$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/2166/nUSbnvKYJ545Sx8uLua-dgGNa80.roa File: nUSbnvKYJ545Sx8uLua-dgGNa80.roa (raw, json) Hash identifier: dIxSfsLUOnjV1QjQPUtpQMOgxEV4iITupJWsJm8Flk0= Subject key identifier: 9D:44:9B:9E:F2:98:27:9E:39:4B:1F:2E:2E:E6:BE:76:01:8D:6B:CD Certificate issuer: /CN=36DA30F686577D6576F647B295455535835130C3 Certificate serial: 0B Authority key identifier: 36:DA:30:F6:86:57:7D:65:76:F6:47:B2:95:45:55:35:83:51:30:C3 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ntow9oZXfWV29keylUVVNYNRMMM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/nUSbnvKYJ545Sx8uLua-dgGNa80.roa Signing time: Fri 27 Sep 2024 00:35:43 +0000 ROA not before: Fri 27 Sep 2024 00:35:43 +0000 ROA not after: Fri 26 Sep 2025 07:28:48 +0000 asID: 2907 IP address blocks: 192.55.118.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/Ntow9oZXfWV29keylUVVNYNRMMM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/Ntow9oZXfWV29keylUVVNYNRMMM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ntow9oZXfWV29keylUVVNYNRMMM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36DA30F686577D6576F647B295455535835130C3 Validity Not Before: Sep 27 00:35:43 2024 GMT Not After : Sep 26 07:28:48 2025 GMT Subject: CN=9D449B9EF298279E394B1F2E2EE6BE76018D6BCD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:17:72:b2:73:64:bc:ce:0a:1e:70:3a:2a:f9: 6c:20:d6:e9:2f:dc:37:8f:7d:41:f4:1b:d6:19:b2: 0c:2c:a7:31:ce:fa:5d:4c:0f:5d:5b:64:19:31:c8: 7b:97:d7:7b:04:08:67:74:e5:a0:8b:f0:7d:4e:68: 09:4b:7f:1d:97:ca:70:4c:4a:dc:3d:0f:84:d5:04: c1:2c:b7:6e:ba:a8:db:d5:04:4f:5c:29:23:03:a2: 93:10:71:67:65:bd:6e:ac:0d:26:56:71:5b:a8:25: ef:84:07:69:15:4d:4b:e1:00:78:7e:ea:29:17:ed: 36:93:8d:c5:19:27:db:47:5f:4b:a4:f9:15:c7:62: 2b:d2:1e:53:d0:4d:ca:b6:56:c5:bf:21:f1:a5:d6: d5:c2:a9:8f:6e:79:d6:47:20:ed:8a:5f:c4:1b:62: 7e:48:6c:9e:12:63:cc:37:91:ca:89:e4:46:aa:e5: fa:99:7c:79:93:9b:8b:51:61:d4:ad:25:4c:81:e0: 16:27:3c:58:29:55:64:78:dd:d6:70:7c:88:90:d8: cc:76:4e:11:bf:84:ef:3c:01:a6:3c:6c:ea:b8:c7: 6b:d6:66:34:1e:d1:77:82:f3:50:30:3c:91:33:67: 84:2e:b1:a0:ec:92:a7:b9:af:0f:33:9c:cd:96:b9: f4:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:44:9B:9E:F2:98:27:9E:39:4B:1F:2E:2E:E6:BE:76:01:8D:6B:CD X509v3 Authority Key Identifier: keyid:36:DA:30:F6:86:57:7D:65:76:F6:47:B2:95:45:55:35:83:51:30:C3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/Ntow9oZXfWV29keylUVVNYNRMMM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ntow9oZXfWV29keylUVVNYNRMMM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2166/nUSbnvKYJ545Sx8uLua-dgGNa80.