$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/207/lqjk_0R9ikENuLENINkzoLslyQY.roa File: lqjk_0R9ikENuLENINkzoLslyQY.roa (raw, json) Hash identifier: luQRMQQ6IvarXIBs/MhiO2AKPss7XViQrgIKlwhB93Y= Subject key identifier: 96:A8:E4:FF:44:7D:8A:41:0D:B8:B1:0D:20:D9:33:A0:BB:25:C9:06 Certificate issuer: /CN=67018B4DFE54BD644E000641A234B471DB20B892 Certificate serial: 8C Authority key identifier: 67:01:8B:4D:FE:54:BD:64:4E:00:06:41:A2:34:B4:71:DB:20:B8:92 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZwGLTf5UvWROAAZBojS0cdsguJI.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/207/lqjk_0R9ikENuLENINkzoLslyQY.roa Signing time: Sun 30 Jun 2024 01:28:21 +0000 ROA not before: Sun 30 Jun 2024 01:28:21 +0000 ROA not after: Tue 24 Jun 2025 10:46:45 +0000 asID: 7521 IP address blocks: 210.173.160.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/207/ZwGLTf5UvWROAAZBojS0cdsguJI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/207/ZwGLTf5UvWROAAZBojS0cdsguJI.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZwGLTf5UvWROAAZBojS0cdsguJI.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67018B4DFE54BD644E000641A234B471DB20B892 Validity Not Before: Jun 30 01:28:21 2024 GMT Not After : Jun 24 10:46:45 2025 GMT Subject: CN=96A8E4FF447D8A410DB8B10D20D933A0BB25C906 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4d:89:1e:f7:05:58:64:6b:13:0e:7c:38:fa: 14:0f:29:ea:23:14:eb:1f:a5:5a:5b:e9:b1:5c:11: 7a:4f:65:5b:ef:3f:07:8c:c7:bc:32:cb:17:cc:c8: b8:d2:7b:db:f2:83:6e:a7:e8:bd:77:91:81:a5:b0: 77:0a:e5:f0:ce:d1:b8:c6:37:88:75:02:8e:cd:32: 28:83:a5:cb:0a:33:d6:a1:2f:7b:09:66:f3:6a:a0: 47:bf:3b:cd:e9:cd:60:1a:d0:3a:58:66:fb:06:d1: a8:f8:06:af:cd:56:5a:31:fe:ff:27:d9:d2:55:eb: 8e:ee:58:f1:38:a1:fa:a0:10:b4:59:5a:7c:3c:8f: c6:d0:82:e7:74:91:d7:cb:0b:a0:29:e7:c2:8c:29: 09:b8:62:d7:42:c2:e9:c7:fc:54:45:d9:4e:ab:72: d8:af:16:00:2b:a2:5f:b8:02:62:73:59:ab:28:c9: e9:f1:20:a9:b3:d1:74:f4:8f:a8:b7:39:23:f5:cb: 99:ce:57:bc:af:40:db:b7:eb:85:56:e5:71:ac:af: 65:5c:72:e5:9d:47:0d:5c:97:53:26:10:28:bb:66: bd:93:a7:34:e5:8b:8e:f7:25:cf:30:16:d7:8e:bd: 5c:d5:54:0e:7b:3c:f5:ea:b4:10:f6:4d:e7:62:c1: c5:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:A8:E4:FF:44:7D:8A:41:0D:B8:B1:0D:20:D9:33:A0:BB:25:C9:06 X509v3 Authority Key Identifier: keyid:67:01:8B:4D:FE:54:BD:64:4E:00:06:41:A2:34:B4:71:DB:20:B8:92 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/207/ZwGLTf5UvWROAAZBojS0cdsguJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZwGLTf5UvWROAAZBojS0cdsguJI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/207/lqjk_0R9ikENuLENINkzoLslyQY.