0PHML8EN0rVS2h izi2nejtDGo2hEIn/K3mzThTVF5dMCUv5xhTHf4VqG9/YrCLyhoOr8+7aBcHUbNO E4Q+0gE9Ao0fTUU1WpHKh+drS1riaxoqntkRSPy6golZw0Uoi21PGYzdmRaE5CQ= -----END CERTIFICATE-----Generated at Sun Feb 16 22:32:21 2025 by rpki-client