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.55.118.0/24 Signature Algorithm: sha256WithRSAEncryption a8:23:39:e4:59:08:7c:16:ef:a5:da:15:e2:e5:3f:5d:7f:26: 17:47:16:99:86:ac:7a:67:72:e8:7d:03:c6:3a:cd:00:93:48: 7e:7b:19:31:03:ed:a7:be:d6:8c:e0:6e:a9:da:d5:65:52:f0: f7:a3:4b:9e:81:43:da:97:cb:db:48:be:8c:db:da:43:0b:0c: 06:48:99:27:00:ca:b9:43:81:be:b4:ae:c6:55:d9:e7:0d:00: 7b:48:4c:e1:65:7a:60:e7:27:a3:32:12:49:51:5d:5d:6d:5b: 46:42:82:4e:ed:6b:f6:a3:5a:3e:5a:49:f1:04:ba:2b:d8:9d: 55:4c:13:7f:9f:af:ae:85:9d:cb:49:9e:b3:ea:93:ae:b0:6f: 16:7d:58:22:c9:c1:50:dc:bd:69:4a:15:e0:70:14:99:43:b9: 65:de:de:e0:3b:5b:ec:be:c4:e0:22:a5:b4:64:49:7e:30:3c: 3b:de:02:22:36:15:4c:39:a3:c0:ba:36:c1:e7:81:16:c0:96: 31:aa:1d:23:32:07:a8:80:8f:f8:48:6a:df:30:c0:ea:3c:90: 0c:3f:03:87:4a:12:1f:5f:60:2e:88:d9:7f:88:79:16:f9:a5: 1d:bc:9d:80:90:3d:68:7f:1b:35:5c:64:5d:17:4f:6f:51:7f: b0:98:d5:6f -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgIBCzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzNkRB MzBGNjg2NTc3RDY1NzZGNjQ3QjI5NTQ1NTUzNTgzNTEzMEMzMB4XDTI0MDkyNzAw MzU0M1oXDTI1MDkyNjA3Mjg0OFowMzExMC8GA1UEAxMoOUQ0NDlCOUVGMjk4Mjc5 RTM5NEIxRjJFMkVFNkJFNzYwMThENkJDRDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKgXcrJzZLzOCh5wOir5bCDW6S/cN499QfQb1hmyDCynMc76XUwP XVtkGTHIe5fXewQIZ3TloIvwfU5oCUt/HZfKcExK3D0PhNUEwSy3brqo29UET1wp IwOikxBxZ2W9bqwNJlZxW6gl74QHaRVNS+EAeH7qKRftNpONxRkn20dfS6T5Fcdi K9IeU9BNyrZWxb8h8aXW1cKpj2551kcg7YpfxBtifkhsnhJjzDeRyonkRqrl+pl8 eZObi1Fh1K0lTIHgFic8WClVZHjd1nB8iJDYzHZOEb+E7zwBpjxs6rjHa9ZmNB7R d4LzUDA8kTNnhC6xoOySp7mvDzOczZa59KsCAwEAAaOCAiYwggIiMB0GA1UdDgQW BBSdRJue8pgnnjlLHy4u5r52AY1rzTAfBgNVHSMEGDAWgBQ22jD2hld9ZXb2R7KV RVU1g1EwwzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMjE2Ni9OdG93OW9aWGZXVjI5a2V5bFVWVk5ZTlJNTU0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9OdG93OW9aWGZXVjI5a2V5bFVWVk5Z TlJNTU0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMjE2Ni9uVVNibnZLWUo1NDVTeDh1THVhLWRnR05hODAucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAwDd2MA0GCSqGSIb3DQEBCwUAA4IBAQCoIznkWQh8Fu+l2hXi5T9dfyYX RxaZhqx6Z3LofQPGOs0Ak0h+exkxA+2nvtaM4G6p2tVlUvD3o0uegUPal8vbSL6M 29pDCwwGSJknAMq5Q4G+tK7GVdnnDQB7SEzhZXpg5yejMhJJUV1dbVtGQoJO7Wv2 o1o+WknxBLor2J1VTBN/n6+uhZ3LSZ6z6pOusG8WfVgiycFQ3L1pShXgcBSZQ7ll 3t7gO1vsvsTgIqW0ZEl+MDw73gIiNhVMOaPAujbB54EWwJYxqh0jMgeogI/4SGrf MMDqPJAMPwOHShIfX2AuiNl/iHkW+aUdvJ2AkD1ofxs1XGRdF09vUX+wmNVv -----END CERTIFICATE-----Generated at Sun Feb 16 22:06:37 2025 by rpki-client