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.173.160.0/21 Signature Algorithm: sha256WithRSAEncryption 32:99:4e:7a:97:66:3c:d6:a0:91:5f:17:f1:dd:66:d2:aa:15: e0:4a:86:fe:27:c7:38:58:94:79:48:f3:cc:bd:23:f8:e2:0f: 8d:60:a2:22:72:9f:11:34:7e:17:3e:be:84:29:0a:a0:2f:d2: 3f:56:c3:6c:5b:50:bd:80:94:80:35:c7:e3:a3:ef:0e:58:c5: e1:26:1b:5a:33:9a:a1:54:ea:83:95:60:14:e6:ae:c1:12:57: 6a:eb:75:54:c8:28:46:59:f9:5c:be:e7:d2:68:94:54:90:7e: 6a:5b:32:64:e3:da:c1:ad:a3:26:91:ae:76:46:02:e0:6d:df: 6c:a3:98:92:08:3a:f4:08:fd:90:ee:8e:61:be:cf:36:dd:28: 9a:94:c6:b1:fb:f6:1b:7a:c7:ba:d2:e5:cb:6a:03:3b:a3:74: b9:8e:d8:ab:1f:3e:71:2c:f0:06:7a:71:ac:0c:d0:f2:3a:26: 26:d3:d1:f6:fb:e1:cf:87:e7:c5:24:55:43:69:9e:1e:cc:d0: 05:7a:18:69:e6:f4:1c:db:2b:3a:e6:17:ee:14:e0:34:3d:bb: bc:be:9b:46:0c:30:aa:a1:43:7f:fa:e7:7f:69:98:31:62:5a: 1a:7c:c4:31:3b:c4:9a:fc:78:14:48:26:07:e4:70:d1:e0:60: 51:83:81:77 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjcw MThCNERGRTU0QkQ2NDRFMDAwNjQxQTIzNEI0NzFEQjIwQjg5MjAeFw0yNDA2MzAw MTI4MjFaFw0yNTA2MjQxMDQ2NDVaMDMxMTAvBgNVBAMTKDk2QThFNEZGNDQ3RDhB NDEwREI4QjEwRDIwRDkzM0EwQkIyNUM5MDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6TYke9wVYZGsTDnw4+hQPKeojFOsfpVpb6bFcEXpPZVvvPweM x7wyyxfMyLjSe9vyg26n6L13kYGlsHcK5fDO0bjGN4h1Ao7NMiiDpcsKM9ahL3sJ ZvNqoEe/O83pzWAa0DpYZvsG0aj4Bq/NVlox/v8n2dJV647uWPE4ofqgELRZWnw8 j8bQgud0kdfLC6Ap58KMKQm4YtdCwunH/FRF2U6rctivFgArol+4AmJzWasoyenx IKmz0XT0j6i3OSP1y5nOV7yvQNu364VW5XGsr2VccuWdRw1cl1MmECi7Zr2TpzTl i473Jc8wFteOvVzVVA57PPXqtBD2TediwcWbAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUlqjk/0R9ikENuLENINkzoLslyQYwHwYDVR0jBBgwFoAUZwGLTf5UvWROAAZB ojS0cdsguJIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzIwNy9ad0dMVGY1VXZXUk9BQVpCb2pTMGNkc2d1SkkuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9ad0dMVGY1VXZXUk9BQVpCb2pTMGNk c2d1SkkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMjA3L2xxamtfMFI5aWtFTnVMRU5JTmt6b0xzbHlRWS5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPSraAwDQYJKoZIhvcNAQELBQADggEBADKZTnqXZjzWoJFfF/HdZtKqFeBK hv4nxzhYlHlI88y9I/jiD41goiJynxE0fhc+voQpCqAv0j9Ww2xbUL2AlIA1x+Oj 7w5YxeEmG1ozmqFU6oOVYBTmrsESV2rrdVTIKEZZ+Vy+59JolFSQfmpbMmTj2sGt oyaRrnZGAuBt32yjmJIIOvQI/ZDujmG+zzbdKJqUxrH79ht6x7rS5ctqAzujdLmO 2KsfPnEs8AZ6cawM0PI6JibT0fb74c+H58UkVUNpnh7M0AV6GGnm9BzbKzrmF+4U 4DQ9u7y+m0YMMKqhQ3/6539pmDFiWhp8xDE7xJr8eBRIJgfkcNHgYFGDgXc= -----END CERTIFICATE-----Generated at Sun Feb 16 22:30:46 2025 by rpki-client